Modified ufw role

2024-05-25 14:25:38 +08:00 · 2024-05-25 14:25:38 +08:00 · bb45e86c19
commit bb45e86c19
parent 037fce2d51
2 changed files with 5 additions and 2 deletions
--- a/roles/ufw-opnxng/templates/user.rules.j2
+++ b/roles/ufw-opnxng/templates/user.rules.j2
@ -20,6 +20,9 @@
 ### tuple ### allow tcp {{ ssh_port }} 0.0.0.0/0 any {{ wireguard_mesh_subnet }}/16 in
 -A ufw-user-input -p tcp --dport {{ ssh_port }} -s {{ wireguard_mesh_subnet }}/16 -j ACCEPT

+### tuple ### allow tcp 8080 0.0.0.0/0 any {{ oracle_ipv4_cidr_block }}/16 in
+-A ufw-user-input -p tcp --dport 8080 -s {{ oracle_ipv4_cidr_block }}/16 -j ACCEPT
+
 ### tuple ### allow tcp 8870 0.0.0.0/0 any {{ oracle_ipv4_cidr_block }}/16 in
 -A ufw-user-input -p tcp --dport 8870 -s {{ oracle_ipv4_cidr_block }}/16 -j ACCEPT

--- a/set-up.yaml
+++ b/set-up.yaml
@ -40,10 +40,10 @@
 #    - timezone
 #    - chrony
 #    - hostname
-    - systemd-resolved
+#    - systemd-resolved
 #    - sources-list
 #    - ssh
-#    - ufw-opnxng
+    - ufw-opnxng
 #    - fail2ban
 #    - unattended-upgrades
 #    - nfs-opnxng