Hi,
I came here because
iptables -A INPUT -i zt+ -j ACCEPT
didn’t work for me.
Here is the full list of my rules:
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -p udp --sport 53 -j ACCEPT
-A INPUT -i zt+ -j ACCEPT
-A INPUT -p udp -j DROP
-A INPUT -i lo -j ACCEPT
-A INPUT -d 127.0.0.0/8 -i !lo -j REJECT --reject-with icmp-port-unreachable
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -p tcp -m state --state NEW --dport 22 -j ACCEPT -m comment --comment "Allow SSH access"
-A INPUT -p tcp -m state --state NEW --dport 9735 -j ACCEPT -m comment --comment "Allow incoming LND traffic"
-A INPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT -m comment --comment "Allow Ping"
-A INPUT -j REJECT --reject-with icmp-port-unreachable
-A FORWARD -j REJECT --reject-with icmp-port-unreachable
-A OUTPUT -m owner --uid-owner 997 -j ACCEPT
-A OUTPUT -j ACCEPT
COMMIT
@zt-travis As you can see -A INPUT -i zt+ -j ACCEPT by itself didn’t help. Should I add something more for the FORWARD chain?
UPDATE: deleting -A INPUT -p udp -j DROP seems to help 