Skip to content

Commit dc47eb5

Browse files
HynoRHynoR
committed
feat: Add UDP port 443 acceptance rule to firewall and iptables configuration
1 parent 74f29e3 commit dc47eb5

File tree

2 files changed

+6
-0
lines changed

2 files changed

+6
-0
lines changed

agent/app/service/firewall.go

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -711,6 +711,9 @@ func (u *FirewallService) addPortsBeforeStart(client firewall.FirewallClient) er
711711
if err := client.Port(fireClient.FireInfo{Port: "443", Protocol: "tcp", Strategy: "accept"}, "add"); err != nil {
712712
return err
713713
}
714+
if err := client.Port(fireClient.FireInfo{Port: "443", Protocol: "udp", Strategy: "accept"}, "add"); err != nil {
715+
return err
716+
}
714717

715718
return client.Reload()
716719
}

agent/app/service/iptables.go

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -363,6 +363,9 @@ func initPreRules() error {
363363
return err
364364
}
365365
}
366+
if err := iptables.AddRule(iptables.FilterTab, iptables.Chain1PanelBasicAfter, fmt.Sprintf("-p udp -m udp --dport 443 -j ACCEPT")); err != nil {
367+
return err
368+
}
366369
if err := iptables.AddRule(iptables.FilterTab, iptables.Chain1PanelBasicAfter, iptables.DropAllTcp); err != nil {
367370
return err
368371
}

0 commit comments

Comments
 (0)