diff options
| -rw-r--r-- | roles/space_server/files/nftables.conf | 3 | ||||
| -rw-r--r-- | roles/space_server/tasks/avahi.yml | 2 |
2 files changed, 4 insertions, 1 deletions
diff --git a/roles/space_server/files/nftables.conf b/roles/space_server/files/nftables.conf index 88e24f1..0cb7c4f 100644 --- a/roles/space_server/files/nftables.conf +++ b/roles/space_server/files/nftables.conf @@ -143,6 +143,9 @@ table ip6 filter { # bird etc. on fiberby link iif $ext_if ip6 saddr $link_net6 ip6 daddr $link_net6 counter accept + # tftp + iif $wire_if ip6 saddr $wire_net6 udp dport 69 accept + # ssh tcp dport 22 accept diff --git a/roles/space_server/tasks/avahi.yml b/roles/space_server/tasks/avahi.yml index acbcb2a..2e715bb 100644 --- a/roles/space_server/tasks/avahi.yml +++ b/roles/space_server/tasks/avahi.yml @@ -91,6 +91,6 @@ lineinfile: path: '/etc/nsswitch.conf' regexp: '^hosts:' - line: 'hosts: files mdns_minimal [NOTFOUND=return] dns myhostname' + line: 'hosts: files myhostname mdns_minimal [NOTFOUND=return] dns' # vim: set ts=2 sw=2 et: |