first commit

2022-07-10 10:50:58 +02:00 · 2022-07-10 10:50:58 +02:00 · a8b2cd4853
commit a8b2cd4853
2 changed files with 29 additions and 0 deletions
--- a/README.md
+++ b/README.md
--- a/firewall.yml
+++ b/firewall.yml
@ -0,0 +1,29 @@
+---
+
+- name: Firewall with ufw
+  hosts: all
+  tasks:
+    - name: Install Basic Packages
+      apt:
+        name: 
+          - ufw
+        update_cache: no
+        install_recommends: no
+
+    - name: Allow all access to tcp port 22 (ssh)
+      community.general.ufw:
+        rule: deny
+        port: '22'
+        proto: tcp
+
+    - name: Allow all access to tcp port 33 (ssh)
+      community.general.ufw:
+        rule: allow
+        port: '33'
+        proto: tcp
+
+    - name: Deny everything per policy and enable UFW
+      community.general.ufw:
+        state: enabled
+        policy: deny
+