kowabunga.cloud.firewall role – Install, configure, and start iptables-based firewall.

Note

This role is part of the kowabunga.cloud collection (version 0.0.1).

It is not included in ansible-core. To check whether it is installed, run ansible-galaxy collection list.

To install it use: ansible-galaxy collection install kowabunga.cloud.

To use it in a playbook, specify: kowabunga.cloud.firewall.

Entry point main – Install, configure, and start iptables-based firewall.

Synopsis

• Install, configure, and start iptables-based firewall.

Parameters

Parameter	Comments
kowabunga_firewall_enabled boolean	Turn on iptables on public (i.e. Internet-facing) network interface. Useless if no public network interface is to be found. Setup a deny-all filtering policy, with blocked ICMP requests and explicitly opened UDP/TCP ports. Private network interface remains unfiltered. Choices: false ← (default) true
kowabunga_firewall_open_tcp_ports list / elements=integer	List of TCP ports to be explictly opened on network firewall. Default: []
kowabunga_firewall_open_udp_ports list / elements=integer	List of UDP ports to be explictly opened on network firewall. Default: []

Collection links

• Repository (Sources)