From fe9b1edca5c669401bc74bbc4c9a08e8bcebc5c6 Mon Sep 17 00:00:00 2001 From: Robert Kaussow Date: Mon, 28 Oct 2019 20:02:08 +0100 Subject: [PATCH] remove iptables integration --- .gitignore | 2 +- defaults/main.yml | 7 ------- tasks/install.yml | 12 ------------ 3 files changed, 1 insertion(+), 20 deletions(-) diff --git a/.gitignore b/.gitignore index 5becda8..d97b7cd 100644 --- a/.gitignore +++ b/.gitignore @@ -1,6 +1,6 @@ # ---> Ansible *.retry -filter/plugins/ +plugins library # ---> Python diff --git a/defaults/main.yml b/defaults/main.yml index ffd6b7e..7552d44 100644 --- a/defaults/main.yml +++ b/defaults/main.yml @@ -27,13 +27,6 @@ homeassistant_tls_key_path: "{{ homeassistant_base_dir }}/tls/private/mykey.pem" homeassistant_tls_cert_source: mycert.pem homeassistant_tls_key_source: mykey.pem -homeassistant_iptables_enabled: False -homeassistant_open_ports: - - name: allow_homeassistant_web - rules: | - -A INPUT -m state --state NEW -p tcp --dport {{ homeassistant_http_bind_port }} -j ACCEPT - state: present - # @var homeassistant_cmdline_override_enabled:description: > # Override `/boot/cmdline.txt` with given conten. This can be necessary # if you use searial hardware, but be careful! Wrong configuration diff --git a/tasks/install.yml b/tasks/install.yml index 3869161..45671f9 100644 --- a/tasks/install.yml +++ b/tasks/install.yml @@ -53,17 +53,5 @@ src: "etc/systemd/system/homeassistant.service.j2" dest: "/etc/systemd/system/homeassistant.service" notify: __homeassistant_restart - - - name: Open ports in iptables - iptables_raw: - name: "{{ item.name }}" - rules: "{{ item.rules }}" - state: "{{ item.state }}" - weight: "{{ item.weight | default(omit) }}" - table: "{{ item.table | default(omit) }}" - loop: "{{ homeassistant_open_ports }}" - loop_control: - label: "{{ item.name }}" - when: homeassistant_iptables_enabled | bool become: True become_user: root