From b5ea575d8d0bd4d5e507500ab9d0e1efb1e6f918 Mon Sep 17 00:00:00 2001
From: Alan Orth <alan.orth@gmail.com>
Date: Sun, 1 Aug 2021 14:23:00 +0300
Subject: [PATCH] roles/common: Always restart nftables service

The "reload" capability only exists on Ubuntu, and it is exactly
the same as the "restart" functionality.
---
 roles/common/handlers/main.yml         | 4 ++--
 roles/common/tasks/firewall_Ubuntu.yml | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/roles/common/handlers/main.yml b/roles/common/handlers/main.yml
index 2d84af2..7ca2fbb 100644
--- a/roles/common/handlers/main.yml
+++ b/roles/common/handlers/main.yml
@@ -16,5 +16,5 @@
 - name: reload systemd
   systemd: daemon_reload=yes
 
-- name: reload nftables
-  systemd: name=nftables state=reloaded
+- name: restarted nftables
+  systemd: name=nftables state=restarted
diff --git a/roles/common/tasks/firewall_Ubuntu.yml b/roles/common/tasks/firewall_Ubuntu.yml
index 518265f..8864546 100644
--- a/roles/common/tasks/firewall_Ubuntu.yml
+++ b/roles/common/tasks/firewall_Ubuntu.yml
@@ -34,7 +34,7 @@
     when: ansible_distribution_version is version('20.04', '>=')
     template: src=nftables.conf.j2 dest=/etc/nftables.conf owner=root mode=0644
     notify:
-      - reload nftables
+      - restart nftables
 
   - name: Create /etc/nftables extra config directory
     when: ansible_distribution_version is version('20.04', '>=')
@@ -50,7 +50,7 @@
       - abuseipdb-ipv4.nft
       - abuseipdb-ipv6.nft
     notify:
-      - reload nftables
+      - restart nftables
 
   - name: Copy firewalld public zone file
     when: ansible_distribution_version is version('18.04', '<=')