From 52da8a62fa0becea838536b0c932f4c37a938010 Mon Sep 17 00:00:00 2001
From: Matthew Thode <mthode@mthode.org>
Date: Mon, 24 Sep 2018 01:38:04 -0500
Subject: [PATCH] Add Gentoo iptables handling

Change-Id: I17a3a4dc68b189a5c8b8b48d7f5960b65d672405
---
 .../tasks/persist/Gentoo.yaml                 | 25 +++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 roles/persistent-firewall/tasks/persist/Gentoo.yaml

diff --git a/roles/persistent-firewall/tasks/persist/Gentoo.yaml b/roles/persistent-firewall/tasks/persist/Gentoo.yaml
new file mode 100644
index 000000000..86b70ccff
--- /dev/null
+++ b/roles/persistent-firewall/tasks/persist/Gentoo.yaml
@@ -0,0 +1,25 @@
+- name: Persist ipv4 rules
+  become: yes
+  copy:
+    content: "{{ iptables_rules.stdout }}"
+    dest: "/var/lib/iptables/rules-save"
+
+- name: Persist ipv6 rules
+  become: yes
+  copy:
+    content: "{{ ip6tables_rules.stdout }}"
+    dest: "/var/lib/ip6tables/rules-save"
+
+- name: Ensure iptables is started
+  become: yes
+  service:
+    name: iptables-restore
+    state: started
+    enabled: yes
+
+- name: Ensure ip6tables is started
+  become: yes
+  service:
+    name: ip6tables-restore
+    state: started
+    enabled: yes