aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--roles/host/tasks/firewall.yml9
-rw-r--r--roles/host/tasks/main.yml4
2 files changed, 11 insertions, 2 deletions
diff --git a/roles/host/tasks/firewall.yml b/roles/host/tasks/firewall.yml
index 35138ff..999f5b9 100644
--- a/roles/host/tasks/firewall.yml
+++ b/roles/host/tasks/firewall.yml
@@ -15,3 +15,12 @@
immediate: true
loop: "{{ host_firewall.ports }}"
when: host_firewall.ports is defined
+
+- name: Modify rich rules
+ ansible.posix.firewalld:
+ rich_rule: "{{ item.rule }}"
+ state: "{{ item.state }}"
+ permanent: true
+ immediate: true
+ loop: "{{ host_firewall.rich_rules }}"
+ when: host_firewall.rich_rules is defined
diff --git a/roles/host/tasks/main.yml b/roles/host/tasks/main.yml
index c8fd897..b68c57e 100644
--- a/roles/host/tasks/main.yml
+++ b/roles/host/tasks/main.yml
@@ -4,11 +4,11 @@
- ansible.builtin.import_tasks: timezone.yml
when: host_timezone is defined
+- ansible.builtin.import_tasks: packages.yml
+
- ansible.builtin.import_tasks: mounts.yml
when: host_mounts is defined
-- ansible.builtin.import_tasks: packages.yml
-
- ansible.builtin.import_tasks: unprivileged-port.yml
when: host_unprivileged_port_start is defined
generated by cgit (git 2.34.1) at 2025-12-06 06:27:55 +0000