Skip to content
Snippets Groups Projects
Commit 0f9684ec authored by Jörg Sachse's avatar Jörg Sachse
Browse files

fix: add handler to save changed iptables filter rules

parent 502a00f5
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
handlers/main.yml
+ 20
0
View file @ 0f9684ec
...@@ -3,3 +3,23 @@ ...@@ -3,3 +3,23 @@
systemd: systemd:
name: "postgresql" name: "postgresql"
state: restarted state: restarted
- name: save iptables rules (Debian)
block:
- name: Ordner für iptables-Config erstellen
file:
path: "/etc/iptables"
state: directory
owner: "root"
group: "root"
mode: 0755
listen: "save iptables rules"
- name: install netfilter-persistent to be able to save iptables rules
apt:
name: netfilter-persistent
state: present
listen: "save iptables rules"
- name: save iptables rules
command: 'netfilter-persistent save'
listen: "save iptables rules"
when: ansible_os_family == "Debian"
tasks/configure_iptables_external.yml
+ 1
0
View file @ 0f9684ec
...@@ -9,3 +9,4 @@ ...@@ -9,3 +9,4 @@
protocol: "{{ item.protocol | default('tcp') }}" protocol: "{{ item.protocol | default('tcp') }}"
source: "{{ item.source }}" source: "{{ item.source }}"
loop: "{{ vault_iptables_external }}" loop: "{{ vault_iptables_external }}"
notify: save iptables rules (Debian)
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment

DE: Impressum · Datenschutzerklärung | EN: Legal Notice · Privacy Policy