iiab/roles/2-common/tasks/iptables.yml

- name: Disable firewalld service (OS's other than debuntu)
  service:
    name: firewalld
    enabled: no
  when: not is_debuntu

- name: Use larger hammer to disable firewalld -- 2 symbolic links involved (OS's other than debuntu)
  shell: "systemctl disable firewalld.service"
  when: not is_debuntu

- name: Mask firewalld service (OS's other than debuntu)
  shell: 'systemctl mask firewalld'
  ignore_errors: yes
  when: not installing and not is_debuntu

- name: Stop firewalld service (OS's other than debuntu)
  service:
    name: firewalld
    state: stopped
  ignore_errors: yes
  when: not installing and not is_debuntu

- name: Remove iptables.service file from /etc
  file:
    path: /etc/systemd/system/iptables.service
    state: absent

- name: Remove iptables-xs.service file from /etc
  file:
    path: /etc/systemd/system/iptables-xs.service
    state: absent

- name: Install iptables service package (debuntu)
  package:
    name: iptables-persistent
    state: present
  when: is_debuntu
  tags:
    - download

- name: Install iptables service package (OS's other than debuntu)
  package:
    name: iptables-services
    state: present
  when: not is_debuntu
  tags:
    - download

- name: Install iptables services
  template:
    src: "{{ item.0 }}"
    dest: "{{ item.1 }}"
    owner: root
    group: root
    mode: "{{ item.2 }}"
  with_items:
   - { 0: 'iptables-config', 1: '/etc/sysconfig/iptables-config', 2: '0644' }

- name: Install Debian config (debuntu)
  template:
    src: iptables
    dest: /etc/network/if-pre-up.d/iptables
    mode: 0755
  when: is_debuntu
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`- name: Disable firewalld service (OS's other than debuntu)`
			`service:`
			`name: firewalld`
			`enabled: no`
patch 0002 2017-05-27 23:10:45 +00:00			`when: not is_debuntu`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
Update iptables.yml 2018-02-13 02:55:37 +00:00			`- name: Use larger hammer to disable firewalld -- 2 symbolic links involved (OS's other than debuntu)`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00			`shell: "systemctl disable firewalld.service"`
patch 0002 2017-05-27 23:10:45 +00:00			`when: not is_debuntu`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`- name: Mask firewalld service (OS's other than debuntu)`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00			`shell: 'systemctl mask firewalld'`
			`ignore_errors: yes`
patch 0002 2017-05-27 23:10:45 +00:00			`when: not installing and not is_debuntu`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`- name: Stop firewalld service (OS's other than debuntu)`
			`service:`
			`name: firewalld`
			`state: stopped`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00			`ignore_errors: yes`
patch 0002 2017-05-27 23:10:45 +00:00			`when: not installing and not is_debuntu`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
			`- name: Remove iptables.service file from /etc`
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`file:`
			`path: /etc/systemd/system/iptables.service`
			`state: absent`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
			`- name: Remove iptables-xs.service file from /etc`
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`file:`
			`path: /etc/systemd/system/iptables-xs.service`
			`state: absent`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`- name: Install iptables service package (debuntu)`
			`package:`
			`name: iptables-persistent`
			`state: present`
patch 0002 2017-05-27 23:10:45 +00:00			`when: is_debuntu`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00			`tags:`
			`- download`

indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`- name: Install iptables service package (OS's other than debuntu)`
			`package:`
			`name: iptables-services`
			`state: present`
patch 0002 2017-05-27 23:10:45 +00:00			`when: not is_debuntu`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00			`tags:`
			`- download`

			`- name: Install iptables services`
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`template:`
			`src: "{{ item.0 }}"`
			`dest: "{{ item.1 }}"`
			`owner: root`
			`group: root`
			`mode: "{{ item.2 }}"`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00			`with_items:`
iptables 2017-11-09 12:11:15 +00:00			`- { 0: 'iptables-config', 1: '/etc/sysconfig/iptables-config', 2: '0644' }`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`- name: Install Debian config (debuntu)`
			`template:`
			`src: iptables`
			`dest: /etc/network/if-pre-up.d/iptables`
			`mode: 0755`
patch 0002 2017-05-27 23:10:45 +00:00			`when: is_debuntu`