From 8590453d73b55960725ec5d962eb9b69bec63a78 Mon Sep 17 00:00:00 2001 From: glougloumoute Date: Sun, 21 Feb 2021 09:26:19 +0100 Subject: [PATCH] Add firewall rules --- conf/metronome.cfg.lua | 6 ++++++ scripts/install | 3 ++- scripts/remove | 3 ++- 3 files changed, 10 insertions(+), 2 deletions(-) diff --git a/conf/metronome.cfg.lua b/conf/metronome.cfg.lua index 06d6225..6b83cf8 100644 --- a/conf/metronome.cfg.lua +++ b/conf/metronome.cfg.lua @@ -1,3 +1,9 @@ +-- XXX modules that need to be enabled in main config file. +--modules_enabled = { +-- "extdisco"; +-- "jingle_nodes"; +--}; + external_services = { ["__DOMAIN__"] = { [1] = { diff --git a/scripts/install b/scripts/install index c86e3c4..35883f7 100644 --- a/scripts/install +++ b/scripts/install @@ -64,7 +64,8 @@ turnserver_tls_port=$(ynh_find_port --port=5349) turnserver_alt_tls_port=$(ynh_find_port --port=$((turnserver_tls_port+1))) cli_port=$(ynh_find_port --port=5766) -# TODO also reserve UDP Port range 49152:65535 +# Reserve UDP Port range 49152:65535 +ynh_exec_warn_less yunohost firewall allow UDP -4 49152:65535 # XXX hard-coded values # Open the port ynh_exec_warn_less yunohost firewall allow Both $turnserver_standard_port diff --git a/scripts/remove b/scripts/remove index 046a126..3378610 100644 --- a/scripts/remove +++ b/scripts/remove @@ -115,7 +115,8 @@ then ynh_exec_warn_less yunohost firewall disallow Both $turnserver_alt_tls_port fi -# TODO also release UDP port range 49152:65535 +# Release UDP port range 49152:65535 +ynh_exec_warn_less yunohost firewall disallow UDP -4 49152:65535 # XXX hard-coded values #================================================= # GENERIC FINALIZATION