iankelling.org / git / automated-distro-installer / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
whitespace
[automated-distro-installer] / wrt-disabled-firewall-rules
1 firewall rules, temporarily disabled until I get them working
2
3
4 # each port forward needs corresponding forward in the vpn server
5
6
7 #http/https
8
9
10
11 config redirect
12 option name bittorrent
13 option src vpn
14 option src_dport 63324
15 option dest_ip 192.168.1.2
16 option dest lan
17 # making the port open (not sure if this is actually needed)
18 config rule
19 option src vpn
20 option target ACCEPT
21 option dest_port 63324
22
23 config redirect
24 option name frodobittorrent
25 option src vpn
26 option src_dport 63326
27 option dest_ip 192.168.1.3
28 option dest lan
29 config rule
30 option src vpn
31 option target ACCEPT
32 option dest_port 63326
33
34
35 config redirect
36 option name kdsyncthing
37 option src vpn
38 option src_dport 22000
39 option dest_ip 192.168.1.2
40 option dest lan
41 option proto tcp
42 config rule
43 option src vpn
44 option target ACCEPT
45 option dest_port 22000
46
47
48 config redirect
49 option name bithtpc
50 option src vpn
51 option src_dport 63325
52 option dest_ip 192.168.1.4
53 option dest lan
54 config rule
55 option src vpn
56 option target ACCEPT
57 option dest_port 63325
58
59
60
61 #### begin rules for nfs ####
62 # https://serverfault.com/questions/377170/which-ports-do-i-need-to-open-in-the-firewall-to-use-nfs
63 # https://wiki.debian.org/SecuringNFS
64 # I had no /etc/default/quota, or any process named quota anything,
65 # so, assumed that was unneeded. seems to work.
66 config redirect
67 option src wan
68 option src_dport 111
69 option dest_ip 192.168.1.2
70 option dest lan
71 config rule
72 option src wan
73 option target ACCEPT
74 option dest_port 111
75 config redirect
76 option src wan
77 option src_dport 2049
78 option dest_ip 192.168.1.2
79 option dest lan
80 config rule
81 option src wan
82 option target ACCEPT
83 option dest_port 2049
84 config redirect
85 option src wan
86 option src_dport 32764
87 option dest_ip 192.168.1.2
88 option dest lan
89 config rule
90 option src wan
91 option target ACCEPT
92 option dest_port 32764
93 config redirect
94 option src wan
95 option src_dport 32765
96 option dest_ip 192.168.1.2
97 option dest lan
98 config rule
99 option src wan
100 option target ACCEPT
101 option dest_port 32765
102 config redirect
103 option src wan
104 option src_dport 32766
105 option dest_ip 192.168.1.2
106 option dest lan
107 config rule
108 option src wan
109 option target ACCEPT
110 option dest_port 32766
111 config redirect
112 option src wan
113 option src_dport 32767
114 option dest_ip 192.168.1.2
115 option dest lan
116 config rule
117 option src wan
118 option target ACCEPT
119 option dest_port 32767
120 config redirect
121 option src wan
122 option src_dport 32768
123 option dest_ip 192.168.1.2
124 option dest lan
125 config rule
126 option src wan
127 option target ACCEPT
128 option dest_port 32768
129 #### end rules for nfs ####
130
131
132 config redirect
133 option name mariadb
134 option src wan
135 option src_dport 3306
136 option dest lan
137 option dest_ip 192.168.1.2
138 option proto tcp
139 config rule
140 option src wan
141 option target ACCEPT
142 option dest_port 3306
143 option proto tcp
144
145
PXE install w multi-boot, btrfs & Libreboot support