roles/common: Add mosh ports to common

These have been in each hosts's "extra" rules lists forever and I
use them on every single host so they might as well be in the base
rules.
This commit is contained in:
Alan Orth 2021-09-05 16:23:42 +03:00
parent 35fa3b0d72
commit 575a9fdfe6
Signed by: alanorth
GPG Key ID: 0FB860CC9C45B1B9

View File

@ -81,6 +81,13 @@ table inet filter {
ip6 saddr ::/0 ct state new tcp dport 443 counter accept comment "Allow HTTPS"
{% endif %}
ip saddr 0.0.0.0/0 ct state new udp dport 60001 counter accept comment "Allow mosh"
ip saddr 0.0.0.0/0 ct state new udp dport 60002 counter accept comment "Allow mosh"
ip saddr 0.0.0.0/0 ct state new udp dport 60003 counter accept comment "Allow mosh"
ip6 saddr ::/0 ct state new udp dport 60001 counter accept comment "Allow mosh"
ip6 saddr ::/0 ct state new udp dport 60002 counter accept comment "Allow mosh"
ip6 saddr ::/0 ct state new udp dport 60003 counter accept comment "Allow mosh"
{# Extra rules #}
{% if extra_iptables_rules is defined %}
{% for rule in extra_iptables_rules %}