From 479127a5e43ae1ee11ac805619632f5c39d1220c Mon Sep 17 00:00:00 2001
From: Alan Orth <alan.orth@gmail.com>
Date: Tue, 7 Sep 2021 15:43:33 +0300
Subject: [PATCH] roles/common: Fix nftables handler in Debian firewall

We used to use reload, but now the idempotent thing to do is to use
restart instead of reload.
---
 roles/common/tasks/firewall_Debian.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/roles/common/tasks/firewall_Debian.yml b/roles/common/tasks/firewall_Debian.yml
index 97f7d8e..cfba6b3 100644
--- a/roles/common/tasks/firewall_Debian.yml
+++ b/roles/common/tasks/firewall_Debian.yml
@@ -28,7 +28,7 @@
     when: ansible_distribution_major_version is version('11', '>=')
     template: src=nftables.conf.j2 dest=/etc/nftables.conf owner=root mode=0644
     notify:
-      - reload nftables
+      - restart nftables
 
   - name: Create /etc/nftables extra config directory
     when: ansible_distribution_major_version is version('11', '>=')
@@ -44,7 +44,7 @@
       - abuseipdb-ipv4.nft
       - abuseipdb-ipv6.nft
     notify:
-      - reload nftables
+      - restart nftables
 
   - name: Use iptables backend in firewalld
     when: ansible_distribution_major_version is version('10', '==')