Add pterodactyl rules
This commit is contained in:
parent
3a5d9bc778
commit
8df43c3391
2 changed files with 19 additions and 1 deletions
10
network/files/firewall_pterodactyl-rules.j2
Normal file
10
network/files/firewall_pterodactyl-rules.j2
Normal file
|
|
@ -0,0 +1,10 @@
|
|||
## This file is managed by Ansible
|
||||
#!/usr/sbin/nft
|
||||
|
||||
table ip nat {
|
||||
chain DOCKER {}
|
||||
}
|
||||
|
||||
table ip filter {
|
||||
chain DOCKER {}
|
||||
}
|
||||
|
|
@ -20,7 +20,15 @@
|
|||
group: root
|
||||
mode: '0600'
|
||||
vars:
|
||||
ALLOWED_PORTS: [80, 443, 25565, 51871]
|
||||
ALLOWED_PORTS: [80, 443]
|
||||
- name: Additional pterodactyl rules
|
||||
template:
|
||||
src: files/firewall_pterodactyl-rules.j2
|
||||
dest: /etc/nftables.d/pterodactyl.nft
|
||||
owner: root
|
||||
group: root
|
||||
mode: '0600'
|
||||
when: installation_type == 'gaming'
|
||||
- name: Enable nftables service
|
||||
service:
|
||||
name: nftables
|
||||
|
|
|
|||
Loading…
Reference in a new issue