!tCyGickeVqkHsYjWnh:nixos.org

NixOS Networking

873 Members
Declaratively manage your switching, routing, wireless, tunneling and more. | Don't rely on `networking.*` for interface and routing setup, use systemd-networkd, ifstate or NetworkManager instead. | Set `SYSTEMD_LOG_LEVEL=debug` to debug networking issues with networkd | No bad nft puns, please. | Room recommendations: #sysops:nixos.org255 Servers

You have reached the beginning of time (for this room).

SenderMessageTime
8 Dec 2025
@k900:0upti.meK900Well that depends on how you implemented it14:27:32
@okamis:matrix.orgokamis iptables -t filter -I FORWARD 1 -m state --state NEW -j DROP 14:29:10
@k900:0upti.meK900 Yeah that's not all outgoing connections 14:29:28
@okamis:matrix.orgokamisoh sorry should be OUTGOING instead of forward14:29:28
@k900:0upti.meK900That is also a bad idea14:29:35
@k900:0upti.meK900You want to match on interface14:29:40
@k900:0upti.meK900Or explicitly exclude loopback I guess14:29:45
@okamis:matrix.orgokamis

is this reasonable?

iptables -A OUTPUT -o lo -j ACCEPT
iptables -A OUTPUT -o eth0 -m conntrack --ctstate NEW -j DROP
15:21:45
@k900:0upti.meK900Probably15:22:48
@k900:0upti.meK900I don't remember iptables well enough15:22:54
9 Dec 2025
@adam:robins.wtfadamcstephens changed their profile picture.17:25:09
@adam:robins.wtfadamcstephens changed their profile picture.17:48:29
10 Dec 2025
@truelle_trash_queen:matrix.orgTheodora changed their display name from Theodora The Absurdist Schizotisticoball to Theodora.12:17:46
@adam:robins.wtfadamcstephens changed their profile picture.14:49:51

Show newer messages

Back to Room ListRoom Version: 6