From ca386aa41488b8702d5813b2964d8ce039f6ad2e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Krist=C3=B3f=20Torma?= <tormakristof@tormakristof.eu>
Date: Mon, 28 Aug 2023 09:49:07 +0200
Subject: [PATCH] add home range for 443

---
 group_vars/all.yaml             | 3 +++
 roles/webserver/tasks/main.yaml | 3 ++-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/group_vars/all.yaml b/group_vars/all.yaml
index 85822a1..80bd164 100644
--- a/group_vars/all.yaml
+++ b/group_vars/all.yaml
@@ -1,4 +1,7 @@
 ---
 ansible_become: true
 ansible_user: ansible@intra.tormakris.dev
+webgw_allowedranges:
+  - 192.168.69.0/24
+  - 192.168.1.0/24
 ...
diff --git a/roles/webserver/tasks/main.yaml b/roles/webserver/tasks/main.yaml
index c73d9e7..09fbc5b 100644
--- a/roles/webserver/tasks/main.yaml
+++ b/roles/webserver/tasks/main.yaml
@@ -3,7 +3,8 @@
   community.general.ufw:
     rule: allow
     port: https
-    src: 192.168.69.0/24
+    src: {{ item }}
+  with_items: "{{ webgw_allowedranges }}"
 
 - name: "Install Nginx via apt"
   ansible.builtin.apt: