Terms of Service
Terms governing the use of this self-hosted CloudFirewall instance, its dashboard, API, and connected firewall agents.
Last updated March 2026
Scope
CloudFirewall is self-hosted, open-source software for managing nftables firewall rules across a fleet of Linux hosts. By using this instance you agree to these terms. The operator who deployed this instance may impose additional policies.
These terms cover use of the dashboard, the API, and the firewall agents that connect to it. They do not create any relationship between you and the CloudFirewall open-source project itself.
Accounts and Access
Access to the dashboard is managed by the instance operator. You are responsible for keeping your credentials secure and for all activity that occurs under your account.
- Do not share login credentials or install tokens with unauthorized parties
- Notify the instance operator immediately if you suspect unauthorized access
- Install tokens are single-use — each token is consumed upon agent registration
- The operator may revoke access or disable accounts at any time
Acceptable Use
You may use this instance to manage firewall rules on hosts you are authorized to administer. You must not use it in any way that violates applicable laws or harms the infrastructure it runs on.
- Do not use the service for unlawful traffic interception or censorship
- Do not attempt to bypass authentication, rate limits, or access controls
- Do not interfere with other users or the stability of the instance
- Do not use the agent to enforce rules on hosts you do not have authority over
Software and Availability
CloudFirewall is provided as open-source software under its license terms. There is no guarantee of uptime, support, or continued development. The instance operator is solely responsible for keeping the deployment running and up to date.
Agents operate independently once configured. If the dashboard becomes temporarily unavailable, agents continue enforcing the last known good configuration until connectivity is restored.
Liability and Warranty
The software is provided as-is, without warranty of any kind. Neither the CloudFirewall project contributors nor the instance operator guarantee that the software is free of defects, that firewall rules will be applied without error, or that the service will be uninterrupted.
To the maximum extent permitted by law, liability for damages arising from the use of this software is excluded. This includes but is not limited to data loss, security incidents, service downtime, and misconfigured firewall rules.
Because CloudFirewall directly affects host-level network filtering, always test rule changes on non-production hosts first and keep the agent in dry-run mode until you have verified the intended behavior.
Termination
The instance operator may suspend or terminate your access at any time and for any reason. You may stop using the service at any time by removing your agents and requesting account deletion from the operator.
Upon termination, deployed agents will continue enforcing their last known configuration. To fully remove enforcement, uninstall the agent from each host as described in the documentation.
Changes to These Terms
These terms may be updated when the software is upgraded. Material changes will be reflected in the last-updated date. Continued use of the instance after changes are published constitutes acceptance of the revised terms.