roles/clients/tasks/firewall.yml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17

- name: Fermeture des ports de services
  firewalld: service={{ item[0] }} permanent={{ item[1] }} state=disabled
  with_nested:
    - [ 'dhcpv6-client', 'mdns', 'samba-client' ]
    - [ 'true', 'false' ]
  when: ansible_distribution == "Fedora"

- name: Fermeture du port SSH après reboot
  firewalld: service=ssh permanent=true state=disabled
  when: ansible_distribution == "Fedora"

- name: Fermeture des plages de port
  firewalld: port={{ item[0] }} permanent={{ item[1] }} state=disabled
  with_nested:
    - [ '1025-65535/tcp', '1025-65535/udp' ]
    - [ 'true', 'false' ]
  when: ansible_distribution == "Fedora"