From e7acd2447988c56c4c7345227eb120eae950c1f8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=A9r=C3=B4me=20Schneider?= <jschneider@entrouvert.com>
Date: Wed, 7 Jan 2015 15:19:13 +0100
Subject: [PATCH] ferm: accept ldap and ldaps output for the VMs

---
 ferm/ferm.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ferm/ferm.conf b/ferm/ferm.conf
index edae031..8a961d4 100644
--- a/ferm/ferm.conf
+++ b/ferm/ferm.conf
@@ -122,7 +122,7 @@ table filter {
 
         # from VMS to Internet: ssh, web, dns, ping
         outerface $DEV_WAN {
-            proto tcp mod multiport destination-ports (53 22 80 443)
+            proto tcp mod multiport destination-ports (53 22 80 389 443 636)
                 mod state state NEW
                 ACCEPT;
             proto udp dport 53