-
Notifications
You must be signed in to change notification settings - Fork 36
/
rules.yml
28 lines (25 loc) · 939 Bytes
/
rules.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
---
- name: Generate v4 rules
template: src=generated.v4.j2 dest=/etc/iptables.v4.generated owner=root group=root mode=755
register: v4_script
when: firewall_v4_configure
- name: Load v4 rules
command: /etc/iptables.v4.generated
register: v4_script_load_result
failed_when: >-
v4_script_load_result.rc != 0 or
'unknown option' in v4_script_load_result.stderr or
'Table does not exist' in v4_script_load_result.stderr
when: v4_script is changed
- name: Generate v6 rules
template: src=generated.v6.j2 dest=/etc/iptables.v6.generated owner=root group=root mode=755
register: v6_script
when: firewall_v6_configure
- name: Load v6 rules
command: /etc/iptables.v6.generated
register: v6_script_load_result
failed_when: >-
v6_script_load_result.rc != 0 or
'unknown option' in v6_script_load_result.stderr or
'Table does not exist' in v6_script_load_result.stderr
when: v6_script is changed