To configure your VeeaHub’s firewall settings:
- Select a VeeaHub from the VeeaHubs tab or mesh page
Click on VeeaHub Settings from the top-right corner of the page
Firewall Settings
Select "Firewall" from the right-side sidebar to get started.
The Firewall Rules interface enables you to define Input and Forward firewall rules for your VeeaHub. These rules govern how traffic is allowed or denied on the network.
Adding an Input Rule
Make sure you are on the "Input Firewall Rule" tab and click on the Add New Rule button. Input rules apply to traffic originating outside the VeeaHub and targeting services running on the VeeaHub itself.
| Field | Description |
|---|---|
| Action | Choose Accept to allow traffic, or Drop to block it. |
| Protocol | Select TCP, UDP, or Both as needed. |
| Source (CIDR) | Enter the source IP range using CIDR notation, e.g. 192.168.0.0/24. |
| Port or Port Range | Specify a single port (e.g. 22) or a range (e.g. 1000:2000). |
Adding a Forward Rule
Make sure you are on the "Forward Firewall Rule" tab and click on the Add New Rule button. Forward rules apply to traffic that is passing through the VeeaHub to internal devices, typically used for port forwarding.
| Field | Description |
|---|---|
| Protocol | Select TCP, UDP, or Both. |
| Port or Port Range | Public-facing port(s) to open (e.g. 80, or 1000:2000). |
| Local IP | Destination IP of the internal device (e.g. 192.168.1.100). |
| Local Port | Port on the internal device to forward to. |
Tips
- Rules are applied in the order they are listed.
- Be cautious when using wide IP ranges or open ports.
- Always test firewall rules to ensure expected connectivity.