Statements (27)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:software
|
| gptkbp:appliesTo |
individual qubes (VMs)
|
| gptkbp:block |
specific IP addresses
specific ports specific protocols |
| gptkbp:canAllow |
specific destinations
specific services |
| gptkbp:canBe |
gptkb:Qubes_Manager
qvm-firewall tool |
| gptkbp:canBeBypassedBy |
compromised NetVM
|
| gptkbp:documentation |
https://www.qubes-os.org/doc/firewall/
|
| gptkbp:enforcedBy |
gptkb:nftables
gptkb:iptables user-defined rules |
| gptkbp:function |
network traffic filtering
|
| https://www.w3.org/2000/01/rdf-schema#label |
Qubes firewall
|
| gptkbp:partOf |
gptkb:Qubes_OS
|
| gptkbp:policy |
allow outgoing connections
deny all incoming connections |
| gptkbp:ruleFormat |
IP-based
port-based protocol-based domain-based |
| gptkbp:runsOn |
gptkb:network_qube_(NetVM)
|
| gptkbp:usedIn |
Qubes OS networking
|
| gptkbp:bfsParent |
gptkb:Qubes_OS
|
| gptkbp:bfsLayer |
6
|