Jamil
Jamil
> Thank you, but I can't use only one rule. I need to drop all but accept several IPs. Hey @antoineozenne thanks for pointing this out. Ah, the joys of...
Refs firezone/product#180
@antoineozenne We've improved our rule application logic in 0.5.x -- more specific CIDRs should be taking precedence over less specific ones. Are you able to update to 0.5.2 and give...
The REST API will allow you to specify egress rules in JSON format and apply them with `curl` or similar. refs #903
Looks like [there's a hexpm alpine image](https://hub.docker.com/layers/elixir/hexpm/elixir/1.13.4-erlang-25.0.3-alpine-3.16.0/images/sha256-1a662d002f12c9f1d24cf284a52a5460e8bcc2bc11d1d0d2ac13f7b01135098a?context=explore) if that will help reduce size at all.
> I will try the Alpine version after finishing up all the functionality. I'm not sure how well alpine will work with wireguard and nft. It would reduce at most...
🔥
@ABeltramo > I'm not sure why you'll need to modify the host routing table/iptables if you'll start firezone in the same container that starts wireguard too. Firezone also acts as...
@clementperon Yeah, definitely possible. We'll be (hopefully) getting to this soon. The main hurdle is we have a whole systemd/chef-based configuration management system (Omnibus) that handles configuration, restarts, creating secrets,...
@craftyshaun This is great. Thanks for the notes. Yeah @princemaple is working on dockerizing our dev environment first, then we'll work on production-izing it, then will be in a better...