Duplicate Pve firewall rules

[yena]

Hello,
I have 8 nodes, and i would like to
close the host server from outside.
When i have configured rules on the first one, can i copy rules on other nodes?
( for ex. coping a conf rules file? )

Thanks!

 

[Richard]

Hello,
I have 8 nodes, and i would like to
close the host server from outside.
When i have configured rules on the first one, can i copy rules on other nodes?
( for ex. coping a conf rules file? )

Assuming that's about "pve-firewall" (if you use just "iptables" check the related linux man pages) :


Settings are stored as follows:

"Datacenter" specific:
/etc/pve/firewall/cluster.fw

Host specific:
/etc/pve/nodes/<hostname>/host.fw

VM specific:
/etc/pve/firewall/<vm-id>.fw

You can copy and edit these files as reuqested.