changed persistence method of firewall rules

This commit is contained in:
Tanguy MAZE
2018-12-14 14:58:11 +01:00
parent 338c41e8ca
commit cd36bf1e13
7 changed files with 26 additions and 58 deletions

View File

@@ -4,12 +4,26 @@
become_user: root
become_method: su
tasks:
- name: "Create iptables directory"
file:
path: "/etc/iptables"
state: "directory"
- name: "Upload firewall config"
copy:
src: "files/firewall.conf"
dest: "/etc/iptables/rules.v4"
owner: "root"
group: "root"
- name: "Set up networking"
copy:
src: "files/interfaces"
dest: "/etc/network/"
owner: "root"
group: "root"
- name: "Restart networking service"
service:
name: "networking"
state: "restarted"
- name: "Upload ssh config"
copy:
src: "files/sshd_config"
@@ -17,16 +31,12 @@
owner: "root"
group: "root"
tags: [ "ssh" ]
- name: "Restart ssh service"
service:
name: "ssh"
state: "restarted"
- name: "Upload public key for tanguy"
authorized_key:
user: "tanguy"
state: "present"
key: "{{ lookup('file', '~/.ssh/id_rsa.pub') }}"
- name: "Restart networking service"
- name: "Restart ssh service"
service:
name: "networking"
name: "ssh"
state: "restarted"