alanorth/ansible-personal
1
0
Fork 0
Code Issues 4 Pull Requests Projects Releases Wiki Activity

roles/common: Fix nftables handler in Debian firewall

Browse Source 
We used to use reload, but now the idempotent thing to do is to use
restart instead of reload.
This commit is contained in:
Alan Orth 2021-09-07 15:43:33 +03:00
parent d261f81642
commit 479127a5e4
Signed by: alanorth
GPG Key ID: 0FB860CC9C45B1B9
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
roles/common/tasks/firewall_Debian.yml
View File

@ -28,7 +28,7 @@
when: ansible_distribution_major_version is version('11', '>=') when: ansible_distribution_major_version is version('11', '>=')
template: src=nftables.conf.j2 dest=/etc/nftables.conf owner=root mode=0644 template: src=nftables.conf.j2 dest=/etc/nftables.conf owner=root mode=0644
notify: notify:
- reload nftables - restart nftables
- name: Create /etc/nftables extra config directory - name: Create /etc/nftables extra config directory
when: ansible_distribution_major_version is version('11', '>=') when: ansible_distribution_major_version is version('11', '>=')
@ -44,7 +44,7 @@
- abuseipdb-ipv4.nft - abuseipdb-ipv4.nft
- abuseipdb-ipv6.nft - abuseipdb-ipv6.nft
notify: notify:
- reload nftables - restart nftables
- name: Use iptables backend in firewalld - name: Use iptables backend in firewalld
when: ansible_distribution_major_version is version('10', '==') when: ansible_distribution_major_version is version('10', '==')