From b9bb247f935dce1b12bbcd70d40a2d7b306a1593 Mon Sep 17 00:00:00 2001
From: Jakub Kadlcik <frostyx@email.cz>
Date: Sat, 30 Nov 2024 23:57:50 +0100
Subject: [PATCH] copr-base: make sure we don't use iptables-legacy

See https://github.com/fedora-copr/copr/issues/3439
---
 roles/copr/base/tasks/main.yml | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/roles/copr/base/tasks/main.yml b/roles/copr/base/tasks/main.yml
index 17ba5d9859..1129ab87c3 100644
--- a/roles/copr/base/tasks/main.yml
+++ b/roles/copr/base/tasks/main.yml
@@ -137,3 +137,15 @@
 
 # - name: enable and run logrotate service
 #   service: name="logrotate" state=started
+
+# https://github.com/fedora-copr/copr/issues/3439
+- name: Install iptables-nft
+  package: name=iptables-nft state=present
+  register: iptables
+
+- name: Remove iptables-legacy
+  package: name=iptables-legacy state=absent
+
+- name: Restart iptables
+  service: name=iptables state=restarted
+  when: iptables.changed