add allowed range to ssh

2023-08-28 09:55:03 +02:00 · 2023-08-28 09:55:03 +02:00 · 85fb26bf52
commit 85fb26bf52
parent e924d3e33c
3 changed files with 4 additions and 3 deletions
--- a/group_vars/all.yaml
+++ b/group_vars/all.yaml
@ -1,7 +1,7 @@
 ---
 ansible_become: true
 ansible_user: ansible@intra.tormakris.dev
-webgw_allowedranges:
+allowedranges:
  - 192.168.69.0/24
  - 192.168.1.0/24
 ...
--- a/roles/common/tasks/ufw.yaml
+++ b/roles/common/tasks/ufw.yaml
@ -18,5 +18,6 @@
  community.general.ufw:
    rule: allow
    port: ssh
-    src: 192.168.69.0/24
+    src: "{{ item }}"
  with_items: "{{ allowedranges }}"
 ...
--- a/roles/webserver/tasks/main.yaml
+++ b/roles/webserver/tasks/main.yaml
@ -4,7 +4,7 @@
    rule: allow
    port: https
    src: "{{ item }}"
-  with_items: "{{ webgw_allowedranges }}"
+  with_items: "{{ allowedranges }}"
 - name: "Install Nginx via apt"
  ansible.builtin.apt: