iiab/roles/2-common/tasks/network.yml

- name: Disable firewalld service (OS's other than debuntu)
  service:
    name: firewalld
    enabled: no
  when: not is_debuntu

# Likely no longer nec as of 2019
- name: Use larger hammer -- systemctl disable firewalld -- 2 symbolic links involved (OS's other than debuntu)
  shell: systemctl disable firewalld.service
  when: not is_debuntu

- name: Mask firewalld service (OS's other than debuntu)
  shell: systemctl mask firewalld
  ignore_errors: yes
  when: not installing and not is_debuntu

- name: Stop firewalld service (OS's other than debuntu)
  service:
    name: firewalld
    state: stopped
  ignore_errors: yes
  when: not installing and not is_debuntu

- name: Remove /etc/systemd/system/iptables.service
  file:
    path: /etc/systemd/system/iptables.service
    state: absent

- name: Install package networkd-dispatcher (OS's other than RaspOS)
  package:
    name: networkd-dispatcher
    state: present
  when: not is_raspbian

- name: Install package iptables-persistent (debuntu)
  package:
    name: iptables-persistent
    state: present
  when: is_debuntu

- name: Install package iptables-services (OS's other than debuntu)
  package:
    name: iptables-services
    state: present
  when: not is_debuntu

- name: Install /etc/sysconfig/iptables-config from template
  template:
    src: iptables-config
    dest: /etc/sysconfig/iptables-config
    # owner: root
    # group: root
    # mode: '0644'

- name: Install /etc/network/if-pre-up.d/iptables from template (debuntu)
  template:
    src: iptables
    dest: /etc/network/if-pre-up.d/iptables
    mode: '0755'
  when: is_debuntu
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`- name: Disable firewalld service (OS's other than debuntu)`
			`service:`
			`name: firewalld`
			`enabled: no`
patch 0002 2017-05-27 23:10:45 +00:00			`when: not is_debuntu`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
Update iptables.yml 2018-10-31 01:38:52 +00:00			`# Likely no longer nec as of 2019`
			`- name: Use larger hammer -- systemctl disable firewalld -- 2 symbolic links involved (OS's other than debuntu)`
			`shell: systemctl disable firewalld.service`
patch 0002 2017-05-27 23:10:45 +00:00			`when: not is_debuntu`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`- name: Mask firewalld service (OS's other than debuntu)`
Update iptables.yml 2018-10-31 01:38:52 +00:00			`shell: systemctl mask firewalld`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00			`ignore_errors: yes`
patch 0002 2017-05-27 23:10:45 +00:00			`when: not installing and not is_debuntu`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`- name: Stop firewalld service (OS's other than debuntu)`
			`service:`
			`name: firewalld`
			`state: stopped`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00			`ignore_errors: yes`
patch 0002 2017-05-27 23:10:45 +00:00			`when: not installing and not is_debuntu`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
Update iptables.yml 2018-10-31 01:38:52 +00:00			`- name: Remove /etc/systemd/system/iptables.service`
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`file:`
			`path: /etc/systemd/system/iptables.service`
			`state: absent`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
ensure networkd-dispatcher is installed 2020-12-08 10:20:42 +00:00			`- name: Install package networkd-dispatcher (OS's other than RaspOS)`
			`package:`
			`name: networkd-dispatcher`
			`state: present`
			`when: not is_raspbian`

Update iptables.yml 2018-10-31 01:38:52 +00:00			`- name: Install package iptables-persistent (debuntu)`
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`package:`
			`name: iptables-persistent`
			`state: present`
Remove "\| bool" 1.5yrs later, as Ansible 2.10 changed conditional_bare_variables default 2020-10-16 20:46:19 +00:00			`when: is_debuntu`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
Update iptables.yml 2018-10-31 01:38:52 +00:00			`- name: Install package iptables-services (OS's other than debuntu)`
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`package:`
			`name: iptables-services`
			`state: present`
patch 0002 2017-05-27 23:10:45 +00:00			`when: not is_debuntu`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
Update iptables.yml 2018-10-31 01:38:52 +00:00			`- name: Install /etc/sysconfig/iptables-config from template`
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`template:`
Update iptables.yml 2018-10-31 01:38:52 +00:00			`src: iptables-config`
Update iptables.yml 2018-10-31 01:50:07 +00:00			`dest: /etc/sysconfig/iptables-config`
Experiment: comment out Ansible tags in 25 files 2020-01-14 01:41:03 +00:00			`# owner: root`
			`# group: root`
			`# mode: '0644'`
initial checkin -- May 27, 2017 2017-05-27 18:09:50 +00:00
Update iptables.yml 2018-10-31 01:38:52 +00:00			`- name: Install /etc/network/if-pre-up.d/iptables from template (debuntu)`
indentation/syntax per new Ansible docs 2018-02-13 02:42:21 +00:00			`template:`
			`src: iptables`
Update iptables.yml 2018-10-31 01:50:07 +00:00			`dest: /etc/network/if-pre-up.d/iptables`
Experiment: comment out Ansible tags in 25 files 2020-01-14 01:41:03 +00:00			`mode: '0755'`
Remove "\| bool" 1.5yrs later, as Ansible 2.10 changed conditional_bare_variables default 2020-10-16 20:46:19 +00:00			`when: is_debuntu`