de-it-krachten/ansible-role-firewall
1
0
Fork 0
mirror of https://github.com/de-it-krachten/ansible-role-firewall synced 2026-05-14 11:41:59 +00:00
Code Issues Projects Releases Packages Wiki Activity
No description
111 commits 2 branches 22 tags 213 KiB
  • Jinja 100%
Find a file
Exact
semantic-release-bot 76d734facd chore(release): 1.10.0 [skip ci] 
# [1.10.0](https://github.com/de-it-krachten/ansible-role-firewall/compare/v1.9.0...v1.10.0) (2026-03-15)

### Features

* Added support for Fedora 43 ([642e1a0](642e1a0371))
* Drop support for Fedora 41 ([e10b49b](e10b49bdfe))
* Drop support for openSUSE Leap 15 ([e880acc](e880acc2d4))
* Drop support for SUSE Linux Enterprise 15 ([b0cf38b](b0cf38b772))
2026-03-15 11:37:38 +00:00
.github/workflows Update CI 2026-03-14 19:30:47 +01:00
defaults fix: fix for alternative service name (Windows) 2025-01-21 15:52:16 +01:00
meta Update CI 2026-03-14 19:30:47 +01:00
molecule/default Update CI 2026-03-14 19:30:47 +01:00
tasks fix: fix for alternative service name (Windows) 2025-01-21 15:52:16 +01:00
.ansible-lint feat: Update CI to latest standards 2022-10-09 21:09:12 +02:00
.cicd Update CI 2026-03-06 22:36:32 +01:00
.cicd.overwrite Update CI 2026-03-14 19:30:47 +01:00
.collections feat: Add support for Windows (Defender Firewall) 2025-01-16 17:48:22 +01:00
.gitignore feat: Update supported platforms & CI 2024-12-29 01:58:27 +01:00
.releaserc.yml Update CI 2026-03-06 22:36:32 +01:00
.roles feat: Update CI to latest standards 2022-10-09 21:09:12 +02:00
.yamllint feat: Update supported platforms & CI 2024-12-29 01:58:27 +01:00
CHANGELOG.md chore(release): 1.10.0 [skip ci] 2026-03-15 11:37:38 +00:00
README.md Update CI 2026-03-14 19:30:47 +01:00

README.md

CI

ansible-role-firewall

Role to open firewall ports for incoming traffic. Supports firewalld, ufw, iptables and Windows firewall

Dependencies

Roles

  • deitkrachten.firewalld
  • deitkrachten.iptables
  • deitkrachten.ufw

Collections

  • ansible.posix
  • community.general
  • community.windows

Platforms

Supported platforms

  • Red Hat Enterprise Linux 81
  • Red Hat Enterprise Linux 91
  • Red Hat Enterprise Linux 101
  • RockyLinux 8
  • RockyLinux 9
  • RockyLinux 10
  • OracleLinux 8
  • OracleLinux 9
  • OracleLinux 10
  • AlmaLinux 8
  • AlmaLinux 9
  • AlmaLinux 10
  • Debian 11 (Bullseye)
  • Debian 12 (Bookworm)
  • Debian 13 (Trixie)
  • Ubuntu 20.04 LTS
  • Ubuntu 22.04 LTS
  • Ubuntu 24.04 LTS
  • Fedora 42
  • Fedora 43
  • Windows Server 2012 R21
  • Windows Server 20161
  • Windows Server 20191
  • Windows Server 20221

Note: 1 : no automated testing is performed on these platforms

Role Variables

defaults/main.yml


# List of posts to open
firewall_ports: []

# List of unsupported firewalls
firewall_type_unsupported:
  - nftables

# name of the windows firewall service
firewall_win_service_name: mpssvc
firewall_win_service_alt_name: MpsSvc

Example Playbook

molecule/default/converge.yml


- name: sample playbook for role 'firewall'
  hosts: all
  become: 'yes'
  vars:
    molecule_driver: '{{ lookup(''env'', ''MOLECULE_DRIVER_NAME'') }}'
    firewall_ports:
      - name: SSH
        port: '22'
        proto: tcp
      - name: DNS
        port: '53'
        proto: udp
  tasks:
    - name: Include role 'firewall'
      ansible.builtin.include_role:
        name: firewall