dtwersky

@zyphermonkey I have wanted to do this so many times, but I never got around to it, because of the way I wanted to implement it. What I was thinking...

> These should really be Firewalld service files and not just firewalld one-off open ports, that way you can manage them with all the features of services including applying the...

> It almost would be easier to have services be on a per-port basis - 1 service for mgmt, 1 service for web, etc... so that they can be disabled...

@zyphermonkey The reason we decided to not remove the package is because if you run it against multiple instances, it will need to download the package many times. It annoys...

Thanks for the PR. Sorry I was out for a bit, so I wasn't able to have a look at it. This is a goo suggestion, but the reason it...

@zyphermonkey I think that's the way to do it. The only problem is that some OS versions differ as well, and then you'll need to have separate vars for `ansible_distribution_version`...

~~Good suggestion. I tested this, and it seems that when you restart the splunk service, it gets set to the primary group the `splunk_nix_user` is set to. the `splunk_nix_group` is...

@merillr I don't see an issue with this being implemented, and as you said, this can be done by adding an option to install the package or adding a custom...

@schneewe That is an error in the `README.md`. When the instance is a LM, you just set the `splunk_license_group` to `Enterprise`.

@schneewe you are correct about the `pass4SymmKey`. Strange that the variable does not exist anywhere. Maybe we should add a var called `splunk_lm_key` just like there is `splunk_ds_key`, and this...