v4l3n71n/covas-deployment
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

firewall rules for postgresql and redis

Browse Source
This commit is contained in:
Valentin CZERYBA 2022-10-06 22:29:53 +02:00
parent 73b5b7b867
commit 10f4f4863a
2 changed files with 43 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
start-server/tasks/main.yml
View File

@ -46,4 +46,24 @@
- name: debug output - name: debug output
debug: debug:
var: output var: output
- name: Allow port postgresql
ansible.builtin.iptables:
chain: INPUT
protocol: tcp
destination_port: 54321
jump: ACCEPT
state: present
become: yes
become_method: sudo
- name: Allow port redis
ansible.builtin.iptables:
chain: INPUT
protocol: tcp
destination_port: 63791
jump: ACCEPT
state: present
become: yes
become_method: sudo

22
stop-server/tasks/main.yml
View File

@ -1,6 +1,27 @@
--- ---
# tasks file for server # tasks file for server
- name: Disallow port postgresql
ansible.builtin.iptables:
chain: INPUT
protocol: tcp
destination_port: 54321
jump: ACCEPT
state: absent
become: yes
become_method: sudo
- name: Disallow port redis
ansible.builtin.iptables:
chain: INPUT
protocol: tcp
destination_port: 63791
jump: ACCEPT
state: absent
become: yes
become_method: sudo
- name: Stopping existing service - name: Stopping existing service
community.docker.docker_compose: community.docker.docker_compose:
project_src: /home/valentin/db project_src: /home/valentin/db
@ -11,3 +32,4 @@
- name: Debug output - name: Debug output
debug: debug:
var: output var: output