Robert Kaussow
c05dcd882c
Author: Robert Kaussow <mail@geeklabor.de>
Date: Mon May 25 23:01:26 2020 +0200
fix downstream repo
1.9 KiB
1.9 KiB
| title | type |
|---|---|
| iptables | docs |
Role to manage iptables firewall.
Default Variables
iptables_app_rules
Default value
iptables_app_rules: []
iptables_app_rules_extra
Default value
iptables_app_rules_extra: []
iptables_custom_rules
Default value
iptables_custom_rules: []
iptables_default_head
Default head (allow) rules.
Default value
iptables_default_head: "-P INPUT ACCEPT\n-P FORWARD ACCEPT\n-P OUTPUT ACCEPT\n-A INPUT\
\ -m state --state RELATED,ESTABLISHED -j ACCEPT\n-A INPUT -i lo -j ACCEPT\n-A INPUT\
\ -p icmp --icmp-type echo-request -j ACCEPT\n-A INPUT -p tcp -m tcp --dport 22\
\ -j ACCEPT\n"
iptables_default_tail
Default tail (deny) rules.
Default value
iptables_default_tail: "-A INPUT -j REJECT\n-A FORWARD -j REJECT\n"
iptables_keep_unmanaged
By default this role deletes all iptables rules which are not managed by Ansible. Set this to 'yes', if you want the role to keep unmanaged rules.
Default value
iptables_keep_unmanaged: no
Dependencies
None.