mirrors/dae
1
0
Fork 0
mirror of https://github.com/daeuniverse/dae.git synced 2025-07-14 17:59:57 +07:00
Code Issues Packages Projects Releases Wiki Activity

docs(troubleshooting.md): add firewalld related docs (#403)

Browse Source
This commit is contained in:
mzz
2024-01-03 01:45:41 +08:00
committed by GitHub
parent d0798be396
commit 99606d6720
1 changed files with 11 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
docs/en/troubleshooting.md
View File

@ -18,7 +18,7 @@ If you use `adguardhome`, `mosdns` in `dns` section, refer to [external-dns](con
### Troubleshoot firewall
If you bind to wan, make sure firewall is stopped or `12345` is allowed by firewall. Don't worry about the security of this port because this port has its own firewall rule.
If you bind to wan, make sure firewall is stopped or mark `0x8000000` is allowed by firewall. Don't worry about the security of this port because this port has its own firewall rule.
Usual firewalls on Linux:
@ -27,6 +27,8 @@ ufw
firewalld
```
#### ufw
UFW users may need some extra steps to make sure `Binding to LAN` working.
Such as adding as follows to `/etc/ufw/before*.rules`:
@ -39,6 +41,14 @@ Such as adding as follows to `/etc/ufw/before*.rules`:
-A ufw6-before-input -m mark --mark 0x8000000 -j ACCEPT
```
#### firewalld
If you use firewalld, it is hard to add mark support. You have to execute following commands every time machine boot and firewall rule changes:
```bash
sudo nft 'insert rule inet firewalld filter_INPUT mark 0x8000000 accept'
```
### Troubleshoot PPPoE
dae does not support PPPoE due to it is too complexity for a ebpf program. Binding to LAN for other machines should work fine. If you want to proxy the machine itself, see <<https://github.com/daeuniverse/dae/discussions/304>.