Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- add_user_SSH_config.yaml
- #Menambahkan pengguna dan mengganti default port SSH serta whitelist untuk IP server SSH
- #---
- #- name: Tambah pengguna IT
- # hosts: routers
- # gather_facts: no
- # tasks:
- # - name: Tambah pengguna IT
- # community.routeros.command:
- # commands:
- # - "/user add name=IT password=test123 group=full"
- - name: Konfigurasi firewall MikroTik untuk mengizinkan SSH dari IP tertentu
- hosts: routers
- gather_facts: no
- tasks:
- - name: Tambahkan IP ke daftar alamat
- community.routeros.command:
- commands:
- - "/ip firewall address-list add address=192.168.1.3 comment=\"IP SERVER\" list=ssh_allowed"
- - name: Tambahkan aturan firewall untuk mengizinkan SSH dari IP tertentu
- community.routeros.command:
- commands:
- - "/ip firewall filter add chain=input protocol=tcp dst-port=2224 src-address-list=ssh_allowed comment=\"SSH\" action=accept"
- - name: Tolak koneksi SSH dari IP lainnya
- community.routeros.command:
- commands:
- - "/ip firewall filter add chain=input protocol=tcp dst-port=2224 comment=\"SSH\" action=drop"
- - name: Mengganti port SSH pada perangkat MikroTik
- hosts: routers
- gather_facts: no
- tasks:
- - name: Ubah port SSH
- community.routeros.command:
- commands:
- - "/ip service set ssh port=2224"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement