Commit message (Collapse) | Author | Age | Files | |
---|---|---|---|---|
* | Use a dedicated 'fail2ban' chain for fail2ban. | Guilhem Moulin | 2015-06-07 | 2 |
| | | | | So it doesn't mess with the high-priority rules regarding IPSec. | |||
* | Add a 'check' switch to the firewall. | Guilhem Moulin | 2015-06-07 | 2 |
| | | | | | update-firewall.sh -c does not update the firewall, but returns a non-zero value iff. running it without the switch would modify it. | |||
* | Configure the (basic) logging policy. | Guilhem Moulin | 2015-06-07 | 5 |
| | ||||
* | Configure IPSec. | Guilhem Moulin | 2015-06-07 | 5 |
| | ||||
* | Configure fail2ban. | Guilhem Moulin | 2015-06-07 | 4 |
| | ||||
* | Configure rkhunter. | Guilhem Moulin | 2015-06-07 | 5 |
| | ||||
* | Configure samhain. | Guilhem Moulin | 2015-06-07 | 4 |
| | ||||
* | Configure v4 and v6 iptable rulesets. | Guilhem Moulin | 2015-06-07 | 6 |
| | ||||
* | Configure APT. | Guilhem Moulin | 2015-06-07 | 8 |
| | ||||
* | Configure /etc/{hosts,hostname,mailname}. | Guilhem Moulin | 2015-06-07 | 5 |
| | ||||
* | Basic ansible setup. | Guilhem Moulin | 2015-06-07 | 2 |
To run the playbook: cd ./ansible ansible-playbook -i vms site.yml |