X-Git-Url: https://git.cyclocoop.org/?a=blobdiff_plain;f=etc%2Fshorewall%2Frules;h=de738378cdb885029af545ee42fed5877883ca3f;hb=097751f5bd05dd28314024cf185b7eb38a9acda7;hp=008765f879329c067fd08af7657bac777efacb67;hpb=e3ac8939191e19965d4645676f38ef011fc9874f;p=lhc%2Fateliers.git diff --git a/etc/shorewall/rules b/etc/shorewall/rules index 008765f..de73837 100644 --- a/etc/shorewall/rules +++ b/etc/shorewall/rules @@ -7,26 +7,41 @@ #SECTION RELATED SECTION NEW +Ping(ACCEPT) dns $FW +Mosh(ACCEPT) dns $FW +SSH(ACCEPT) dns $FW + +Ping(ACCEPT) $FW dns + +ACCEPT $FW net icmp +DNS(ACCEPT) $FW net +FTP(ACCEPT) $FW net +Git(ACCEPT) $FW net +HTTP(ACCEPT) $FW net +HTTPS(ACCEPT) $FW net +NTP(ACCEPT) $FW net +SMTP(ACCEPT) $FW net +SMTPS(ACCEPT) $FW net +SSH(ACCEPT) $FW net + DNS(ACCEPT) net $FW Git(ACCEPT) net $FW HTTP(ACCEPT) net $FW HTTPS(ACCEPT) net $FW -Limit(IMAPS,5,60):info net $FW tcp imaps +Iodine(ACCEPT) net $FW +#Limit(IMAPS,5,60):info net $FW tcp imaps IMAPS(ACCEPT) net $FW +Fanout(ACCEPT) net $FW Managesieve(ACCEPT) net $FW Mosh(ACCEPT) net $FW -SMTP(ACCEPT) net $FW +Munin(ACCEPT) net $FW Ping(ACCEPT) net $FW -Limit(SSH,10,60):info net $FW tcp ssh +POP3S(ACCEPT) net $FW +SMTP(ACCEPT) net $FW +SMTPS(ACCEPT) net $FW +Limit(SSH,15,60):info net $FW tcp ssh SSH(ACCEPT) net $FW -Submission(ACCEPT) net $FW Limit(Submission,10,60):info net $FW tcp submission - -ACCEPT $FW net icmp -DNS(ACCEPT) $FW net -Git(ACCEPT) $FW net -HTTP(ACCEPT) $FW net -HTTPS(ACCEPT) $FW net -NTP(ACCEPT) $FW net -SMTP(ACCEPT) $FW net -SSH(ACCEPT) $FW net +Submission(ACCEPT) net $FW +ACCEPT net $FW tcp 6556 +ACCEPT net $FW tcp 4949