From c207ceebaa429353461ba2d45a99d9443b295423 Mon Sep 17 00:00:00 2001
From: David Rotermund <davrot@uni-bremen.de>
Date: Sat, 13 Jul 2024 15:57:05 +0200
Subject: [PATCH] Create firewall_notes.txt

---
 overleafserver/firewall_notes.txt | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)
 create mode 100644 overleafserver/firewall_notes.txt

diff --git a/overleafserver/firewall_notes.txt b/overleafserver/firewall_notes.txt
new file mode 100644
index 0000000..9b5c645
--- /dev/null
+++ b/overleafserver/firewall_notes.txt
@@ -0,0 +1,17 @@
+# FIREWALL NOTES:
+
+sed -i -e 's/DEFAULT_FORWARD_POLICY="DROP"/DEFAULT_FORWARD_POLICY="ACCEPT"/g' /etc/default/ufw
+ufw reload
+iptables -t nat -A POSTROUTING ! -o docker0 -s 172.18.0.0/16 -j MASQUERADE
+
+# Add the overlead-network to the firewall
+docker network ls | grep overleaf-network
+ufw allow in on br-ff9f46af3644
+ufw route allow in on br-ff9f46af3644
+ufw route allow out on br-ff9f46af3644
+iptables -t nat -A POSTROUTING ! -o br-ff9f46af3644 -s 172.18.0.0/16 -j MASQUERADE
+
+# For removing firewall settings we don't want:
+ufw status numbered
+ufw delete [NUMBER]
+