Add UFW task
This commit is contained in:
		
							
								
								
									
										21
									
								
								ansible/roles/btc/tasks/ufw.yml
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										21
									
								
								ansible/roles/btc/tasks/ufw.yml
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,21 @@ | |||||||
|  | - name: Install Uncomplicated Firewall | ||||||
|  |   ansible.builtin.package: | ||||||
|  |     name: ufw | ||||||
|  |     state: present | ||||||
|  |  | ||||||
|  | - name: Allow OpenSSH inbound | ||||||
|  |   community.general.ufw: | ||||||
|  |     rule: allow | ||||||
|  |     name: OpenSSH # Uses standard profile located in /etc/ufw/applications.d | ||||||
|  |  | ||||||
|  | - name: Apply rate limiting to ssh inbound | ||||||
|  |   community.general.ufw: | ||||||
|  |     rule: limit | ||||||
|  |     port: ssh | ||||||
|  |     proto: tcp | ||||||
|  |    | ||||||
|  | - name: Enable ufw | ||||||
|  |   ansible.builtin.service: | ||||||
|  |     name: ufw | ||||||
|  |     state: started | ||||||
|  |     enabled: yes | ||||||
		Reference in New Issue
	
	Block a user
	 Mike Wilson
					Mike Wilson