X-Git-Url: https://git.distorted.org.uk/~mdw/firewall/blobdiff_plain/5631dfdc23ffc274153ff3cc2a26799abc45e9e8..refs/heads/master:/telecaster.m4

diff --git a/telecaster.m4 b/telecaster.m4
index 71de4ab..103d11b 100644
--- a/telecaster.m4
+++ b/telecaster.m4
@@ -30,10 +30,15 @@ allowservices inbound tcp \
 	ssh \
 	ident \
 	smtp \
-	ftp ftp_data \
+	ftp ftps \
 	rsync \
 	http https squid ssquid
 
+allowservices inbound-untrusted tcp \
+	sunrpc mount nfs
+allowservices inbound-untrusted udp \
+	sunrpc mount nfs
+
 run iptables -A inbound -j ACCEPT \
 	-p udp --destination-port $port_icp \
 	-m limit --limit 10/second --limit-burst 100