sebastian.serfling
/
Ansible
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Ansible/playbook/roles/firewall-proxmox/tasks/main.yaml

18 lines
828 B
YAML
Raw Permalink Blame History

- name: Ping to Host "{{ inventory_hostname }}"
ansible.builtin.ping:
- name: ADD Firewall Role Ports 22,8006 for Primary Interface
ansible.builtin.shell:
iptables -t nat -A PREROUTING -i $(ip route get 8.8.8.8 | sed -n 's/.* dev \([^\ ]*\) .*/\1/p') -p tcp -m multiport ! --dport 22,8006 -j DNAT --to 10.0.0.2
- name: ADD Firewall Role Ports UDP for Primary Interface
ansible.builtin.shell:
iptables -t nat -A PREROUTING -i $(ip route get 8.8.8.8 | sed -n 's/.* dev \([^\ ]*\) .*/\1/p') -p udp -j DNAT --to 10.0.0.2
- name: ADD Firewall Role Privat Network
ansible.builtin.shell:
iptables -t nat -A POSTROUTING -s '10.0.0.0/30' -o $(ip route get 8.8.8.8 | sed -n 's/.* dev \([^\ ]*\) .*/\1/p') -j MASQUERADE
- name: ADD IPv4 Forwarding
ansible.builtin.shell:
echo 1 > /proc/sys/net/ipv4/ip_forward
Reference in New Issue View Git Blame Copy Permalink