From bc92c9d437ea8f2c2d9294f7fad375c9efc89f8b Mon Sep 17 00:00:00 2001 From: staticsafe Date: Sat, 18 Jan 2020 20:48:58 -0500 Subject: [PATCH] Port opening for Tinc --- .../files/deirdre.asininetech.net.rules.v4 | 4 ++++ .../files/namshiel.asininetech.net.rules.v4 | 2 ++ 2 files changed, 6 insertions(+) diff --git a/ubuntu/roles/firewall-ruleset-deploy/files/deirdre.asininetech.net.rules.v4 b/ubuntu/roles/firewall-ruleset-deploy/files/deirdre.asininetech.net.rules.v4 index bdddb01..7f8cf3a 100644 --- a/ubuntu/roles/firewall-ruleset-deploy/files/deirdre.asininetech.net.rules.v4 +++ b/ubuntu/roles/firewall-ruleset-deploy/files/deirdre.asininetech.net.rules.v4 @@ -18,6 +18,8 @@ -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT -A INPUT -p tcp -m multiport --dports 80,443 -j ACCEPT -A INPUT -p tcp -m tcp --dport 5665 -j ACCEPT +-A INPUT -p tcp -m tcp --dport 655 -j ACCEPT +-A INPUT -p udp -m udp --dport 655 -j ACCEPT -A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT -A OUTPUT -o lo -j ACCEPT -A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT @@ -29,5 +31,7 @@ -A OUTPUT -p tcp -m tcp --dport 25 -j ACCEPT -A OUTPUT -p udp -m multiport --dports 67,68 -j ACCEPT -A OUTPUT -p tcp -m tcp --dport 9200 -j ACCEPT +-A OUTPUT -p tcp -m tcp --dport 655 -j ACCEPT +-A OUTPUT -p udp -m udp --dport 655 -j ACCEPT COMMIT # Completed on Thu Aug 22 02:25:12 2019 diff --git a/ubuntu/roles/firewall-ruleset-deploy/files/namshiel.asininetech.net.rules.v4 b/ubuntu/roles/firewall-ruleset-deploy/files/namshiel.asininetech.net.rules.v4 index 75aee65..032ef0b 100644 --- a/ubuntu/roles/firewall-ruleset-deploy/files/namshiel.asininetech.net.rules.v4 +++ b/ubuntu/roles/firewall-ruleset-deploy/files/namshiel.asininetech.net.rules.v4 @@ -8,4 +8,6 @@ -A INPUT -p tcp --dport 22 -j ACCEPT -A INPUT -p tcp --dport 5665 -j ACCEPT -A INPUT -p tcp -m multiport --dports 9200,9300 -s 96.126.113.89/32 -j ACCEPT +-A INPUT -p tcp -m tcp --dport 655 -j ACCEPT +-A INPUT -p udp -m udp --dport 655 -j ACCEPT COMMIT