From: Kevin Day <Kevin@kevux.org>
Date: Wed, 25 Sep 2024 00:25:24 +0000 (-0500)
Subject: Cleanup: Fix position of high ports to be consistent.
X-Git-Tag: 0.6.12~1
X-Git-Url: https://git.kevux.org/?a=commitdiff_plain;h=b0508c0f3b39fcf2c68b2444e2c41cb8f55240f4;p=fll

Cleanup: Fix position of high ports to be consistent.
---

diff --git a/level_3/firewall/data/settings/network/firewall-first b/level_3/firewall/data/settings/network/firewall-first
index 9fa25f1..386b26b 100644
--- a/level_3/firewall/data/settings/network/firewall-first
+++ b/level_3/firewall/data/settings/network/firewall-first
@@ -556,10 +556,6 @@ output-udp:
   #rule --dport 5353 -j ACCEPT
   #rule --sport 5353 -j ACCEPT
 
-  # allow high ports
-  rule -m multiport --sports 49152:65535 -j ACCEPT
-  #rule -m multiport --dports 49152:65535 -j ACCEPT
-
   # dhcp standard port
   rule --sport 67:68 --dport 67:68 -j ACCEPT
 
@@ -576,6 +572,10 @@ output-udp:
   # XMPP ports
   rule -m multiport --dports 5222,5223,5269 -j ACCEPT
 
+  # allow high ports
+  rule -m multiport --sports 49152:65535 -j ACCEPT
+  #rule -m multiport --dports 49152:65535 -j ACCEPT
+
   # accept all loopback
   tool iptables
   rule -s 127.0.0.0/8 -j ACCEPT