'%20filter='url(%23b)'%20transform='translate(0%20-286)'/%3e%3cpath%20d='M1636.5%20147c-123.436%200-223.5%20102.975-223.5%20230s100.064%20230%20223.5%20230S1860%20504.025%201860%20377c-.143-126.964-100.124-229.853-223.5-230Zm107.16%20308.341c-1.892%202.323-4.973%203.231-7.78%202.295l-98.896-32.908-98.896%2032.908c-2.807.933-5.884.022-7.774-2.3-1.89-2.32-2.212-5.587-.815-8.25l101.128-192.49c1.376-2.238%203.776-3.596%206.357-3.596%202.58%200%204.981%201.358%206.357%203.596l101.128%20192.49c1.401%202.663%201.08%205.932-.81%208.255Z'%20fill='url(%23c)'%20filter='url(%23d)'%20transform='translate(0%20-286)'/%3e%3c/g%3e%3c/svg%3e)
Firewalls
Loopback firewalls are policy objects separate from WireGuard (which provides encryption and transport). A firewall groups an ordered set of rules evaluated against traffic direction, protocol, source, and destination. They are designed so platform teams can express default deny with narrow allows, and so auditors can see intent distinct from mesh membership.
Scopes
Organization scope
Baseline policy meant to apply across all hosts in the organization unless refined further.
Workspace scope
Narrows policy to hosts in one workspace.
Host attachment
Firewalls can be assigned directly to hosts; hosts expose attach/detach flows. A host’s effective ruleset is layered: organization + workspace + host-attached firewalls combine.
Rule model
Each firewall rule belongs to a parent firewall and carries:
- Priority - lower numbers evaluate earlier (higher precedence).
- Action - allow or deny.
- Direction - inbound or outbound.
- Protocol - tcp, udp, icmp, or any.
- Source / destination selectors (any, IP, CIDR, range) and optional port or port range constraints.
- Enabled flag and optional logging.
The parent firewall defines a default action (allow or deny) for traffic that matches no rule.
Application status
Firewalls track apply status (pending, applied, failed) and last applied time so operators know whether agents have converged on the latest host-level enforcement (exact backend is agent-specific).
Permissions
Gated separately for organization firewalls vs workspace firewalls (and rule edits). Map capabilities in Access control & permissions to your role templates before granting least privilege.
Relationship to load balancer ACLs
Load balancers may maintain allow/block CIDR lists at the edge. Host firewalls protect the node regardless of how traffic entered. For defense in depth, use both when your threat model includes lateral movement or non-LB traffic.