On 2/14/25 14:02, fraser via Dng wrote:
> How do other people edit their firewall on a remote host?

In Devuan and similar, I use NFTables. In that case it is just a matter
of working out viable rules and then saving them to /etc/nftables.conf
When testing a new rule set, use a separate file for that and leave the
/etc/nftables.conf as the last-known-good rule set and use an 'at' job
to restore it after a few minutes, just in case.

If you need to upgrade from IPTables, the utility iptables-translate can
give you a rough idea of how. It is part of the 'iptables' package in
Devuan. See also the Wiki:

    https://wiki.nftables.org/

/Lars