wireguard: remove allow all firewall rule

2024-08-11 15:05:40 -04:00 · 2024-08-11 15:05:40 -04:00 · b198b90f3f
commit b198b90f3f
parent b0a28a0e47
1 changed files with 0 additions and 8 deletions
--- a/roles/wireguard/tasks/main.yml
+++ b/roles/wireguard/tasks/main.yml
@ -24,14 +24,6 @@
    line: "net/ipv4/ip_forward=1"
  when: '"bastion" in group_names'

- name: Setup UFW rules to accept VPN traffic
-  community.general.ufw:
-    rule: allow
-    direction: in
-    src: "{{ wireguard.ip.cidr }}"
-    dest: any
-  when: '"bastion" in group_names'
-
 - name: Deploy wireguard server config
  template:
    src: server.conf.j2