DEV Community

mutterings in the dark
mutterings in the dark

Posted on

Setup firewall on Alpine with nftables

# Install nftables
doas apk add nftables
# List tables (default table is `inet filter`)
doas nft list tables
# Add to the default inet filter (allow ssh server port 22)
doas vi /etc/nftables.d/ssh.nft
cat /etc/nftables.d/ssh.nft 
table inet filter {
        chain input {
                tcp dport 22 accept
        }
}
# Load nftables config
doas rc-service nftables restart
# List rules
doas nft -a list table inet filter
# Load rules at boot
doas rc-update add nftables boot
Enter fullscreen mode Exit fullscreen mode

Top comments (0)

Billboard image

The Next Generation Developer Platform

Coherence is the first Platform-as-a-Service you can control. Unlike "black-box" platforms that are opinionated about the infra you can deploy, Coherence is powered by CNC, the open-source IaC framework, which offers limitless customization.

Learn more

👋 Kindness is contagious

Immerse yourself in a wealth of knowledge with this piece, supported by the inclusive DEV Community—every developer, no matter where they are in their journey, is invited to contribute to our collective wisdom.

A simple “thank you” goes a long way—express your gratitude below in the comments!

Gathering insights enriches our journey on DEV and fortifies our community ties. Did you find this article valuable? Taking a moment to thank the author can have a significant impact.

Okay