xoxys.iptables/index.md at 9d9daf8635aa697f181650229782a98d7638b9c2

Robert Kaussow 9d9daf8635 commit c9cf9c4a0f

Author: Robert Kaussow <mail@geeklabor.de>
Date:   Fri Jan 31 11:23:20 2020 +0100

    cleanup documentation

2020-01-31 10:51:17 +00:00

1.9 KiB

Raw Blame History

title	type
iptables	docs

Role to manage iptables firewall.

Default Variables
Dependencies

Default Variables

iptables_app_rules

Default value

iptables_app_rules: []

iptables_app_rules_extra

Default value

iptables_app_rules_extra: []

iptables_custom_rules

Default value

iptables_custom_rules: []

iptables_default_head

Default head (allow) rules.

Default value

iptables_default_head: "-P INPUT ACCEPT\n-P FORWARD ACCEPT\n-P OUTPUT ACCEPT\n-A INPUT\
  \ -m state --state RELATED,ESTABLISHED -j ACCEPT\n-A INPUT -i lo -j ACCEPT\n-A INPUT\
  \ -p icmp --icmp-type echo-request -j ACCEPT\n-A INPUT -p tcp -m tcp --dport 22\
  \ -j ACCEPT\n"

iptables_default_tail

Default tail (deny) rules.

Default value

iptables_default_tail: "-A INPUT -j REJECT\n-A FORWARD -j REJECT\n"

iptables_keep_unmanaged

By default this role deletes all iptables rules which are not managed by Ansible. Set this to 'yes', if you want the role to keep unmanaged rules.

Default value

iptables_keep_unmanaged: no

Dependencies

None.

1.9 KiB Raw Blame History

Default Variables

iptables_app_rules

Default value

iptables_app_rules_extra

Default value

iptables_custom_rules

Default value

iptables_default_head

Default value

iptables_default_tail

Default value

iptables_keep_unmanaged

Default value

Dependencies

1.9 KiB

Raw Blame History