firewalld rich rule error if already defined

Dewangga_Bachrul_Ala · January 18, 2016, 1:55am

Got something interesting there,

I have firewalld rules like this:

- - name: Ensure FirewallD is started and enabled
service: name=firewalld state=started enabled=yes

- - name: Enabling firewalld on MariaDB Server
  firewalld: rich_rule="rule port port={{ item.port }} protocol={{
item.proto }} family='ipv4' source address={{ item.address }} accept"
permanent=true immediate=yes state=enabled
  with_items:
     - { port: 3306, address: 192.168.2.0/24, proto: tcp }
     - { port: 4567, address: 192.168.2.0/24, proto: tcp }
     - { port: 4568, address: 192.168.2.0/24, proto: tcp }
     - { port: 4444, address: 192.168.2.0/24, proto: tcp }
     - { port: 4567, address: 192.168.2.0/24, proto: udp }
  ignore_errors: True

should I use `ignore_errors: True` ? If not, the result will be error
if the port already enabled.

I use ansible 1.9.4.

Topic		Replies	Views
win_firewall_rule is removing even when state=present Ansible Project	0	0	September 2, 2016
Ansible & firewalld Part Two: "Avoiding losing the connection by changing the port before starting firewalld" and the joys of ansible_check_mode Ansible Project	0	0	May 14, 2016
win_firewall_rule "The property 'failed' cannot be found on this object. Verify that the property exists." Ansible Project ubuntu , windows	2	0	January 27, 2016
firewall playbook using when module Ansible Project	1	0	July 17, 2019
Ansible firewalld-module: Avoiding useless errors when firewalld is not running during check_mode Ansible Project	0	1	May 14, 2016

firewalld rich rule error if already defined

Related topics