Skip to content
Snippets Groups Projects
Verified Commit 0a9fad18 authored by Kristian Klausen's avatar Kristian Klausen :tada:
Browse files

fixup! fail2ban: Use a managed firewalld ipset

parent c89c9e83
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
roles/fail2ban/tasks/main.yml
+ 2
3
View file @ 0a9fad18
......@@ -31,14 +31,13 @@
with_items:
- "fail2ban.local"
- "jail.local"
- "firewallcmd-ipset-allports.conf"
notify:
- Restart fail2ban
- name: Install firewallcmd-allports.local
template:
src: "firewallcmd-allports.local.j2"
dest: "/etc/fail2ban/action.d/firewallcmd-allports.local"
src: "firewallcmd-ipset-allports.conf.j2"
dest: "/etc/fail2ban/action.d/firewallcmd-ipset-allports.conf"
owner: "root"
group: "root"
mode: '0644'
......
roles/fail2ban/templates/firewallcmd-allports.local.j2 deleted 100644 → 0
+ 0
8
View file @ c89c9e83
#
# {{ansible_managed}}
#
# creates the requisite chains in firewalld when fail2ban starts instead
# of creating them on first use (ie, when first IP is banned)
[Definition]
actionstart_on_demand = false
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment