refactor(security): reworked firewall configuration and added support for DNS, HTTP and ICMP rules; added autoconf for resolv.conf to match FW rules

inventory/host_vars/actinium/vars.yml

@@ -0,0 +1,15 @@
+ansible_become_password: "{{ vault_root_pass }}"
+ansible_host: "{{ vault_ansible_host }}"
+ansible_user: "{{ vault_ssh_user }}"
+
+custom_security:
+  firewall:
+    mangle:
+      drop_privatenets: false
+      policy:
+        forward: accept
+dns:
+  type: "udp"
+  udp: "{{ vault_groups.network.internal }}"
+network: "internal"
+ip_dualstack: false