firewall: add role to configure ufw firewall #7

ljmf00 · 2020-11-03T14:39:35Z

Signed-off-by: Luís Ferreira [email protected]

ljmf00 · 2020-11-03T14:44:59Z

Need local testing for firewall_forward_packets to make sure will not mess up with VPN.

FFY00 · 2020-11-08T20:02:35Z

roles/firewall/tasks/main.yml

@@ -0,0 +1,43 @@
+---
+
+- name: Install 'ufw'


Keep the style, lowercase and don't quote ufw.

FFY00 · 2020-11-08T20:05:10Z

roles/firewall/tasks/main.yml

+  ufw:
+    policy: deny
+
+- name: Set allow default policy for forwarding


Shouldn't we be installing our own config instead of editing this?

I added a template to build our own config, can you review?

Signed-off-by: Luís Ferreira <[email protected]>

ljmf00 · 2020-11-10T10:25:03Z

This is no longer in WIP state. I tested this config on the server and seems working fine.

ljmf00 changed the title ~~firewall: add role to configure ufw firewall~~ WIP: firewall: add role to configure ufw firewall Nov 3, 2020

ljmf00 force-pushed the add-ufw-firewall branch from 0c935a8 to d9beb3f Compare November 3, 2020 14:42

FFY00 requested changes Nov 8, 2020

View reviewed changes

firewall: add role to configure ufw firewall

627878c

Signed-off-by: Luís Ferreira <[email protected]>

ljmf00 force-pushed the add-ufw-firewall branch from d9beb3f to 627878c Compare November 10, 2020 10:22

ljmf00 changed the title ~~WIP: firewall: add role to configure ufw firewall~~ firewall: add role to configure ufw firewall Nov 10, 2020

Provide feedback