Cleanup: Fix position of high ports to be consistent.

author Kevin Day <Kevin@kevux.org>

Wed, 25 Sep 2024 00:25:40 +0000 (19:25 -0500)

committer Kevin Day <Kevin@kevux.org>

Wed, 25 Sep 2024 00:25:40 +0000 (19:25 -0500)
author Kevin Day <Kevin@kevux.org>
Wed, 25 Sep 2024 00:25:40 +0000 (19:25 -0500)
committer Kevin Day <Kevin@kevux.org>
Wed, 25 Sep 2024 00:25:40 +0000 (19:25 -0500)
diff --git a/level_3/firewall/data/settings/network/firewall/firewall-first b/level_3/firewall/data/settings/network/firewall/firewall-first

index 9fa25f154bb10a8bb378135d3418c5fdfa85da57..386b26b2bad212ee5156cc5bc7d2a41bc79a5701 100644 (file)
--- a/level_3/firewall/data/settings/network/firewall/firewall-first
+++ b/level_3/firewall/data/settings/network/firewall/firewall-first
@@ -556,10 +556,6 @@ output-udp:
    #rule --dport 5353 -j ACCEPT
    #rule --sport 5353 -j ACCEPT
  
-  # allow high ports
-  rule -m multiport --sports 49152:65535 -j ACCEPT
-  #rule -m multiport --dports 49152:65535 -j ACCEPT
-
    # dhcp standard port
    rule --sport 67:68 --dport 67:68 -j ACCEPT
  
@@ -576,6 +572,10 @@ output-udp:
    # XMPP ports
    rule -m multiport --dports 5222,5223,5269 -j ACCEPT
  
+  # allow high ports
+  rule -m multiport --sports 49152:65535 -j ACCEPT
+  #rule -m multiport --dports 49152:65535 -j ACCEPT
+
    # accept all loopback
    tool iptables
    rule -s 127.0.0.0/8 -j ACCEPT
author	Kevin Day <Kevin@kevux.org>
	Wed, 25 Sep 2024 00:25:40 +0000 (19:25 -0500)
committer	Kevin Day <Kevin@kevux.org>
	Wed, 25 Sep 2024 00:25:40 +0000 (19:25 -0500)