Home Explore Help
Register Sign In
itguru
/
firewall
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

kvmhost02: allow db access from web03

Maximilian Ronniger 6 years ago
parent
edc56c1955
commit
f04fc32912
1 changed files with 4 additions and 3 deletions
Split View Show Diff Stats
  1. 4 3
      itguru.at.fwb

+ 4 - 3
itguru.at.fwb
View File 

@@ -591,6 +591,7 @@
 
           <ObjectRef ref="id4099X50770"/>
 
           <ObjectRef ref="id6929X4137"/>
 
           <ObjectRef ref="id4382X2427"/>
 
+          <ObjectRef ref="id12323X6099"/>
 
         </ObjectGroup>
 
       </ObjectGroup>
 
       <ObjectGroup id="id1588X5690" name="Hosts" comment="" ro="False">
 
@@ -2451,7 +2452,7 @@
 
           <Option name="verify_interfaces">True</Option>
 
         </FirewallOptions>
 
       </Firewall>
 
-      <Firewall id="id8899X28426" host_OS="linux24" inactive="False" lastCompiled="1578002434" lastInstalled="1578002445" lastModified="1578002405" platform="iptables" version="" name="kvmhost02" comment="" ro="False">
 
+      <Firewall id="id8899X28426" host_OS="linux24" inactive="False" lastCompiled="1578003277" lastInstalled="1578003311" lastModified="1578003266" platform="iptables" version="" name="kvmhost02" comment="" ro="False">
 
         <NAT id="id13393X65696" name="NAT" comment="" ro="False" ipv4_rule_set="True" ipv6_rule_set="False" top_rule_set="True">
 
           <NATRule id="id13395X65696" disabled="False" group="outgoing NAT" position="0" action="Translate" comment="NAT all outgoing mail traffic to mail IP">
 
             <OSrc neg="False">
 
@@ -3018,7 +3019,7 @@
 
             </When>
 
             <PolicyRuleOptions/>
 
           </PolicyRule>
 
-          <PolicyRule id="id10838X28426" disabled="False" group="Firewall" log="False" position="2" action="Accept" direction="Both" comment="Firewall can do everything">
 
+          <PolicyRule id="id10838X28426" disabled="False" group="Firewall" log="True" position="2" action="Accept" direction="Both" comment="Firewall can do everything">
 
             <Src neg="False">
 
               <ObjectRef ref="id8899X28426"/>
 
             </Src>
 
@@ -3036,7 +3037,7 @@
 
             </When>
 
             <PolicyRuleOptions/>
 
           </PolicyRule>
 
-          <PolicyRule id="id10781X28426" disabled="False" group="Firewall" log="False" position="3" action="Accept" direction="Both" comment="SSH Access to firewall is permitted&#10;only through the hiports">
 
+          <PolicyRule id="id10781X28426" disabled="False" group="Firewall" log="True" position="3" action="Accept" direction="Both" comment="SSH Access to firewall is permitted&#10;only through the hiports">
 
             <Src neg="False">
 
               <ObjectRef ref="sysid0"/>
 
             </Src>