Feat(firewall): Use handler instead of condition

[ansible.git] / playbooks / redhat / roles / firewall / tasks / main.yml

diff --git a/playbooks/redhat/roles/firewall/tasks/main.yml b/playbooks/redhat/roles/firewall/tasks/main.yml
index c1624fd7a6948e2879629f399a8218fae0f030c6..86c73baaea476bec3f1f82ff19653a782a129f5a 100644 (file)
--- a/playbooks/redhat/roles/firewall/tasks/main.yml
+++ b/playbooks/redhat/roles/firewall/tasks/main.yml
@@ -4,7 +4,7 @@
     name: ['fail2ban', 'iptables-services']
     state: latest
     update_cache: yes
-  register: services
+  notify: Restart firewall
 
 - name: Disable firewalld
   become: true
@@ -37,16 +37,11 @@
     directory_mode: '0750'
     mode: '0750'
     force: no
-  register: etc
+  notify: Restart firewall
 
 - name: Fix permissions for /etc/network/functions
   become: true
   file:
     path: /etc/network/functions.phd
     mode: '0640'
-  register: functions
-
-- name: Start iptables
-  become: true
-  command: /etc/rc.d/init.d/iptables.sh start
-  when: services.changed or etc.changed or functions.changed
+  notify: Restart firewall