dustin/configpolicy
1
1
Fork 0
Code Issues Releases Activity
Files
b78af05fd86259a59d170e8dcb0472fc1d388bcc
configpolicy/roles/nftables/tasks/main.yml
Dustin C. Hatch 5d1b646d14 roles/nftables: Basic nftables configuration 
The *nftables* role handles installation and basic configuration of the
userspace components for nftables.

Note that this role currently only works on Fedora, and requires
*nftables* 0.8 or later for wildcard includes.
2018-03-27 20:44:43 -05:00

30 lines
610 B
YAML
Raw Blame History

- name: ensure nftables is installed
dnf:
name: nftables >= 0.8
state: present
enablerepo: updates-testing
tags:
- install
- name: ensure nftables ruleset drop-in directory exists
file:
path=/etc/nftables/ruleset.d
mode=0755
state=directory
- name: ensure nftables is configured
copy:
src=nftables.conf
dest=/etc/sysconfig/nftables.conf
mode=0644
notify: reload nftables
- name: ensure nftables starts at boot
service:
name=nftables
enabled=yes
- meta: flush_handlers
- name: ensure nftables is running
service:
name=nftables
state=started
Reference in New Issue View Git Blame Copy Permalink