host cd: use irc-announce and cgit

author: tv <tv@krebsco.de> 2015-06-18 21:22:21 +0200
committer: tv <tv@krebsco.de> 2015-06-18 21:22:21 +0200
commit: c868cff63b120e034e5bd418959039ccb210ca52 (patch)
tree: 5287e42c1a51131a6e052101c932de699f88c7c1 /modules/cd/iptables.nix
parent: 09e2e897b5de39eed3d3c58dffeee421c388e36d (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/modules/cd/iptables.nix b/modules/cd/iptables.nix
index 48425e8..950aa84 100644
--- a/modules/cd/iptables.nix
+++ b/modules/cd/iptables.nix
@@ -63,6 +63,7 @@
           ip4tables -A Retiolum -j ACCEPT -p icmp --icmp-type echo-request
           ip6tables -A Retiolum -j ACCEPT -p ipv6-icmp -m icmp6 --icmpv6-type echo-request
 
+          ipXtables -A Retiolum -j ACCEPT -p tcp --dport http -m conntrack --ctstate NEW
 
           ${when log "ipXtables -A Retiolum -j LOG --log-level info --log-prefix 'REJECT '"}
           ipXtables -A Retiolum -j REJECT -p tcp --reject-with tcp-reset
author	tv <tv@krebsco.de>	2015-06-18 21:22:21 +0200
committer	tv <tv@krebsco.de>	2015-06-18 21:22:21 +0200
commit	c868cff63b120e034e5bd418959039ccb210ca52 (patch)
tree	5287e42c1a51131a6e052101c932de699f88c7c1 /modules/cd/iptables.nix
parent	09e2e897b5de39eed3d3c58dffeee421c388e36d (diff)