Justin Plock
|
1d7986fd96
|
Enable UFW and deny everything by default
Removed unused status checks on UFW
|
10 jaren geleden |
Justin Plock
|
ea0b288818
|
Moved ufw firewall rules into individual roles
|
10 jaren geleden |
Justin Plock
|
3b0308d69e
|
Allow both TCP and UDP port 53 for DNS lookups through OpenVPN
|
10 jaren geleden |
Joost Baaij
|
335cef5c9f
|
Enabled POP3S for old-timeys who dig that
added dovecot-pop3d
allowed in the firewall
monitored with monit
added relevant tests
|
11 jaren geleden |
Joshua Lund
|
4ed07a1e0a
|
* Made the OpenVPN port and protocol (tcp/udp) configurable
* Added 'cipher' and 'auth' lines to the generated client configs
|
11 jaren geleden |
Luke Cyca
|
76d52b63f3
|
XMPP cert handling improvements, ufw rules, and tests
|
11 jaren geleden |
Luke Cyca
|
bdab1cd6b1
|
Reworked ufw logic to not use change_when keyword
because it's not available in a stable ansible release yet
|
11 jaren geleden |
Allen Riddell
|
5b8ba840a4
|
workaround ufw bug, call ufw enable twice
|
11 jaren geleden |
Allen Riddell
|
ae0d1ca8f4
|
Ignore ufw error resulting from known bug on Debian 7
In order to check the version of the linux distribution we need to
set `gather_facts` to True.
Closes #73.
|
11 jaren geleden |
Allen Riddell
|
88705bb7fa
|
Replace ferm with ufw
|
11 jaren geleden |