From 768c54b227e00f211241f55f052a0079f7ea5ff6 Mon Sep 17 00:00:00 2001
From: "Antonio J. Delgado" <ad@susurrando.com>
Date: Thu, 20 Apr 2023 14:21:24 +0300
Subject: [PATCH] add ufw rule to allow traffic to server

---
 tasks/configure.yml | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/tasks/configure.yml b/tasks/configure.yml
index 4f60444..d1a6451 100644
--- a/tasks/configure.yml
+++ b/tasks/configure.yml
@@ -78,3 +78,14 @@
     enabled: true
     daemon_reload: true
     masked: false
+
+- name: Get host public IP
+  uri:
+    url: https://api.ipify.org?format=json
+  register: pub_ip
+
+- name: Allow traffic to server
+  ufw:
+    rule: allow
+    from: "{{ pub_ip.json.ip }}"
+  delegate_to: "{{ groups['wireguard_server'][0] }}"