nft: add local app server 3000 port

Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
author: Kenny Ballou <kballou@devnulllabs.io> 2019-08-01 06:32:18 -0600
committer: Kenny Ballou <kballou@devnulllabs.io> 2019-08-01 06:32:18 -0600
commit: 05937ddeaf700d3aa1435aeacd101b9441ec9b80 (patch)
tree: acd78e29f37b9726954009faa05c30f04a1618d2 /services
parent: f447454367ce28062d14a73f64e086348e4690bf (diff)
download: cfg.nix-05937ddeaf700d3aa1435aeacd101b9441ec9b80.tar.gz
cfg.nix-05937ddeaf700d3aa1435aeacd101b9441ec9b80.tar.xz
1 files changed, 2 insertions, 0 deletions
diff --git a/services/nftables-rules.nft b/services/nftables-rules.nft
index e4d9491..a195c83 100644
--- a/services/nftables-rules.nft
+++ b/services/nftables-rules.nft
@@ -9,6 +9,7 @@ table inet filter {
         ip protocol icmp counter accept
         ip6 nexthdr ipv6-icmp counter accept
         udp dport domain ip saddr 172.16.0.0/12 counter accept
+        tcp dport 3000 ip saddr 127.0.0.1/8 counter accept
         tcp dport 8000 ip saddr 127.0.0.1/8 counter accept
         tcp dport http-alt ip saddr 127.0.0.1/8 counter accept
         tcp dport ssh counter accept
@@ -50,6 +51,7 @@ table inet filter {
         udp dport rsync counter accept
         tcp dport 8000 counter accept
         tcp dport http-alt counter accept
+        tcp dport 3000 ip daddr 127.0.0.1/8 counter accept
         udp dport openvpn counter accept
         counter
     }
author	Kenny Ballou <kballou@devnulllabs.io>	2019-08-01 06:32:18 -0600
committer	Kenny Ballou <kballou@devnulllabs.io>	2019-08-01 06:32:18 -0600
commit	05937ddeaf700d3aa1435aeacd101b9441ec9b80 (patch)
tree	acd78e29f37b9726954009faa05c30f04a1618d2 /services
parent	f447454367ce28062d14a73f64e086348e4690bf (diff)
download	cfg.nix-05937ddeaf700d3aa1435aeacd101b9441ec9b80.tar.gz cfg.nix-05937ddeaf700d3aa1435aeacd101b9441ec9b80.tar.xz