Alan Orth
8851f8f631
This reverts commit 201165cff6.
Turns out this actually breaks initial deployments, because the
cache gets updated in the first task, then you add sources for
nginx and mariadb, but it doesn't update the indexes because the
cache is < 3600 seconds old, so you end up getting the distro's
versions of nginx and mariadb.
19 lines
555 B
YAML
19 lines
555 B
YAML
---
|
|
- name: Install firewalld and deps
|
|
when: ansible_distribution_major_version == '8'
|
|
apt: pkg={{ item }} state=latest
|
|
with_items:
|
|
- firewalld
|
|
- tidy
|
|
tags: packages
|
|
|
|
- name: Copy firewalld public zone file
|
|
when: ansible_distribution_major_version == '8'
|
|
template: src=public.xml.j2 dest=/etc/firewalld/zones/public.xml owner=root mode=0600
|
|
|
|
- name: Format public.xml firewalld zone file
|
|
when: ansible_distribution_major_version == '8'
|
|
shell: tidy -xml -iq -m -w 0 /etc/firewalld/zones/public.xml
|
|
notify:
|
|
- restart firewalld
|