ansible

Author	SHA1	Message	Date
Ryan Cavicchioni	3d8e67e686	Simplify firewall IP and network lists	2019-11-28 22:47:59 -06:00
Ryan Cavicchioni	4540766d80	Clean up ulogd.conf template	2019-11-25 18:24:14 -06:00
Ryan Cavicchioni	13d12faa86	Add iptable SSH whitelist	2019-11-24 19:10:21 -06:00
Ryan Cavicchioni	4ddd1ed439	Change default iptables policy We have a final reject rule and this will prevent disconnections during a reload	2019-11-24 19:01:07 -06:00
Ryan Cavicchioni	b8c39416de	Install iptables	2019-11-24 18:55:55 -06:00
Ryan Cavicchioni	db3ccb5769	s/cooldown/cooloff/g	2019-09-02 17:54:36 +00:00
Ryan Cavicchioni	dbaebf70b8	Fix ulogd service names	2019-09-02 17:53:12 +00:00
Ryan Cavicchioni	e711ee3a22	Add nflog group for packet captures	2019-09-02 17:51:48 +00:00
Ryan Cavicchioni	a511491bdf	Add ulogd2	2019-09-02 17:50:56 +00:00
Ryan Cavicchioni	a44a6540ba	Use ipsets for cool off period	2019-08-30 02:34:58 +00:00
Ryan Cavicchioni	41c2343f75	Exclude loopback from conntrack	2019-08-30 00:33:49 +00:00
Ryan Cavicchioni	dfeed33f2b	Standardize iptables comments	2019-08-27 06:08:19 +00:00
Ryan Cavicchioni	39b526a6a4	Add SSH brute force and ICMP flood limitting, other improvements	2019-08-27 05:35:14 +00:00
Ryan Cavicchioni	b44f626df6	Add role for host based firewall	2019-08-25 02:06:19 +00:00