diff options
author | lassulus <lassulus@lassul.us> | 2017-10-26 19:18:53 +0200 |
---|---|---|
committer | lassulus <lassulus@lassul.us> | 2017-10-26 19:18:53 +0200 |
commit | 45f205e1c5b7d5d1d45eab1fb293c86f7c93bd49 (patch) | |
tree | 84ae05a45fbb6a46357847a1a557b7210ec4823c /lass/2configs/default.nix | |
parent | bdbddc4c281c2d108568901319ac0cdc2866578f (diff) |
l: allow dns requests from retiolum
Diffstat (limited to 'lass/2configs/default.nix')
-rw-r--r-- | lass/2configs/default.nix | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/lass/2configs/default.nix b/lass/2configs/default.nix index 10d14e151..180647a6d 100644 --- a/lass/2configs/default.nix +++ b/lass/2configs/default.nix @@ -210,6 +210,7 @@ with import <stockholm/lib>; { predicate = "-p tcp -i retiolum"; target = "REJECT --reject-with tcp-reset"; precedence = -10000; } { predicate = "-p udp -i retiolum"; target = "REJECT --reject-with icmp-port-unreachable"; v6 = false; precedence = -10000; } { predicate = "-i retiolum"; target = "REJECT --reject-with icmp-proto-unreachable"; v6 = false; precedence = -10000; } + { predicate = "-i retiolum -p udp -m udp --dport 53"; target = "ACCEPT"; } ]; }; }; |