[IPTABLES] Add rules (Not tested)

2023-05-20 23:54:16 +02:00 · 2023-05-20 23:54:16 +02:00 · fcd5694fa8
commit fcd5694fa8
parent 5fa2b5bd2b
14 changed files with 415 additions and 0 deletions
--- a/roles/iptables/tasks/drop_scans_xmas_null.yml
+++ b/roles/iptables/tasks/drop_scans_xmas_null.yml
@ -0,0 +1,59 @@
+---
+
+- name: Drop des scans XMAS et NULL (FIN,URG,PSH FIN,URG,PSH)
+  ansible.builtin.iptables:
+    chain: INPUT
+    protocol: tcp
+    tcp_flags:
+      flags:
+        - FIN
+        - URG
+        - PSH
+      flags_set:
+        - FIN
+        - URG
+        - PSH
+    jump: DROP
+    comment: Drop des scans XMAS et NULL (FIN,URG,PSH FIN,URG,PSH)
+    state: present
+  become: yes
+
+- name: Drop des scans XMAS et NULL (ALL ALL)
+  ansible.builtin.iptables:
+    chain: INPUT
+    protocol: tcp
+    tcp_flags:
+      flags: ALL
+      flags_set: ALL
+    jump: DROP
+    comment: Drop des scans XMAS et NULL (ALL ALL)
+    state: present
+  become: yes
+
+- name: Drop des scans XMAS et NULL (ALL NONE)
+  ansible.builtin.iptables:
+    chain: INPUT
+    protocol: tcp
+    tcp_flags:
+      flags: ALL
+      flags_set: NONE
+    jump: DROP
+    comment: Drop des scans XMAS et NULL (ALL NONE)
+    state: present
+  become: yes
+
+- name: Drop des scans XMAS et NULL (SYN,RST SYN,RST)
+  ansible.builtin.iptables:
+    chain: INPUT
+    protocol: tcp
+    tcp_flags:
+      flags:
+        - SYN
+        - RST
+      flags_set:
+        - SYN
+        - RST
+    jump: DROP
+    comment: Drop des scans XMAS et NULL (SYN,RST SYN,RST)
+    state: present
+  become: yes