foo.sh/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

nftables: Fix deprecation warnings

Browse source
This commit is contained in:
Timo Makinen 2022-12-13 20:12:45 +00:00
parent 3a76cd0c87
commit 354b5b293c
1 changed files with 4 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
roles/nftables/templates/nftables.conf.j2
View file

@ -11,10 +11,10 @@ table ip filter {
{% for rule in firewall_in %}
{% if rule.from is defined %}
{% for from in rule.from %}
{% if not from | ipv4 and not from | ipv6 %}
{% if not from | ansible.utils.ipv4 and not from | ansible.utils.ipv6 %}
{% set from = lookup('dig', from) %}
{% endif %}
{% if from | ipv4 %}
{% if from | ansible.utils.ipv4 %}
ip saddr {{ from }} {{ rule.proto }} dport {{ rule.port }} accept
{% endif %}
{% endfor %}
@ -38,10 +38,10 @@ table ip6 filter {
{% for rule in firewall_in %}
{% if rule.from is defined %}
{% for from in rule.from %}
{% if not from | ipv4 and not from | ipv6 %}
{% if not from | ansible.utils.ipv4 and not from | ansible.utils.ipv6 %}
{% set from = lookup('dig', from) %}
{% endif %}
{% if from | ipv6 %}
{% if from | ansible.utils.ipv6 %}
ip6 saddr {{ from }} {{ rule.proto }} dport {{ rule.port }} accept
{% endif %}
{% endfor %}