mirrors/raspiblitz
1
0
Fork 0
mirror of https://github.com/rootzoll/raspiblitz.git synced 2025-02-24 14:51:03 +01:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request #47 from vnnkl/45-configureLazyFirewall

Browse source 
configure ufw
This commit is contained in:
Christian Rotzoll 2018-08-23 01:04:00 +02:00 committed by GitHub
commit 9a5cb86fc1
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 16 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
build.sdcard/raspbianStretchDesktop.sh
View file

@ -91,6 +91,22 @@ echo "*** HARDENING ***"
# firewall - just install (not configure)
sudo apt-get install -y ufw
echo "allow: ssh"
ufw allow ssh
echo "allow: bitcoin testnet"
ufw allow 18333
echo "allow: bitcoin mainnet"
ufw allow 8333
echo 'allow: lightning testnet'
ufw allow 19735
echo "allow: lightning mainnet"
ufw allow 9735
echo "deny incoming connection on other ports"
ufw default deny incoming
echo "allow outgoing connections"
ufw default allow outgoing
echo "enable lazy firewall"
ufw enable
# fail2ban (no config required)
sudo apt-get install -y fail2ban