StefanMewes/Nebula-Ansible-Role
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

cleaning up remote and local allow lists from readme

Browse Source
This commit is contained in:
Matt Burchett
2025-09-20 06:17:43 +00:00
committed by Andrew Paglusch
parent c6f6548f97
commit 41457d5786
1 changed files with 0 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
README.md
View File

@@ -33,22 +33,6 @@ You can read more about Nebula [on the official repo](https://github.com/slackhq
nebula_outbound_rules: nebula_outbound_rules:
- { port: "any", proto: "any", host: "any" } - { port: "any", proto: "any", host: "any" }
# Example lighthouse remote_allow_list configuration
# Controls IP ranges that this node will consider when handshaking
nebula_lighthouse_remote_allow_list:
'172.16.0.0/12': false # Block this subnet
'0.0.0.0/0': true # Allow all other IPs
'10.0.0.0/8': false # Block private range
'10.42.42.0/24': true # Allow specific subnet
# Example lighthouse local_allow_list configuration
# Filters which local IP addresses are advertised to the lighthouses
nebula_lighthouse_local_allow_list:
interfaces:
tun0: false # Block tun0 interface
'docker.*': false # Block all docker interfaces
'10.0.0.0/8': true # Only advertise this subnet
roles: roles:
- role: nebula - role: nebula
``` ```