diff options
| author | Craig Jennings <craigmartinjennings@gmail.com> | 2023-10-24 15:51:10 -0500 |
|---|---|---|
| committer | Craig Jennings <craigmartinjennings@gmail.com> | 2023-10-24 15:51:10 -0500 |
| commit | 32e9a423f10e61b00ca74ece641e0e9ca8669b58 (patch) | |
| tree | f7cd4b6f0c62a831832fc09fe6e25fe8fc6c1f1b | |
| parent | 6da5d0fd6e51bdd6e0d5cf6f733badcee1097752 (diff) | |
moving the broken ufw protocol comments above the code
| -rwxr-xr-x | archsetup | 20 |
1 files changed, 13 insertions, 7 deletions
@@ -382,14 +382,20 @@ essential_services() { action="configuring ufw to deny by default" && display "task" "$action" ufw default deny incoming >> "$logfile" 2>&1 || error "error" "$action" + # note on the protocols + # "80,443,8080/tcp" # http and https traffic + # "9040,9050,9051,9053,9119/tcp" # tor network + # "55353/udp" # DNS + # "22000/tcp" "22000/udp" "21027/udp" # syncthing + for protocol in \ - "80,443,8080/tcp" \ # http and https traffic - "9040,9050,9051,9053,9119/tcp" \ # tor network - "IMAP" "IMAPS" \ # IMAP email - "55353/udp" \ # DNS - "ssh" \ # secure shell protocol - "22000/tcp" "22000/udp" "21027/udp" \ # syncthing - "transmission" \ # bit-torrent protocol + "80,443,8080/tcp" \ + "9040,9050,9051,9053,9119/tcp" \ + "IMAP" "IMAPS" \ + "55353/udp" \ + "ssh" \ + "22000/tcp" "22000/udp" "21027/udp" \ + "transmission" \ ; do action="adding ufw rule to allow $protocol" && display "task" "$action" (ufw allow $protocol >> "$logfile" 2>&1) || error "error" "$action" "$?" |