ExternalVendorCode/balena-supervisor
1
0
Fork 0
mirror of https://github.com/balena-os/balena-supervisor.git synced 2025-02-22 18:22:41 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
3,261 Commits 318 Branches 1,068 Tags
Commit Graph

4 Commits

Author SHA1 Message Date
Rich Bayliss
5aecd94e24
bug: Firewall not blocking supervisor access from outside the device 
Change-type: patch
Signed-off-by: Rich Bayliss <rich@balena.io>
 2020-08-12 13:43:33 +01:00
Rich Bayliss
e9b536a889
bug: Allow DNS through firewall for local containers 
We provide a local DNS server for containers to use and this
was not allowed through the firewall when enabled.

Change-type: patch
Signed-off-by: Rich Bayliss <rich@balena.io>
 2020-08-11 15:17:06 +01:00
Rich Bayliss
898c7e71da
bug: Fix unhandled promise rejection 
When invoking iptables-restore it can fail. This wasn't handled
and this makes sure that it fails gracefully.

Change-type: patch
Signed-off-by: Rich Bayliss <rich@balena.io>
 2020-07-13 13:05:12 +01:00
Rich Bayliss
28c5a44e71
firewall: Add Host Firewall functionality 
Controlled by BALENA_HOST_FIREWALL_MODE, the firewall can
either be 'on' or 'off'.

- In the 'off' state, all traffic is allowed.
- In the 'on' state, only traffic for the core services provided
  by Balena is allowed.

Change-type: patch
Signed-off-by: Rich Bayliss <rich@balena.io>
 2020-07-01 18:43:08 +01:00