From 9fa3f79136c0a7f9f5ca1b9fcbd1a699d25c801c Mon Sep 17 00:00:00 2001
From: aoh <aoh@lysator.liu.se>
Date: Wed, 29 Jan 2020 21:04:54 +0100
Subject: [PATCH] Add iptables for mailserver

Signed-off-by: aoh <aoh@lysator.liu.se>
---
 Files/iptables/mailserver.v4 | 3 +++
 Files/iptables/mailserver.v6 | 3 +++
 2 files changed, 6 insertions(+)
 create mode 100644 Files/iptables/mailserver.v4
 create mode 100644 Files/iptables/mailserver.v6

diff --git a/Files/iptables/mailserver.v4 b/Files/iptables/mailserver.v4
new file mode 100644
index 00000000..c732b35b
--- /dev/null
+++ b/Files/iptables/mailserver.v4
@@ -0,0 +1,3 @@
+iptables -A INPUT -p tcp -s 130.236.254.0/24 --dport 9101 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
+iptables -A OUTPUT -p tcp --sport 9101 -m conntrack --ctstate ESTABLISHED -j ACCEPT
+iptables -A INPUT -p tcp --dport 9101 -j DROP
diff --git a/Files/iptables/mailserver.v6 b/Files/iptables/mailserver.v6
new file mode 100644
index 00000000..d12bf60c
--- /dev/null
+++ b/Files/iptables/mailserver.v6
@@ -0,0 +1,3 @@
+ip6tables -A INPUT -p tcp -s 2001:6b0:17:f0a0::/64 --dport 9101 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
+ip6tables -A OUTPUT -p tcp --sport 9101 -m conntrack --ctstate ESTABLISHED -j ACCEPT
+ip6tables -A INPUT -p tcp --dport 9101 -j DROP
-- 
GitLab