Import firewall role from network repo

Move, actually.
2026-02-23 09:56:33 +01:00 · 2026-02-23 09:56:33 +01:00 · 754c3da31f
commit 754c3da31f
parent 88061d97b2
21 changed files with 801 additions and 1 deletions
--- a/roles/firewall/handlers/main.yml
+++ b/roles/firewall/handlers/main.yml
@ -0,0 +1,45 @@
+- name: enable interfaces
+  command: ifup --auto
+  when: "'handler' not in ansible_skip_tags"
+
+- name: mkinitfs
+  command: mkinitfs
+  when: "'handler' not in ansible_skip_tags"
+
+- name: reboot
+  reboot:
+  when: "'handler' not in ansible_skip_tags"
+
+- name: reload frr
+  command: /usr/lib/frr/frr-reload.py --reload /etc/frr/frr.conf
+  when: "'handler' not in ansible_skip_tags"
+
+- name: reload nftables
+  service:
+    name: nftables
+    state: reloaded
+  when: "'handler' not in ansible_skip_tags"
+
+- name: restart conntrackd
+  service:
+    name: conntrackd
+    state: restarted
+  when: "'handler' not in ansible_skip_tags"
+
+- name: restart frr
+  service:
+    name: frr
+    state: restarted
+  when: "'handler' not in ansible_skip_tags"
+
+- name: reload sshd.friwall
+  service:
+    name: sshd.friwall
+    state: reloaded
+  when: "'handler' not in ansible_skip_tags"
+
+- name: restart sshd.friwall
+  service:
+    name: sshd.friwall
+    state: restarted
+  when: "'handler' not in ansible_skip_tags"