Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum

Apps | Demo | Docs | Install
  1. Cloudron Forum
  2. Feature Requests
  3. App specific firewall configuration

App specific firewall configuration

Scheduled Pinned Locked Moved Feature Requests
firewall
4 Posts 4 Posters 772 Views 4 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • nebulonN Offline
      nebulonN Offline
      nebulon
      Staff
      wrote on last edited by girish
      #1

      Ability to add an ACL list to certain apps, use case would be to restrict apps to either a ASN, or IP Network.

      This would sit above the Application - at the moment such controls cannot be done before hitting the application / on the vps because it would revoke access to other apps.

      Work around would need to be done inside the app, which can cause higher degree of error.

      1 Reply Last reply
      4
      • girishG Offline
        girishG Offline
        girish
        Staff
        wrote on last edited by
        #2

        Related: https://forum.cloudron.io/topic/3795/firewall-spamassassin-automatic-list-update

        1 Reply Last reply
        0
        • mehdiM Offline
          mehdiM Offline
          mehdi
          App Dev
          wrote on last edited by
          #3

          My 2 cents about this: it would be great to be able to do this but only for a specific port of a certain app. Like, keeping the web interface accessible for all, but limit access for a given tcpPort.

          Bonus points if limiting access to clients accessing from openVPN server is automated 😛

          potemkin_aiP 1 Reply Last reply
          2
          • mehdiM mehdi

            My 2 cents about this: it would be great to be able to do this but only for a specific port of a certain app. Like, keeping the web interface accessible for all, but limit access for a given tcpPort.

            Bonus points if limiting access to clients accessing from openVPN server is automated 😛

            potemkin_aiP Offline
            potemkin_aiP Offline
            potemkin_ai
            wrote on last edited by
            #4

            @mehdi my thoughts / use case exactly.

            Doing so with ipchains is a pain (thanks Docker's intervention to firewall); and ufw just doesn't handle all of the use cases (thanks Docker again).

            1 Reply Last reply
            2
            Reply
            • Reply as topic
            Log in to reply
            • Oldest to Newest
            • Newest to Oldest
            • Most Votes


              • Login

              • Don't have an account? Register

              • Login or register to search.
              • First post
                Last post
              0
              • Categories
              • Recent
              • Tags
              • Popular
              • Bookmarks
              • Search