From fb6424ad437a57ad10aaeb1aac54062a31a2bfa6 Mon Sep 17 00:00:00 2001
From: Andreas Fankhauser hiddenalpha.ch
Date: Tue, 23 Apr 2024 20:33:56 +0200
Subject: Add firewall rules for MsTeams.

---
 src/firewall/src-default | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/firewall/src-default b/src/firewall/src-default
index a8d6d05..5a59053 100644
--- a/src/firewall/src-default
+++ b/src/firewall/src-default
@@ -37,7 +37,7 @@
 #-A INPUT  -p icmp --icmp-type echo-request -j ACCEPT
 #-A OUTPUT -p icmp --icmp-type echo-reply   -j ACCEPT
 
-# Traceroute client (ToBeVerified)
+# Traceroute client
 #-A OUTPUT -p icmp --icmp-type 8 -j ACCEPT
 #-A INPUT  -p icmp --icmp-type 11 -j ACCEPT
 #-A OUTPUT -p udp -m udp --match multiport --dports 33434:33523 -j ACCEPT
@@ -146,6 +146,10 @@
 #-A INPUT  -p tcp -m state --state NEW,ESTABLISHED --dport 9418 -j ACCEPT
 #-A OUTPUT -p tcp -m state --state RELATED,ESTABLISHED --sport 9418 -j ACCEPT
 
+# MsTeams/MsSkype clients (in addition to TCP 80 & 443)
+#-A OUTPUT -p udp --match multiport --dports 3478:3481  -j ACCEPT
+#-A INPUT  -p udp --match multiport --sports 3478:3481  -j ACCEPT
+
 # Allow all for vbox host-only network
 #-A OUTPUT -o vboxnet0 -j ACCEPT
 #-A INPUT  -i vboxnet0 -j ACCEPT
-- 
cgit v1.1