Trapper
18-11-2016, 16:09
I managed to work this out, with help from the OMV forum. (Warning there are some old posts from tekkb there with gibberish - do not follow them!)
The rules I ended up with are thus:
Direction / Action / Family / Source / Port / Destination / Port / Protocol
INPUT / ACCEPT / IPv4 / my.ip.no.001 / [blank] / [blank] / [blank] / ALL
INPUT / ACCEPT / IPv4 / my.ip.no.002 / [blank] / [blank] / [blank] / ALL
INPUT / ACCEPT / IPv4 / my.ip.no.003 / [blank] / [blank] / [blank] / ALL
INPUT / ACCEPT / IPv4 / my.ip.no.004 / [blank] / [blank] / [blank] / ALL
INPUT / ACCEPT / IPv4 / [blank] / [blank] / [blank] / [blank] / ICMP
INPUT / DROP / IPv4 / [blank] / [blank] / [blank] / [blank] / ALL
The first 4 rules are to allow each of my IP's to access the server.
The fifth is to allow OVH monitoring.
The sixth is to block you pesky kids (I would have gotten away with it if it wasn't for those pesky kids...)
The ARM-6T (with OMV) I have is an awesome product, well done SYS.
~Trap
The rules I ended up with are thus:
Direction / Action / Family / Source / Port / Destination / Port / Protocol
INPUT / ACCEPT / IPv4 / my.ip.no.001 / [blank] / [blank] / [blank] / ALL
INPUT / ACCEPT / IPv4 / my.ip.no.002 / [blank] / [blank] / [blank] / ALL
INPUT / ACCEPT / IPv4 / my.ip.no.003 / [blank] / [blank] / [blank] / ALL
INPUT / ACCEPT / IPv4 / my.ip.no.004 / [blank] / [blank] / [blank] / ALL
INPUT / ACCEPT / IPv4 / [blank] / [blank] / [blank] / [blank] / ICMP
INPUT / DROP / IPv4 / [blank] / [blank] / [blank] / [blank] / ALL
The first 4 rules are to allow each of my IP's to access the server.
The fifth is to allow OVH monitoring.
The sixth is to block you pesky kids (I would have gotten away with it if it wasn't for those pesky kids...)
The ARM-6T (with OMV) I have is an awesome product, well done SYS.
~Trap