Merge branch 'bugfix/iptables_load_startup' into 'master'
fix for persistent iptables See merge request chaosox/fai!2
This commit is contained in:
commit
ef02df7cd8
|
@ -1,6 +1,6 @@
|
|||
- name: install packages
|
||||
apt:
|
||||
name: ['iptables', 'ifupdown']
|
||||
name: ['iptables', 'iptables-persistent', 'ifupdown']
|
||||
state: present
|
||||
|
||||
- name: ensure resolved is stopped and disabled
|
||||
|
@ -29,7 +29,7 @@
|
|||
ifup {{ dhcp_interface }}
|
||||
when: lan_iface_cfg.changed
|
||||
|
||||
- name: enable permantent masquerading
|
||||
- name: enable permantent masquerading for ipv4
|
||||
copy:
|
||||
content: |
|
||||
*nat
|
||||
|
@ -39,15 +39,12 @@
|
|||
:OUTPUT ACCEPT [0:0]
|
||||
-A POSTROUTING -o {{wan_interface}} -j MASQUERADE
|
||||
COMMIT
|
||||
dest: /etc/network/iptables.up.rules
|
||||
dest: /etc/iptables/rules.v4
|
||||
register: iptables_up_rules
|
||||
|
||||
- name: apply iptables rules
|
||||
iptables:
|
||||
table: nat
|
||||
chain: POSTROUTING
|
||||
out_interface: "{{ wan_interface }}"
|
||||
jump: MASQUERADE
|
||||
shell: iptables-restore /etc/iptables/rules.v4
|
||||
when: iptables_up_rules.changed
|
||||
|
||||
- name: enable ip forwarding
|
||||
sysctl:
|
||||
|
|
Loading…
Reference in New Issue