59 lines
No EOL
1.2 KiB
YAML
59 lines
No EOL
1.2 KiB
YAML
---
|
|
|
|
- name: Drop des scans XMAS et NULL (FIN,URG,PSH FIN,URG,PSH)
|
|
ansible.builtin.iptables:
|
|
chain: INPUT
|
|
protocol: tcp
|
|
tcp_flags:
|
|
flags:
|
|
- FIN
|
|
- URG
|
|
- PSH
|
|
flags_set:
|
|
- FIN
|
|
- URG
|
|
- PSH
|
|
jump: DROP
|
|
comment: Drop des scans XMAS et NULL (FIN,URG,PSH FIN,URG,PSH)
|
|
state: present
|
|
become: yes
|
|
|
|
- name: Drop des scans XMAS et NULL (ALL ALL)
|
|
ansible.builtin.iptables:
|
|
chain: INPUT
|
|
protocol: tcp
|
|
tcp_flags:
|
|
flags: ALL
|
|
flags_set: ALL
|
|
jump: DROP
|
|
comment: Drop des scans XMAS et NULL (ALL ALL)
|
|
state: present
|
|
become: yes
|
|
|
|
- name: Drop des scans XMAS et NULL (ALL NONE)
|
|
ansible.builtin.iptables:
|
|
chain: INPUT
|
|
protocol: tcp
|
|
tcp_flags:
|
|
flags: ALL
|
|
flags_set: NONE
|
|
jump: DROP
|
|
comment: Drop des scans XMAS et NULL (ALL NONE)
|
|
state: present
|
|
become: yes
|
|
|
|
- name: Drop des scans XMAS et NULL (SYN,RST SYN,RST)
|
|
ansible.builtin.iptables:
|
|
chain: INPUT
|
|
protocol: tcp
|
|
tcp_flags:
|
|
flags:
|
|
- SYN
|
|
- RST
|
|
flags_set:
|
|
- SYN
|
|
- RST
|
|
jump: DROP
|
|
comment: Drop des scans XMAS et NULL (SYN,RST SYN,RST)
|
|
state: present
|
|
become: yes |