proxmox-backup: add firewall

2024-09-10 14:53:46 +02:00 · 2024-09-10 14:53:46 +02:00 · 11a5ec85b3
parent f2fbd0c848
commit 11a5ec85b3
3 changed files with 23 additions and 2 deletions
--- a/roles/proxmox-backup/handlers/main.yml
+++ b/roles/proxmox-backup/handlers/main.yml
@ -10,3 +10,9 @@
  package:
    update_cache: yes
  when: "'handler' not in ansible_skip_tags"
+
+- name: reload nftables
+  service:
+    name: nftables
+    state: reloaded
+  when: "'handler' not in ansible_skip_tags"
--- a/roles/proxmox-backup/tasks/firewall.yml
+++ b/roles/proxmox-backup/tasks/firewall.yml
@ -0,0 +1,16 @@
+- name: Install nftables
+  package:
+    name: nftables
+
+- name: Configure nftables
+  template:
+    dest: /etc/nftables.conf
+    src: nftables.conf.j2
+    mode: 0644
+  notify: reload nftables
+
+- name: Enable nftables
+  service:
+    name: nftables
+    enabled: true
+    state: started
--- a/roles/proxmox-backup/tasks/main.yml
+++ b/roles/proxmox-backup/tasks/main.yml
@ -83,5 +83,4 @@
      notify: reboot


-
- meta: flush_handlers
+- include_tasks: firewall.yml