Daniele Tricoli
|
01df40a16c
|
Move roles to root directory
|
2020-08-27 16:37:23 +02:00 |
|
Daniele Tricoli
|
8c50206692
|
Reload rspamd
|
2020-06-18 00:51:42 +02:00 |
|
Daniele Tricoli
|
da013c26e9
|
Add mailserver role
|
2020-06-16 02:13:12 +02:00 |
|
Daniele Tricoli
|
ab93783b5e
|
Don't use host's resolver
Revert d9b147bf .
|
2020-06-14 22:47:51 +02:00 |
|
Daniele Tricoli
|
bd7eccbc8a
|
Set cache_valid_time to 3600 when using apt module
|
2020-05-01 22:28:04 +02:00 |
|
Daniele Tricoli
|
ddada41ed4
|
Add snake-oil-dehydrated role
|
2020-05-01 14:02:30 +02:00 |
|
Daniele Tricoli
|
87df2c92fa
|
Move nftables.conf in the proper place
|
2020-05-01 12:06:22 +02:00 |
|
Daniele Tricoli
|
db29441ee0
|
Switch to nftables
|
2020-04-27 01:40:42 +02:00 |
|
Daniele Tricoli
|
1c045aab9e
|
Add weechat
|
2020-04-26 05:24:53 +02:00 |
|
Daniele Tricoli
|
b64bb016a9
|
Rename
|
2020-04-26 04:26:17 +02:00 |
|
Daniele Tricoli
|
d2722e92a2
|
Restert sshd after configuration changes
|
2020-03-15 04:30:25 +01:00 |
|
Daniele Tricoli
|
d9b147bff3
|
Forward DNS requests to host's resolver
|
2020-03-13 01:19:36 +01:00 |
|
Daniele Tricoli
|
a4b93f56ae
|
Cache apt for 1 hour
|
2020-03-13 00:15:40 +01:00 |
|
Daniele Tricoli
|
32159e1d86
|
Add a common role to install various needed packages
|
2020-02-22 17:00:07 +01:00 |
|
Daniele Tricoli
|
ad53dcca22
|
Open incoming 22 port if knockd doesn't manage it
|
2020-02-21 02:27:02 +01:00 |
|
Daniele Tricoli
|
4bea943c2e
|
Make yamllint happy
|
2020-02-21 00:45:23 +01:00 |
|
Daniele Tricoli
|
b023da701c
|
Better name for task
|
2020-02-18 03:32:30 +01:00 |
|
Daniele Tricoli
|
ae605d21a4
|
Enable incoming ssh in iptables only when not managed by knockd
|
2020-02-18 03:04:17 +01:00 |
|
Daniele Tricoli
|
71193745d2
|
Use string type in port definition
|
2020-02-15 16:31:25 +01:00 |
|
Daniele Tricoli
|
607a72315c
|
Make yamllint happy
|
2020-02-13 00:02:07 +01:00 |
|
Daniele Tricoli
|
5790918169
|
Make ansible-lint happy
|
2020-02-12 23:47:58 +01:00 |
|
Daniele Tricoli
|
0106673865
|
Add fail2ban role
|
2020-02-12 03:23:25 +01:00 |
|
Daniele Tricoli
|
8f8cf12054
|
Explicit signal the start of the document
|
2020-02-12 00:26:57 +01:00 |
|
Daniele Tricoli
|
a5b7e26b1e
|
Add knockd role
|
2020-02-11 02:39:30 +01:00 |
|
Daniele Tricoli
|
b558e6aa3f
|
Harden openssh-server
|
2020-02-08 01:13:22 +01:00 |
|
Daniele Tricoli
|
955bf7fc70
|
Initial import for openssh-server
|
2020-01-30 01:15:12 +01:00 |
|
Daniele Tricoli
|
a977f0ce04
|
Disable iptables' rules flush
|
2020-01-30 01:13:21 +01:00 |
|
Daniele Tricoli
|
767af3f9eb
|
Install iptables-persistent and netfilter-persistent
|
2020-01-30 00:14:27 +01:00 |
|
Daniele Tricoli
|
92fe04a523
|
Add DNS and HTTP rules
For outbound traffic, from vm to outside.
|
2020-01-30 00:03:47 +01:00 |
|
Daniele Tricoli
|
eb67da25ca
|
Split rules in multiple files
|
2020-01-30 00:02:45 +01:00 |
|
Daniele Tricoli
|
968a190099
|
Initial import for iptables
|
2020-01-29 02:45:17 +01:00 |
|
Daniele Tricoli
|
0df9d57a53
|
Use always Python3
|
2020-01-19 19:00:53 +01:00 |
|
Daniele Tricoli
|
18bb1dd728
|
Initial commit
|
2020-01-19 15:07:25 +00:00 |
|