r/collectd-prometheus: Work w/o firewalld, selinux
Tasks that configure the SELinux policy obviously only make sense if the host uses SELinux. Similarly, if the host does not use FirewallD, configuring firewall rules doesn't work.
This commit is contained in:
@@ -21,6 +21,7 @@
|
|||||||
dest: /var/lib/selinux/collectd-local.pp
|
dest: /var/lib/selinux/collectd-local.pp
|
||||||
notify:
|
notify:
|
||||||
- install collectd-local selinux module
|
- install collectd-local selinux module
|
||||||
|
when: ansible_selinux.status == 'enabled'
|
||||||
tags:
|
tags:
|
||||||
- selinux
|
- selinux
|
||||||
|
|
||||||
@@ -40,6 +41,7 @@
|
|||||||
permanent: false
|
permanent: false
|
||||||
immediate: true
|
immediate: true
|
||||||
state: '{{ "enabled" if collectd_prometheus_allow_outside else "disabled" }}'
|
state: '{{ "enabled" if collectd_prometheus_allow_outside else "disabled" }}'
|
||||||
|
when: host_uses_firewalld|d(true)|bool
|
||||||
tags: firewalld
|
tags: firewalld
|
||||||
|
|
||||||
- name: ensure firewall is configured for collectd write_prometheus plugin
|
- name: ensure firewall is configured for collectd write_prometheus plugin
|
||||||
@@ -48,4 +50,5 @@
|
|||||||
permanent: true
|
permanent: true
|
||||||
immediate: false
|
immediate: false
|
||||||
state: '{{ "enabled" if collectd_prometheus_allow_outside else "disabled" }}'
|
state: '{{ "enabled" if collectd_prometheus_allow_outside else "disabled" }}'
|
||||||
|
when: host_uses_firewalld|d(true)|bool
|
||||||
tags: firewalld
|
tags: firewalld
|
||||||
|
|||||||
Reference in New Issue
Block a user