Added ufw config

gitea-rework
Jef Roosens 2021-12-12 16:36:49 +01:00
parent 2da928a24b
commit a68aa78972
Signed by: Jef Roosens
GPG Key ID: B580B976584B5F30
2 changed files with 19 additions and 6 deletions

View File

@ -1,6 +1,8 @@
- name: Install fail2ban. - name: Install fail2ban & ufw.
apt: apt:
name: fail2ban name:
- fail2ban
- ufw
state: present state: present
# TODO add proper fail2ban config # TODO add proper fail2ban config
@ -11,4 +13,18 @@
state: started state: started
enabled: true enabled: true
# TODO install UFW - name: Ensure ufw is started & enabled.
service:
name: fail2ban
state: started
enabled: true
- name: Allow SSH connections.
community.general.ufw:
rule: allow
port: 2222
- name: Block everything else by default & enable firewall.
community.general.ufw:
default: deny
state: enabled

View File

@ -10,9 +10,6 @@ entryPoints:
websecure: websecure:
address: ":443" address: ":443"
api:
insecure: true
providers: providers:
docker: docker:
swarmMode: true swarmMode: true