summaryrefslogtreecommitdiffstats
path: root/roles/common
diff options
context:
space:
mode:
authorGuilhem Moulin <guilhem@fripost.org>2015-05-14 23:38:46 +0200
committerGuilhem Moulin <guilhem@fripost.org>2015-06-07 02:53:45 +0200
commit824eb9f92f8ed8b4de65d3a32b2d3f0cee24925b (patch)
tree942437f6e113349562699524036f3105d82ecc45 /roles/common
parent9d3a5026bb8bfec54eedc9c6f4603d8073d08429 (diff)
Allow outgoing HKP and WHOIS traffic on the LDAP provider.
Diffstat (limited to 'roles/common')
-rw-r--r--roles/common/templates/etc/iptables/services.j25
1 files changed, 5 insertions, 0 deletions
diff --git a/roles/common/templates/etc/iptables/services.j2 b/roles/common/templates/etc/iptables/services.j2
index 1ff8778..25a20f7 100644
--- a/roles/common/templates/etc/iptables/services.j2
+++ b/roles/common/templates/etc/iptables/services.j2
@@ -59,3 +59,8 @@ out tcp 993 # IMAP
out tcp 4190
{% endif %}
{% endif %}
+
+{% if 'LDAP-provider' in group_names %}
+out tcp 11371 # HKP
+out tcp 43 # WHOIS
+{% endif %}