Invalid interface clause error with ufw module and log param

Guy_Knights · July 5, 2016, 12:19am

I have some tasks that use the ufw module to add firewall rules, which up until now have been working fine. Today however, I added the ‘log’ parameter to the ufw task and I got the following error: “ERROR: Invalid interface clause”.

My task definition is below:

name: apply rules using ‘firewall’ variable defined in inventory vars
ufw:
port: “{{ item.0.port|default(omit) }}”
proto: “{{ item.0.proto|default(omit) }}”
src: “{{ item.1 }}”
rule: “{{ item.0.rule }}”
direction: “{{ item.0.direction|default(omit) }}”
log: “{{ item.0.log|default(‘no’) }}”
state: enabled
with_subelements:
“{{ firewall.rules }}”
src

The troublesome firewall variable that’s failing for the task above is:

firewall:
rules:
ssh:
port: 22
proto: tcp
src: “{{ ips.ssh }}”
rule: allow
direction: in
log: ‘yes’

If I remove log: “{{ item.0.log|default(‘no’) }}” from the ufw task it works fine.

Thanks,
Guy

Guy_Knights · July 8, 2016, 5:30pm

I tried changing this task to not use a loop and instead just made it a standard task definition, as below:

name: apply ssh rule
ufw:
port: 22
proto: ‘tcp’
src: ‘192.168.0.0/24’
rule: allow
direction: in
log: ‘yes’
interface: eth0
state: enabled

I tried it with and without the interface parameter but I still get the same error, “Invalid interface clause”. The only interface in this machine is eth0 so the interface name is correct.

Does anyone have a solution for this?

Guy

Topic		Replies	Views
UFW module issues Ansible Project	1	2	September 20, 2016
Changing UFW rules Ansible Project	1	2	May 25, 2016
Ansible UFW module: inaccurate documentation? Ansible Project	2	0	July 7, 2016
ansible playbook error using firewalld to set policy Ansible Project	1	3	August 3, 2023
ufw or iptables module Ansible Project	7	0	September 15, 2013

Invalid interface clause error with ufw module and log param

Related topics