An Ansible role to manage firewalld
None
---# defaults file for ansible-firewalld# Defines any custom zones to create/delete# zone - name of zone## present - whether custom zone is created/deleted## present: true### creates zone if not already present## present: false### deletes zone if presentfirewalld_custom_zones: []# - zone: 'docker'# state: 'enabled'# present: false# - zone: 'privateDNS'# state: 'enabled'# present: true# Defines firewall rulesfirewalld_rules: []# # - service: 'dhcp'# # permanent: true# # zone: 'public'# - service: 'http'# state: 'enabled'# permanent: true# zone: 'public'# - service: 'https'# state: 'enabled'# permanent: true# zone: 'public'# - service: 'ssh'# state: 'enabled'# permanent: true# zone: 'public'# Defines firewall zones (default zones - not custom zones)firewalld_zones: []# - zone: 'home'# permanent: true# state: 'enabled'# interface: 'enp0s3'# - zone: 'public'# permanent: true# state: 'enabled'# interface: 'enp0s8'
None
---- hosts: test-nodesvars:firewalld_custom_zones:- zone: 'privateDNS'state: 'enabled'present: truefirewalld_enable_immediately: truefirewalld_rules:- service: 'dhcp'permanent: truestate: 'enabled'- service: 'dns'permanent: truestate: 'enabled'zone: 'privateDNS'- service: 'http'state: 'enabled'permanent: truezone: 'public'- service: 'https'state: 'enabled'permanent: truezone: 'public'- service: 'ssh'state: 'enabled'permanent: truefirewalld_zones:- zone: 'home'permanent: truestate: 'enabled'interface: 'enp0s3'- zone: 'public'permanent: truestate: 'enabled'interface: 'enp0s8'pri_domain_name: 'test.vagrant.local'roles:- role: ansible-firewalldtasks:
MIT
Larry Smith Jr.
