RWejlgaard/pez-infra
1
0
Fork 0
mirror of https://github.com/RWejlgaard/pez-infra.git synced 2026-05-06 04:14:43 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
pez-infra/ansible/roles/firewall_alpine/handlers/main.yml
Rasmus "Pez" Wejlgaard a7a71e4f87
capture nuremberg-a firewall rules in pez-infra (#15) 
Add firewall_alpine role for Alpine hosts with iptables persistence
and fail2ban SSH jails. Wire it into nuremberg-a's deploy stage.

Mail ports are already exposed via Docker port mappings in the
poste-io docker-compose — this captures the surrounding iptables
and fail2ban config that was previously undocumented.

Closes PESO-96
2026-03-29 14:40:10 +01:00

9 lines
214 B
YAML
Raw Blame History

---
- name: Restore iptables
ansible.builtin.command: iptables-restore < /etc/iptables/rules-save
changed_when: true
- name: Restart fail2ban
ansible.builtin.service:
name: fail2ban
state: restarted
Reference in a new issue View git blame Copy permalink