b2a60340c2
Without this there may not be a gateway configured after the control plane nodes are provisioned, meaning they cannot access the outside world.
13 lines
345 B
YAML
13 lines
345 B
YAML
---
|
|
# iptables -t nat -A POSTROUTING -o {{ interface }} -j SNAT --to-source {{ source_ip }}
|
|
- name: Ensure SNAT iptables rules exist
|
|
iptables:
|
|
action: append
|
|
table: nat
|
|
chain: POSTROUTING
|
|
out_interface: "{{ item.interface }}"
|
|
jump: SNAT
|
|
to_source: "{{ item.source_ip }}"
|
|
with_items: "{{ snat_rules }}"
|
|
become: True
|