main.yml

---
- name: Ordner für iptables-Config erstellen
  ansible.builtin.file:
    path: "/etc/iptables"
    state: directory
    owner: "root"
    group: "root"
    mode: "0755"
  listen: "save iptables rules"

- name: install netfilter-persistent to be able to save iptables rules
  ansible.builtin.apt:
    name: "netfilter-persistent"
    state: present
  listen: "save iptables rules"

- name: save iptables rules    # noqa no-changed-when
  ansible.builtin.command: 'netfilter-persistent save'
  listen: "save iptables rules"

- name: activate kernel parameter changes    # noqa no-changed-when
  ansible.builtin.command: sysctl -p

- name: create PIDfiles    # noqa no-changed-when
  ansible.builtin.command: systemd-tmpfiles --create

- name: daemon-reload
  ansible.builtin.systemd:
    daemon_reload: true