diff options
Diffstat (limited to 'meta-google/recipes-google/ncsi/files/50-gbmc-ncsi.rules.in')
| -rw-r--r-- | meta-google/recipes-google/ncsi/files/50-gbmc-ncsi.rules.in | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/meta-google/recipes-google/ncsi/files/50-gbmc-ncsi.rules.in b/meta-google/recipes-google/ncsi/files/50-gbmc-ncsi.rules.in new file mode 100644 index 000000000..33031f0db --- /dev/null +++ b/meta-google/recipes-google/ncsi/files/50-gbmc-ncsi.rules.in @@ -0,0 +1,14 @@ +table inet filter { + chain ncsi_input { + type filter hook input priority 0; policy drop; + iifname != @NCSI_IF@ accept + ct state established accept + tcp dport 3959 accept + udp dport 3959 accept + tcp dport 3967 accept + udp dport 3967 accept + icmpv6 type nd-neighbor-advert accept + icmpv6 type nd-neighbor-solicit accept + icmpv6 type nd-router-advert accept + } +} |