From cb25dc05ef850eb79e9445c515cc99b4839aafae Mon Sep 17 00:00:00 2001
From: VC <veretcle+framagit@mateu.be>
Date: Fri, 5 Jul 2024 11:53:04 +0200
Subject: [PATCH] Suppression des IPv6 VINCI de sortie

---
 roles/firewall/templates/firewall.j2 | 20 --------------------
 roles/firewall/vars/main.yml         |  1 -
 2 files changed, 21 deletions(-)
 delete mode 100644 roles/firewall/vars/main.yml

diff --git a/roles/firewall/templates/firewall.j2 b/roles/firewall/templates/firewall.j2
index 7f3ecba..fe389d5 100644
--- a/roles/firewall/templates/firewall.j2
+++ b/roles/firewall/templates/firewall.j2
@@ -61,26 +61,6 @@ config rule
 	option family 'ipv6'
 	option limit '1000/sec'
 
-## SSH from VINCI rules
-config rule
-	option name 'Allow-Input-SSH-VINCI'
-	option src 'wan'
-	option src_ip '{{ vinci_ipv6_out }}'
-	option proto 'tcp'
-	option dest_port '22'
-	option target 'ACCEPT'
-	option family 'ipv6'
-
-config rule
-	option name 'Allow-SSH-VINCI'
-	option src 'wan'
-	option src_ip '{{ vinci_ipv6_out }}'
-	option proto 'tcp'
-	option dest 'lan'
-	option dest_port '22'
-	option target 'ACCEPT'
-	option family 'ipv6'
-
 ### DMZ Rules
 ## General Rules
 # ICMP
diff --git a/roles/firewall/vars/main.yml b/roles/firewall/vars/main.yml
deleted file mode 100644
index 4c46486..0000000
--- a/roles/firewall/vars/main.yml
+++ /dev/null
@@ -1 +0,0 @@
-vinci_ipv6_out: "2a02:2098:8711:920:740c:70c0:e153:55b6"