Re-add previous ansible roles

Co-authored-by: Hassan Abouelela <[email protected]> Co-authored-by: Johannes Christ <[email protected]> Co-authored-by: Joe Banks <[email protected]> Co-authored-by: MarkKoz <[email protected]>
author: Chris Lovering <[email protected]> 2023-06-01 22:40:36 +0100
committer: ChrisJL <[email protected]> 2023-07-24 14:42:09 +0100
commit: 0d8bb6829dfe9358ad29ac7f0bf9ef80fd553e3d (patch)
tree: 5b586b477335e08d5f8b6e9f62f59599c1c2cade /roles/nginx-ufw
parent: Remove bad default fail2ban ignore IP (diff)
3 files changed, 14 insertions, 0 deletions
diff --git a/roles/nginx-ufw/README.md b/roles/nginx-ufw/README.md
new file mode 100644
index 0000000..e657afb
--- /dev/null
+++ b/roles/nginx-ufw/README.md
@@ -0,0 +1,3 @@
+# Role "nginx-ufw"
+
+Allows NGINX HTTP and HTTPS traffic through the UFW firewall.
diff --git a/roles/nginx-ufw/meta/main.yml b/roles/nginx-ufw/meta/main.yml
new file mode 100644
index 0000000..dac7049
--- /dev/null
+++ b/roles/nginx-ufw/meta/main.yml
@@ -0,0 +1,4 @@
+---
+dependencies:
+  - nginx
+  - ufw
diff --git a/roles/nginx-ufw/tasks/main.yml b/roles/nginx-ufw/tasks/main.yml
new file mode 100644
index 0000000..fb703bf
--- /dev/null
+++ b/roles/nginx-ufw/tasks/main.yml
@@ -0,0 +1,7 @@
+---
+- name: Allow http(s) traffic through the firewall
+  ufw:
+    app: Nginx Full
+    rule: allow
+  tags:
+    - role::nginx-ufw
author	Chris Lovering <[email protected]>	2023-06-01 22:40:36 +0100
committer	ChrisJL <[email protected]>	2023-07-24 14:42:09 +0100
commit	0d8bb6829dfe9358ad29ac7f0bf9ef80fd553e3d (patch)
tree	5b586b477335e08d5f8b6e9f62f59599c1c2cade /roles/nginx-ufw
parent	Remove bad default fail2ban ignore IP (diff)