modification

2023-04-03 11:04:13 +02:00
parent 33a9c5e8f6
commit 0624f3da72
3 changed files with 3 additions and 58 deletions
--- a/roles/fw-ferm/files/ferm.conf.r-vp1
+++ b/roles/fw-ferm/files/ferm.conf.r-vp1
@@ -50,15 +50,7 @@ table filter {

    chain FORWARD {
        policy ACCEPT;
-
-        interface $DEV_VPN{
-            # respond to ping
-            proto icmp icmp-type echo-request ACCEPT;
-            # disallow ssh
-            saddr($DEV_VPN) proto tcp dport ssh DROP;
-            # allow ssh
-            daddr($DEV_VPN) proto tcp dport ssh ACCEPT;
-
+        proto icmp icmp-type echo-request ACCEPT;
        }
        # connection tracking
        mod state state INVALID DROP;