ansible

Author	SHA1	Message	Date
Ryan Cavicchioni	621ae59e63	Use ipsets for the firewall	2022-08-30 07:22:53 -05:00
Ryan Cavicchioni	66312d4a90	Syslog firewall rules	2020-09-20 22:41:51 -05:00
Ryan Cavicchioni	63c737518b	InfluxDB rules	2020-09-20 22:41:25 -05:00
Ryan Cavicchioni	fef33bc4a9	whitespace	2020-09-20 22:40:39 -05:00
Ryan Cavicchioni	c7d8b074cf	DNS firewall rules	2020-09-20 22:40:03 -05:00
Ryan Cavicchioni	9e0ada65f2	teleport firewall rules	2020-09-20 22:35:20 -05:00
Ryan Cavicchioni	3b5c2242d1	add iptables whitelist for DNS	2020-01-01 11:19:19 -06:00
Ryan Cavicchioni	3d8e67e686	Simplify firewall IP and network lists	2019-11-28 22:47:59 -06:00
Ryan Cavicchioni	ce85694a58	Remove comment	2019-11-25 18:28:49 -06:00
Ryan Cavicchioni	4540766d80	Clean up ulogd.conf template	2019-11-25 18:24:14 -06:00
Ryan Cavicchioni	13d12faa86	Add iptable SSH whitelist	2019-11-24 19:10:21 -06:00
Ryan Cavicchioni	4ddd1ed439	Change default iptables policy We have a final reject rule and this will prevent disconnections during a reload	2019-11-24 19:01:07 -06:00
Ryan Cavicchioni	b8c39416de	Install iptables	2019-11-24 18:55:55 -06:00
Ryan Cavicchioni	db3ccb5769	s/cooldown/cooloff/g	2019-09-02 17:54:36 +00:00
Ryan Cavicchioni	3e8161f350	Add default rules for OUTPUT and FORWARD chains	2019-09-02 17:54:06 +00:00
Ryan Cavicchioni	dbaebf70b8	Fix ulogd service names	2019-09-02 17:53:12 +00:00
Ryan Cavicchioni	e711ee3a22	Add nflog group for packet captures	2019-09-02 17:51:48 +00:00
Ryan Cavicchioni	a511491bdf	Add ulogd2	2019-09-02 17:50:56 +00:00
Ryan Cavicchioni	a44a6540ba	Use ipsets for cool off period	2019-08-30 02:34:58 +00:00
Ryan Cavicchioni	41c2343f75	Exclude loopback from conntrack	2019-08-30 00:33:49 +00:00
Ryan Cavicchioni	dfeed33f2b	Standardize iptables comments	2019-08-27 06:08:19 +00:00
Ryan Cavicchioni	39b526a6a4	Add SSH brute force and ICMP flood limitting, other improvements	2019-08-27 05:35:14 +00:00
Ryan Cavicchioni	b44f626df6	Add role for host based firewall	2019-08-25 02:06:19 +00:00

23 Commits