ansible/xoxys.nginx
1
0
Fork 0
Code Issues Pull Requests Releases Activity

remove iptables integration
Some checks failed
continuous-integration/drone/push Build is failing
Details

Browse Source
This commit is contained in:
Robert Kaussow 2019-10-28 20:09:33 +01:00
parent 951ba00bf6
commit 89d6acff1c
2 changed files with 0 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
defaults/main.yml
View File

@ -39,14 +39,6 @@ nginx_gzip_types:
- text/css - text/css
- application/xml - application/xml
nginx_iptables_enabled: False
nginx_iptables_rules_default:
- name: allow_nginx_ports
rules: |
-A INPUT -p tcp -m multiport --dports 80,443 -j ACCEPT
state: present
nginx_iptables_rules_extra: []
nginx_tls_enabled: False nginx_tls_enabled: False
nginx_tls_versions: nginx_tls_versions:
- TLSv1.2 - TLSv1.2

12
tasks/install.yml
View File

@ -76,18 +76,6 @@
validate: /bin/bash -c 'nginx -t -c /dev/stdin <<< "events {worker_connections 10;} http { include %s; }"' validate: /bin/bash -c 'nginx -t -c /dev/stdin <<< "events {worker_connections 10;} http { include %s; }"'
notify: __nginx_reload notify: __nginx_reload
- name: Open ports in iptables
iptables_raw:
name: "{{ item.name }}"
rules: "{{ item.rules }}"
state: "{{ item.state | default('present') }}"
weight: "{{ item.weight | default(omit) }}"
table: "{{ item.table | default(omit) }}"
loop: "{{ nginx_iptables_rules_default + nginx_iptables_rules_extra }}"
loop_control:
label: "{{ item.name }}"
when: nginx_iptables_enabled | bool
- name: Set selinux booleans - name: Set selinux booleans
seboolean: seboolean:
name: "{{ item.name }}" name: "{{ item.name }}"