b5fffff87b
Change-Id: I95dca97c8f79a96d7710b33cb0ee243d3234b7ca
23 lines
551 B
YAML
23 lines
551 B
YAML
- name: Persist ipv4 rules
|
|
become: yes
|
|
copy:
|
|
content: "{{ iptables_rules.stdout }}"
|
|
dest: "/etc/sysconfig/iptables"
|
|
mode: 0644
|
|
|
|
- name: Persist ipv6 rules
|
|
become: yes
|
|
copy:
|
|
content: "{{ ip6tables_rules.stdout }}"
|
|
dest: "/etc/sysconfig/ip6tables"
|
|
mode: 0644
|
|
|
|
- name: Configure rc.local to restore saved rules on restart
|
|
become: yes
|
|
blockinfile:
|
|
path: /etc/init.d/boot.local
|
|
insertbefore: "exit 0"
|
|
content: |
|
|
iptables-restore /etc/sysconfig/iptables
|
|
ip6tables-restore /etc/sysconfig/ip6tables
|