41 lines
770 B
YAML
41 lines
770 B
YAML
- name: Set the hostname per inventory
|
|
hostname:
|
|
name: "{{ inventory_hostname }}"
|
|
use: systemd
|
|
|
|
- name: Install firewalld
|
|
package:
|
|
name: firewalld
|
|
state: latest
|
|
|
|
- name: Start and enable firewalld
|
|
service:
|
|
name: firewalld
|
|
state: started
|
|
enabled: true
|
|
|
|
- name: Add ssh to firewalld
|
|
ansible.posix.firewalld:
|
|
service: ssh
|
|
state: enabled
|
|
permanent: true
|
|
immediate: true
|
|
offline: true
|
|
|
|
- name: Add dhcpv6-client to firewalld
|
|
ansible.posix.firewalld:
|
|
service: dhcpv6-client
|
|
state: enabled
|
|
permanent: true
|
|
immediate: true
|
|
offline: true
|
|
|
|
- name: Disallow cockpit firewalld
|
|
ansible.posix.firewalld:
|
|
service: cockpit
|
|
state: disabled
|
|
permanent: true
|
|
immediate: true
|
|
offline: true
|
|
|