On 01/29/2017 04:58 AM, David Preece wrote: > Hi, > > I can't set firewall rules on zones. I'm trying: > > echo 'block in quick from 192.168.178.93/32 to any' | ipf -G > d43b2283-c9c3-46d0-d9c0-8dcc592ffc4a -f - > > Where the IP is my laptop (on the same lan) and the uuid is a running > lx-brand alpine 3. If I lose the -G and apply the rule to the global zone I > lock myself out perfectly, so I know the rule works but is just not > 'sticking' to the zone. > > I know I'm missing something fundamental - any ideas? >
David, as Cody suggested, check if you enabled the firewall for the zone. vmadm get d43b2283-c9c3-46d0-d9c0-8dcc592ffc4a | json firewall_enabled If not vmadm update d43b2283-c9c3-46d0-d9c0-8dcc592ffc4a firewall_enabled=true should do the trick. You may also want to consider using fwadm(1M). HTH Attila
signature.asc
Description: OpenPGP digital signature
------------------------------------------- smartos-discuss Archives: https://www.listbox.com/member/archive/184463/=now RSS Feed: https://www.listbox.com/member/archive/rss/184463/25769125-55cfbc00 Modify Your Subscription: https://www.listbox.com/member/?member_id=25769125&id_secret=25769125-7688e9fb Powered by Listbox: http://www.listbox.com
