jokester/ansible-playbooks
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: retry to apply fw rules

Browse Source
This commit is contained in:
Clément Désiles 2025-12-09 00:28:16 +01:00
parent 1e7f05a29e
commit 9b08cf95eb
No known key found for this signature in database
8 changed files with 37 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
roles/nfs-server/tasks/main.yml
View File

@ -37,3 +37,7 @@
direction: in
comment: "Network File System (NFS)"
with_items: "{{ nfs_server_firewall_allowed_sources | default([]) }}"
retries: 5
delay: 2
register: ufw_result
until: ufw_result is succeeded

8
roles/nginx/tasks/main.yml
View File

@ -53,6 +53,10 @@
port: "80"
proto: tcp
comment: Nginx HTTP
retries: 5
delay: 2
register: ufw_result
until: ufw_result is succeeded
- name: Allow HTTPS traffic through firewall
community.general.ufw:
@ -60,6 +64,10 @@
port: "443"
proto: tcp
comment: Nginx HTTPS
retries: 5
delay: 2
register: ufw_result
until: ufw_result is succeeded
- name: Enable and start nginx service
ansible.builtin.systemd:

4
roles/ntpd/tasks/main.yml
View File

@ -47,3 +47,7 @@
direction: in
comment: "NTP traffic"
loop: "{{ ntp_firewall_allowed_sources | default([]) }}"
retries: 5
delay: 2
register: ufw_result
until: ufw_result is succeeded

5
roles/podman/tasks/main.yml
View File

@ -7,6 +7,11 @@
- crun
state: present
- name: Enable Podman service
ansible.builtin.systemd:
name: podman.service
enabled: true
- name: Create projects directory
ansible.builtin.file:
path: "{{ podman_projects_dir }}"

4
roles/postgres/tasks/main.yml
View File

@ -66,6 +66,10 @@
direction: in
comment: "PostgreSQL"
loop: "{{ postgres_firewall_allowed_sources }}"
retries: 5
delay: 2
register: ufw_result
until: ufw_result is succeeded
- name: Enable and start PostgreSQL service
ansible.builtin.systemd:

4
roles/unbound/tasks/main.yml
View File

@ -154,3 +154,7 @@
src: "{{ item }}"
direction: in
loop: "{{ unbound_firewall_allowed_sources | default([]) }}"
retries: 5
delay: 2
register: ufw_result
until: ufw_result is succeeded

4
roles/valkey/tasks/main.yml
View File

@ -56,3 +56,7 @@
direction: in
comment: "Valkey"
loop: "{{ valkey_firewall_allowed_sources }}"
retries: 5
delay: 2
register: ufw_result
until: ufw_result is succeeded

4
roles/wireguard/tasks/main.yml
View File

@ -53,6 +53,10 @@
proto: udp
direction: in
comment: Wireguard VPN
retries: 5
delay: 2
register: ufw_result
until: ufw_result is succeeded
- name: Start and enable service
ansible.builtin.service: