Browse Source

Add firewall and services to playbook

devel
Christian Martin 7 years ago
committed by GitHub
parent
commit
cdb9af3661
1 changed files with 53 additions and 0 deletions
  1. +53
    -0
      build-scripts/playbook.yml

+ 53
- 0
build-scripts/playbook.yml View File

@ -23,3 +23,56 @@
- vim - vim
# need to get anaconda install class for TigerOS possibly # need to get anaconda install class for TigerOS possibly
#- letsencrypt #- letsencrypt
- name: Allow HTTPS (nginx)
firewalld:
service: https
permanent: true
state: enabled
- name: Allow HTTP (nginx)
firewalld:
service: http
permanent: true
state: enabled
- name: Allow SSH access
firewalld:
service: ssh
permanent: true
state: enabled
- name: Allow 8080 (Jenkins)
firewalld:
port: 8080/tcp
permanent: true
state: enabled
- name: Allow Cockpit
firewalld:
service: cockpit
permanent: true
state: enabled
- name: Enable nginx service
systemd:
name: nginx
enabled: yes
state: started
- name: Enable Jenkins service
systemd:
name: jenkins
enabled: yes
state: started
- name: Enable Cockpit service
systemd:
name: cockpit
enabled: yes
state: started
- name: Enable sshd (openssh-server) service
systemd:
name: sshd
enabled: yes
state: started
- name: Enable fail2ban service
systemd:
name: fail2ban
enabled: yes
state: started
- name: Reload Firewall
command: firewall-cmd --reload
become: true

Loading…
Cancel
Save