From 23ad0ff277fbcff225e38d6de8041f243e9c882d Mon Sep 17 00:00:00 2001
From: Mateo <mdm@athelas.fr>
Date: Fri, 2 Aug 2024 11:12:46 +0200
Subject: [PATCH] Added loopback iptables rule

---
 tasks/roles/setup_iptables/tasks/main.yml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/tasks/roles/setup_iptables/tasks/main.yml b/tasks/roles/setup_iptables/tasks/main.yml
index c486da3..a55b909 100644
--- a/tasks/roles/setup_iptables/tasks/main.yml
+++ b/tasks/roles/setup_iptables/tasks/main.yml
@@ -11,6 +11,13 @@
       - "443"
       - "80"
 
+- name: Accept connection on lo (for Caddy <-> usertwist communication)
+  ansible.builtin.iptables:
+    chain: INPUT
+    protocol: tcp
+    in_interface: lo
+    jump: ACCEPT
+
 - name: Set INPUT policy to DROP
   ansible.builtin.iptables:
     chain: INPUT