diff options
| author |  MarkKoz <[email protected]> | 2022-01-11 14:18:04 -0800 |
|---|---|---|
| committer | MarkKoz <[email protected]> | 2022-01-11 14:18:04 -0800 |
| commit | ef3c2987c979994d90dcb8c9ce4547a361f8aae9 (patch) | |
| tree | 11102684c46c9689f6ed112e9d87fc7d23f25aa2 /roles | |
| parent | Add basic UFW rules (diff) | |
Ensure SSH is allowed before setting default deny
Ansible relies on SSH, so it's good to ensure that's allowed before
blocking everything else.
Diffstat (limited to 'roles')
| -rw-r--r-- | roles/ufw/tasks/main.yml | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/roles/ufw/tasks/main.yml b/roles/ufw/tasks/main.yml index ff437f3..00749d2 100644 --- a/roles/ufw/tasks/main.yml +++ b/roles/ufw/tasks/main.yml @@ -1,13 +1,13 @@ -- name: Enable UFW and deny all traffic by default - community.general.ufw: - state: enabled - policy: deny - - name: Allow OpenSSH community.general.ufw: rule: allow name: OpenSSH +- name: Enable UFW and deny all traffic by default + community.general.ufw: + state: enabled + policy: deny + - name: Allow WireGuard community.general.ufw: rule: allow |