search

ho-ansible / iptables

Ansible role: iptables firewall config
MIT License
0 stars 0 forks source link

modular rule management #2

Closed seanho00 closed 6 years ago

seanho00 commented 6 years ago

Instead of managing filter rules (ssh, nginx, VPN, etc.) from one central role, use ansible lineinfile to insert rules into /etc/iptables/rules.v[46].

seanho00 commented 6 years ago

https://github.com/mikegleasonjr/ansible-role-firewall is not quite what I need; I have multiple groups whose rules need to be merged.

seanho00 commented 6 years ago

Alternatively, don't template rules.v[46] at all, and use ansible iptables module to add each rule individually, in various roles as needed.

Call iptables-persistent handler to save changes for next reboot.