fixed forwarding

added ufw
2026-04-27 17:31:03 +02:00 · 2026-04-27 17:22:33 +02:00
3 changed files with 56 additions and 0 deletions
@@ -50,6 +50,16 @@
            "panel": "dedicated"
        }
    },
+    {
+        "label": "Deploy: ufw",
+        "type": "shell",
+        "command": "make deploy-ufw",
+        "group": "build",
+        "presentation": {
+            "reveal": "always",
+            "panel": "dedicated"
+        }
+    },
    {
        "label": "Build & Push: postfix",
        "type": "shell",
@@ -0,0 +1,44 @@
+- name: Nginx
+  hosts: pi
+  become: true
+  tasks:
+    - name: Install ufw
+      ansible.builtin.apt:
+        name: ufw
+        state: present
+
+    - name: Allow SSH
+      community.general.ufw:
+        rule: allow
+        name: OpenSSH
+        route: true
+
+    - name: UFW - Allow HTTP connections
+      community.general.ufw:
+        rule: allow
+        port: "80"
+        proto: tcp
+        route: true
+
+    - name: UFW - Allow HTTPS connections
+      community.general.ufw:
+        rule: allow
+        port: "443"
+        proto: tcp
+        route: true
+
+    - name: UFW - Allow gitbee ssh
+      community.general.ufw:
+        rule: allow
+        port: "2222"
+        proto: tcp
+        route: true
+
+    - name: UFW - Enable and deny by default
+      community.general.ufw:
+        state: enabled
+        default: deny
+
+    - name: UFW - Reload firewall
+      changed_when: true
+      ansible.builtin.command: ufw reload
@@ -0,0 +1,2 @@
+collections:
+  - name: community.general
Author	SHA1	Message	Date
bee	645c0389fb	fixed forwarding	2026-04-27 17:31:03 +02:00
bee	4058d2b108	added ufw	2026-04-27 17:22:33 +02:00