feat: add ufw rule

roles/any.tools.caddy/tasks/main.yml

@@ -34,3 +34,10 @@
     state: started
     enabled: true
 
+- name: Open HTTP ports in firewall
+  community.general.ufw:
+    port: '{{ item }}'
+    rule: 'allow'
+  loop:
+    - 'http'
+    - 'https'

roles/any.tools.ufw/tasks/main.yml

@@ -0,0 +1,18 @@
+---
+- name: Ensure UFW is installed
+  apt:
+    name: ufw
+    state: present
+
+- name: Set default policy to deny
+  community.general.ufw:
+    default: 'deny'
+
+- name: Allow SSH connections
+  community.general.ufw:
+    port: 2222
+    rule: 'allow'
+
+- name: Ensure UFW is enabled
+  community.general.ufw:
+    state: 'enabled'