From bb45e86c197d89438151ee1e685a724abb79603b Mon Sep 17 00:00:00 2001
From: Opnxng <opnxng@tuta.io>
Date: Sat, 25 May 2024 14:25:38 +0800
Subject: [PATCH] Modified ufw role

---
 roles/ufw-opnxng/templates/user.rules.j2 | 3 +++
 set-up.yaml                              | 4 ++--
 2 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/roles/ufw-opnxng/templates/user.rules.j2 b/roles/ufw-opnxng/templates/user.rules.j2
index 480ec22..f82ecfd 100644
--- a/roles/ufw-opnxng/templates/user.rules.j2
+++ b/roles/ufw-opnxng/templates/user.rules.j2
@@ -20,6 +20,9 @@
 ### tuple ### allow tcp {{ ssh_port }} 0.0.0.0/0 any {{ wireguard_mesh_subnet }}/16 in
 -A ufw-user-input -p tcp --dport {{ ssh_port }} -s {{ wireguard_mesh_subnet }}/16 -j ACCEPT
 
+### tuple ### allow tcp 8080 0.0.0.0/0 any {{ oracle_ipv4_cidr_block }}/16 in
+-A ufw-user-input -p tcp --dport 8080 -s {{ oracle_ipv4_cidr_block }}/16 -j ACCEPT
+
 ### tuple ### allow tcp 8870 0.0.0.0/0 any {{ oracle_ipv4_cidr_block }}/16 in
 -A ufw-user-input -p tcp --dport 8870 -s {{ oracle_ipv4_cidr_block }}/16 -j ACCEPT
 
diff --git a/set-up.yaml b/set-up.yaml
index eea713a..3fef297 100644
--- a/set-up.yaml
+++ b/set-up.yaml
@@ -40,10 +40,10 @@
 #    - timezone
 #    - chrony
 #    - hostname
-    - systemd-resolved
+#    - systemd-resolved
 #    - sources-list
 #    - ssh
-#    - ufw-opnxng
+    - ufw-opnxng
 #    - fail2ban
 #    - unattended-upgrades
 #    - nfs-opnxng