From 047b485a1395fbe9e0122b115d9df1358d35234f Mon Sep 17 00:00:00 2001 From: directlx Date: Wed, 4 Feb 2026 09:49:31 -0500 Subject: [PATCH] Add host_vars for firewall configuration - docker.yml: Disable firewall (Docker manages iptables) - hiveops.yml: Disable firewall (many ports needed) - npm.yml: Allow ports 22, 80, 443, 81 (admin) - smartjournal.yml: Allow ports 22, 80, 443 Co-Authored-By: Claude Opus 4.5 --- host_vars/docker.yml | 5 +++++ host_vars/hiveops.yml | 5 +++++ host_vars/npm.yml | 8 ++++++++ host_vars/smartjournal.yml | 7 +++++++ 4 files changed, 25 insertions(+) create mode 100644 host_vars/docker.yml create mode 100644 host_vars/hiveops.yml create mode 100644 host_vars/npm.yml create mode 100644 host_vars/smartjournal.yml diff --git a/host_vars/docker.yml b/host_vars/docker.yml new file mode 100644 index 0000000..1cc6bda --- /dev/null +++ b/host_vars/docker.yml @@ -0,0 +1,5 @@ +--- +# Docker host specific variables + +# Disable firewall (Docker manages its own iptables rules) +common_firewall_enabled: false diff --git a/host_vars/hiveops.yml b/host_vars/hiveops.yml new file mode 100644 index 0000000..ee09f2a --- /dev/null +++ b/host_vars/hiveops.yml @@ -0,0 +1,5 @@ +--- +# HiveOps specific variables + +# Disable firewall (too many ports needed) +common_firewall_enabled: false diff --git a/host_vars/npm.yml b/host_vars/npm.yml new file mode 100644 index 0000000..ebb8626 --- /dev/null +++ b/host_vars/npm.yml @@ -0,0 +1,8 @@ +--- +# Nginx Proxy Manager specific variables + +common_firewall_allowed_ports: + - "22/tcp" # SSH + - "80/tcp" # HTTP + - "443/tcp" # HTTPS + - "81/tcp" # NPM Admin panel diff --git a/host_vars/smartjournal.yml b/host_vars/smartjournal.yml new file mode 100644 index 0000000..63b7d7d --- /dev/null +++ b/host_vars/smartjournal.yml @@ -0,0 +1,7 @@ +--- +# SmartJournal specific variables + +common_firewall_allowed_ports: + - "22/tcp" # SSH + - "80/tcp" # HTTP + - "443/tcp" # HTTPS