--- /dev/null
+- name: Install fail2ban
+ become: true
+ apt:
+ install_recommends: no
+ name: fail2ban
+ state: latest
+ update_cache: yes
+
+- name: Configure Debian firewall
+ become: true
+ copy:
+ src: etc
+ dest: /
+ owner: root
+ group: root
+ mode: '0750'
+ force: no
+
+- name: Fix permissions for /etc/network/functions
+ become: true
+ file:
+ path: /etc/network/functions.phd
+ mode: '0640'
+
+- name: Start Debian firewall
+ become: true
+ command: /etc/init.d/iptables.sh start