playbook.yml aktualisiert
This commit is contained in:
parent
688ecab5cf
commit
e6c678c0eb
21
playbook.yml
21
playbook.yml
|
|
@ -46,6 +46,8 @@
|
||||||
dest: '{{ item.destination }}'
|
dest: '{{ item.destination }}'
|
||||||
port: '22'
|
port: '22'
|
||||||
with_items:
|
with_items:
|
||||||
|
- { direction: 'in', destination: '10.0.0.1/32' }
|
||||||
|
- { direction: 'out', destination: '10.0.0.1/32' }
|
||||||
- { direction: 'in', destination: '10.16.109.252/32' }
|
- { direction: 'in', destination: '10.16.109.252/32' }
|
||||||
- { direction: 'out', destination: '10.16.109.252/32' }
|
- { direction: 'out', destination: '10.16.109.252/32' }
|
||||||
- { direction: 'in', destination: '10.16.1.1/32' }
|
- { direction: 'in', destination: '10.16.1.1/32' }
|
||||||
|
|
@ -59,6 +61,8 @@
|
||||||
dest: '{{ item.destination }}'
|
dest: '{{ item.destination }}'
|
||||||
port: '443'
|
port: '443'
|
||||||
with_items:
|
with_items:
|
||||||
|
- { direction: 'in', destination: '10.0.0.1/32' }
|
||||||
|
- { direction: 'out', destination: '10.0.0.1/32' }
|
||||||
- { direction: 'in', destination: '10.16.109.252/32' }
|
- { direction: 'in', destination: '10.16.109.252/32' }
|
||||||
- { direction: 'out', destination: '10.16.109.252/32' }
|
- { direction: 'out', destination: '10.16.109.252/32' }
|
||||||
- { direction: 'in', destination: '10.16.1.1/32' }
|
- { direction: 'in', destination: '10.16.1.1/32' }
|
||||||
|
|
@ -66,19 +70,11 @@
|
||||||
- { direction: 'in', destination: '162.55.5.40/32' }
|
- { direction: 'in', destination: '162.55.5.40/32' }
|
||||||
- { direction: 'out', destination: '162.55.5.40/32' }
|
- { direction: 'out', destination: '162.55.5.40/32' }
|
||||||
|
|
||||||
- name: Enable ufw
|
|
||||||
ufw: state=enabled
|
|
||||||
|
|
||||||
- name: Allow dns
|
- name: Allow dns
|
||||||
ufw: rule={{ item.rule }} port={{ item.port }}
|
ufw: rule={{ item.rule }} port={{ item.port }}
|
||||||
with_items:
|
with_items:
|
||||||
- { rule: 'allow', port: '53'}
|
- { rule: 'allow', port: '53'}
|
||||||
|
|
||||||
|
|
||||||
- name: start ufw service
|
|
||||||
service:
|
|
||||||
name: ufw
|
|
||||||
state: restarted
|
|
||||||
|
|
||||||
- name: purge some prior installed packages
|
- name: purge some prior installed packages
|
||||||
apt:
|
apt:
|
||||||
|
|
@ -116,3 +112,12 @@
|
||||||
- kicad-doc-de
|
- kicad-doc-de
|
||||||
autoremove: yes
|
autoremove: yes
|
||||||
state: absent
|
state: absent
|
||||||
|
|
||||||
|
|
||||||
|
- name: Enable ufw
|
||||||
|
ufw: state=disabled
|
||||||
|
|
||||||
|
- name: start ufw service
|
||||||
|
service:
|
||||||
|
name: ufw
|
||||||
|
state: restarted
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue