- name: Install nftables
  package:
    name: nftables

- name: Configure nftables
  template:
    dest: /etc/nftables.conf
    src: nftables.conf.j2
    mode: 0644
  notify: reload nftables

- name: Enable nftables
  service:
    name: nftables
    enabled: true
    state: started