[INFRA] Review and harden firewall rules #3

New Issue

Open

opened 2026-04-10 21:00:40 -05:00 by blakeridgway · 0 comments

blakeridgway commented 2026-04-10 21:00:40 -05:00

Owner

Copy Link

Description

Audit current firewall rules across all servers and the OPNsense firewall (fw01). Remove unnecessary open ports and document the final ruleset.

Request Type

Firewall Change

Justification

Reduce attack surface and ensure only required ports are exposed.

Impact

All services behind fw01 and any host-level firewalls (iptables/nftables) on individual servers.

Additional Context

No response

### Description Audit current firewall rules across all servers and the OPNsense firewall (fw01). Remove unnecessary open ports and document the final ruleset. ### Request Type Firewall Change ### Justification Reduce attack surface and ensure only required ports are exposed. ### Impact All services behind fw01 and any host-level firewalls (iptables/nftables) on individual servers. ### Additional Context _No response_

blakeridgway added the

infrastructure

label 2026-04-10 21:00:40 -05:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

No results found.

Labels

Clear labels

bug

Something is not working

day-to-day

A small routine task for the current sprint

feature

A request for new functionality

high

High priority — needs immediate attention

infrastructure

A change to infrastructure services, DNS, firewall, etc.

low

medium

planned-outage

A scheduled maintenance window or service outage

security

A security concern or vulnerability

No Label

infrastructure

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

blakeridgway

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: RidgwaySystems/tickets#3

No description provided.