From d31c9066a391e35ccc562038a0dee9a6fb723a49 Mon Sep 17 00:00:00 2001
From: Robert Kaussow <mail@geeklabor.de>
Date: Wed, 30 Oct 2019 22:36:33 +0100
Subject: [PATCH] add default values for iptables rules state

---
 tasks/config.yml | 34 +++++++++++++++++-----------------
 1 file changed, 17 insertions(+), 17 deletions(-)

diff --git a/tasks/config.yml b/tasks/config.yml
index 2ffb409..b8d3da0 100644
--- a/tasks/config.yml
+++ b/tasks/config.yml
@@ -3,23 +3,23 @@
   block:
     - name: Set custom iptables rules
       iptables_raw:
-        name: 'iptables_custom_rules_{{ item.name }}'
-        rules: '{{ item.rules }}'
-        state: '{{ item.state }}'
-        weight: '{{ item.weight | default(omit) }}'
-        table: '{{ item.table | default(omit) }}'
-      loop: '{{ iptables_custom_rules }}'
+        name: "iptables_custom_rules_{{ item.name }}"
+        rules: "{{ item.rules }}"
+        state: "{{ item.state | default('present') }}"
+        weight: "{{ item.weight | default(omit) }}"
+        table: "{{ item.table | default(omit) }}"
+      loop: "{{ iptables_custom_rules }}"
       loop_control:
         label: "{{ item.name }}"
 
     - name: Set applications iptables rules
       iptables_raw:
-        name: '{{ item.name }}'
-        rules: '{{ item.rules }}'
-        state: '{{ item.state }}'
-        weight: '{{ item.weight | default(omit) }}'
-        table: '{{ item.table | default(omit) }}'
-      loop: '{{ iptables_app_rules + iptables_app_rules_extra }}'
+        name: "{{ item.name }}"
+        rules: "{{ item.rules }}"
+        state: "{{ item.state | default('present') }}"
+        weight: "{{ item.weight | default(omit) }}"
+        table: "{{ item.table | default(omit) }}"
+      loop: "{{ iptables_app_rules + iptables_app_rules_extra }}"
       loop_control:
         label: "{{ item.name }}"
 
@@ -27,16 +27,16 @@
       iptables_raw:
         name: iptables_default_head
         weight: 10
-        keep_unmanaged: '{{ iptables_keep_unmanaged }}'
+        keep_unmanaged: "{{ iptables_keep_unmanaged }}"
         state: present
-        rules: '{{ iptables_default_head }}'
+        rules: "{{ iptables_default_head }}"
 
     - name: Set default iptables tail rules
       iptables_raw:
         name: iptables_default_tail
         weight: 99
-        keep_unmanaged: '{{ iptables_keep_unmanaged }}'
-        state: '{{ (not iptables_default_tail) | ternary("absent", "present") }}'
-        rules: '{{ iptables_default_tail }}'
+        keep_unmanaged: "{{ iptables_keep_unmanaged }}"
+        state: "{{ (not iptables_default_tail) | ternary('absent', 'present') }}"
+        rules: "{{ iptables_default_tail }}"
   become: True
   become_user: root