This repository has been archived on 2024-02-10. You can view files and clone it, but cannot push or open issues or pull requests.
cpx-ansible/roles/os_config/tasks/firewall.yml

21 lines
474 B
YAML
Raw Normal View History

2023-04-20 21:34:25 +00:00
# vim: ft=yaml.ansible
---
- name: Allow necessary ports in UFW
community.general.ufw:
rule: allow
port: "{{ item.port }}"
proto: "{{ item.proto | default('tcp') }}"
loop:
- port: '22' # SSH
- port: '80' # HTTP
- port: '443' # HTTPS
2023-05-14 00:54:20 +00:00
- port: '5223' # SMP server
- port: '5443' # XFTP server
2023-04-20 21:34:25 +00:00
- port: '10000' # Jitsi Videobridge
proto: udp
- name: Enable UFW
community.general.ufw:
state: enabled
policy: deny