doc: Fix example iptables configuration.

* doc/guix.texi (Networking Services): Allow established and related incoming connections in example iptables configuration. Signed-off-by: Arun Isaac <arunisaac@systemreboot.net>
2021-05-30 22:00:52 +01:00 · 2021-05-30 22:00:52 +01:00 · ecbfa20609
parent 9703a51048
commit ecbfa20609
1 changed files with 2 additions and 0 deletions
--- a/doc/guix.texi
+++ b/doc/guix.texi
@ -16450,6 +16450,7 @@ configuration rejecting all incoming connections except those to the ssh port
 :INPUT ACCEPT
 :FORWARD ACCEPT
 :OUTPUT ACCEPT
+-A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
 -A INPUT -p tcp --dport 22 -j ACCEPT
 -A INPUT -j REJECT --reject-with icmp-port-unreachable
 COMMIT
@ -16458,6 +16459,7 @@ COMMIT
 :INPUT ACCEPT
 :FORWARD ACCEPT
 :OUTPUT ACCEPT
+-A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
 -A INPUT -p tcp --dport 22 -j ACCEPT
 -A INPUT -j REJECT --reject-with icmp6-port-unreachable
 COMMIT