samsapti/pi-ansible
Archived
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
This repository has been archived on 2023-12-29. You can view files and clone it, but cannot push or open issues or pull requests.
pi-ansible/roles/os_config/tasks/firewall.yml

31 lines
833 B
YAML
Raw Normal View History

Add os_config role
2022-12-22 19:18:27 +00:00
# vim: ft=yaml.ansible
---
- name: Allow necessary ports in UFW
Linting
2023-03-22 18:31:21 +00:00
community.general.ufw:
Add os_config role
2022-12-22 19:18:27 +00:00
rule: allow
port: "{{ item.port }}"
proto: "{{ item.proto | default('tcp') }}"
loop:
Remove unneeded quotes
2023-01-03 21:30:22 +00:00
- port: '22' # SSH
Add IPFS node
2023-07-02 00:09:57 +00:00
- port: '53' # Pi-hole (not port-forwarded)
Add Pi-hole
2023-05-28 15:58:12 +00:00
proto: tcp
Add IPFS node
2023-07-02 00:09:57 +00:00
- port: '53' # Pi-hole (not port-forwarded)
Add Pi-hole
2023-05-28 15:58:12 +00:00
proto: udp
Remove unneeded quotes
2023-01-03 21:30:22 +00:00
- port: '80' # HTTP
Add IPFS node
2023-07-02 00:09:57 +00:00
- port: '81' # Pi-hole (not port-forwarded)
Remove unneeded quotes
2023-01-03 21:30:22 +00:00
- port: '443' # HTTPS
Add IPFS node
2023-07-02 00:09:57 +00:00
- port: '4001' # IPFS Kubo P2P
proto: tcp
- port: '4001' # IPFS Kubo P2P
proto: udp
- port: '5001' # IPFS Kubo RPC API (not port-forwarded)
Remove unneeded quotes
2023-01-03 21:30:22 +00:00
- port: '18080' # monerod P2P
- port: '18089' # monerod RPC
- port: '51820' # Wireguard
Add os_config role
2022-12-22 19:18:27 +00:00
proto: udp
- name: Enable UFW
Linting
2023-03-22 18:31:21 +00:00
community.general.ufw:
Add os_config role
2022-12-22 19:18:27 +00:00
policy: deny
Add IPFS node
2023-07-02 00:09:57 +00:00
state: enabled
Reference in a new issue Copy permalink