Trellis runs the ipify_facts module with connection: local so that it retrieves your local machine’s public IP (not your server’s), which it adds to the ip_whitelist variable used with the ferm firewall rules and fail2ban rules to make sure your machine doesn’t get blocked.
Connection issues like this are usually just temporary, so you could try again later. If you need the failed connection/task to stop blocking right now, you could
-
add a new variable
ssh_client_ip_lookup: falseingroup_vars/all/main.ymland -
manually add your local machine IP to
ip_whitelistlike this:
ip_whitelist:
- "{{ (env == 'development') | ternary(ansible_default_ipv4.gateway, ipify_public_ip | default('')) }}"
+ - 12.34.56.78