From 7b1848cb02babddc6b25419ba14e2132f5a33e60 Mon Sep 17 00:00:00 2001
From: Randy Bush <randy@psg.com>
Date: Sun, 16 Oct 2022 11:56:00 -0700
Subject: [PATCH] a start thanks to hans

---
 pages/ganeti-port-80-filters.md | 26 ++++++++++++++++++++++++++
 1 file changed, 26 insertions(+)
 create mode 100644 pages/ganeti-port-80-filters.md

diff --git a/pages/ganeti-port-80-filters.md b/pages/ganeti-port-80-filters.md
new file mode 100644
index 0000000..1752f7d
--- /dev/null
+++ b/pages/ganeti-port-80-filters.md
@@ -0,0 +1,26 @@
+# Ganeti Port 80 Filters
+
+```
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 127.0.0.1 -j ACCEPT
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 147.28.0.14 -j ACCEPT
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 147.28.0.15 -j ACCEPT
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 147.28.0.16 -j ACCEPT
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 147.28.0.29 -j ACCEPT
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -j DROP
+
+
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 127.0.0.1 -j ACCEPT
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 198.180.150.8 -j ACCEPT
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 198.180.150.4 -j ACCEPT
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 198.180.150.10 -j ACCEPT
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -j DROP
+
+
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 127.0.0.1 -j ACCEPT
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 198.180.152.30 -j ACCEPT
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 198.180.152.7 -j ACCEPT
+iptables -A INPUT -i br-lan -p tcp --destination-port 80 -j DROP
+```
+
+---
+2022.10.16
\ No newline at end of file