From bfc490b82fef8a973d84d88f1c77c9c5de2ce0d6 Mon Sep 17 00:00:00 2001
From: Robert Kaussow <mail@geeklabor.de>
Date: Mon, 13 Aug 2018 23:18:10 +0200
Subject: [PATCH] fix iptables rule

---
 tasks/nginx.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/tasks/nginx.yml b/tasks/nginx.yml
index a4af4f0..7778cad 100644
--- a/tasks/nginx.yml
+++ b/tasks/nginx.yml
@@ -23,7 +23,7 @@
     iptables_raw:
       name: allow_unifi_nginx_proxy
       state: present
-      rules: '-A OUTPUT -p tcp -d {{ unifi_server_ip }} -m --dport {{ unifi_server_port }} -j ACCEPT'
+      rules: '-A OUTPUT -m state --state NEW -p tcp -d {{ unifi_server_ip }} --dport {{ unifi_server_port }} -j ACCEPT'
     when: unifi_nginx_iptables_enabled
   delegate_to: "{{ unifi_nginx_server }}"
   become: True