foo.sh/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

pf: Use templates for static firewall configs

Browse source
This commit is contained in:
Timo Makinen 2025-06-17 20:40:23 +00:00
parent c4e0029780
commit b8f08d5aaf
5 changed files with 3 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

2
group_vars/dnagw.yml
View file

@ -45,7 +45,7 @@ unbound_zones:
- home.foo.sh - home.foo.sh
# use custom firewall config # use custom firewall config
firewall_src: pf.conf.gw_home.j2 firewall_src: pf.conf.gw_dna.j2
# unbound config # unbound config
unbound_config: unbound.conf.dna.j2 unbound_config: unbound.conf.dna.j2

2
group_vars/fsolgw.yml
View file

@ -9,5 +9,5 @@ network_vip_interfaces:
pass: "{{ vip145_pass }}" pass: "{{ vip145_pass }}"
# use custom firewall and ifstated config # use custom firewall and ifstated config
firewall_src: pf.conf.gw_fsol firewall_src: pf.conf.gw_fsol.j2
ifstated_config: ifstated-fsol.conf ifstated_config: ifstated-fsol.conf

2
roles/pf/tasks/main.yml
View file

@ -1,6 +1,6 @@
--- ---
- name: Copy pf.conf - name: Copy pf.conf
ansible.builtin.copy: ansible.builtin.template:
src: "{{ firewall_src }}" src: "{{ firewall_src }}"
dest: /etc/pf.conf dest: /etc/pf.conf
mode: "0600" mode: "0600"

0
roles/pf/files/pf.conf.gw_home → roles/pf/templates/pf.conf.gw_dna.j2
View file

0
roles/pf/files/pf.conf.gw_fsol → roles/pf/templates/pf.conf.gw_fsol.j2
View file