serguzim/infrastructure
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Refactor firewalls and add descriptions

Browse source
This commit is contained in:
Tobias Reisinger 2024-11-01 03:12:34 +01:00
parent 96b298c0c9
commit fb9d50a86e
Signed by: serguzim
GPG key ID: 13AD60C237A28DFE
4 changed files with 33 additions and 27 deletions

26
services.auto.tfvars
View file

@ -10,11 +10,13 @@ services = {
}
ports = [
{
description = "DNS"
port = 53
protocol = "tcp"
type = "firewall"
},
{
description = "DNS"
port = 53
protocol = "udp"
type = "firewall"
@ -52,16 +54,19 @@ services = {
host = "*"
ports = [
{
description = "HTTP"
port = 80
protocol = "tcp"
type = "reverse_proxy"
},
{
description = "HTTPS"
port = 443
protocol = "tcp"
type = "reverse_proxy"
},
{
description = "HTTP/3 QUIC"
port = 443
protocol = "udp"
type = "reverse_proxy"
@ -105,6 +110,7 @@ services = {
}
ports = [
{
description = "SSH for dokku"
port = 3022
protocol = "tcp"
type = "firewall"
@ -137,6 +143,7 @@ services = {
}
ports = [
{
description = "SSH for forgejo"
port = 22
protocol = "tcp"
type = "firewall"
@ -313,32 +320,38 @@ services = {
}
ports = [
{
port = 25 # SMTP
description = "SMTP"
port = 25
protocol = "tcp"
type = "firewall"
},
{
port = 465 # SMTP TLS
description = "SMTP TLS"
port = 465
protocol = "tcp"
type = "firewall"
},
{
port = 587 # SMTP StartTLS
description = "SMTP StartTLS"
port = 587
protocol = "tcp"
type = "firewall"
},
{
port = 993 # IMAPS
description = "IMAPS"
port = 993
protocol = "tcp"
type = "firewall"
},
{
port = 995 # POPS
description = "POPS"
port = 995
protocol = "tcp"
type = "firewall"
},
{
port = 4190 # Sieve
description = "Sieve"
port = 4190
protocol = "tcp"
type = "firewall"
}
@ -489,6 +502,7 @@ services = {
}
ports = [
{
description = "Matrix"
port = 8448
protocol = "tcp"
type = "reverse_proxy"