Update firewalld_loopback_traffic_restricted for bootable containers

ComplianceAsCode · Nov 22, 2024 · 5d23e32 · 5d23e32
1 parent 61bad93
commit 5d23e32
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/...work-firewalld/ruleset_modifications/firewalld_loopback_traffic_restricted/bash/shared.sh b/...work-firewalld/ruleset_modifications/firewalld_loopback_traffic_restricted/bash/shared.sh
@@ -9,7 +9,7 @@
 ipv4_rule='rule family=ipv4 source address="127.0.0.1" destination not address="127.0.0.1" drop'
 ipv6_rule='rule family=ipv6 source address="::1" destination not address="::1" drop'
 
-if {{{ in_chrooted_environment }}}; then
+if {{{ in_chrooted_environment }}} || {{{ bash_bootc_build() }}}; then
     firewall-offline-cmd --zone=trusted --add-rich-rule="${ipv4_rule}"
     firewall-offline-cmd --zone=trusted --add-rich-rule="${ipv6_rule}"
 elif systemctl is-active firewalld; then