diff --git a/urubamba/playbook-setup.yml b/urubamba/playbook-setup.yml
index 0e66511..1a2d8b1 100644
--- a/urubamba/playbook-setup.yml
+++ b/urubamba/playbook-setup.yml
@@ -2,6 +2,8 @@
   hosts: all
   roles:
     - users
+    - ufw
+    - mosh
     - python3
     - docker
     - htop
diff --git a/urubamba/roles/mosh/meta/main.yml b/urubamba/roles/mosh/meta/main.yml
new file mode 100644
index 0000000..67b993e
--- /dev/null
+++ b/urubamba/roles/mosh/meta/main.yml
@@ -0,0 +1,3 @@
+---
+dependencies:
+  - role: ufw
diff --git a/urubamba/roles/mosh/tasks/main.yml b/urubamba/roles/mosh/tasks/main.yml
new file mode 100644
index 0000000..f2ee372
--- /dev/null
+++ b/urubamba/roles/mosh/tasks/main.yml
@@ -0,0 +1,10 @@
+---
+- name: Install mosh
+  ansible.builtin.package:
+    name: mosh
+    state: present
+- name: Allow mosh in ufw
+  community.general.ufw:
+    rule: allow
+    port: 60000:61000
+    proto: udp
diff --git a/urubamba/roles/ufw/tasks/main.yml b/urubamba/roles/ufw/tasks/main.yml
new file mode 100644
index 0000000..d6b20c5
--- /dev/null
+++ b/urubamba/roles/ufw/tasks/main.yml
@@ -0,0 +1,12 @@
+---
+- name: Install ufw
+  ansible.builtin.package:
+    name: ufw
+    state: present
+- name: Allow SSH connection in ufw
+  community.general.ufw:
+    rule: allow
+    name: OpenSSH
+- name: Enable ufw
+  community.general.ufw:
+    state: enabled