---
- name: remove firewalld
  ansible.builtin.package:
    name: firewalld
    state: removed

- name: install packages
  ansible.builtin.package:
    name: nftables
    state: installed

- name: create config
  ansible.builtin.template:
    src: nftables.conf.j2
    dest: /etc/sysconfig/nftables.conf
    mode: 0600
    owner: root
    group: "{{ ansible_wheel }}"
  notify: reload nftables

- name: enable service
  ansible.builtin.service:
    name: nftables
    state: started
    enabled: true