playbooks/debian/roles/firewall/tasks/main.yml

   1 - name: Install fail2ban
   2   become: true
   3   apt:
   4     install_recommends: no
   5     name: fail2ban
   6     state: latest
   7     update_cache: yes
   8
   9 - name: Configure Debian firewall
  10   become: true
  11   copy:
  12     src: etc
  13     dest: /
  14     owner: root
  15     group: root
  16     mode: '0750'
  17     force: no
  18
  19 - name: Fix permissions for /etc/network/functions
  20   become: true
  21   file:
  22     path: /etc/network/functions.phd
  23     mode: '0640'
  24
  25 - name: Start Debian firewall
  26   become: true
  27   command: /etc/init.d/iptables.sh start