local.m4: Reinstate detailed filtering from scary networks.

[firewall] / telecaster.m4

diff --git a/telecaster.m4 b/telecaster.m4
index dd278b8..f3b8f07 100644 (file)
--- a/telecaster.m4
+++ b/telecaster.m4
@@ -31,7 +31,7 @@ allowservices inbound tcp \
        ident \
        ftp ftp_data \
        rsync \
-       http https squid
+       http https squid ssquid
 
 run iptables -A inbound -j ACCEPT \
        -p udp --destination-port $port_icp \
@@ -39,6 +39,7 @@ run iptables -A inbound -j ACCEPT \
 
 ## Other interesting things.
 dnsresolver inbound
+dnsserver inbound
 
 m4_divert(-1)
 ###----- That's all, folks --------------------------------------------------