dogeystamp/homeserver-iac
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

firewall: fix glaring errors

Browse Source
This commit is contained in:
dogeystamp 2023-08-27 19:36:52 -04:00
parent c6978b61ae
commit 9b4e047171
Signed by: dogeystamp
GPG Key ID: 7225FE3592EFFA38
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
roles/firewall/tasks/main.yml
View File

@ -22,8 +22,8 @@
rule: allow rule: allow
port: "{{ item.port }}" port: "{{ item.port }}"
proto: "{{ item.proto | default('tcp') }}" proto: "{{ item.proto | default('tcp') }}"
state: "{{ 'enabled' if item.name in group_names else 'disabled' }}"
src: "{{ item.src | default(default_firewall_src) }}" src: "{{ item.src | default(default_firewall_src) }}"
when: item.name in group_names
with_items: with_items:
# matrix ports # matrix ports
- name: "synapse" - name: "synapse"
@ -61,6 +61,9 @@
proto: any proto: any
src: "{{ local_subnet }}" src: "{{ local_subnet }}"
- name: Deny all ports by default
community.general.ufw:
enabled: true
- name: Enable firewall service - name: Enable firewall service
service: service: