firewall/ipt-server
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add support for MatterMost (MM) service.

Browse Source
This commit is contained in:
Christoph
2023-01-24 17:42:27 +01:00
parent 9f016b1776
commit 486789c6b5
6 changed files with 273 additions and 62 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
conf/default_ports.conf
View File

@ -39,6 +39,11 @@ standard_wireguard_port=51820
standard_whois_port=43
standard_xymon_port=1984
# - Mattermost (MM) Service
# -
stansard_mattermost_udp_ports_in="8443"
stansard_mattermost_udp_ports_out="3478"
# - IPsec - Internet Security Association and
# - Key Management Protocol
standard_isakmp_port=500

45
conf/main_ipv4.conf.sample
View File

@ -322,6 +322,17 @@ forward_http_server_ips=""
http_ports="$standard_http_ports"
# - Mattermost (MM) Service
# -
mm_server_ips=""
forward_mm_server_ips=""
# - UDP Ports IN and OUT used by MM Servive
# -
mm_udp_ports_in="$stansard_mattermost_udp_ports_in"
mm_udp_ports_out="$stansard_mattermost_udp_ports_out"
# - Mail SMTP Server
# -
smtpd_ips=""
@ -620,6 +631,40 @@ create_traffic_counter=true
create_iperf_rules=true
# -------------
# - Protection against ...
# -------------
# - Protection against syn-flooding
# -
protection_against_syn_flooding=true
# - Protection against port scanning
# -
protection_against_port_scanning=true
# - Protection against SSH brute-force attacks
# -
protection_against_ssh_brute_force_attacks=true
# -------------
# - Limit Connections
# -------------
# - Limit connections per source IP
# -
limit_connections_per_source_IP=true
# - Limit RST packets
# -
limit_rst_packets=true
# - Limit new TCP connections per second per source IP
# -
limit_new_tcp_connections_per_seconds_per_source_IP=true
# -------------
# --- Router ?
# -------------

45
conf/main_ipv6.conf.sample
View File

@ -338,6 +338,17 @@ forward_http_server_ips=""
http_ports="$standard_http_ports"
# - Mattermost (MM) Service
# -
mm_server_ips="$ext_1_ip"
forward_mm_server_ips=""
# - UDP Ports IN and OUT used by MM Servive
# -
mm_udp_ports_in="$stansard_mattermost_udp_ports_in"
mm_udp_ports_out="$stansard_mattermost_udp_ports_out"
# - Mail SMTP Server
# -
smtpd_ips=""
@ -636,6 +647,40 @@ create_traffic_counter=true
create_iperf_rules=true
# -------------
# - Protection against ...
# -------------
# - Protection against syn-flooding
# -
protection_against_syn_flooding=true
# - Protection against port scanning
# -
protection_against_port_scanning=true
# - Protection against SSH brute-force attacks
# -
protection_against_ssh_brute_force_attacks=true
# -------------
# - Limit Connections
# -------------
# - Limit connections per source IP
# -
limit_connections_per_source_IP=true
# - Limit RST packets
# -
limit_rst_packets=true
# - Limit new TCP connections per second per source IP
# -
limit_new_tcp_connections_per_seconds_per_source_IP=true
# -------------
# --- Kernel related - Adjust Kernel Parameters (Security/Tuning)
# -------------

14
conf/post_decalrations.conf
View File

@ -240,6 +240,20 @@ for _ip in $forward_http_server_ips ; do
forward_http_server_ip_arr+=("$_ip")
done
# ---
# - IP Addresses MatterMost Service
# ---
# local
declare -a mm_server_ip_arr
for _ip in $mm_server_ips ; do
mm_server_ip_arr+=("$_ip")
done
# DMZ
declare -a forward_mm_server_ip_arr
for _ip in $forward_mm_server_ips ; do
forward_mm_server_ip_arr+=("$_ip")
done
# ---
# - IP Addresses FTP Server
# ---