--- - name: Install UFW ansible.builtin.apt: name: ufw state: present when: firewall_enabled | bool - name: Reset UFW rules community.general.ufw: state: reset when: firewall_enabled | bool - name: Allow SSH port community.general.ufw: rule: allow port: "{{ ssh_port }}" proto: tcp when: firewall_enabled | bool - name: Allow Minecraft port community.general.ufw: rule: allow port: "25565" proto: tcp when: firewall_enabled | bool - name: Enable UFW community.general.ufw: state: enabled policy: deny when: firewall_enabled | bool notify: "reload firewall"