Upgrade UFW role to match reality

Signed-off-by: decentral1se's avatarLuke Murphy <lukewm@riseup.net>
parent 50559f1a
......@@ -5,13 +5,55 @@
roles:
- role: ufw
ufw_rules:
- {'port': '80', 'rule': 'allow', 'proto': 'tcp', 'direction': 'in'}
- {'port': '80', 'rule': 'allow', 'proto': 'tcp', 'direction': 'out'}
- {'port': '443', 'rule': 'allow', 'proto': 'tcp', 'direction': 'in'}
- {'port': '443', 'rule': 'allow', 'proto': 'tcp', 'direction': 'out'}
- {'port': '48001', 'rule': 'allow', 'proto': 'tcp', 'direction': 'in'}
- {'port': '19999', 'rule': 'allow', 'proto': 'tcp', 'direction': 'in'}
- {'port': '65534', 'rule': 'allow', 'proto': 'tcp', 'direction': 'in'}
- {'port': '6660:7000', 'rule': 'allow', 'proto': 'tcp', 'direction': 'in'}
- {'port': '6660:7000', 'rule': 'allow', 'proto': 'tcp', 'direction': 'out'}
# HTTP
- {
'port': '80',
'rule': 'allow',
'proto': 'tcp',
'direction': 'in'
}
- {
'port': '80',
'rule': 'allow',
'proto': 'tcp',
'direction': 'out'
}
# HTTPS
- {
'port': '443',
'rule': 'allow',
'proto': 'tcp',
'direction': 'in'
}
- {
'port': '443',
'rule': 'allow',
'proto': 'tcp',
'direction': 'out',
}
# SSH port
- {
'port': '48001',
'rule': 'allow',
'proto': 'tcp',
'direction': 'in',
}
# Netdata
- {
'port': '19999',
'rule': 'allow',
'proto': 'tcp',
'direction': 'in',
}
# ZNC
- {
'port': '65534',
'rule': 'allow',
'proto': 'tcp',
'direction': 'in',
}
ufw_logging: low
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment