summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rwxr-xr-xserver/modules/openstack-firewall/opt/openslx/iptables/rules.d/60-openstack-firewall10
1 files changed, 10 insertions, 0 deletions
diff --git a/server/modules/openstack-firewall/opt/openslx/iptables/rules.d/60-openstack-firewall b/server/modules/openstack-firewall/opt/openslx/iptables/rules.d/60-openstack-firewall
new file mode 100755
index 00000000..136f5c38
--- /dev/null
+++ b/server/modules/openstack-firewall/opt/openslx/iptables/rules.d/60-openstack-firewall
@@ -0,0 +1,10 @@
+#!/bin/ash
+
+# VNC
+iptables -A INPUT -i br0 -p tcp -s 10.4.9.73 --dport 5900:5999 -j ACCEPT
+iptables -A INPUT -i br0 -p tcp --dport 5900:5999 -j REJECT
+
+# KVM
+iptables -A INPUT -i br0 -p tcp -s 132.230.4.0/24 --dport 16509 -j ACCEPT
+iptables -A INPUT -i br0 -p tcp --dport 16509 -j REJECT
+
generated by cgit v1.2.3-55-g7522 (git 2.39.0) at 2026-03-01 14:59:19 +0100