2019-08-30 20:43:52 +02:00
|
|
|
---
|
|
|
|
|
|
|
|
- name: Is there a Minifirewall ?
|
2023-03-20 23:33:19 +01:00
|
|
|
ansible.builtin.stat:
|
2019-08-30 20:43:52 +02:00
|
|
|
path: /etc/default/minifirewall
|
2019-09-06 23:49:40 +02:00
|
|
|
register: evobackup_client__minifirewall
|
2019-08-30 20:43:52 +02:00
|
|
|
tags:
|
2019-09-06 23:49:40 +02:00
|
|
|
- evobackup_client
|
|
|
|
- evobackup_client_backup_firewall
|
2019-08-30 20:43:52 +02:00
|
|
|
|
|
|
|
- name: Add backup SSH port in /etc/default/minifirewall
|
2023-03-20 23:33:19 +01:00
|
|
|
ansible.builtin.blockinfile:
|
2019-08-30 20:43:52 +02:00
|
|
|
dest: /etc/default/minifirewall
|
2019-10-07 18:28:25 +02:00
|
|
|
marker: "# {mark} {{ item.name }}"
|
2019-08-30 20:43:52 +02:00
|
|
|
block: |
|
2019-09-03 16:29:05 +02:00
|
|
|
/sbin/iptables -A INPUT -p tcp --sport {{ item.port }} --dport 1024:65535 -s {{ item.ip }} -m state --state ESTABLISHED,RELATED -j ACCEPT
|
2021-05-04 14:18:40 +02:00
|
|
|
loop: "{{ evobackup_client__hosts }}"
|
2019-09-23 21:26:30 +02:00
|
|
|
notify: restart minifirewall
|
2019-09-06 23:49:40 +02:00
|
|
|
when: evobackup_client__minifirewall.stat.exists
|
2019-08-30 20:43:52 +02:00
|
|
|
tags:
|
2019-09-06 23:49:40 +02:00
|
|
|
- evobackup_client
|
|
|
|
- evobackup_client_backup_firewall
|