feat(role): Initial commit
This commit is contained in:
1
files/_current_user_home_/.condarc
Normal file
1
files/_current_user_home_/.condarc
Normal file
@@ -0,0 +1 @@
|
||||
auto_activate_base: false
|
||||
12
files/etc/systemd/system/update-firewall-source.service
Normal file
12
files/etc/systemd/system/update-firewall-source.service
Normal file
@@ -0,0 +1,12 @@
|
||||
[Unit]
|
||||
Description=firewalld direct rules generator
|
||||
After=multi-user.target network-online.target
|
||||
|
||||
[Service]
|
||||
Type=oneshot
|
||||
RemainAfterExit=no
|
||||
Environment='PATH=/usr/local/sbin:/usr/local/bin:/usr/bin' 'UFS_LOGLEVEL=INFO'
|
||||
ExecStart=/opt/miniconda3/envs/update-firewall-source/bin/python /opt/python/update-firewall-source/master/update-firewall-source.py
|
||||
|
||||
[Install]
|
||||
WantedBy=multi-user.target
|
||||
@@ -0,0 +1,12 @@
|
||||
[Unit]
|
||||
Description=firewalld direct rules generator
|
||||
After=multi-user.target network-online.target
|
||||
|
||||
[Service]
|
||||
Type=oneshot
|
||||
RemainAfterExit=no
|
||||
Environment='PATH=/usr/local/sbin:/usr/local/bin:/usr/bin' 'UFS_LOGLEVEL=INFO'
|
||||
ExecStart=/opt/miniconda3/envs/update-firewall-source/bin/python /opt/python/update-firewall-source/master/update-firewall-source.py
|
||||
|
||||
[Install]
|
||||
WantedBy=multi-user.target
|
||||
13
files/etc/systemd/system/update-firewall-source.timer
Normal file
13
files/etc/systemd/system/update-firewall-source.timer
Normal file
@@ -0,0 +1,13 @@
|
||||
[Unit]
|
||||
Description=Run firewalld direct rules generator
|
||||
|
||||
[Timer]
|
||||
OnCalendar=
|
||||
OnCalendar=4,5,6:00,15,30,45 Europe/Berlin
|
||||
OnCalendar=1,10,14,18,22:00 Europe/Berlin
|
||||
OnBootSec=5min
|
||||
RandomizedDelaySec=2min
|
||||
Persistent=true
|
||||
|
||||
[Install]
|
||||
WantedBy=timers.target
|
||||
@@ -0,0 +1,13 @@
|
||||
[Unit]
|
||||
Description=Run firewalld direct rules generator
|
||||
|
||||
[Timer]
|
||||
OnCalendar=
|
||||
OnCalendar=4,5,6:00,15,30,45 Asia/Shanghai
|
||||
OnCalendar=1,10,14,18,22:00 Asia/Shanghai
|
||||
OnBootSec=5min
|
||||
RandomizedDelaySec=2min
|
||||
Persistent=true
|
||||
|
||||
[Install]
|
||||
WantedBy=timers.target
|
||||
27
files/opt/python/update-firewall-source/master/config.ini
Normal file
27
files/opt/python/update-firewall-source/master/config.ini
Normal file
@@ -0,0 +1,27 @@
|
||||
[DEFAULT]
|
||||
target = ACCEPT
|
||||
addr =
|
||||
ports = 80, 443
|
||||
proto = tcp
|
||||
state = NEW
|
||||
do_ipv6 = true
|
||||
firewalld_direct_file_abs = /etc/firewalld/direct.xml
|
||||
restart_firewalld_after_change = true
|
||||
|
||||
[home.seneve.de]
|
||||
addr = home.seneve.de
|
||||
ports = 22, 80, 443
|
||||
|
||||
[fornjot.uberspace.de IPv4/6 connectivity testing]
|
||||
addr = fornjot.uberspace.de
|
||||
ports = 22, 80, 443
|
||||
|
||||
[allow-anyone-to-access-mail-services]
|
||||
ports = 143, 993, 110, 995, 25, 465, 587
|
||||
|
||||
[deny-all]
|
||||
target = DROP
|
||||
addr =
|
||||
ports =
|
||||
proto =
|
||||
state =
|
||||
Reference in New Issue
Block a user