ansible playbook error using firewalld to set policy

Deepak_B_K · August 3, 2023, 4:32am

Hi Group,

I am trying to write an ansible playbook to block all incoming traffic on the external interfaces . I am getting the error message “parameters are mutually exclusive:”.

I appreciate a quick help I am missing any mandatory parameters?

@title Enable firewall services.

@comment This tasks enables firewalld services for vms

name: Enable firewalld service
ansible.builtin.service:
service: firewalld
state: started

@title Restrict external interfaces

@comment This tasks blocks internal traffic from external interfaces.

name: “Restrict external interfaces”
ansible.posix.firewalld:
interface: “{{ item }}”
permanent: true
state: present
target: ‘DROP’
zone: external
with_items:
“eth2”
“eth3”

mdidomenico · August 3, 2023, 6:24pm

i'm not an expert, but i think it's the combination of interface and
target that's tripping you up. believe you have to splt the interface
assignment and the zone assignment into two seperate tasks

Topic		Replies	Views
UFW module issues Ansible Project	1	2	September 20, 2016
Invalid interface clause error with ufw module and log param Ansible Project	1	1	July 8, 2016
ansible.builtin.apt - Updating all installed packages to latest gives "parameters are mutually exclusive deb\|package\|upgrade Ansible Project fedora , ubuntu	2	2	March 22, 2022
Syntax error while running Firewall playbook Ansible Project	5	0	December 21, 2018
mutually exclusive options Ansible Developer	1	0	June 5, 2014

ansible playbook error using firewalld to set policy

@comment This tasks enables firewalld services for vms

@title Restrict external interfaces

@comment This tasks blocks internal traffic from external interfaces.

Related topics