name: ['fail2ban', 'iptables-services']
state: latest
update_cache: yes
- register: services
+ notify: Restart firewall
- name: Disable firewalld
become: true
directory_mode: '0750'
mode: '0750'
force: no
- register: etc
+ notify: Restart firewall
- name: Fix permissions for /etc/network/functions
become: true
file:
path: /etc/network/functions.phd
mode: '0640'
- register: functions
-
-- name: Start iptables
- become: true
- command: /etc/rc.d/init.d/iptables.sh start
- when: services.changed or etc.changed or functions.changed
+ notify: Restart firewall