fix configr for glt-r3 gateway

2 files changed, 5 insertions, 9 deletions

diff --git a/inventory/group_vars/glt-live/network.yml b/inventory/group_vars/glt-live/network.yml
index 1a1a42ca..c90442e5 100644
--- a/inventory/group_vars/glt-live/network.yml
+++ b/inventory/group_vars/glt-live/network.yml
@@ -6,8 +6,7 @@ network_zones:
     prefix: 192.168.127.0/24
     gateway: 192.168.127.254
     dns:
-    #- 192.168.127.254
-    - 9.9.9.9
+    - 192.168.127.254
     dhcp:
       start: 1
       limit: 149
@@ -51,14 +50,10 @@ network_zones:
   r3_ff:
     description: "realraum Funkfeuer Subnet, Internetuplink via Funkfeuer and mur.at"
     vlan: 255
-    # prefix: 10.12.240.240/28
-    # gateway: 10.12.240.247
-    # dns:
-    # - 10.12.0.10
-    prefix: 192.168.28.0/24
-    gateway: 192.168.28.254
+    prefix: 10.12.240.240/28
+    gateway: 10.12.240.247
     dns:
-    - 9.9.9.9
+    - 10.12.0.10
     offsets:
       glt-gw-r3: 8
 
diff --git a/inventory/host_vars/glt-gw-r3.yml b/inventory/host_vars/glt-gw-r3.yml
index 4bcc27f8..95cef9d8 100644
--- a/inventory/host_vars/glt-gw-r3.yml
+++ b/inventory/host_vars/glt-gw-r3.yml
@@ -67,6 +67,7 @@ openwrt_mixin:
         iptables -A INPUT -i "$LAN_IF" -p tcp --dport 53 -d "$LAN_IP" -s "$LAN_IP/$LAN_MASK" -j ACCEPT
 
         iptables -A INPUT -i "$LAN_IF" -p icmp -d "$LAN_IP" -s "$LAN_IP/$LAN_MASK" -j ACCEPT
+        iptables -A INPUT -i "$LAN_IF" -p tcp --dport {{ ansible_port }} -d "$LAN_IP" -s "$LAN_IP/$LAN_MASK" -j ACCEPT
         iptables -A INPUT -i "$LAN_IF" -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
 
         iptables -A FORWARD -i "$LAN_IF" -o "$WAN_IF" -s "$LAN_IP/$LAN_MASK" -j ACCEPT