Initial attempt to expose the ldap server

2021-11-22 21:10:36 +01:00
parent 37f066f2b0
commit 735737b513
3 changed files with 60 additions and 0 deletions
@@ -36,6 +36,10 @@ if allowed_udp_ports=$(node -e "console.log(JSON.parse(fs.readFileSync('${ports_
    done
 fi

+# ldap server
+iptables -t filter -A CLOUDRON -p tcp -m multiport --dports 636 -j ACCEPT
+iptables -A CLOUDRON_RATELIMIT -p tcp --syn --dport 636 -m connlimit --connlimit-above 5000 -j CLOUDRON_RATELIMIT_LOG
+
 # turn and stun service
 iptables -t filter -A CLOUDRON -p tcp -m multiport --dports 3478,5349 -j ACCEPT
 iptables -t filter -A CLOUDRON -p udp -m multiport --dports 3478,5349 -j ACCEPT