diff options
author | Christian Pointner <equinox@spreadspace.org> | 2024-06-05 00:47:49 +0200 |
---|---|---|
committer | Christian Pointner <equinox@spreadspace.org> | 2024-06-05 00:47:49 +0200 |
commit | 1941306649d46d5c74bf679097ce77e36899273c (patch) | |
tree | a3e658856fcbffa52d0255480712c5699ee5fac5 /inventory/host_vars | |
parent | ch-mon: add basic firewall rules (diff) |
ch-iot: allow access to http from iot vlan (needed for apt proxy)
Diffstat (limited to 'inventory/host_vars')
-rw-r--r-- | inventory/host_vars/ch-iot.yml | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/inventory/host_vars/ch-iot.yml b/inventory/host_vars/ch-iot.yml index 043403b3..1a5782b4 100644 --- a/inventory/host_vars/ch-iot.yml +++ b/inventory/host_vars/ch-iot.yml @@ -55,7 +55,7 @@ nftables_base_rules: chain input_iot { ip protocol icmp accept ip6 nexthdr ipv6-icmp accept - tcp dport { domain, 1883 } accept + tcp dport { domain, http, 1883 } accept udp dport { bootps, domain, ntp } accept } |