summaryrefslogtreecommitdiff
path: root/roles/configure_iptables/templates
diff options
context:
space:
mode:
Diffstat (limited to 'roles/configure_iptables/templates')
-rw-r--r--roles/configure_iptables/templates/ip6tables.rules2
-rw-r--r--roles/configure_iptables/templates/iptables.rules2
2 files changed, 4 insertions, 0 deletions
diff --git a/roles/configure_iptables/templates/ip6tables.rules b/roles/configure_iptables/templates/ip6tables.rules
index 79d9f86..636541d 100644
--- a/roles/configure_iptables/templates/ip6tables.rules
+++ b/roles/configure_iptables/templates/ip6tables.rules
@@ -46,6 +46,8 @@ COMMIT
# dns
-A INPUT -p tcp -m tcp --dport 53 -j ACCEPT
-A INPUT -p udp -m udp --dport 53 -j ACCEPT
+# http
+-A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
# ntp
-A INPUT -p udp -m udp --dport 123 -j ACCEPT
# fastd / wg
diff --git a/roles/configure_iptables/templates/iptables.rules b/roles/configure_iptables/templates/iptables.rules
index 2508445..6d7fce1 100644
--- a/roles/configure_iptables/templates/iptables.rules
+++ b/roles/configure_iptables/templates/iptables.rules
@@ -49,6 +49,8 @@ COMMIT
{% for site in sites %}
-I INPUT -i bat{{ site.name }} -p udp --dport 67:68 --sport 67:68 -j ACCEPT
{% endfor %}
+# http
+-A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
# ntp
-A INPUT -p udp -m udp --dport 123 -j ACCEPT
# fastd / wg
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-11-15 01:54:27 +0000