From 973e22e267ef48316aa3358054b1eced9db9445b Mon Sep 17 00:00:00 2001 From: June Date: Fri, 18 Apr 2025 16:33:20 +0200 Subject: [PATCH] resolv-dns: add firewall config for exposing metrics to monitoring host --- resources/resolv-dns/files/nftables.conf | 2 ++ 1 file changed, 2 insertions(+) diff --git a/resources/resolv-dns/files/nftables.conf b/resources/resolv-dns/files/nftables.conf index 8123f88..a9e6702 100644 --- a/resources/resolv-dns/files/nftables.conf +++ b/resources/resolv-dns/files/nftables.conf @@ -15,6 +15,8 @@ table inet filter { tcp dport 22 accept tcp dport 53 accept udp dport 53 accept + + tcp dport 9167 ip saddr 94.45.254.5 accept comment "allow monitoring access to unbound exporter stats" } chain forward { type filter hook forward priority filter; policy drop;