From 71e36164cae64494cdb91f537d65821c8e2e00f8 Mon Sep 17 00:00:00 2001 From: Matthew Fennell Date: Sun, 7 Jan 2024 11:56:42 +0000 Subject: Open ports for OpenSSH, WWW and XMPP This commit enables the necessary ports for XMPP, web hosting (to allow certbot to renew automatically) and SSH. --- README.md | 2 +- playbook.yaml | 10 ++++++++++ 2 files changed, 11 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index 2cbab87..4547009 100644 --- a/README.md +++ b/README.md @@ -17,7 +17,7 @@ deployments. Set up a server with the following things configured: -* SSH access +* SSH access to a user that can become root * DNS records (see [Prosody's docs](https://prosody.im/doc/dns) for more info) * `python3` installed diff --git a/playbook.yaml b/playbook.yaml index 85b5e50..503d3ae 100644 --- a/playbook.yaml +++ b/playbook.yaml @@ -16,3 +16,13 @@ - python3-certbot-apache - ufw state: present + - name: Ensure required ports are open + community.general.ufw: + rule: allow + name: "{{ item }}" + state: enabled + loop: + - OpenSSH + - WWW + - XMPP + become: true -- cgit v1.2.3