add iptables tail rules

2017-07-13 21:27:26 +02:00 · 2017-07-13 21:27:26 +02:00 · 91c7cfef59
parent 3fa6a3c5fc
commit 91c7cfef59
1 changed files with 9 additions and 0 deletions
--- a/tasks/config.yml
+++ b/tasks/config.yml
@ -23,3 +23,12 @@
    state: present
    rules: '{{ iptables_default_head }}'
  tags: iptables
+
+- name: Set default iptables tail rules
+  iptables_raw:
+    name: iptables_default_tail
+    weight: 99
+    keep_unmanaged: '{{ iptables_keep_unmanaged }}'
+    state: '{{ (iptables_default_tail != "" ) | ternary("present", "absent") }}'
+    rules: '{{ iptables_default_tail }}'
+  tags: iptables