25 lines
639 B
YAML
25 lines
639 B
YAML
# defaults file
|
|
---
|
|
ufw_default_incoming_policy: deny
|
|
ufw_default_outgoing_policy: allow
|
|
|
|
ufw_logging: 'off'
|
|
|
|
ufw_rules:
|
|
- rule: allow
|
|
interface: "{{ ansible_default_ipv4['interface'] }}"
|
|
to_port: 22
|
|
protocol: tcp
|
|
|
|
# /etc/default/ufw
|
|
ufw_etc_default_ipv6: true
|
|
ufw_etc_default_default_input_policy: DROP
|
|
ufw_etc_default_default_output_policy: ACCEPT
|
|
ufw_etc_default_default_forward_policy: DROP
|
|
ufw_etc_default_default_application_policy: SKIP
|
|
ufw_etc_default_manage_builtins: false
|
|
ufw_etc_default_ipt_sysctl: /etc/ufw/sysctl.conf
|
|
ufw_etc_default_ipt_modules:
|
|
- nf_conntrack_ftp
|
|
- nf_nat_ftp
|
|
- nf_conntrack_netbios_ns
|