From 9aec73785d1b3f06713c82d37392497acc5784a9 Mon Sep 17 00:00:00 2001
From: staticsafe <jogajog@sadiqsaif.com>
Date: Mon, 5 Apr 2021 08:29:14 -0400
Subject: [PATCH] add rules to allow outbound NTP to deirdre

---
 .../files/deirdre.asininetech.net.rules.v4                       | 1 +
 .../files/deirdre.asininetech.net.rules.v6                       | 1 +
 2 files changed, 2 insertions(+)

diff --git a/ubuntu/roles/firewall-ruleset-deploy/files/deirdre.asininetech.net.rules.v4 b/ubuntu/roles/firewall-ruleset-deploy/files/deirdre.asininetech.net.rules.v4
index abd66cd..03c5c50 100644
--- a/ubuntu/roles/firewall-ruleset-deploy/files/deirdre.asininetech.net.rules.v4
+++ b/ubuntu/roles/firewall-ruleset-deploy/files/deirdre.asininetech.net.rules.v4
@@ -24,4 +24,5 @@
 -A OUTPUT -p tcp -m tcp --dport 9200 -j ACCEPT
 -A OUTPUT -p tcp -m tcp --dport 655 -j ACCEPT
 -A OUTPUT -p udp -m udp --dport 655 -j ACCEPT
+-A OUTPUT -p udp -m udp --dport 123 -j ACCEPT
 COMMIT
diff --git a/ubuntu/roles/firewall-ruleset-deploy/files/deirdre.asininetech.net.rules.v6 b/ubuntu/roles/firewall-ruleset-deploy/files/deirdre.asininetech.net.rules.v6
index edfde87..1b4f086 100644
--- a/ubuntu/roles/firewall-ruleset-deploy/files/deirdre.asininetech.net.rules.v6
+++ b/ubuntu/roles/firewall-ruleset-deploy/files/deirdre.asininetech.net.rules.v6
@@ -21,6 +21,7 @@
 -A OUTPUT -p tcp -m tcp --dport 5665 -j ACCEPT
 -A OUTPUT -p tcp -m tcp --dport 25 -j ACCEPT
 -A OUTPUT -p tcp -m tcp --dport 9200 -j ACCEPT
+-A OUTPUT -p udp -m udp --dport 123 -j ACCEPT
 -A icmp_in -p ipv6-icmp -m icmp6 --icmpv6-type 128 -j ACCEPT
 -A icmp_in -p ipv6-icmp -m icmp6 --icmpv6-type 134 -j ACCEPT
 -A icmp_in -p ipv6-icmp -m icmp6 --icmpv6-type 135 -j ACCEPT