kayobe/ansible/group_vars/compute/firewall
Mark Goddard 7d15aa16f2 Support configuration of firewalld
Adds support for configuring firewalld for CentOS hosts managed by
Kayobe.

* create zones
* set default zone
* set zone for interfaces
* define rules

Change-Id: Id60e25e129e323f3c07e702bb81a11efc530fb3e
Story: 2008991
Task: 42644
2021-10-04 10:36:13 +01:00

22 lines
816 B
Plaintext

---
###############################################################################
# Compute node firewalld configuration.
# Whether to install and enable firewalld.
firewalld_enabled: "{{ compute_firewalld_enabled }}"
# A list of zones to create. Each item is a dict containing a 'zone' item.
firewalld_zones: "{{ compute_firewalld_zones }}"
# A firewalld zone to set as the default. Default is unset, in which case the
# default zone will not be changed.
firewalld_default_zone: "{{ compute_firewalld_default_zone }}"
# A list of firewall rules to apply. Each item is a dict containing arguments
# to pass to the firewalld module. Arguments are omitted if not provided, with
# the following exceptions:
# - offline: true
# - permanent: true
# - state: enabled
firewalld_rules: "{{ compute_firewalld_rules }}"