@@ -35,6 +35,13 @@
notify: Save iptables rules
+- name: Drop traffic not going over egress interface
+ ansible.builtin.iptables:
+ chain: FORWARD
+ jump: DROP
+ notify: Save iptables rules
+
- name: Enable IP forwarding
ansible.posix.sysctl:
name: net.ipv4.ip_forward
Blaine Story