initial commit

tasks/install.yml

@@ -0,0 +1,35 @@
+---
+- name: firewall | apt update cache
+  apt:
+    update_cache: yes
+    cache_valid_time: 86400 #One day
+
+- name: firewall | install iptables packages
+  apt:
+    name:
+      - iptables
+    state: present
+
+- name: firewall | copy script
+  template:
+    src: "firewall.j2"
+    dest: "/usr/local/bin/firewall"
+    mode: "0755"
+    force: yes
+  notify:
+    - restart firewall
+
+- name: firewall | copy systemd unit file
+  copy:
+    src: "firewall.service"
+    dest: "/lib/systemd/system/firewall.service"
+    mode: "0644"
+    force: yes
+  notify:
+    - restart firewall
+
+- name: fireall | enable on boot
+  systemd: 
+    name: firewall
+    enabled: yes
+    masked: no

tasks/main.yml

@@ -0,0 +1,6 @@
+---
+- name: requirements
+  include_tasks: requirements.yml
+
+- name: install
+  include_tasks: install.yml

tasks/requirements.yml

@@ -0,0 +1,5 @@
+---
+- name: firewall | apt update cache
+  apt:
+    update_cache: yes
+    cache_valid_time: 86400