+- name: "Change /etc/fail2ban/jail.conf (iptables -> nftables)"
+ become: true
+ lineinfile:
+ path: /etc/fail2ban/jail.conf
+ regexp: '^banaction = iptables-multiport$'
+ line: 'banaction = nftables-multiport'
+ notify: Restart firewall
+- become: true
+ lineinfile:
+ path: /etc/fail2ban/jail.conf
+ regexp: '^banaction = iptables-multiport-log$'
+ line: 'banaction = nftables-multiport'
+ notify: Restart firewall
+- become: true
+ lineinfile:
+ path: /etc/fail2ban/jail.conf
+ regexp: '^banaction_allports = iptables-allports$'
+ line: 'banaction_allports = nftables-allports'
+ notify: Restart firewall
+