54 lines
1.6 KiB
YAML
54 lines
1.6 KiB
YAML
# Copyright 2018 Red Hat, Inc.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
# License for the specific language governing permissions and limitations
|
|
# under the License.
|
|
---
|
|
# tasks/main.yaml
|
|
iptables_task_manager:
|
|
- install
|
|
- config
|
|
- service
|
|
|
|
# tasks/install.yaml
|
|
iptables_package_state: present
|
|
|
|
iptables_install_method: package
|
|
|
|
# tasks/config.yaml
|
|
iptables_file_configdir_group: root
|
|
iptables_file_configdir_mode: 0755
|
|
iptables_file_configdir_owner: root
|
|
iptables_file_configdir_path: /etc/iptables
|
|
|
|
iptables_file_ipv4_rules_dest: "{{ iptables_file_configdir_path }}/rules.v4"
|
|
iptables_file_ipv4_rules_group: root
|
|
iptables_file_ipv4_rules_mode: 0644
|
|
iptables_file_ipv4_rules_owner: root
|
|
iptables_file_ipv4_rules_src: etc/iptables/rules.v4.j2
|
|
|
|
iptables_file_ipv6_rules_dest: "{{ iptables_file_configdir_path }}/rules.v6"
|
|
iptables_file_ipv6_rules_group: root
|
|
iptables_file_ipv6_rules_mode: 0644
|
|
iptables_file_ipv6_rules_owner: root
|
|
iptables_file_ipv6_rules_src: etc/iptables/rules.v6.j2
|
|
|
|
iptables_allowed_hosts: []
|
|
iptables_public_tcp_ports:
|
|
- 22
|
|
iptables_public_udp_ports: []
|
|
|
|
# tasks/service.yaml
|
|
iptables_service_iptables_enabled: true
|
|
iptables_service_iptables_manage: true
|
|
iptables_service_iptables_name: netfilter-persistent
|
|
iptables_service_iptables_state: started
|