Use any interface for Iptables from Nodegrid UI
New for Nodegrid 6.0 and later, you can now use any interface in Iptables firewall or NAT rules. You can use interfaces that don't show in the interface drop-down menu. You can also use an interface that doesn't exist yet, such as VTI interfaces for IPsec tunnels that may not be available yet or started yet.
To use an interface that doesn't show in the drop-down or doesn't exist yet, simply create a rule as normal and then select "Custom" from the drop-down and enter the name of the interface.
From the CLI, here is an example adding an ACCEPT rule for INPUT chain for vti01, and interface that doesn't exist yet.
- cd /settings/ipv4_firewall/chains/INPUT/
- add
- set input_interface=vti01
- commit
Related Articles
How to Configure Firewall on a Nodegrid
Version 0.1 (08 May 2018) Overview The Nodegrid platform comes with its own firewall which is based on iptables. The WebUI and the CLI provide an easy way of creating and managing the firewall. By default, the firewall accepts all incoming traffic. ...Improved Nodegrid UI for backup
New for Nodegrid 6.0, the user interface for Nodegrid Save Settings (backup) is improved. Previously, the backup option from System::Toolkit::Save_Settings would save backups to the main disk to the root location /backup when you select "Local ...Firewall Rules for the Nodegrid Platform
Version 0.2 (17 May 2018) Overview This guide lists all required and recommended firewall rules, to ensure a proper working of the solution. The list will need to be adjusted based on specific customer requirements. By default will the firewall will ...How to Configure Nodegrid Serial Ports
To configure the serial ports of your Nodegrid Serial Console, follow the guideline steps below. WebUI Log in as admin to the Nodegrid Serial Console Web interface. Go to Managed Devices page. Select the serial ports you want to configure, or check ...Nodegrid Manager Installation in ESXi 5
Nodegrid Manager software is installed from an ISO file. The installation procedure is a three-stage process: Creating a virtual machine; Booting from the ISO file in order to install the software; Restarting and booting from the newly created ...