Merge pull request #332 from apsanz/master

Enable UFW only after setting firewall rules

roles/common/tasks/ufw.yml

@@ -5,8 +5,8 @@
 - name: Install ufw
   apt: pkg=ufw state=present
 
-- name: Deny everything and enable UFW
-  ufw: state=enabled policy=deny
+- name: Deny everything
+  ufw: policy=deny
 
 - name: Set firewall rule for DNS
   ufw: rule=allow port=domain
@@ -21,6 +21,9 @@
     - https
     - ssh
 
+- name: Enable UFW
+  ufw: state=enabled
+
 - name: Check config of ufw
   command: cat /etc/ufw/ufw.conf
   register: ufw_config