foo.sh/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

base: Use nftables for el9 and newer

Browse source
This commit is contained in:
Timo Makinen 2022-10-27 18:27:43 +00:00
parent 6ca1808bb5
commit ac596baca9
1 changed files with 10 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
roles/base/tasks/RedHat.yml
View file

@ -8,11 +8,20 @@
name: "{{ role }}" name: "{{ role }}"
with_items: with_items:
- selinux # selinux first to get fcontexts working - selinux # selinux first to get fcontexts working
- iptables
- rsyslog - rsyslog
loop_control: loop_control:
loop_var: role loop_var: role
- name: install firewall
ansible.builtin.include_role:
name: iptables
when: ansible_distribution_major_version|int <= 8
- name: install firewall
ansible.builtin.include_role:
name: nftables
when: ansible_distribution_major_version|int >= 9
- name: fix selinux context from /export - name: fix selinux context from /export
community.general.sefcontext: community.general.sefcontext:
path: "/export" path: "/export"