ryanc/ansible
1
0
Fork 0
Code Issues 4 Pull Requests Releases Wiki Activity
253 Commits 1 Branch 0 Tags 1.2 MiB
bbde030a57
Commit Graph

25 Commits

Author SHA1 Message Date
Ryan Cavicchioni
08441c5f5c
Use FQCN for IP utils 2022-08-30 22:30:13 -05:00
Ryan Cavicchioni
cd66cef7ad
Fix deprecated includes 2022-08-30 22:19:06 -05:00
Ryan Cavicchioni
621ae59e63
Use ipsets for the firewall 2022-08-30 07:22:53 -05:00
Ryan Cavicchioni
66312d4a90
Syslog firewall rules 2020-09-20 22:41:51 -05:00
Ryan Cavicchioni
63c737518b
InfluxDB rules 2020-09-20 22:41:25 -05:00
Ryan Cavicchioni
fef33bc4a9
whitespace 2020-09-20 22:40:39 -05:00
Ryan Cavicchioni
c7d8b074cf
DNS firewall rules 2020-09-20 22:40:03 -05:00
Ryan Cavicchioni
9e0ada65f2
teleport firewall rules 2020-09-20 22:35:20 -05:00
Ryan Cavicchioni
3b5c2242d1
add iptables whitelist for DNS 2020-01-01 11:19:19 -06:00
Ryan Cavicchioni
3d8e67e686
Simplify firewall IP and network lists 2019-11-28 22:47:59 -06:00
Ryan Cavicchioni
ce85694a58
Remove comment 2019-11-25 18:28:49 -06:00
Ryan Cavicchioni
4540766d80
Clean up ulogd.conf template 2019-11-25 18:24:14 -06:00
Ryan Cavicchioni
13d12faa86
Add iptable SSH whitelist 2019-11-24 19:10:21 -06:00
Ryan Cavicchioni
4ddd1ed439
Change default iptables policy 
We have a final reject rule and this will prevent disconnections during a reload
 2019-11-24 19:01:07 -06:00
Ryan Cavicchioni
b8c39416de
Install iptables 2019-11-24 18:55:55 -06:00
Ryan Cavicchioni
db3ccb5769
s/cooldown/cooloff/g 2019-09-02 17:54:36 +00:00
Ryan Cavicchioni
3e8161f350
Add default rules for OUTPUT and FORWARD chains 2019-09-02 17:54:06 +00:00
Ryan Cavicchioni
dbaebf70b8
Fix ulogd service names 2019-09-02 17:53:12 +00:00
Ryan Cavicchioni
e711ee3a22
Add nflog group for packet captures 2019-09-02 17:51:48 +00:00
Ryan Cavicchioni
a511491bdf
Add ulogd2 2019-09-02 17:50:56 +00:00
Ryan Cavicchioni
a44a6540ba
Use ipsets for cool off period 2019-08-30 02:34:58 +00:00
Ryan Cavicchioni
41c2343f75
Exclude loopback from conntrack 2019-08-30 00:33:49 +00:00
Ryan Cavicchioni
dfeed33f2b
Standardize iptables comments 2019-08-27 06:08:19 +00:00
Ryan Cavicchioni
39b526a6a4
Add SSH brute force and ICMP flood limitting, other improvements 2019-08-27 05:35:14 +00:00
Ryan Cavicchioni
b44f626df6
Add role for host based firewall 2019-08-25 02:06:19 +00:00