From c5e18bc1cde1211419d12c8acfbba45bab6c8b2c Mon Sep 17 00:00:00 2001 From: Frank Brehm Date: Sat, 14 Oct 2017 06:34:41 +0200 Subject: [PATCH] daily autocommit --- bind/zones/brehm-online.com.zone | 4 +++- bind/zones/uhu-banane.de.zone | 4 +++- bind/zones/uhu-banane.net.zone | 4 +++- iptables/rules.v4 | 7 ++++--- iptables/rules.v6 | 6 +++--- 5 files changed, 16 insertions(+), 9 deletions(-) diff --git a/bind/zones/brehm-online.com.zone b/bind/zones/brehm-online.com.zone index 6edb2e7..f4fbb52 100644 --- a/bind/zones/brehm-online.com.zone +++ b/bind/zones/brehm-online.com.zone @@ -4,7 +4,7 @@ $TTL 86400 ; 1 day ;$TTL 900 brehm-online.com SOA ns.uhu-banane.de. hostmaster.uhu-banane.de. ( - 2017070100 ; serial + 2017101300 ; serial 10800 ; refresh (3 hours) 3600 ; retry (1 hour) 604800 ; expire (1 week) @@ -41,6 +41,8 @@ dyn NS ns3.uhu-banane.de. dyndns CNAME helga fotoalbum CNAME helga git CNAME ns3.uhu-banane.de. +icinga CNAME ns1-v4.uhu-banane.de. +icinga2 CNAME ns1-v4.uhu-banane.de. imap CNAME mail.uhu-banane.net. helga A 85.214.134.152 AAAA 2a01:238:4225:6e00:8f8c:808a:7fb8:88df diff --git a/bind/zones/uhu-banane.de.zone b/bind/zones/uhu-banane.de.zone index c109ce4..6b44421 100644 --- a/bind/zones/uhu-banane.de.zone +++ b/bind/zones/uhu-banane.de.zone @@ -2,7 +2,7 @@ $ORIGIN . $TTL 86400 ; 1 day ;$TTL 900 uhu-banane.de SOA ns.uhu-banane.de. hostmaster.uhu-banane.de. ( - 2017070100 ; serial + 2017101300 ; serial 10800 ; refresh (3 hours) 3600 ; retry (1 hour) 604800 ; expire (1 week) @@ -40,6 +40,8 @@ dyndns CNAME helga.brehm-online.com. fotoalbum CNAME helga.brehm-online.com. git CNAME ns3 ;home NS bruni.brehm-online.com. +icinga CNAME ns1-v4 +icinga2 CNAME ns1-v4 kfz-dlb CNAME helga.brehm-online.com. www.kfz-dlb CNAME helga.brehm-online.com. ldap CNAME ns3 diff --git a/bind/zones/uhu-banane.net.zone b/bind/zones/uhu-banane.net.zone index 9cd682d..e4e307b 100644 --- a/bind/zones/uhu-banane.net.zone +++ b/bind/zones/uhu-banane.net.zone @@ -2,7 +2,7 @@ $ORIGIN . ;$TTL 86400 ; 1 day $TTL 900 uhu-banane.net IN SOA ns3.uhu-banane.de. hostmaster.uhu-banane.de. ( - 2017040500 ; serial + 2017101300 ; serial 10800 ; refresh (3 hours) 3600 ; retry (1 hour) 604800 ; expire (1 week) @@ -27,6 +27,8 @@ dkim._domainkey 3600 TXT ( "0BDeL4iC8qHT+w8lDBRXWZTy3Ef3/iSFC3JfE19Ef9QTuqua/2V9Nhwe0f+JP1ld" "SHGp123fDfwE75USMwIDAQAB") git CNAME ns3.uhu-banane.de. +icinga CNAME ns1-v4.uhu-banane.de. +icinga2 CNAME ns1-v4.uhu-banane.de. imap CNAME mail ldap CNAME ns3.uhu-banane.de. ldapadmin CNAME ns3.uhu-banane.de. diff --git a/iptables/rules.v4 b/iptables/rules.v4 index 58aac41..e396a68 100644 --- a/iptables/rules.v4 +++ b/iptables/rules.v4 @@ -1,8 +1,8 @@ -# Generated by iptables-save v1.6.0 on Thu Oct 12 22:55:37 2017 +# Generated by iptables-save v1.6.0 on Fri Oct 13 16:05:28 2017 *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] -:OUTPUT ACCEPT [75:29607] +:OUTPUT ACCEPT [130:52301] :f2b-apache - [0:0] :f2b-apache-modsecurity - [0:0] :f2b-apache-nohome - [0:0] @@ -62,6 +62,7 @@ -A icinga2 -s 162.254.24.33/32 -j ACCEPT -A icinga2 -s 185.48.118.128/32 -j ACCEPT -A icinga2 -s 185.48.118.130/32 -j ACCEPT +-A icinga2 -j REJECT --reject-with icmp-port-unreachable -A rejects -s 134.119.179.226/32 -j REJECT --reject-with icmp-port-unreachable -A rejects -p tcp -m tcp --dport 23 -j REJECT --reject-with icmp-port-unreachable -A rejects -p udp -m udp --dport 137 -j REJECT --reject-with icmp-port-unreachable @@ -84,4 +85,4 @@ -A salt-master -j NFLOG --nflog-prefix "IPv4 Salt Reject " --nflog-threshold 1 -A salt-master -j REJECT --reject-with icmp-port-unreachable COMMIT -# Completed on Thu Oct 12 22:55:37 2017 +# Completed on Fri Oct 13 16:05:28 2017 diff --git a/iptables/rules.v6 b/iptables/rules.v6 index 011e44a..2273898 100644 --- a/iptables/rules.v6 +++ b/iptables/rules.v6 @@ -1,8 +1,8 @@ -# Generated by ip6tables-save v1.6.0 on Thu Oct 12 22:55:37 2017 +# Generated by ip6tables-save v1.6.0 on Fri Oct 13 16:05:28 2017 *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] -:OUTPUT ACCEPT [50653:5978817] +:OUTPUT ACCEPT [58252:7028149] :salt-master - [0:0] -A INPUT -m conntrack --ctstate ESTABLISHED -j ACCEPT -A INPUT -m conntrack --ctstate RELATED -j ACCEPT @@ -29,4 +29,4 @@ -A salt-master -j NFLOG --nflog-prefix "IPv6 Salt Reject " --nflog-threshold 1 -A salt-master -j REJECT --reject-with icmp6-port-unreachable COMMIT -# Completed on Thu Oct 12 22:55:37 2017 +# Completed on Fri Oct 13 16:05:28 2017 -- 2.39.5