#
# File to setup default rules processed just before
# firewall-custom-rules
# it's sourced by the firewall script after processing octofuss managed rules
# 
#
# This file is overwritten on upgrades, and shoud just use as a bash
# snippet issuing  iptables command  e.g. something like
#
# iptables -A INPUT -t icmp -i eth1 -j ACCEPT
#

#
# added for Canon printer toner order
#
CANON_PORTS=80,443,8000,8080
CANON_TONERS="hbp-ec1l.srv.ygles.com
kinesis.eu-central-1.amazonaws.com
cognito-identity.eu-central-1.amazonaws.com
a2etju7iem1tgc-ats.iot.eu-central-1.amazonaws.com
rgt.srv.ygles.com
camapi.srv.ygles.com
camapi-ec1.srv.ygles.com
hbpm-ec1l.srv.ygles.com
b01.ugwdevice.net
a01.ugwdevice.net"
for i in $CANON_TONERS; do
   iptables -A outside -d $i -p tcp -m multiport --dports $CANON_PORTS -j ACCEPT
done


#
# Example for a port range
#
#PORTS="20000:30000"
#SERVER=IP.OF.SER.VER
#iptables -A outside -d $SERVER -p tcp --dport $PORTS -j ACCEPT
#
