1 files changed, 13 insertions, 0 deletions

diff --git a/tasks/firewall.yml b/tasks/firewall.yml
new file mode 100644
index 0000000..fa46ade
--- /dev/null
+++ b/tasks/firewall.yml
@@ -0,0 +1,13 @@
+- name: Install nftables
+  apt: pkg=nftables
+
+- name: Configure nftables
+  copy: src=etc/nftables.conf
+        dest=/etc/nftables
+        owner=root group=root
+        mode=0644
+  notify:
+    - Restart nftables
+
+- name: Start nftables
+  service: name=nftables.service enabled=true state=started