Skip to content
Snippets Groups Projects
Unverified Commit 6e1dd3f8 authored by wonderfulShrineMaidenOfParadise's avatar wonderfulShrineMaidenOfParadise Committed by Alexey Minnekhanov
Browse files

main/postmarketos-config-nftables: subpackage vncserver (MR 2479) 


Co-authored-by: default avatarclayton craft <clayton@craftyguy.net>
parent 42efcdad
Branches
No related tags found
No related merge requests found
Pipeline #201348 passed
Stage: lint
Stage: build
Hide whitespace changes
Inline Side-by-side
main/postmarketos-config-nftables/APKBUILD
+ 11
1
View file @ 6e1dd3f8
# Maintainer: Clayton Craft <clayton@craftyguy.net>
pkgname=postmarketos-config-nftables
pkgver=0.5
pkgver=0.6
pkgrel=0
pkgdesc="nftables firewall configuration for postmarketOS"
url="https://gitlab.com/postmarketos"
......@@ -12,6 +12,7 @@ subpackages="
$pkgname-log:log
$pkgname-anbox:anbox
$pkgname-networkmanager:networkmanager
$pkgname-vncserver:vncserver
"
source="
rules/00_log_all.nft
......@@ -21,6 +22,7 @@ source="
rules/51_anbox.nft
rules/51_hotspot.nft
rules/51_usb_inet.nft
rules/50_vncserver.nft
rules/60_usb.nft
rules/99_drop_log.nft
networkmanager.conf
......@@ -57,6 +59,13 @@ anbox() {
amove etc/nftables.d/51_anbox.nft
}
vncserver() {
depends="$pkgname"
description="Enables networking for VNC Server"
amove etc/nftables.d/50_vncserver.nft
}
networkmanager() {
depends="$pkgname"
description="Enables nftables backend in NetworkManager"
......@@ -74,6 +83,7 @@ d5a7c7fc47924acfafee42d731e6a0109d83af6278053128deecbf3cf40e37447cb649360ee9ebdd
8322a8a5a5b1e98e1f44e2091b8b3a06db1e8309ebba5b8b6abe9d6fbb009dffb248af55e631f06f01bbced98b23c205462de73cd354b116dbaa7b6c72746bfd 51_anbox.nft
c3c1dba2d10161ca8081f4adcb4dfc6dda4fcd3bc5c473a80d7260e4cdcf071997fc1a28789dcc0f06689c77fc6b477335af5a783ce558192eb897fb27500676 51_hotspot.nft
bceb1a12a9de044daa3a4ba647b0d69b257881151a912fc350d6a00fdf0c0903b51fb58c56cfc73e9a75f529bac841d41d466e0f210b1f516e124e69cbfd1feb 51_usb_inet.nft
dfe0c8f7e86f187a9a69a35f1f4e9125dca385ad372777aab3d820886b26061214f3dc3f0d012690e981e0dec9bcacf154c69eab56dfa549d132555663b1f8e9 50_vncserver.nft
0e86974602622c03f0b34acd048e3a31157c0226ab4b5ec093a19696af3fc9637ed84cecf0d190941e4bd3afeb0c76a37245fa850abef46778cd1235ad8106df 60_usb.nft
1532899534d7432a7708620cf1053ab80635fffe038a2352eb890c35fba4247c3b9ab3d0b028da1be765e5feb9b5a5b3a8107f4aa79f790d17930d38535a2288 99_drop_log.nft
ea738469e68b8a8038f301b0cb901cd305445321ee24c4b4025365b4b95d5c61113a5bb24ab4efaa73eda23c2e06984d3e58395584fcb8887cf1595ea99542da networkmanager.conf
......
main/postmarketos-config-nftables/rules/50_vncserver.nft 0 → 100644
+ 11
0
View file @ 6e1dd3f8
#!/usr/sbin/nft -f
table inet filter {
chain input {
# drop VNC from wwan
iifname "wwan*" tcp dport 5900 drop comment "drop VNC from wwan"
# allow vnc
tcp dport 5900 accept comment "accept VNC"
}
}
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment