Revert "posts/wireguard.md: update ufw rule"
This reverts commit f46477c916
.
This commit is contained in:
parent
f46477c916
commit
0d139a9117
@ -199,10 +199,10 @@ be sure to have sane firewall rules before doing this.
|
|||||||
|
|
||||||
> Note: If you use [UFW](https://wiki.archlinux.org/title/Uncomplicated_Firewall) as a firewall like me, you'll also [need to set a rule](https://dietpi.com/forum/t/wireguard-no-handshake-established/15979) to let VPN traffic in.
|
> Note: If you use [UFW](https://wiki.archlinux.org/title/Uncomplicated_Firewall) as a firewall like me, you'll also [need to set a rule](https://dietpi.com/forum/t/wireguard-no-handshake-established/15979) to let VPN traffic in.
|
||||||
> Without this, all the `iptables` rules do nothing and your forwarded packets will get blocked.
|
> Without this, all the `iptables` rules do nothing and your forwarded packets will get blocked.
|
||||||
> Replace `wg0` with your own VPN interface name:
|
> Replace the subnet with your VPN subnet:
|
||||||
>
|
>
|
||||||
> ```
|
> ```
|
||||||
> # ufw allow in on wg0 to any
|
> # ufw allow in from 10.0.0.0/24 to any
|
||||||
> ```
|
> ```
|
||||||
|
|
||||||
> Another UFW quirk is that it has its own `sysctl.conf`, which lives at `/etc/ufw/sysctl.conf`.
|
> Another UFW quirk is that it has its own `sysctl.conf`, which lives at `/etc/ufw/sysctl.conf`.
|
||||||
|
Loading…
Reference in New Issue
Block a user