From 29bbc14068f0288c10112dc711b384df121de338 Mon Sep 17 00:00:00 2001
From: Alan Orth <alan.orth@gmail.com>
Date: Sat, 25 Apr 2020 13:54:50 +0300
Subject: [PATCH] roles/common: Remove ufw from Ubuntu systems

We never used this simple firewall utility and in at least one case
a user on the server tried to use it and messed up the rules I had
set via firewalld.
---
 roles/common/tasks/firewall_Ubuntu.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/roles/common/tasks/firewall_Ubuntu.yml b/roles/common/tasks/firewall_Ubuntu.yml
index c836d90..2946eb8 100644
--- a/roles/common/tasks/firewall_Ubuntu.yml
+++ b/roles/common/tasks/firewall_Ubuntu.yml
@@ -13,6 +13,10 @@
     when: ansible_distribution_version is version('16.04', '>=')
     apt: pkg={{ ubuntu_firewall_packages }} state=present
 
+  - name: Remove ufw
+    when: ansible_distribution_version is version('16.04', '>=')
+    apt: pkg=ufw state=absent
+
   - name: Copy firewalld public zone file
     when: ansible_distribution_version is version('16.04', '>=')
     template: src=public.xml.j2 dest=/etc/firewalld/zones/public.xml owner=root mode=0600