dns/dns-ops
2
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

ntf rules

Browse source
This commit is contained in:
pettai 2024-06-13 12:59:00 +02:00
parent c14b7ba08f
commit c7e9cf4df8
No known key found for this signature in database
GPG key ID: CDF2C381E9A751BD
1 changed files with 12 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
global/overlay/etc/puppet/modules/dns/manifests/apache2.pp
View file

@ -25,4 +25,16 @@ class dns::apache2 {
exec { 'a2ensite dns-rest-api':
notify => Service['apache2'],
}
sunet::nftables::rule { 'apache-http':
rule => "add rule inet filter input tcp dport 80 counter accept comment \"allow-apache2-http\""
}
sunet::nftables::rule { 'apache-http-v6':
rule => "add rule inet6 filter input tcp dport 80 counter accept comment \"allow-apache2-http\""
}
sunet::nftables::rule { 'apache-https':
rule => "add rule inet filter input tcp dport 443 counter accept comment \"allow-apache2-https\""
}
sunet::nftables::rule { 'apache-https-v6':
rule => "add rule inet6 filter input tcp dport 443 counter accept comment \"allow-apache2-https\""
}
}