add a separate iptables task - does not remove one in base
This commit is contained in:
parent
2e5c4bad63
commit
a26c1dd333
1 changed files with 35 additions and 0 deletions
35
tasks/iptables.yml
Normal file
35
tasks/iptables.yml
Normal file
|
|
@ -0,0 +1,35 @@
|
|||
# IF YOU ARE USING $tasks/base.yml this is redundant
|
||||
# this is split out only for some of the cloud boxes
|
||||
|
||||
- name: install iptables if not installed
|
||||
yum: name=iptables state=present
|
||||
when: is_rhel == "1"
|
||||
tags:
|
||||
- iptables
|
||||
- packages
|
||||
|
||||
- name: install iptables-services if not installed
|
||||
yum: name=iptables-services state=present
|
||||
when: is_fedora == "1"
|
||||
tags:
|
||||
- iptables
|
||||
- packages
|
||||
|
||||
- name: iptables service enabled
|
||||
service: name=iptables state=running enabled=true
|
||||
tags:
|
||||
- iptables
|
||||
- service
|
||||
|
||||
- name: iptables
|
||||
action: template src=$item dest=/etc/sysconfig/iptables mode=600
|
||||
with_first_found:
|
||||
- $iptables
|
||||
- $files/iptables/iptables.${ansible_fqdn}
|
||||
- $files/iptables/iptables.${host_group}
|
||||
- $files/iptables/iptables
|
||||
notify:
|
||||
- restart iptables
|
||||
tags:
|
||||
- iptables
|
||||
- config
|
||||
Loading…
Add table
Add a link
Reference in a new issue