From 49fd25152d27656b4ae86c0bfe1f08a3ef1b6ea2 Mon Sep 17 00:00:00 2001
From: MatMoul <matmoul@gmail.com>
Date: Sat, 1 Nov 2025 20:15:38 +0100
Subject: [PATCH] alpine: add ssh iptable rules

---
 alpine/files/rules-save | 2 ++
 alpine/init.sh          | 6 ------
 2 files changed, 2 insertions(+), 6 deletions(-)

diff --git a/alpine/files/rules-save b/alpine/files/rules-save
index 4abac60..cb2687a 100644
--- a/alpine/files/rules-save
+++ b/alpine/files/rules-save
@@ -6,4 +6,6 @@
 -A INPUT -i lo -j ACCEPT
 # Ping
 -A INPUT -p icmp -j ACCEPT
+# SSH
+-A INPUT -p tcp -m tcp --dport 22 -m state --state NEW -j ACCEPT
 COMMIT
diff --git a/alpine/init.sh b/alpine/init.sh
index 2049ae1..ba15a49 100644
--- a/alpine/init.sh
+++ b/alpine/init.sh
@@ -67,12 +67,6 @@ IP6TablesInstall() {
 SSHEnableRootLogin() {
 	sed -i "/PermitRootLogin prohibit-password/c\PermitRootLogin yes #prohibit-password" /etc/ssh/sshd_config
 	service sshd restart
-
-	if [ -f "/etc/iptables/rules-save" ]; then
-		sed -i '/^-A INPUT -i lo -j ACCEPT.*/a -A INPUT -p tcp -m tcp --dport 22 -m state --state NEW -j ACCEPT' /etc/iptables/rules-save
-		sed -i '/^-A INPUT -i lo -j ACCEPT.*/a # SSH' /etc/iptables/rules-save
-		iptables-restore /etc/iptables/rules-save
-	fi
 }
 SNMPDInstall() {
 	cummunityname=public