also allow tcp dns for builders

2017-01-16 16:41:44 +00:00 · 2017-01-16 16:41:44 +00:00 · 4588fedfb2
commit 4588fedfb2
parent 85203fe5e8
1 changed files with 2 additions and 0 deletions
--- a/roles/base/templates/iptables/iptables.kojibuilder
+++ b/roles/base/templates/iptables/iptables.kojibuilder
@ -58,6 +58,8 @@
 # DNS
 -A OUTPUT -p udp -m udp -d 10.5.126.21 --dport 53 -j ACCEPT
 -A OUTPUT -p udp -m udp -d 10.5.126.22 --dport 53 -j ACCEPT
+-A OUTPUT -p tcp -m tcp -d 10.5.126.21 --dport 53 -j ACCEPT
+-A OUTPUT -p tcp -m tcp -d 10.5.126.22 --dport 53 -j ACCEPT

 # bastion smtp
 -A OUTPUT -p tcp -m tcp -d 10.5.126.12 --dport 25 -j ACCEPT