Merge pull request #6218 from rquintino/feat(devcontainer)use-firewall-reject-rule-for-immediate-feedback-instead-of-+2min-timeouts

feat(devcontainer): Use firewall reject rule for immediate feedback instead of +2min timeouts
2026-01-30 04:02:03 +00:00 · 2025-08-26 17:18:05 -07:00
parent 70d5361861 2b46e47360
commit 4607d83fa8
1 changed files with 3 additions and 0 deletions
--- a/.devcontainer/init-firewall.sh
+++ b/.devcontainer/init-firewall.sh
@@ -113,6 +113,9 @@ iptables -A OUTPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
 # Then allow only specific outbound traffic to allowed domains
 iptables -A OUTPUT -m set --match-set allowed-domains dst -j ACCEPT
 # Explicitly REJECT all other outbound traffic for immediate feedback
 iptables -A OUTPUT -j REJECT --reject-with icmp-admin-prohibited
 echo "Firewall configuration complete"
 echo "Verifying firewall rules..."
 if curl --connect-timeout 5 https://example.com >/dev/null 2>&1; then