34 lines
836 B
YAML
34 lines
836 B
YAML
---
|
|
# ipt-firewall configuration for cl-01.oopen.de
|
|
# Generated by extract-fw-host-vars.py - review before committing!
|
|
# Place in: host_vars/<hostname>/ipt_firewall.yml
|
|
|
|
# --- Network
|
|
fw_ext_interfaces:
|
|
- "eth0"
|
|
fw_ext_ips_v4:
|
|
- "162.55.82.74"
|
|
fw_ext_ips_v6:
|
|
- "2a01:4f8:271:1266::74"
|
|
|
|
# --- Munin
|
|
munin_remote_ipv4: 37.27.121.227
|
|
munin_remote_ipv6: "2a01:4f9:3070:2bda::227"
|
|
|
|
# --- HTTP
|
|
fw_http_server_ips: $ext_1_ip
|
|
|
|
# --- Mail
|
|
fw_mail_client_ips: $ext_1_ip
|
|
|
|
# --- Jitsi
|
|
fw_jitsi_tcp_ports: $standard_jitsi_tcp_ports
|
|
fw_jitsi_udp_port_range: $standard_jitsi_udp_port_range
|
|
|
|
# --- Block
|
|
fw_blocked_ips: 222.184.0.0/13 61.160.0.0/16 116.8.0.0/14
|
|
|
|
# --- Other
|
|
fw_jitsi_tcp_ports_out: "$standard_turn_service_ports,4443,4444,4445,4446"
|
|
fw_jitsi_udp_ports_out: "$standard_http_ports,$standard_turn_service_ports,4443,4444,4445,4446"
|