From 263390f833f267cfd67622e206f79567883d67d4 Mon Sep 17 00:00:00 2001
From: Robert Kaussow <mail@geeklabor.de>
Date: Sun, 27 Oct 2019 16:37:27 +0100
Subject: [PATCH] remove iptables integration

---
 defaults/main.yml | 1 -
 tasks/config.yml  | 7 -------
 2 files changed, 8 deletions(-)

diff --git a/defaults/main.yml b/defaults/main.yml
index d7b1d19..3a8e18d 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -14,7 +14,6 @@ postgres_log_filename: postgresql.log
 postgres_log_rotation_age: 1d
 postgres_log_rotation_size: 0
 
-postgres_iptables_enabled: False
 postgres_connection_port: 5432
 postgres_connection_addresses:
   - localhost
diff --git a/tasks/config.yml b/tasks/config.yml
index e00a0e3..81dc979 100644
--- a/tasks/config.yml
+++ b/tasks/config.yml
@@ -29,12 +29,5 @@
       loop_control:
         label: "{{ item.address | default('samehost') }}:{{ item.databases | default(['all']) | join(',') }}:{{ item.users | default(['all']) | join(',') }}"
       notify: __postgres_restart
-
-    - name: Open ports in iptables
-      iptables_raw:
-        name: allow_postgres_port
-        state: present
-        rules: '-A INPUT -m state --state NEW -p tcp --dport {{ postgres_connection_port }} -j ACCEPT'
-      when: postgres_iptables_enabled | bool
   become: True
   become_user: root