]> git.ipfire.org Git - ipfire-2.x.git/commitdiff
projects / ipfire-2.x.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 9aea2cc)
firewall: Permit access for Unbound
authorMichael Tremer <michael.tremer@ipfire.org>
Mon, 23 Mar 2026 10:41:08 +0000 (10:41 +0000)
committerMichael Tremer <michael.tremer@ipfire.org>
Mon, 23 Mar 2026 10:41:08 +0000 (10:41 +0000)
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
src/initscripts/system/firewall patch | blob | blame | history

diff --git a/src/initscripts/system/firewall b/src/initscripts/system/firewall
index 7cfae8aad1ab7728ffd3db6b439d900821aa1ef1..55b14957cd130d2c0394391a2a05c31034761ea9 100644 (file)
--- a/src/initscripts/system/firewall
+++ b/src/initscripts/system/firewall
@@ -436,6 +436,9 @@ iptables_init() {
        # run captivectrl
        /usr/local/bin/captivectrl
 
+       # Grant Unbound access
+       iptables -A LOCAL_OUTPUT -m owner --uid-owner unbound -j ACCEPT
+
        # If a Tor relay is enabled apply firewall rules
        if [ "${TOR_RELAY_ENABLED}" = "on" -a -n "${TOR_RELAY_PORT}" ]; then
                /usr/local/bin/torctrl restart &>/dev/null
IPFire 2.x development tree