ansible-role-firewall
ansible-role-firewall copied to clipboard
mikegleasonjr
A role to manage iptables rules which doesn't suck.
Thanks for this awesome role! Unfortunately the ansible run doesn't fail even if the generated `iptables.v(46).generated` file contain errors. E. g. for testing I changed the ssh port to something...
Hi, Same way as #32, my host is in multiple group with different rules to merge but I dont want to turn on the global merge config option. I updated...
According to https://wiki.debian.org/nftables setting iptables-nft with update-alternatives in Debian Buster for using iptables syntax with the nf_tables kernel subsystem.
My inventory defines hosts and groups. Each group has a firewall_v4_group_rules dictionary defined. I was expecting to get a merge of all the firewall_v4_group_rules from each group a host belongs...
In file `tasks/persist-redhat.yml` to compare version number it's better to use filter `|int >= 7` and `|int < 7` - then the comparision will work correctly also for versions bigger...
In the currenmt version of this role, iptables is installed, enabled and started. In RHEL7 and CentOS7, the alternative firewall daemon "firewalld" is used by default. This daemon has to...
We had a PR (#21) that made sure `iptables` was installed. Is it really the case on supported OSes (centos-6, centos-7, ubuntu-xenial, ubuntu-trusty), that maybe `iptables` is not installed? Maybe...
I run a complex ansible setup with many hosts and many overlapping groups. It sometimes happens that i have variables overlapping in my group_vars. I find myself not wanting to...
Could you add backup: yes on the rules templates tasks so that an horrible mistake could be easily undone ? By the way, thanks for this role and the smart...
Metadata
Owner
Metadata
A role to manage iptables rules which doesn't suck.