Infrastructure/ansible
3
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

base iptables: drop phx2 from osuosl allowed for ssh networks

Browse source 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
This commit is contained in:
Kevin Fenzi 2020-06-14 15:39:10 -07:00
parent e3aeafc7d0
commit eea681dccc
1 changed files with 0 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

2
roles/base/templates/iptables/iptables.osuosl
View file

@ -24,8 +24,6 @@
# allow ssh only from needed ips # allow ssh only from needed ips
# vpn in from tun0 # vpn in from tun0
-A INPUT -m conntrack --ctstate NEW -m tcp -p tcp --dport 22 -s 192.168.0.0/24 -i tun0 -j ACCEPT -A INPUT -m conntrack --ctstate NEW -m tcp -p tcp --dport 22 -s 192.168.0.0/24 -i tun0 -j ACCEPT
# external ip for phx2
-A INPUT -m conntrack --ctstate NEW -m tcp -p tcp --dport 22 -s 209.132.181.0/24 -j ACCEPT
# external ip for iad2 # external ip for iad2
-A INPUT -m conntrack --ctstate NEW -m tcp -p tcp --dport 22 -s 38.145.60.0/24 -j ACCEPT -A INPUT -m conntrack --ctstate NEW -m tcp -p tcp --dport 22 -s 38.145.60.0/24 -j ACCEPT