ansible

Go to file

Drone Shipper f2bbe354f7 [SKIP CI] update readme		2019-11-06 20:08:49 +00:00
defaults	add app-specific iptables list	2019-10-28 20:39:05 +01:00
library	include iptables_raw custom module	2019-10-30 22:36:51 +01:00
meta	fix missing attributes in meta file	2019-11-06 21:03:45 +01:00
molecule	increase flake8 line length in molecule	2019-10-17 21:01:00 +02:00
tasks	add default values for iptables rules state	2019-10-30 22:36:33 +01:00
vars	formatting adjusted	2017-05-19 16:18:21 +02:00
.drone.jsonnet	remove custom modules from molecule	2019-10-31 00:14:39 +01:00
.drone.yml	remove custom modules from molecule	2019-10-31 00:14:39 +01:00
.gitignore	include iptables_raw custom module	2019-10-30 22:36:51 +01:00
HEADER.md	refactor ci pipeline	2019-10-17 20:53:21 +02:00
LICENSE	Initial commit	2017-05-18 00:49:43 +02:00
README.md	[SKIP CI] update readme	2019-11-06 20:08:49 +00:00

README.md

xoxys.iptables

Role to manage iptables

Default Variables

iptables_default_head

Default head (allow) rules.

Default value

iptables_default_head: "-P INPUT ACCEPT\n-P FORWARD ACCEPT\n-P OUTPUT ACCEPT\n-A INPUT\
  \ -m state --state RELATED,ESTABLISHED -j ACCEPT\n-A INPUT -i lo -j ACCEPT\n-A INPUT\
  \ -p icmp --icmp-type echo-request -j ACCEPT\n-A INPUT -p tcp -m tcp --dport 22\
  \ -j ACCEPT\n"

iptables_default_tail

Default tail (deny) rules.

Default value

iptables_default_tail: "-A INPUT -j REJECT\n-A FORWARD -j REJECT\n"

iptables_custom_rules

Default value

iptables_custom_rules: []

iptables_app_rules

Default value

iptables_app_rules: []

iptables_app_rules_extra

Default value

iptables_app_rules_extra: []

iptables_keep_unmanaged

By default this role deletes all iptables rules which are not managed by Ansible. Set this to 'yes', if you want the role to keep unmanaged rules.

Default value

iptables_keep_unmanaged: no

Dependencies

None.

License

MIT

Author

xoxys