27 lines
696 B
YAML
27 lines
696 B
YAML
---
|
|
|
|
# basic firewall rules
|
|
- name: "basic firewall rules"
|
|
tags: "firewall"
|
|
block:
|
|
|
|
# basic firewall rules
|
|
- name: "firewall - allow incoming routed traffic"
|
|
community.general.ufw:
|
|
rule: "allow"
|
|
route: "yes"
|
|
src: "{{ item[0] }}"
|
|
dest: "{{ item[1] }}"
|
|
with_nested:
|
|
- "{{ __rule['source_nets'] }}"
|
|
- "{{ __rule['destination_nets'] }}"
|
|
|
|
- name: "firewall - allow outgoing routed traffic"
|
|
community.general.ufw:
|
|
rule: "allow"
|
|
route: "yes"
|
|
src: "{{ item[1] }}"
|
|
dest: "{{ item[0] }}"
|
|
with_nested:
|
|
- "{{ __rule['source_nets'] }}"
|
|
- "{{ __rule['destination_nets'] }}"
|