X-Git-Url: https://git.stderr.nl/gitweb?a=blobdiff_plain;f=etc%2Fvuurmuur%2Frules%2Frules.conf;h=1532bbe9fd619caa95d73476c7e32d1a8d7e3b14;hb=2c279488e0cf61a9ead59deada6180477f479d0f;hp=33e4bc96cfc69c0f73d92d59e01bfaab146a1033;hpb=31f3539dc1e55de13b92d7c332e87793844961ee;p=matthijs%2Fservers%2Fdrsnuggles.git

diff --git a/etc/vuurmuur/rules/rules.conf b/etc/vuurmuur/rules/rules.conf
index 33e4bc9..1532bbe 100644
--- a/etc/vuurmuur/rules/rules.conf
+++ b/etc/vuurmuur/rules/rules.conf
@@ -1,9 +1,11 @@
 RULE="Accept service ping from any to any options comment=\"ping\""
 RULE="Accept service any from firewall to world.inet options comment=\"Outgoing host traffic\""
-RULE="Accept service any from vservers.internal to world.inet options comment=\"Outgoing vserver traffic\""
+RULE="Accept service any from any to world.inet options comment=\"Outgoing vserver traffic (but from any due to vuurmuur limits)\""
 RULE="Snat service any from vservers.internal to world.inet options comment=\"snat for vservers\""
+RULE="separator"
 RULE="Accept service any from zeratul.direct to firewall options comment=\"direct traffic from zeratul\""
 RULE="Accept service any from firewall to zeratul.direct options comment=\"direct traffice to zeratul\""
+RULE="separator"
 RULE="Accept service ssh-host from any to firewall(any) options comment=\"ssh access to the host\""
 RULE="Portfw service http from world.inet to www.vservers.internal options comment=\"http to www\""
 RULE="Portfw service smtp from world.inet to mail.vservers.internal options comment=\"smtp to mail\""