Good morning,
I'm working on the restriction in gargoyle in ssh and I need some advice because I'm struggling a bit.
Here's what I do:
-A egress_restrictions -p tcp -m WEBURL --contains Vultr Holdings, LLC --domain_only -j REJECT --reject-with tcp-reset
I place this rule in firewall.user but nothing happens. Any idea why??
Firewall restrictions
Moderator: Moderators
Re: Firewall restrictions
Is there any reason you’re not using the Gargoyle config file?
I don’t know what time the firewall.user file gets installed but it might be too early and the chains may not exist yet.
I don’t know what time the firewall.user file gets installed but it might be too early and the chains may not exist yet.
https://lantisproject.com/downloads/gargoylebuilds for the latest releases
Please be respectful when posting. I do this in my free time on a volunteer basis.
Please be respectful when posting. I do this in my free time on a volunteer basis.
Re: Firewall restrictions
Hi @Lantis,
I'm going back to school to get a degree as a network administrator so I'm trying to work on my SSH, Firewall, etc....
And since I have Gargoyle on hand I take advantage of it.
I'm going back to school to get a degree as a network administrator so I'm trying to work on my SSH, Firewall, etc....
And since I have Gargoyle on hand I take advantage of it.
Re: Firewall restrictions
In the gargoyle interface by applying the restrictions I can see that it adds a rule in:
etc/config/firewall

etc/config/firewall

Re: Firewall restrictions
The chains are very interdependent and certain gargoyle processes generate the necessary chains before setting up the restrictions.
I think it is best to stick with that method.
Besides, you’re using custom Gargoyle netfilter modules. You’re NEVER going to find those available on a real system. So it’s not a great syntax to learn.
If you’re interested sure keep looking, but I don’t know if it will help you practically.
Good luck on your study!
I think it is best to stick with that method.
Besides, you’re using custom Gargoyle netfilter modules. You’re NEVER going to find those available on a real system. So it’s not a great syntax to learn.
If you’re interested sure keep looking, but I don’t know if it will help you practically.
Good luck on your study!
https://lantisproject.com/downloads/gargoylebuilds for the latest releases
Please be respectful when posting. I do this in my free time on a volunteer basis.
Please be respectful when posting. I do this in my free time on a volunteer basis.