-
Notifications
You must be signed in to change notification settings - Fork 25
Rules
Simone Margaritelli edited this page Feb 15, 2021
·
4 revisions
Once you registered an account on shieldwall.me and logged in, you'll be able to create a new agent with its rules. By default the agent will block everything, so every new rule you will add will work as a whitelist.
Each rule is made of the following fields:
- Type: determines if the rule will block or allow the address.
-
Address: the IP address the rule will block/allow, a subnet (use
0.0.0.0/0for any address like in this example), or an IP range like192.168.1.1-10. - Protocol: for which protocol the rule will work.
-
Ports: single integer for a port, or comma separated list of ports, or port range in iptables format
START:END. - Expiration: if set the rule will expire after the given interval and automatically deleted by the server.
About IPv6
By default configuration refers to the IPv4 version of the iptables executable. Even if IPv6 addresses are supported the rule won't have any effect unless you update the agent configuration with the path of ip6tables instead.