pf: Add validation to pf rules

2021-10-07 18:13:04 +00:00 · 2021-10-07 18:13:04 +00:00 · 613f2b2d24
commit 613f2b2d24
parent 7a2b2c0b48
1 changed files with 2 additions and 0 deletions
--- a/roles/pf/tasks/main.yml
+++ b/roles/pf/tasks/main.yml
@ -7,6 +7,7 @@
    mode: 0600
    owner: root
    group: "{{ ansible_wheel }}"
+    validate: pfctl -N -f %s
  notify: reload pf
  when: firewall_src is defined

@ -17,5 +18,6 @@
    mode: 0600
    owner: root
    group: "{{ ansible_wheel }}"
+    validate: pfctl -N -f %s
  notify: reload pf
  when: firewall_src is not defined