base / iptables: fix some syntax issues
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
This commit is contained in:
Kevin Fenzi
parent
765363e04d
commit
c5773c8c45
1 changed files with 6 additions and 4 deletions
|
|
@ -149,8 +149,9 @@
|
||||||
- base
|
- base
|
||||||
|
|
||||||
- name: setup builder ipset if this is a new install
|
- name: setup builder ipset if this is a new install
|
||||||
command: /usr/sbin/ipset create osbuildapi hash:ip
|
shell: "/usr/sbin/ipset create osbuildapi hash:ip; touch /etc/sysconfig/ipset-osbuildapi"
|
||||||
creates: /etc/sysconfig/ipset-osbuildapi
|
args:
|
||||||
|
creates: /etc/sysconfig/ipset-osbuildapi
|
||||||
when: "'osbuild' in group_names"
|
when: "'osbuild' in group_names"
|
||||||
tags:
|
tags:
|
||||||
- base
|
- base
|
||||||
|
|
@ -169,8 +170,9 @@
|
||||||
when: "'iad2' not in inventory_hostname or ( datacenter == 'iad2' and external == 'true')"
|
when: "'iad2' not in inventory_hostname or ( datacenter == 'iad2' and external == 'true')"
|
||||||
|
|
||||||
- name: setup blocklist ipset if this is a new install
|
- name: setup blocklist ipset if this is a new install
|
||||||
command: /usr/sbin/ipset create blocklist hash:ip
|
command: "/usr/sbin/ipset create blocklist hash:ip; touch /etc/sysconfig/ipset-blocklist"
|
||||||
creates: /etc/sysconfig/blocklist
|
args:
|
||||||
|
creates: /etc/sysconfig/ipset-blocklist
|
||||||
when: "'iad2' not in inventory_hostname or ( datacenter == 'iad2' and external == 'true')"
|
when: "'iad2' not in inventory_hostname or ( datacenter == 'iad2' and external == 'true')"
|
||||||
tags:
|
tags:
|
||||||
- base
|
- base
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue