homelab/infra/firewall.tf

resource "hcloud_firewall" "prod" {
  name= "prod"
  rule {
    direction ="in"
    protocol = "tcp"
    port = "80"
    source_ips = [
      "0.0.0.0/0",
      "::/0"
    ]
  }
  rule {
    direction ="in"
    protocol = "tcp"
    port = "443"
    source_ips = [
      "0.0.0.0/0",
      "::/0"
    ]
  }
  # torrent UDH port
  rule {
    direction ="in"
    protocol = "udp"
    port = "6881"
    source_ips = [
      "0.0.0.0/0",
      "::/0"
    ]
  }
  # wireguard port
  rule {
    direction ="in"
    protocol = "udp"
    port = "51820"
    source_ips = [
      "0.0.0.0/0",
      "::/0"
    ]

  }
# torrent listen port
  rule {
    direction ="in"
    protocol = "tcp"
    port = "50000"
    source_ips = [
      "0.0.0.0/0",
      "::/0"
    ]

  }
  rule {
    direction ="in"
    protocol = "icmp"
    source_ips = [
      "0.0.0.0/0",
      "::/0"
    ]
  }
}

resource "hcloud_firewall" "ssh" {
  name= "ssh"
  rule {
    direction ="in"
    protocol = "tcp"
    port="22"
    source_ips = [
      "0.0.0.0/0",
      "::/0"
    ]
  }
}

resource "hcloud_firewall" "Gitea_SSH" {
  name= "Gitea SSH"
  rule {
    direction ="in"
    protocol = "tcp"
    port="2222"
    source_ips = [
      "0.0.0.0/0",
      "::/0"
    ]
  }
}
resource "hcloud_firewall" "mail" {
    name= "mail"
    rule {
        direction ="in"
        protocol = "tcp"
        port="25"
        source_ips = [
              "0.0.0.0/0",
                    "::/0"
        ]
      }
    rule {
        direction ="in"
        protocol = "tcp"
        port="993"
        source_ips = [
              "0.0.0.0/0",
                    "::/0"
        ]
      }
    rule {
        direction ="in"
        protocol = "tcp"
        port="465"
        source_ips = [
              "0.0.0.0/0",
                    "::/0"
        ]
      }

}
modify firewall configuration 2022-09-03 07:01:47 +00:00			`resource "hcloud_firewall" "prod" {`
			`name= "prod"`
add firewall in terraform 2022-06-19 17:04:15 +00:00			`rule {`
			`direction ="in"`
			`protocol = "tcp"`
			`port = "80"`
			`source_ips = [`
			`"0.0.0.0/0",`
			`"::/0"`
			`]`
			`}`
			`rule {`
			`direction ="in"`
			`protocol = "tcp"`
			`port = "443"`
			`source_ips = [`
			`"0.0.0.0/0",`
			`"::/0"`
			`]`
			`}`
update hetzner forewall 2022-08-27 07:37:25 +00:00			`# torrent UDH port`
add firewall in terraform 2022-06-19 17:04:15 +00:00			`rule {`
			`direction ="in"`
update hetzner forewall 2022-08-27 07:37:25 +00:00			`protocol = "udp"`
add firewall in terraform 2022-06-19 17:04:15 +00:00			`port = "6881"`
			`source_ips = [`
			`"0.0.0.0/0",`
			`"::/0"`
			`]`
			`}`
update hetzner forewall 2022-08-27 07:37:25 +00:00			`# wireguard port`
add firewall in terraform 2022-06-19 17:04:15 +00:00			`rule {`
			`direction ="in"`
			`protocol = "udp"`
			`port = "51820"`
			`source_ips = [`
			`"0.0.0.0/0",`
			`"::/0"`
			`]`

			`}`
update hetzner forewall 2022-08-27 07:37:25 +00:00			`# torrent listen port`
add firewall in terraform 2022-06-19 17:04:15 +00:00			`rule {`
			`direction ="in"`
update hetzner forewall 2022-08-27 07:37:25 +00:00			`protocol = "tcp"`
			`port = "50000"`
add firewall in terraform 2022-06-19 17:04:15 +00:00			`source_ips = [`
			`"0.0.0.0/0",`
			`"::/0"`
			`]`
update hetzner forewall 2022-08-27 07:37:25 +00:00
add firewall in terraform 2022-06-19 17:04:15 +00:00			`}`
			`rule {`
update hetzner forewall 2022-08-27 07:37:25 +00:00			`direction ="in"`
			`protocol = "icmp"`
add firewall in terraform 2022-06-19 17:04:15 +00:00			`source_ips = [`
			`"0.0.0.0/0",`
			`"::/0"`
			`]`
			`}`
modify firewall configuration 2022-09-03 07:01:47 +00:00			`}`

			`resource "hcloud_firewall" "ssh" {`
			`name= "ssh"`
			`rule {`
			`direction ="in"`
			`protocol = "tcp"`
			`port="22"`
			`source_ips = [`
			`"0.0.0.0/0",`
			`"::/0"`
			`]`
			`}`
add firewall in terraform 2022-06-19 17:04:15 +00:00			`}`
update firewall 2022-10-08 07:12:41 +00:00
			`resource "hcloud_firewall" "Gitea_SSH" {`
			`name= "Gitea SSH"`
			`rule {`
			`direction ="in"`
			`protocol = "tcp"`
			`port="2222"`
			`source_ips = [`
			`"0.0.0.0/0",`
			`"::/0"`
			`]`
			`}`
			`}`
add mail firewall rules 2023-10-01 17:29:19 +00:00			`resource "hcloud_firewall" "mail" {`
			`name= "mail"`
			`rule {`
			`direction ="in"`
			`protocol = "tcp"`
			`port="25"`
			`source_ips = [`
			`"0.0.0.0/0",`
			`"::/0"`
			`]`
			`}`
			`rule {`
			`direction ="in"`
			`protocol = "tcp"`
			`port="993"`
			`source_ips = [`
			`"0.0.0.0/0",`
			`"::/0"`
			`]`
			`}`
			`rule {`
			`direction ="in"`
			`protocol = "tcp"`
			`port="465"`
			`source_ips = [`
			`"0.0.0.0/0",`
			`"::/0"`
			`]`
			`}`

			`}`