alanorth/ansible-personal
1
0
Fork 0
Code Issues 4 Pull Requests Projects Releases Wiki Activity
9bba0d96bb
ansible-personal/roles/common/templates
History
Alan Orth 9bba0d96bb
roles/common: Add initial support for nftables on Debian 11 
I will try using nftables directly instead of via firewalld as of
Debian 11 as it is the replacement for the iptables/ipset stack in
recent years and is easier to work with.

This also includes a systemd service, timer, and script to update
the spamhaus DROP lists as nftables sets.

Still need to add fail2ban support.
2021-07-26 13:09:41 +03:00
..
etc roles/common: Remove storage-specific tweaks 2020-07-14 09:10:07 +03:00
nftables.conf.j2 roles/common: Add initial support for nftables on Debian 11 2021-07-26 13:09:41 +03:00
public.xml.j2 roles/common: Add Spamhaus DROP lists to firewalld ipsets 2021-07-21 09:34:51 +03:00
rc.local_Ubuntu.j2 roles/common: Remove I/O scheduler logic from rc.local 2015-03-15 17:40:54 +03:00
security.sources.list.j2 roles/common: Update security.sources.list for cron-apt 2019-07-06 21:16:19 +03:00
sources.list.j2 roles/common: Remove buster-backports 2019-10-18 22:56:52 +03:00
sshd_config_Debian-10.j2 roles/common: Increase ssh MaxAuthTries from 3 to 4 2019-09-15 15:17:00 +03:00
sshd_config_Debian-11.j2 roles/common: Add encryption settings to Debian 11 sshd_config 2021-07-24 22:28:59 +03:00
sshd_config_Ubuntu-18.04.j2 roles/common: Increase ssh MaxAuthTries from 3 to 4 2019-09-15 15:17:00 +03:00
sshd_config_Ubuntu-20.04.j2 roles/common: Update KexAlgorithms in Ubuntu 20.04 sshd_config 2021-07-22 12:57:31 +03:00
sysctl_Debian.j2 roles/common: Add sysctl template for Debian hosts 2015-08-23 00:12:17 +03:00
sysctl_Ubuntu.j2 roles/common: Remove logic for TCP congestion avoidance on early kernels in sysctl 2015-03-15 17:25:33 +03:00
tarsnap_sources.list.j2 roles/common: Use stable tarsnap 2019-09-13 22:14:49 +03:00