WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-05-01 05:51:56 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
3782dad657e4e3f6a0263de4d8fec00a0669de4a
fedora-infra_ansible/roles/os_firewall/README.md
Adam Miller 9c028cb242 import os_firewall role from openshift-ansible
2015-08-05 16:35:47 +00:00

67 lines
1.3 KiB
Markdown
Raw Blame History

OS Firewall
===========
OS Firewall manages firewalld and iptables firewall settings for a minimal use
case (Adding/Removing rules based on protocol and port number).
Requirements
------------
None.
Role Variables
--------------
| Name | Default | |
|---------------------------|---------|----------------------------------------|
| os_firewall_use_firewalld | True | If false, use iptables |
| os_firewall_allow | [] | List of service,port mappings to allow |
| os_firewall_deny | [] | List of service, port mappings to deny |
Dependencies
------------
None.
Example Playbook
----------------
Use iptables and open tcp ports 80 and 443:
```
---
- hosts: servers
vars:
os_firewall_use_firewalld: false
os_firewall_allow:
- service: httpd
port: 80/tcp
- service: https
port: 443/tcp
roles:
- os_firewall
```
Use firewalld and open tcp port 443 and close previously open tcp port 80:
```
---
- hosts: servers
vars:
os_firewall_allow:
- service: https
port: 443/tcp
os_firewall_deny:
- service: httpd
port: 80/tcp
roles:
- os_firewall
```
License
-------
Apache License, Version 2.0
Author Information
------------------
Jason DeTiberus - jdetiber@redhat.com
Reference in New Issue View Git Blame Copy Permalink