tpiccioli
/
ansible-roles
forked from ISTI-ansible-roles/ansible-roles
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

library/roles/iptables/templates/iptables-rules.v4.j2: If we are going to install letsencrypt, open the port 80/tcp to the world.

This commit is contained in:
Andrea Dell'Amico 2016-07-12 15:33:46 +02:00
parent 883a8b0826
commit 2544a66b68
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
iptables/templates/iptables-rules.v4.j2
View File

@ -41,6 +41,9 @@
-A INPUT -s {{ network.nmis }} -j ACCEPT -A INPUT -s {{ network.nmis }} -j ACCEPT
-A INPUT -s {{ network.eduroam }} -j ACCEPT -A INPUT -s {{ network.eduroam }} -j ACCEPT
{% endif %} {% endif %}
{% if letsencrypt_acme_install is defined and letsencrypt_acme_install %}
-A INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT
{% endif %}
{% if http_port is defined %} {% if http_port is defined %}
# http # http
{% if http_allowed_hosts is defined %} {% if http_allowed_hosts is defined %}