jcarr
/
wit-network-config
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

better comments on firewall rules

This commit is contained in:
toby 2019-05-01 05:04:29 +00:00
parent 313ea1085f
commit 78a2a7b13f
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
files/firewall
View File

@ -24,8 +24,8 @@ case $1 in
iptables -A INPUT -p icmp -j ACCEPT -m comment --comment "allow pings" iptables -A INPUT -p icmp -j ACCEPT -m comment --comment "allow pings"
## frr local service connections ## frr local service connections
iptables -A INPUT -i lo -m multiport -p tcp --sports 2600:2618 -j ACCEPT -m comment --comment "local ceph osd traffic" iptables -A INPUT -i lo -m multiport -p tcp --sports 2600:2618 -j ACCEPT -m comment --comment "local frr daemon vtys"
iptables -A INPUT -i lo -m multiport -p tcp --dports 2600:2618 -j ACCEPT -m comment --comment "local ceph osd traffic" iptables -A INPUT -i lo -m multiport -p tcp --dports 2600:2618 -j ACCEPT -m comment --comment "local frr daemon vtys"
## local ceph osd services ## local ceph osd services
iptables -A INPUT -i lo -m multiport -p tcp --sports 6800:7300 -j ACCEPT -m comment --comment "local ceph osd traffic" iptables -A INPUT -i lo -m multiport -p tcp --sports 6800:7300 -j ACCEPT -m comment --comment "local ceph osd traffic"