From c11493c87a7f50fbfa5f92a08f79cc0867589323 Mon Sep 17 00:00:00 2001
From: Jonathan Bauer
Date: Wed, 4 Feb 2015 18:11:02 +0100
Subject: [sshd-freiburg] iptable rule to filter out incoming connections on
 port 22 when coming from outside the uni net

---
 server/modules/sshd-freiburg/opt/openslx/iptables/rules.d/10-sshd | 3 +++
 1 file changed, 3 insertions(+)
 create mode 100755 server/modules/sshd-freiburg/opt/openslx/iptables/rules.d/10-sshd

(limited to 'server')

diff --git a/server/modules/sshd-freiburg/opt/openslx/iptables/rules.d/10-sshd b/server/modules/sshd-freiburg/opt/openslx/iptables/rules.d/10-sshd
new file mode 100755
index 00000000..11dce812
--- /dev/null
+++ b/server/modules/sshd-freiburg/opt/openslx/iptables/rules.d/10-sshd
@@ -0,0 +1,3 @@
+#!/bin/ash
+
+iptables -w -I ipt-helper-INPUT 1 -i br0 -p tcp \! -s 132.230.0.0/16 --dport 22 -j DROP
-- 
cgit v1.2.3-55-g7522