rnsrk/open-productive-stack
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

add nextcloud

Browse source
This commit is contained in:
rnsrk 2026-03-30 12:22:16 +02:00
parent 36a84a9da4
commit 4f62c7ba5b
2 changed files with 12 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

4
scripts/secure-ssh-vpn.sh
View file

@ -64,6 +64,10 @@ run ufw allow 443/tcp comment 'HTTPS (Traefik)'
run ufw allow 2424/tcp comment 'GitLab SSH (Traefik)'
run ufw allow "$WG_UDP_PORT/udp" comment 'WireGuard VPN'
# ── Nextcloud Talk HPB (STUN/TURN) ────────────────────────────────────────
run ufw allow 3478/tcp comment 'Nextcloud Talk STUN/TURN (TCP)'
run ufw allow 3478/udp comment 'Nextcloud Talk STUN/TURN (UDP)'
# ── SSH — VPN clients only ────────────────────────────────────────────────
# Deny rule is added first (gets higher rule number), then the VPN allow is
# inserted at position 1 so it always takes priority over the deny.