0bb84bc58e
We configured iptables rules but did not persist them. This meant that rules would be flushed when restarting iptables or the instance. Change-Id: I9d90f55323a33d6a0f0dda1f7ab25d10984fa6cb
25 lines
509 B
YAML
25 lines
509 B
YAML
- name: Install iptables-persistent
|
|
become: yes
|
|
package:
|
|
name: iptables-persistent
|
|
state: installed
|
|
|
|
- name: Persist ipv4 rules
|
|
become: yes
|
|
copy:
|
|
content: "{{ iptables_rules.stdout }}"
|
|
dest: "/etc/iptables/rules.v4"
|
|
|
|
- name: Persist ipv6 rules
|
|
become: yes
|
|
copy:
|
|
content: "{{ ip6tables_rules.stdout }}"
|
|
dest: "/etc/iptables/rules.v6"
|
|
|
|
- name: Ensure netfilter-persistent is started
|
|
become: yes
|
|
service:
|
|
name: netfilter-persistent
|
|
state: started
|
|
enabled: yes
|