firewall: Add Host Firewall functionality

Controlled by BALENA_HOST_FIREWALL_MODE, the firewall can either be 'on' or 'off'. - In the 'off' state, all traffic is allowed. - In the 'on' state, only traffic for the core services provided by Balena is allowed. Change-type: patch Signed-off-by: Rich Bayliss <rich@balena.io>
2025-06-21 16:49:46 +00:00 · 2020-06-15 17:46:33 +01:00
parent fc70b1c6f8
commit 28c5a44e71
17 changed files with 930 additions and 210 deletions
--- a/test/00-init.ts
+++ b/test/00-init.ts
@ -6,6 +6,8 @@ process.env.DATABASE_PATH_2 = './test/data/database2.sqlite';
 process.env.DATABASE_PATH_3 = './test/data/database3.sqlite';
 process.env.LED_FILE = './test/data/led_file';

+import './lib/mocked-iptables';
+
 import * as dbus from 'dbus';
 import { DBusError, DBusInterface } from 'dbus';
 import { stub } from 'sinon';