From e5662be9fa78cc30e81fcc713ecb5014293546a3 Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Wed, 28 Mar 2018 15:39:27 +0200
Subject: [dnbd3-proxy-mode] Whitelist sat server for port 5003 if firewalling
 is enabled

Closes #3347
---
 .../dnbd3-proxy-mode/data/opt/openslx/scripts/systemd-setup_dnbd3_proxy | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'core/modules/dnbd3-proxy-mode')

diff --git a/core/modules/dnbd3-proxy-mode/data/opt/openslx/scripts/systemd-setup_dnbd3_proxy b/core/modules/dnbd3-proxy-mode/data/opt/openslx/scripts/systemd-setup_dnbd3_proxy
index e19788bc..746c5fae 100755
--- a/core/modules/dnbd3-proxy-mode/data/opt/openslx/scripts/systemd-setup_dnbd3_proxy
+++ b/core/modules/dnbd3-proxy-mode/data/opt/openslx/scripts/systemd-setup_dnbd3_proxy
@@ -159,7 +159,7 @@ rm -f "/opt/openslx/iptables/rules.d/99-dnbd3"
 if [ -n "${SLX_DNBD3_WHITELIST}" ]; then
 	DNBD3_IPTABLES_CONF="$(mktemp)"
 	echo '#!/bin/ash' > "${DNBD3_IPTABLES_CONF}"
-	for CIDR in ${SLX_DNBD3_WHITELIST}; do
+	for CIDR in ${SLX_DNBD3_WHITELIST} ${SLX_KCL_SERVERS}; do
 		echo "iptables -I ipt-helper-INPUT 1 -i br0 -p tcp -s ${CIDR} --dport ${DNBD3_PORT} -j ACCEPT"
 	done >> "${DNBD3_IPTABLES_CONF}"
 	echo "iptables -A ipt-helper-INPUT -i br0 -p tcp --dport ${DNBD3_PORT} -j REJECT" >> "${DNBD3_IPTABLES_CONF}"
-- 
cgit v1.2.3-55-g7522