roles/host/tasks/firewall.yml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26

- name: Modify firewall services
  ansible.posix.firewalld:
    service: "{{ item.service }}"
    state: "{{ item.state }}"
    permanent: true
    immediate: true
  loop: "{{ host_firewall.services }}"
  when: host_firewall.services is defined

- name: Modify firewall ports
  ansible.posix.firewalld:
    port: "{{ item.port }}"
    state: "{{ item.state }}"
    permanent: true
    immediate: true
  loop: "{{ host_firewall.ports }}"
  when: host_firewall.ports is defined

- name: Modify rich rules
  ansible.posix.firewalld:
    rich_rule: "{{ item.rule }}"
    state: "{{ item.state }}"
    permanent: true
    immediate: true
  loop: "{{ host_firewall.rich_rules }}"
  when: host_firewall.rich_rules is defined