Suppression complète de n0box2
This commit is contained in:
VC
@@ -81,77 +81,6 @@ config rule
|
||||
option target 'ACCEPT'
|
||||
option family 'ipv6'
|
||||
|
||||
## Traffic for n0box2 server
|
||||
#config rule
|
||||
# option name 'n0box2-TS-com+com2'
|
||||
# option src 'wan'
|
||||
# option proto 'tcp'
|
||||
# option dest 'lan'
|
||||
# option dest_ip '{{ hostvars['n0box2.mateu.be']['ansible_default_ipv6']['address'] }}'
|
||||
# option dest_port '10011 30033'
|
||||
# option target 'ACCEPT'
|
||||
# option family 'ipv6'
|
||||
|
||||
#config rule
|
||||
# option name 'n0box2-TS-signal'
|
||||
# option src 'wan'
|
||||
# option proto 'udp'
|
||||
# option dest 'lan'
|
||||
# option dest_ip '{{ hostvars['n0box2.mateu.be']['ansible_default_ipv6']['address'] }}'
|
||||
# option dest_port '9987'
|
||||
# option target 'ACCEPT'
|
||||
# option family 'ipv6'
|
||||
|
||||
#config rule
|
||||
# option name 'n0box2-mumble'
|
||||
# option src 'wan'
|
||||
# option proto 'tcpudp'
|
||||
# option dest 'lan'
|
||||
# option dest_ip '{{ hostvars['n0box2.mateu.be']['ansible_default_ipv6']['address'] }}'
|
||||
# option dest_port '64738'
|
||||
# option target 'ACCEPT'
|
||||
# option family 'ipv6'
|
||||
|
||||
#config redirect
|
||||
# option name 'n0box2-TS-com'
|
||||
# option src 'wan'
|
||||
# option src_dport '10011'
|
||||
# option proto 'tcp'
|
||||
# option dest 'lan'
|
||||
# option dest_ip '{{ hostvars['n0box2.mateu.be']['ansible_default_ipv4']['address'] }}'
|
||||
# option dest_port '10011'
|
||||
# option target 'DNAT'
|
||||
|
||||
#config redirect
|
||||
# option name 'n0box2-TS-com2'
|
||||
# option src 'wan'
|
||||
# option src_dport '30033'
|
||||
# option proto 'tcp'
|
||||
# option dest 'lan'
|
||||
# option dest_ip '{{ hostvars['n0box2.mateu.be']['ansible_default_ipv4']['address'] }}'
|
||||
# option dest_port '30033'
|
||||
# option target 'DNAT'
|
||||
|
||||
#config redirect
|
||||
# option name 'n0box2-TS-signal'
|
||||
# option src 'wan'
|
||||
# option src_dport '9987'
|
||||
# option proto 'udp'
|
||||
# option dest 'lan'
|
||||
# option dest_ip '{{ hostvars['n0box2.mateu.be']['ansible_default_ipv4']['address'] }}'
|
||||
# option dest_port '9987'
|
||||
# option target 'DNAT'
|
||||
|
||||
#config redirect
|
||||
# option name 'n0box2-mumble'
|
||||
# option src 'wan'
|
||||
# option src_dport '64738'
|
||||
# option proto 'tcpudp'
|
||||
# option dest 'lan'
|
||||
# option dest_ip '{{ hostvars['n0box2.mateu.be']['ansible_default_ipv4']['address'] }}'
|
||||
# option dest_port '64738'
|
||||
# option target 'DNAT'
|
||||
|
||||
### DMZ Rules
|
||||
## General Rules
|
||||
# ICMP
|
||||
@@ -228,28 +157,6 @@ config rule
|
||||
option target 'ACCEPT'
|
||||
option family 'ipv6'
|
||||
|
||||
# a supprimer le prochain coup
|
||||
# Allow traffic to n0box2
|
||||
config rule
|
||||
option name 'Allow-OUTPUT-to-n0box2'
|
||||
option src 'dmz'
|
||||
option proto 'tcpudp'
|
||||
option dest 'lan'
|
||||
option dest_ip '{{ hostvars['n0box2.mateu.be']['ansible_default_ipv4']['address'] }}'
|
||||
option dest_port '25 26 80 443 465 587 143 993'
|
||||
option target 'ACCEPT'
|
||||
option family 'ipv4'
|
||||
|
||||
config rule
|
||||
option name 'Allow-OUTPUT-to-n0box2'
|
||||
option src 'dmz'
|
||||
option proto 'tcpudp'
|
||||
option dest 'lan'
|
||||
option dest_ip '{{ hostvars['n0box2.mateu.be']['ansible_default_ipv6']['address'] }}'
|
||||
option dest_port '25 26 80 443 465 587 143 993'
|
||||
option target 'ACCEPT'
|
||||
option family 'ipv6'
|
||||
|
||||
## Specific rules
|
||||
# Allow IPv4 Web traffic IN
|
||||
config redirect
|
||||
|
||||
Reference in New Issue
Block a user