Mirrors/hackacad
2
0
Fork 0
mirror of https://github.com/hackacad/bastille.git synced 2025-12-20 01:02:36 +01:00
Code Issues Packages Projects Releases Wiki Activity

minor fixes to previous doc updates

Browse Source
This commit is contained in:
Christer Edwards
2021-01-27 13:53:23 -07:00
parent c3130f0eec
commit a450dd1de8
1 changed files with 3 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
docs/chapters/networking.rst
View File

@@ -186,10 +186,6 @@ to containers are:
The `nat` routes traffic from the loopback interface to the external The `nat` routes traffic from the loopback interface to the external
interface for outbound access. interface for outbound access.
The `rdr pass ...` will redirect traffic from the host firewall on port X to
the ip of Container Y. The example shown redirects web traffic (80 & 443) to the
containers at `10.17.89.45`.
.. code-block:: shell .. code-block:: shell
rdr-anchor "rdr/*" rdr-anchor "rdr/*"
@@ -204,9 +200,9 @@ The `rdr-anchor "rdr/*"` enables dynamic rdr rules to be setup using the
bastille rdr <jail> list # List dynamic rdr rules bastille rdr <jail> list # List dynamic rdr rules
bastille rdr <jail> clear # Clear dynamic rdr rules bastille rdr <jail> clear # Clear dynamic rdr rules
Note that if you are redirecting ports where the host is also listening Note that if you are redirecting ports where the host is also listening (eg.
(eg. ssh) you should make sure that the host service is not listening on ssh) you should make sure that the host service is not listening on the cloned
the cloned interface - eg. for ssh set sshd_flags in rc.conf interface - eg. for ssh set sshd_flags in rc.conf
sshd_flags="-o ListenAddress=<hostname>" sshd_flags="-o ListenAddress=<hostname>"