iptables - evoltorg/infra.evolt.org GitHub Wiki

iptables is used to manage network access to the current generation of evolt.org infrastructure.

To add, remove, or edit a rule, edit the file /etc/iptables/rules.v4 as root or with sudo. When you have completed your change, run the command sudo service iptables-persistent reload.

If a change is made from the command line using iptables directly, save the rules using sudo service iptables-persistent save.

Note that fail2ban saves rules to a fail2ban-ssh chain (and to a fail2ban-mailman chain on cerf), and these will be overwritten on a reload.