add gaming network configs

network/firewall.ansible.yml

@@ -21,14 +21,6 @@
         mode: '0600'
       vars:
         ALLOWED_PORTS: [80, 443]
-    - name: Additional pterodactyl rules
-      template:
-        src: files/firewall_pterodactyl-rules.j2
-        dest: /etc/nftables.d/pterodactyl.nft
-        owner: root
-        group: root
-        mode: '0600'
-      when: installation_type == 'gaming'
     - name: Enable nftables service
       service:
         name: nftables

network/init.ansible.yml

@@ -1,4 +1,6 @@
 - import_playbook: firewall.ansible.yml
+- import_playbook: modes/gaming.ansible.yml
+  when: installation_type == 'gaming'
 
 - hosts: localhost
   tasks:

network/modes/files/firewall_pterodactyl-rules.j2

@@ -5,6 +5,8 @@ table inet filter {
   chain input {
     iifname eth0 tcp dport 8080 accept \
     comment "Accept local connection to wings"
+    iifname eth0 tcp dport 3306 accept \
+    comment "Accept local conntection to mariadb"
   }
 }
 

network/modes/gaming.ansible.yml

@@ -0,0 +1,14 @@
+- hosts: localhost
+  tasks:
+    - name: Install iptables for docker compatibility
+      package:
+        name:
+          - iptables
+        state: present
+    - name: Deploy pterodactyl nft rules
+      template:
+        src: files/firewall_pterodactyl-rules.j2
+        dest: /etc/nftables.d/pterodactyl.nft
+        owner: root
+        group: root
+        mode: '0600'

system/base.ansible.yml

@@ -18,6 +18,7 @@
           - curl
           - rsync
           - screen
+          - iproute2-ss
     - name: Systemupdate script
       template:
         src: files/base_systemupdate