FirewallΒΆ
Office firewallΒΆ
Since weβre using UniFi equpment in our Office network, the firewall can be configured via the UniFi Cloud Key.
Linux firewallΒΆ
The firewall on the Linux servers is implemented via nftables.
However, since weβre using Ansible, resp. Semaphore, the firewall is configured via the config OS playbook, resp. the firewall role.
Note
Check out the firewall README for a detailed documentation of our nftables firewall configuration.
Please also note that weβre using several FireHOL block lists to proactively block bad actors, as well as our own RIPBL (reactive IP block list) service to reactively block bad actors.