myserver-configuration/roles/iptables/tasks/accept_dns.yml

---

- name: Accept OUTPUT udp dport 53
  ansible.builtin.iptables:
    chain: OUTPUT
    protocol: udp
    ctstate:
      - NEW
      - RELATED
      - ESTABLISHED
    destination_port: 53
    jump: ACCEPT
    comment: Accept OUTPUT udp dport 53
    state: present
  become: yes

- name: Accept INPUT udp sport 53
  ansible.builtin.iptables:
    chain: OUTPUT
    protocol: udp
    ctstate:
      - NEW
      - RELATED
      - ESTABLISHED
    source_port: 53
    jump: ACCEPT
    comment: Accept OUTPUT udp sport 53
    state: present
  become: yes

- name: Accept OUTPUT tcp dport 53
  ansible.builtin.iptables:
    chain: OUTPUT
    protocol: tcp
    ctstate:
      - NEW
      - RELATED
      - ESTABLISHED
    destination_port: 53
    jump: ACCEPT
    comment: Accept OUTPUT tcp dport 53
    state: present
  become: yes

- name: Accept INPUT tcp sport 53
  ansible.builtin.iptables:
    chain: OUTPUT
    protocol: tcp
    ctstate:
      - NEW
      - RELATED
      - ESTABLISHED
    source_port: 53
    jump: ACCEPT
    comment: Accept OUTPUT tcp sport 53
    state: present
  become: yes