ansible-roles/minifirewall
Jeremy Lecour e815a62112 minifirewall: git clone in /tmp
/usr is often mounted as read-only
2016-12-23 16:24:56 +01:00
..
defaults minifirewall: git clone in /tmp 2016-12-23 16:24:56 +01:00
tasks Squash: conventions, evolinux, etc-git… 2016-12-21 16:12:30 +01:00
README.md Squash: conventions, evolinux, etc-git… 2016-12-21 16:12:30 +01:00

minifirewall

Install minifirewall a simple and versatile local firewall.

The firewall is not started by default, but an init script is installed.

Tasks

Everything is in the tasks/main.yml file.

Available variables

  • minifirewall_int: which network interface to protect (default: detected default ipv4 interface)
  • minifirewall_ipv6_enabled: (default: on)
  • minifirewall_int_lan: (default: IP/32)
  • minifirewall_trusted_ips: with IP/hosts should be trusted for full access (default: none)
  • minifirewall_privilegied_ips: with IP/hosts should be trusted for restricted access (default: none)

Some IP/hosts must be configured or the server will be inaccessible via network.