ansible/xoxys.iptables
1
0
Fork 0
Code Issues Pull Requests Releases Activity

fix default rules
All checks were successful
continuous-integration/drone/push Build is passing
Details

Browse Source
This commit is contained in:
Robert Kaussow 2019-09-18 16:58:47 +02:00
parent 32a6f97981
commit a1252c600a
2 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
molecule/ec2-centos-7/tests/test_default.py
View File

@ -27,7 +27,7 @@ def test_iptables_default_rules(host):
'-A INPUT -i lo -m comment --comment "ansible[iptables_default_head]" -j ACCEPT', '-A INPUT -i lo -m comment --comment "ansible[iptables_default_head]" -j ACCEPT',
'-A INPUT -p icmp -m icmp --icmp-type 8 -m comment --comment "ansible[iptables_default_head]" -j ACCEPT', '-A INPUT -p icmp -m icmp --icmp-type 8 -m comment --comment "ansible[iptables_default_head]" -j ACCEPT',
'-A INPUT -p tcp -m tcp --dport 22 -m comment --comment "ansible[iptables_default_head]" -j ACCEPT', '-A INPUT -p tcp -m tcp --dport 22 -m comment --comment "ansible[iptables_default_head]" -j ACCEPT',
'-A INPUT -j REJECT' '-A INPUT -m comment --comment "ansible[iptables_default_tail]" -j REJECT --reject-with icmp-port-unreachable'
] ]
rules = host.iptables.rules("filter", "INPUT") rules = host.iptables.rules("filter", "INPUT")

2
tasks/config.yml
View File

@ -8,7 +8,7 @@
state: '{{ item.state }}' state: '{{ item.state }}'
weight: '{{ item.weight | default(omit) }}' weight: '{{ item.weight | default(omit) }}'
table: '{{ item.table | default(omit) }}' table: '{{ item.table | default(omit) }}'
with_items: '{{ iptables_custom_rules }}' loop: '{{ iptables_custom_rules }}'
loop_control: loop_control:
label: "{{ item.name }}" label: "{{ item.name }}"