27 lines
455 B
YAML
27 lines
455 B
YAML
|
- name: Install ufw
|
||
|
|
become: true
|
||
|
|
ansible.builtin.apt:
|
||
|
|
update_cache: true
|
||
|
|
pkg:
|
||
|
|
- ufw
|
||
|
|
|
||
|
|
- name: Set logging
|
||
|
|
become: true
|
||
|
|
community.general.ufw:
|
||
|
|
logging: "on"
|
||
|
|
|
||
|
|
- name: Allow port 22 and enable UFW
|
||
|
|
become: true
|
||
|
|
community.general.ufw:
|
||
|
|
state: enabled
|
||
|
|
rule: allow
|
||
|
|
proto: tcp
|
||
|
|
port: "22"
|
||
|
|
|
||
|
|
- name: Enable and start ufw service
|
||
|
|
become: true
|
||
|
|
ansible.builtin.service:
|
||
|
|
name: ufw
|
||
|
|
enabled: true
|
||
|
|
state: started
|