deleted cruft
This commit is contained in:
@@ -2,12 +2,10 @@
|
||||
- name: Set default firewalld zone to home
|
||||
command:
|
||||
cmd: firewall-cmd --set-default-zone=home
|
||||
become: true
|
||||
|
||||
- name: Change interface to home zone
|
||||
command:
|
||||
cmd: firewall-cmd --zone=home --change-interface={{ network_interface }}
|
||||
become: true
|
||||
|
||||
- name: Add allowed services to home zone
|
||||
firewalld:
|
||||
@@ -16,18 +14,15 @@
|
||||
permanent: yes
|
||||
state: enabled
|
||||
loop: "{{ allowed_services }}"
|
||||
become: true
|
||||
|
||||
- name: Enable logging for denied packets
|
||||
command:
|
||||
cmd: firewall-cmd --set-log-denied=all
|
||||
become: true
|
||||
|
||||
- name: Reload firewalld
|
||||
systemd:
|
||||
name: firewalld
|
||||
state: reloaded
|
||||
become: true
|
||||
|
||||
- name: Ensure SELinux is enabled and in enforcing mode
|
||||
selinux:
|
||||
|
||||
Reference in New Issue
Block a user