mg
209f80efa3
Docker: allow all weg, dafür einzelne dienste freigeschaltet smb aus lan jenkins-webgui aus lan pihole-webgui aus lan acng aus LAN ssh nur aus LAN Co-authored-by: Michael Grote <38253905+quotengrote@users.noreply.github.com> Reviewed-on: mg/ansible#11
20 lines
422 B
YAML
20 lines
422 B
YAML
---
|
|
### oefenweb.ufw
|
|
ufw_rules:
|
|
- rule: allow
|
|
to_port: 22
|
|
protocol: tcp
|
|
from_ip: 192.168.2.0/24
|
|
comment: 'ssh'
|
|
interface: ens18
|
|
- rule: allow
|
|
to_port: 22
|
|
protocol: tcp
|
|
comment: 'ssh'
|
|
interface: wg0
|
|
- rule: allow
|
|
to_port: 51820
|
|
comment: 'wireguard'
|
|
interface: ens18
|
|
protocol: udp
|
|
ufw_etc_default_default_forward_policy: ACCEPT
|