Configures ans maintains IPtables rules. Work in progress....
A pile of salt
None at the moment
ruupert_reusable_handlers
Have your default mgmt ip set in group_vars/all.yml
mgmt_iptables:
- port: 22
src: "1.2.3.4/32"
proto: tcp
Override default mgmt ip in host_vars/.yml
And then per host allows in similarly in host_vars/.yml:
host_vars_iptables:
allow:
tcp:
- port: 22
src: "1.2.3.4"
- port: 80
src: "2.3.4.5"