From 91c7cfef59d99da602a4c67811735bf0ebab1ba2 Mon Sep 17 00:00:00 2001
From: Robert Kaussow <mail@geeklabor.de>
Date: Thu, 13 Jul 2017 21:27:26 +0200
Subject: [PATCH] add iptables tail rules

---
 tasks/config.yml | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/tasks/config.yml b/tasks/config.yml
index c21bb2a..6e25393 100644
--- a/tasks/config.yml
+++ b/tasks/config.yml
@@ -23,3 +23,12 @@
     state: present
     rules: '{{ iptables_default_head }}'
   tags: iptables
+
+- name: Set default iptables tail rules
+  iptables_raw:
+    name: iptables_default_tail
+    weight: 99
+    keep_unmanaged: '{{ iptables_keep_unmanaged }}'
+    state: '{{ (iptables_default_tail != "" ) | ternary("present", "absent") }}'
+    rules: '{{ iptables_default_tail }}'
+  tags: iptables