infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 7 Projects Releases Packages Wiki Activity Actions

base / iptables: simplify logic

Browse source 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
This commit is contained in:
Kevin Fenzi 2023-06-26 13:23:38 -07:00
parent 03abad159d
commit f1eaa5d773
1 changed files with 2 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

4
roles/base/tasks/main.yml
View file

@ -167,13 +167,13 @@
tags:
- base
- iptables
when: "'iad2' not in inventory_hostname or ( datacenter == 'iad2' and external == 'true')"
when: "'iad2' not in inventory_hostname or external is true"
- name: setup blocklist ipset if this is a new install
shell: "/usr/sbin/ipset create blocklist hash:ip; touch /etc/sysconfig/ipset-blocklist"
args:
creates: /etc/sysconfig/ipset-blocklist
when: "'iad2' not in inventory_hostname or ( datacenter == 'iad2' and external == 'true')"
when: "'iad2' not in inventory_hostname or external is true"
tags:
- base
- iptables