Anonymous
11/9/2025, 10:49:08 PM
No.107156735
>>107156659
okay there is a somewhat unwieldy way: you can just add modified version of firewall rules, the system will apply those at boot time, and after starting the pod podman will append its own default rules to the end of the chain
since my last rule is deny any any, each subsequent rule will never fire so they don't matter. I would strongly support a better solution, especially when your ruleset doesn't end with explicit deny
okay there is a somewhat unwieldy way: you can just add modified version of firewall rules, the system will apply those at boot time, and after starting the pod podman will append its own default rules to the end of the chain
since my last rule is deny any any, each subsequent rule will never fire so they don't matter. I would strongly support a better solution, especially when your ruleset doesn't end with explicit deny