firewall rules by domainname
15 views
Skip to first unread message
haaber
Jul 16, 2019, 5:21:55 AM7/16/19
to qubes-users
Hello, entering IP adresses in the firewall restriction list can be a a
lengthy and unpleasant exercise. If your admin-VM should only be able
access your bank, whose webpage loads various data over JS encapsulated
subdomains, it can take a long while to make that working. The natural
question would be to allows domains by *name* rather than IP ranges. For
example *.mybank.com Is that possible? Cheers
lengthy and unpleasant exercise. If your admin-VM should only be able
access your bank, whose webpage loads various data over JS encapsulated
subdomains, it can take a long while to make that working. The natural
question would be to allows domains by *name* rather than IP ranges. For
example *.mybank.com Is that possible? Cheers
David Hobach
Jul 16, 2019, 5:52:40 AM7/16/19
to haaber, qubes-users
Moreover there will be issues with DNS load balancers etc. as the IP is
only resolved once (during startup) by the firewall and then used
instead of the domain name.
There might be a respective feature request @github.
Reply all
Reply to author
Forward
0 new messages