ansible-ffibk/roles/network-iptables-gateway
2018-09-18 14:27:58 +02:00
..
handlers Handlers: move all handlers into their roles, again 2018-03-01 06:34:55 +01:00
tasks Migrate all with_* loops to new loop directive 2018-09-18 14:27:58 +02:00
templates Role network-iptables-gateway: load module nf_conntrack at boot 2018-02-28 11:16:15 +01:00
vars Add role network-iptables-gateway 2017-10-02 11:18:16 +02:00
README.md Fix READMEs 2018-02-28 15:20:51 +01:00

Ansible role network-iptables-gateway

Diese Ansible role konfiguriert iptables Regeln für IPv4+IPv6 eines Freifunk Gateways.

  • installiert iptables+iptables-persistent
  • schreibt rules.v4 + rules.v6
  • setzt netfilter sysctl parameter

Benötigte Variablen

  • List sysctl_settings_netfilter (Rollen Variable)
sysctl_settings_netfilter:
  - name:       # sysctl-Parameter
    value:      # zu setzender Wert

´´´
- Dictionary `meshes`
´´´
meshes:
  - id: xx
...
    ipv4_network:
...
  • Variable internet_exit_tcp_mss_ipv4
  • Variable internet_exit_tcp_mss_ipv6
  • Host Variable ffrl_public_ipv4_nat # Format ip-adresse/prefix