From e921a466268bb58524e0a7604ac29744eba8dc76 Mon Sep 17 00:00:00 2001
From: Jakub Kadlcik <frostyx@email.cz>
Date: Thu, 20 Mar 2025 17:07:27 +0100
Subject: [PATCH] logdetective: revert back to firewalld

---
 roles/logdetective/tasks/main.yml | 14 ++++++++------
 1 file changed, 8 insertions(+), 6 deletions(-)

diff --git a/roles/logdetective/tasks/main.yml b/roles/logdetective/tasks/main.yml
index d751261a9f..bc6216e394 100644
--- a/roles/logdetective/tasks/main.yml
+++ b/roles/logdetective/tasks/main.yml
@@ -12,6 +12,7 @@
       - podman-compose
       - wget
       - gcc-c++
+      - firewalld
 
 # For some reason, Podman containers cannot reach internet on F41
 # It is somehow related to the iptables vs nftables change
@@ -102,10 +103,11 @@
     regexp: '^graphroot = '
     line: 'graphroot = "/mnt/srv/containers_storage"'
 
+- name: Start firewalld so that we can allow ports more easily
+  systemd: state=started name=firewalld enabled=yes
+
 - name: Allow accessing 8080 from the outside
-  ansible.builtin.iptables:
-    chain: INPUT
-    protocol: tcp
-    destination_ports:
-      - "8080"
-    jump: ACCEPT
+  ansible.posix.firewalld:
+    port: 8080
+    permanent: true
+    state: enabled