Commit Graph

8 Commits

Author SHA1 Message Date
chris e74fca04a2 Update migration guide: add step to freeze current firewall rules and create ipt-server.yml for a.ns.oopen.de with initial configuration 2026-06-29 11:38:20 +02:00
chris ba5683864a Add sudo to iptables-save commands in migration guide for proper permissions 2026-06-29 08:20:02 +02:00
chris 1171d156b7 Add sudo to iptables-save commands in migration guide for proper permissions 2026-06-29 08:16:53 +02:00
chris 682a08b53e Refactor extract-fw-host-vars.py to improve quoted value handling and add fw_manage_config to generated YAML; create ipt-server.yml for a.mx.oopen.de with initial configuration 2026-06-29 08:13:40 +02:00
chris f149b09892 Refactor ipt-server role: update migration and README for hostname variable usage; remove obsolete ipt-server.yml for cloud-01.oopen.de 2026-06-27 22:38:12 +02:00
chris 7db2b7ee9b Update ipt-server role: specify hosts in ipt-server.yml and add configuration for cloud-01.oopen.de 2026-06-27 22:23:49 +02:00
chris 5a98895b66 Role ipt-server: rename 'host_vars/<server-name>/ipt_firewall.yml' to 'host_vars/<server-name>/ipt-server.yml'. 2026-06-27 02:32:15 +02:00
chris 9798ca9cd6 Add ipt-server role with firewall configuration and management
- Created handlers for reloading systemd and restarting firewall services.
- Implemented tasks to ensure the existence of configuration directories and files.
- Deployed host-specific and shared configuration files using templates.
- Added scripts for managing IPv4 and IPv6 firewalls.
- Configured systemd service units for ipt-firewall and ip6t-firewall.
- Enabled and started firewall services on system boot.
2026-06-26 19:30:01 +02:00