roles/common: Remove iptables on newer Debian

2021-09-27 10:35:38 +03:00 · 2021-09-27 10:35:38 +03:00 · a4acc85704
parent f7b9aa67f5
commit a4acc85704
1 changed files with 4 additions and 0 deletions
--- a/roles/common/tasks/firewall_Debian.yml
+++ b/roles/common/tasks/firewall_Debian.yml
@ -25,6 +25,10 @@
  - name: Install firewall packages
    apt: pkg={{ debian_firewall_packages }} state=present cache_valid_time=3600

+  - name: Remove iptables on newer Debian
+    when: ansible_distribution_major_version is version('11', '>=')
+    apt: pkg=iptables state=absent
+
  - name: Copy nftables.conf
    when: ansible_distribution_major_version is version('11', '>=')
    template: src=nftables.conf.j2 dest=/etc/nftables.conf owner=root mode=0644