]> git.donarmstrong.com Git - dsa-puppet.git/blobdiff - modules/ferm/files/ferm.conf
projects / dsa-puppet.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
make MS ports quiet
[dsa-puppet.git] / modules / ferm / files / ferm.conf
diff --git a/modules/ferm/files/ferm.conf b/modules/ferm/files/ferm.conf
index 8229ff80d36bd40734729198f92cafc806e78f44..c63c8ea7d936307e636161e77b184c4abf4260b8 100644 (file)
--- a/modules/ferm/files/ferm.conf
+++ b/modules/ferm/files/ferm.conf
@@ -51,3 +51,11 @@ domain (ip ip6) {
 }
 
 @include 'dsa.d/';
+
+domain (ip ip6) {
+        chain INPUT {
+                proto udp dport 137 DROP;
+                proto tcp mod multiport destination-ports (137 445) DROP;
+                jump log_or_drop;
+        }
+}
Unnamed repository; edit this file 'description' to name the repository.