Name: Stouts.iptables
Owner: Sauce Labs
Description: Ansible role which manage iptables rules
Created: 2018-04-19 18:29:32.0
Updated: 2018-04-19 18:29:34.0
Pushed: 2016-12-21 23:01:44.0
Homepage: null
Size: 27
Language: Shell
GitHub Committers
User | Most Recent Commit | # Commits |
---|
Other Committers
User | Most Recent Commit | # Commits |
---|
Ansible role which manage iptables
THe role variables and default values.
bles_enabled: yes # The role is enabled
bles_logging: yes # Log dropped packets
bles_deny_all : yes # deny all except allowed
bles_rules_path: /etc/iptables.rules # Path to rule file
bles_load_path: /etc/network/if-up.d/iptables_load # Set empty for prevent loading
bles_allowed_tcp_ports: [22, 25, 80, 443] # List of allowed tcp ports
bles_forwarded_tcp_ports: [] # Forward tcp ports
# Ex. iptables_forwarded_tcp_ports:
# - { from: 22, to: 2222 }
bles_allowed_udp_ports: [] # List of allowed udp ports
bles_forwarded_udp_ports: [] # Ex. iptables_forwarded_udp_ports:
# - { from: 22, to: 2222 }
bles_raw_rules: [] # List of raw rules
# Ex. iptables_raw_rules:
# - -A INPUT -i eth0 -p tcp -m tcp --dport 22 -j ACCEPT
# - -A INPUT -i eth0 -p tcp -m tcp --dport 80 -j ACCEPT
Add Stouts.iptables
to your roles and setup the variables in your playbook file.
Example:
sts: all
les:
- Stouts.iptables
rs:
iptables_allowed_tcp_ports: [22]
iptables_forwarded_tcp_ports:
- {from: 22, to: 2222}
Licensed under the MIT License. See the LICENSE file for details.
Are welcome!
If you wish to express your appreciation for the role, you are welcome to send a postcard to:
Kirill Klenov
pos. Severny 8-3
MO, Istra, 143500
Russia