From 869d80e6f7b0ba24eef9c5d8920bfc01fc873c40 Mon Sep 17 00:00:00 2001
From: staticsafe <jogajog@sadiqsaif.com>
Date: Sat, 18 Jan 2020 17:59:58 -0500
Subject: [PATCH] we need to secure port 9300 on namshiel as well

---
 .../files/namshiel.asininetech.net.rules.v4                     | 2 +-
 .../files/namshiel.asininetech.net.rules.v6                     | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/ubuntu/roles/firewall-ruleset-deploy/files/namshiel.asininetech.net.rules.v4 b/ubuntu/roles/firewall-ruleset-deploy/files/namshiel.asininetech.net.rules.v4
index f2974f0..75aee65 100644
--- a/ubuntu/roles/firewall-ruleset-deploy/files/namshiel.asininetech.net.rules.v4
+++ b/ubuntu/roles/firewall-ruleset-deploy/files/namshiel.asininetech.net.rules.v4
@@ -7,5 +7,5 @@
 -A INPUT -p icmp --icmp-type ping -j ACCEPT
 -A INPUT -p tcp --dport 22 -j ACCEPT
 -A INPUT -p tcp --dport 5665 -j ACCEPT
--A INPUT -p tcp --dport 9200 -s 96.126.113.89/32 -j ACCEPT
+-A INPUT -p tcp -m multiport --dports 9200,9300 -s 96.126.113.89/32 -j ACCEPT
 COMMIT
diff --git a/ubuntu/roles/firewall-ruleset-deploy/files/namshiel.asininetech.net.rules.v6 b/ubuntu/roles/firewall-ruleset-deploy/files/namshiel.asininetech.net.rules.v6
index eb26fab..ec241a8 100644
--- a/ubuntu/roles/firewall-ruleset-deploy/files/namshiel.asininetech.net.rules.v6
+++ b/ubuntu/roles/firewall-ruleset-deploy/files/namshiel.asininetech.net.rules.v6
@@ -7,7 +7,7 @@
 -A INPUT -i lo -j ACCEPT
 -A INPUT -p tcp --dport 22 -j ACCEPT
 -A INPUT -p tcp --dport 5665 -j ACCEPT
--A INPUT -p tcp --dport 9200 -s 2600:3c00::f03c:91ff:febc:ec5d/128 -j ACCEPT
+-A INPUT -p tcp -m multiport --dports 9200,9300 -s 2600:3c00::f03c:91ff:febc:ec5d/128 -j ACCEPT
 -A INPUT -p ipv6-icmp -j icmp_in
 -A icmp_in -p ipv6-icmp -m icmp6 --icmpv6-type 128 -j ACCEPT
 -A icmp_in -p ipv6-icmp -m icmp6 --icmpv6-type 134 -j ACCEPT