Base system.

author: Guilhem Moulin <guilhem@fripost.org> 2024-01-04 12:59:39 +0100
committer: Guilhem Moulin <guilhem@fripost.org> 2024-01-04 13:42:18 +0100
commit: 6691410f945719e62601c3d69d9b2ff9c4cfb4fb (patch)
tree: 9ea4170a6d5d50ac14a326f42fa8b13303734241 /tasks/firewall.yml
parent: 609574f51c5c08af71419bddc1be16ad5668882a (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/tasks/firewall.yml b/tasks/firewall.yml
new file mode 100644
index 0000000..fa46ade
--- /dev/null
+++ b/tasks/firewall.yml
@@ -0,0 +1,13 @@
+- name: Install nftables
+  apt: pkg=nftables
+
+- name: Configure nftables
+  copy: src=etc/nftables.conf
+        dest=/etc/nftables
+        owner=root group=root
+        mode=0644
+  notify:
+    - Restart nftables
+
+- name: Start nftables
+  service: name=nftables.service enabled=true state=started
author	Guilhem Moulin <guilhem@fripost.org>	2024-01-04 12:59:39 +0100
committer	Guilhem Moulin <guilhem@fripost.org>	2024-01-04 13:42:18 +0100
commit	6691410f945719e62601c3d69d9b2ff9c4cfb4fb (patch)
tree	9ea4170a6d5d50ac14a326f42fa8b13303734241 /tasks/firewall.yml
parent	609574f51c5c08af71419bddc1be16ad5668882a (diff)