We’ve been running few AWS servers in production for several years now in my company. For a special use case, Scaleway hosting was choosen. The pricing for a BareMetal SSD is very attractive.
There is a “stateless” firewall system in Scaleway (Security Groups) but imho it’s limited and apply a new rule could be slow. We decided to replace Scaleway SG by a software firewall: UFW
So, What does this have to do with Ansible ?
Since the 0.35 version of UFW, you can add a comment on your rules. However, the ansible module missing this feature :). Problem solved ! (after the review/merge)