summaryrefslogtreecommitdiffstats
path: root/roles/os_firewall/tasks/firewall/iptables.yml
diff options
context:
space:
mode:
Diffstat (limited to 'roles/os_firewall/tasks/firewall/iptables.yml')
-rw-r--r--roles/os_firewall/tasks/firewall/iptables.yml14
1 files changed, 14 insertions, 0 deletions
diff --git a/roles/os_firewall/tasks/firewall/iptables.yml b/roles/os_firewall/tasks/firewall/iptables.yml
index 87e77c083..3d46d6e2d 100644
--- a/roles/os_firewall/tasks/firewall/iptables.yml
+++ b/roles/os_firewall/tasks/firewall/iptables.yml
@@ -41,6 +41,20 @@
changed_when: "'firewalld' in result.stdout"
when: pkg_check.rc == 0
+- name: Check for DOCKER chain
+ shell: iptables -L |grep '^Chain DOCKER'
+ ignore_errors: yes
+ register: check_for_chain
+
+- name: Create DOCKER chain
+ command: iptables -N DOCKER
+ register: create_chain
+ when: check_for_chain.rc != 0
+
+- name: Persist DOCKER chain
+ command: service iptables save
+ when: create_chain.rc == 0
+
- name: Add iptables allow rules
os_firewall_manage_iptables:
name: "{{ item.service }}"
generated by cgit v1.2.1 (git 2.18.0) at 2024-05-20 14:48:12 +0000