port 6081 is redirected

author Peter Palfrader <peter@palfrader.org>

Sat, 22 Dec 2018 15:35:01 +0000 (16:35 +0100)

committer Peter Palfrader <peter@palfrader.org>

Sat, 22 Dec 2018 15:35:01 +0000 (16:35 +0100)
author Peter Palfrader <peter@palfrader.org>
Sat, 22 Dec 2018 15:35:01 +0000 (16:35 +0100)
committer Peter Palfrader <peter@palfrader.org>
Sat, 22 Dec 2018 15:35:01 +0000 (16:35 +0100)
diff --git a/modules/roles/manifests/snapshot_web.pp b/modules/roles/manifests/snapshot_web.pp

index ba6c5d6..aa17c97 100644 (file)
--- a/modules/roles/manifests/snapshot_web.pp
+++ b/modules/roles/manifests/snapshot_web.pp
@@ -58,7 +58,9 @@ class roles::snapshot_web {
         @ferm::rule { 'dsa-snapshot-connlimit':
                 domain => '(ip ip6)',
                 prio  => "005",
-               rule  => "proto tcp mod state state (NEW) daddr (${ipv4addr} ${ipv6addr})  mod multiport destination-ports (80 443 6081) mod connlimit connlimit-above 3 DROP",
+               rule  => "proto tcp mod state state (NEW) daddr (${ipv4addr} ${ipv6addr})  mod multiport destination-ports (80 443) mod connlimit connlimit-above 3 DROP;
+                         proto tcp mod state state (NEW)                                                dport 6081                 mod connlimit connlimit-above 3 DROP;
+                          ",
         }
  
         # varnish cache
author	Peter Palfrader <peter@palfrader.org>
	Sat, 22 Dec 2018 15:35:01 +0000 (16:35 +0100)
committer	Peter Palfrader <peter@palfrader.org>
	Sat, 22 Dec 2018 15:35:01 +0000 (16:35 +0100)