diff options
| -rwxr-xr-x | archsetup | 20 |
1 files changed, 13 insertions, 7 deletions
@@ -382,14 +382,20 @@ essential_services() { action="configuring ufw to deny by default" && display "task" "$action" ufw default deny incoming >> "$logfile" 2>&1 || error "error" "$action" + # note on the protocols + # "80,443,8080/tcp" # http and https traffic + # "9040,9050,9051,9053,9119/tcp" # tor network + # "55353/udp" # DNS + # "22000/tcp" "22000/udp" "21027/udp" # syncthing + for protocol in \ - "80,443,8080/tcp" \ # http and https traffic - "9040,9050,9051,9053,9119/tcp" \ # tor network - "IMAP" "IMAPS" \ # IMAP email - "55353/udp" \ # DNS - "ssh" \ # secure shell protocol - "22000/tcp" "22000/udp" "21027/udp" \ # syncthing - "transmission" \ # bit-torrent protocol + "80,443,8080/tcp" \ + "9040,9050,9051,9053,9119/tcp" \ + "IMAP" "IMAPS" \ + "55353/udp" \ + "ssh" \ + "22000/tcp" "22000/udp" "21027/udp" \ + "transmission" \ ; do action="adding ufw rule to allow $protocol" && display "task" "$action" (ufw allow $protocol >> "$logfile" 2>&1) || error "error" "$action" "$?" |