Fix firewall ports format

2022-11-22 21:22:23 +01:00 · 2022-11-22 21:22:23 +01:00 · 71cc3e2241
parent d53c6d41dc
commit 71cc3e2241
1 changed files with 32 additions and 11 deletions
--- a/roles/ubuntu_base/tasks/firewall.yml
+++ b/roles/ubuntu_base/tasks/firewall.yml
@ -6,15 +6,36 @@
 - name: Allow necessary ports
  community.general.ufw:
    rule: allow
-    port: "{{ item }}"
+    port: "{{ item.port }}"
+    proto: "{{ item.proto }}"
  loop:
-    - "22/tcp"     # Gitea SSH
-    - "80/tcp"     # HTTP
-    - "443/tcp"    # HTTPS
-    - "389/tcp"    # OpenLDAP
-    - "636/tcp"    # OpenLDAP
-    - "25/tcp"     # Email
-    - "465/tcp"    # Email
-    - "587/tcp"    # Email
-    - "993/tcp"    # Email
-    - "19022/tcp"  # SSH
+    # Gitea SSH
+    - port: 22
+      proto: "tcp"  
+    # HTTP
+    - port: 80
+      proto: "tcp"
+    # HTTPS
+    - port: 443
+      proto: "tcp"
+    # OpenLDAP
+    - port: 389
+      proto: "tcp"
+    # OpenLDAP
+    - port: 636
+      proto: "tcp"
+    # Email
+    - port: 25
+      proto: "tcp"
+    # Email
+    - port: 465
+      proto: "tcp"
+    # Email
+    - port: 587
+      proto: "tcp"
+    # Email
+    - port: 993
+      proto: "tcp"
+    # SSH
+    - port: 19022
+      proto: "tcp"