From b18d2c03c8fcb99eb8fb0b1da8be34560b3d74b3 Mon Sep 17 00:00:00 2001 From: toby Date: Wed, 26 Sep 2018 23:47:01 +0200 Subject: [PATCH] adding mirrors.wit.com to the firewall --- files/firewall | 1 + 1 file changed, 1 insertion(+) diff --git a/files/firewall b/files/firewall index 58a47a2..c090f84 100755 --- a/files/firewall +++ b/files/firewall @@ -22,6 +22,7 @@ case $1 in iptables -A INPUT -p udp --dport 500 --sport 500 -j ACCEPT # ipsec iptables -A INPUT -p udp --dport 4500 --sport 4500 -j ACCEPT # ipsec iptables -A INPUT -s 170.199.217.0 -p udp --sport 53 -j ACCEPT # dns + iptables -A INPUT -s 170.199.210.99 -p tcp --sport 443 -j ACCEPT # mirrors.wit.com iptables -A INPUT -p icmp -j ACCEPT #traffic we want to see encrypted over the VPN iptables -A INPUT -m policy --pol ipsec --dir in -p udp --dport 4789 -j ACCEPT # vxlan traffic