diff options
| -rw-r--r-- | host.yml | 19 |
1 files changed, 19 insertions, 0 deletions
@@ -42,3 +42,22 @@ tags: - never - unprivileged-ports + + - name: cPanel DNS-only block + block: + - name: Confirm if cpsrvd is not listening on http ports + ansible.builtin.shell: "whmapi1 get_tweaksetting key='disable_cphttpd' |grep 'value: 1' || /bin/true" + register: cpsrv_listen + + - name: Turn off cpsrvd listening on http ports (if necessary) + ansible.builtin.shell: "whmapi1 set_tweaksetting key='disable_cphttpd' value='1' ; /scripts/restartsrv_cpsrvd" + when: cpsrv_listen.stdout | length == 0 + + - name: Turn off firewalld + ansible.builtin.service: + name: "firewalld" + state: stopped + enabled: false + tags: + - never + - cpanel-dnsonly |