CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-26 06:27:50 +02:00
Code Issues Packages Projects Releases Wiki Activity

allow only manager to connect to ssh port for idh node

Browse Source
This commit is contained in:
m0duspwnens
2022-02-23 15:14:11 -05:00
parent 1d95aca4de
commit 61ae61953f
7 changed files with 74 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files
salt/firewall/assigned_hostgroups.map.yaml
+4 -2
View File
@@ -659,7 +659,6 @@ role:
hostgroups:
anywhere:
portgroups:
- {{ portgroups.ssh }}
{% set idh_services = salt['pillar.get']('idh:services', []) %}
{% for service in idh_services %}
- {{ portgroups['idh_'~service] }}
@@ -669,4 +668,7 @@ role:
- {{ portgroups.all }}
localhost:
portgroups:
- {{ portgroups.all }}
- {{ portgroups.all }}
manager:
portgroups:
- {{ portgroups.ssh }}
salt/firewall/portgroups.yaml
+5 -1
View File
@@ -1,6 +1,10 @@
{% if grains.role == 'so-idh' %}
{% from 'idh/opencanary_config.map.jinja' import OPENCANARYCONFIG %}
{% from 'idh/openssh/map.jinja' import openssh_map %}
{% set idh_services = salt['pillar.get']('idh:services', []) %}
{% set ssh_port = openssh_map.config.port %}
{% else %}
{% set ssh_port = 22 %}
{% endif %}
firewall:
@@ -88,7 +92,7 @@ firewall:
- 443
ssh:
tcp:
- 22
- {{ ssh_port }}
strelka_frontend:
tcp:
- 57314