On 2/26/23 06:32, David Runge wrote:
On 2023-02-26 10:22:08 (+0100), Markus Schaaf wrote:
Am 26.02.23 um 04:00 schrieb David C. Rankin:
Arch devs,
... iptables not to block them so my logs quit filling up with errors.
I may be off base here but I'll ask anyway.
Assuming you, as is typical, primarily block SYN packets for inbound
traffic, the only way WKD would likely be a problem is if you either (a)
blocked outbound to the arch WKD webserver or (b) you block even
RELATED,ESTABLISHED coming back.
Conceivable, but are you sure that's what your firewall rules do David?
Or do you have some other problem that is causing you trouble possibly?
Aside: you may want to consider migrating to nftables - it is a very
significant improvement over legacy iptables.
best,
gene
