ntf rules

This commit is contained in:
pettai 2024-06-13 12:59:00 +02:00
parent c14b7ba08f
commit c7e9cf4df8
No known key found for this signature in database
GPG key ID: CDF2C381E9A751BD

View file

@ -25,4 +25,16 @@ class dns::apache2 {
exec { 'a2ensite dns-rest-api':
notify => Service['apache2'],
}
sunet::nftables::rule { 'apache-http':
rule => "add rule inet filter input tcp dport 80 counter accept comment \"allow-apache2-http\""
}
sunet::nftables::rule { 'apache-http-v6':
rule => "add rule inet6 filter input tcp dport 80 counter accept comment \"allow-apache2-http\""
}
sunet::nftables::rule { 'apache-https':
rule => "add rule inet filter input tcp dport 443 counter accept comment \"allow-apache2-https\""
}
sunet::nftables::rule { 'apache-https-v6':
rule => "add rule inet6 filter input tcp dport 443 counter accept comment \"allow-apache2-https\""
}
}