X-Git-Url: https://git.phdru.name/?a=blobdiff_plain;f=playbooks%2Fdebian%2Froles%2Ffirewall%2Ftasks%2Fmain.yml;h=e36bd89f3e71e24a838f638ae3325d664be99434;hb=b8f10de1474570fe82b311a76fb2d5b51ad8152b;hp=0015e8162292b5522cd5ed68ab086b52746d25b4;hpb=3148030f2399683fa3f7e4a73ce1259e6e56254c;p=ansible.git

diff --git a/playbooks/debian/roles/firewall/tasks/main.yml b/playbooks/debian/roles/firewall/tasks/main.yml
index 0015e81..e36bd89 100644
--- a/playbooks/debian/roles/firewall/tasks/main.yml
+++ b/playbooks/debian/roles/firewall/tasks/main.yml
@@ -1,11 +1,12 @@
 - name: Install fail2ban
   become: true
   apt:
+    cache_valid_time: 3600
     install_recommends: no
     name: fail2ban
     state: latest
     update_cache: yes
-  register: fail2ban
+  notify: Restart firewall
 
 - name: Configure Debian firewall
   become: true
@@ -14,20 +15,14 @@
     dest: /
     owner: root
     group: root
+    directory_mode: '0750'
     mode: '0750'
     force: no
-  register: etc
+  notify: Restart firewall
 
 - name: Fix permissions for /etc/network/functions
   become: true
   file:
     path: /etc/network/functions.phd
     mode: '0640'
-  register: functions
-
-- name: Start Debian firewall
-  become: true
-  service:
-    name: iptables.sh
-    state: restarted
-  when: fail2ban.changed or etc.changed or functions.changed
+  notify: Restart firewall