aboutsummaryrefslogtreecommitdiff
path: root/roles/host/tasks/unprivileged-port.yml
diff options
context:
space:
mode:
Diffstat (limited to 'roles/host/tasks/unprivileged-port.yml')
-rw-r--r--roles/host/tasks/unprivileged-port.yml11
1 files changed, 11 insertions, 0 deletions
diff --git a/roles/host/tasks/unprivileged-port.yml b/roles/host/tasks/unprivileged-port.yml
new file mode 100644
index 0000000..c724e49
--- /dev/null
+++ b/roles/host/tasks/unprivileged-port.yml
@@ -0,0 +1,11 @@
+- name: Set unprivileged ports sysctl parameter in /etc/sysctl.d/50-UnprivilegedPort.conf
+ ansible.builtin.lineinfile:
+ path: "/etc/sysctl.d/50-UnprivilegedPort.conf"
+ regexp: "^net.ipv4.ip_unprivileged_port_start="
+ line: "net.ipv4.ip_unprivileged_port_start={{ host_unprivileged_port_start }}"
+ create: true
+ register: sysctl
+
+- name: Reload sysctl
+ ansible.builtin.shell: "sysctl -p /etc/sysctl.d/50-UnprivilegedPort.conf"
+ when: sysctl.changed
generated by cgit (git 2.34.1) at 2025-12-06 08:26:28 +0000