Skip to content
This repository was archived by the owner on Aug 7, 2025. It is now read-only.

Insert tallow rule in first position #24

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Insert tallow rule in first position #24

wants to merge 1 commit into from

Conversation

f00b4r0
Copy link

@f00b4r0 f00b4r0 commented Nov 13, 2022

The purpose of tallow is to ban specific hosts. This ban should be enacted as early as possible in the firwall, which is not achieved by using "iptables -A", which appends at the end of the chain.

This patch ensures that the tallow rule is inserted at the top of the INPUT chain, also matching the behavior implemented for firewall-cmd.

Fixes: #22 ("iptables rules order")

@f00b4r0
Insert tallow rule in first position
7f2f23a 
The purpose of tallow is to ban specific hosts. This ban should be
enacted as early as possible in the firwall, which is not achieved by
using "iptables -A", which *appends* at the end of the chain.

This patch ensures that the tallow rule is *inserted* at the top of the
INPUT chain, also matching the behavior implemented for firewall-cmd.

Fixes: clearlinux#22 ("iptables rules order")
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

iptables rules order

1 participant

@f00b4r0