From e15a0448ceb332965f469910452465ba42c21d85 Mon Sep 17 00:00:00 2001
From: Peter Palfrader <peter@palfrader.org>
Date: Sat, 22 Dec 2018 16:35:01 +0100
Subject: [PATCH] port 6081 is redirected

---
 modules/roles/manifests/snapshot_web.pp | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/modules/roles/manifests/snapshot_web.pp b/modules/roles/manifests/snapshot_web.pp
index ba6c5d66a..aa17c97ba 100644
--- a/modules/roles/manifests/snapshot_web.pp
+++ b/modules/roles/manifests/snapshot_web.pp
@@ -58,7 +58,9 @@ class roles::snapshot_web {
 	@ferm::rule { 'dsa-snapshot-connlimit':
 		domain => '(ip ip6)',
 		prio  => "005",
-		rule  => "proto tcp mod state state (NEW) daddr (${ipv4addr} ${ipv6addr})  mod multiport destination-ports (80 443 6081) mod connlimit connlimit-above 3 DROP",
+		rule  => "proto tcp mod state state (NEW) daddr (${ipv4addr} ${ipv6addr})  mod multiport destination-ports (80 443) mod connlimit connlimit-above 3 DROP;
+		          proto tcp mod state state (NEW)                                                dport 6081                 mod connlimit connlimit-above 3 DROP;
+		           ",
 	}
 
 	# varnish cache
-- 
2.20.1