dns: Add tor + firewall: Allow ntp + SSH
This commit is contained in:
parent
b184ce96dc
commit
b4a67dd645
GPG key ID:
F46CAAD27C7AB0D5
2 changed files with 19 additions and 1 deletions
|
|
@ -135,6 +135,10 @@ firewall__zones:
|
||||||
addrs:
|
addrs:
|
||||||
- 2a09:6840:206::1:7
|
- 2a09:6840:206::1:7
|
||||||
- 10.206.1.7
|
- 10.206.1.7
|
||||||
|
tor.pub:
|
||||||
|
addrs:
|
||||||
|
- 45.66.111.215
|
||||||
|
- 2a09:6840:215::1:215
|
||||||
|
|
||||||
firewall__input:
|
firewall__input:
|
||||||
- iif:
|
- iif:
|
||||||
|
|
@ -297,7 +301,9 @@ firewall__forward:
|
||||||
dport: 53
|
dport: 53
|
||||||
verdict: accept
|
verdict: accept
|
||||||
# Allow NTP from infra to ntp-{1,2}
|
# Allow NTP from infra to ntp-{1,2}
|
||||||
- src: infra
|
- src:
|
||||||
|
- infra
|
||||||
|
- pub
|
||||||
dst: ntp.int
|
dst: ntp.int
|
||||||
protocols:
|
protocols:
|
||||||
udp:
|
udp:
|
||||||
|
|
@ -360,6 +366,14 @@ firewall__forward:
|
||||||
- 80
|
- 80
|
||||||
- 443
|
- 443
|
||||||
verdict: accept
|
verdict: accept
|
||||||
|
# Tor: SSH
|
||||||
|
- dst: tor.pub
|
||||||
|
protocols:
|
||||||
|
tcp:
|
||||||
|
dport:
|
||||||
|
- 22
|
||||||
|
- 4444
|
||||||
|
verdict: accept
|
||||||
|
|
||||||
firewall__nat:
|
firewall__nat:
|
||||||
- src: 10.0.0.0/8
|
- src: 10.0.0.0/8
|
||||||
|
|
|
||||||
|
|
@ -351,6 +351,10 @@ knotd__hosts:
|
||||||
- 92.222.211.194
|
- 92.222.211.194
|
||||||
tor.pub:
|
tor.pub:
|
||||||
- 45.66.111.215
|
- 45.66.111.215
|
||||||
|
- 2a09:6840:215::1:215
|
||||||
|
jitsi.pub:
|
||||||
|
- 45.66.111.216
|
||||||
|
- 2a09:6840:215::1:216
|
||||||
|
|
||||||
knotd__zones:
|
knotd__zones:
|
||||||
auro.re:
|
auro.re:
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue