path: root/ansible/roles/firewalled/tasks/main.yml

- name: install ufw
  apt: name=ufw state=present

- name: enable all traffic from libvirt VMs
  ufw:
    direction: in
    interface: virbr0
    rule: allow

- name: disable ufw logging
  ufw:
    logging: 'off'

- name: enable ufw
  ufw: state=enabled