From a8b2cd4853a3d2604eab2ee6d72f681244476faa Mon Sep 17 00:00:00 2001
From: olli <olli@gabosh.net>
Date: Sun, 10 Jul 2022 10:50:58 +0200
Subject: [PATCH] first commit

---
 README.md    |  0
 firewall.yml | 29 +++++++++++++++++++++++++++++
 2 files changed, 29 insertions(+)
 create mode 100644 README.md
 create mode 100644 firewall.yml

diff --git a/README.md b/README.md
new file mode 100644
index 0000000..e69de29
diff --git a/firewall.yml b/firewall.yml
new file mode 100644
index 0000000..43af979
--- /dev/null
+++ b/firewall.yml
@@ -0,0 +1,29 @@
+---
+
+- name: Firewall with ufw
+  hosts: all
+  tasks:
+    - name: Install Basic Packages
+      apt:
+        name: 
+          - ufw
+        update_cache: no
+        install_recommends: no
+
+    - name: Allow all access to tcp port 22 (ssh)
+      community.general.ufw:
+        rule: deny
+        port: '22'
+        proto: tcp
+
+    - name: Allow all access to tcp port 33 (ssh)
+      community.general.ufw:
+        rule: allow
+        port: '33'
+        proto: tcp
+
+    - name: Deny everything per policy and enable UFW
+      community.general.ufw:
+        state: enabled
+        policy: deny
+