From c66e0a628f92f91f95f2524bae4c82f615de7abf Mon Sep 17 00:00:00 2001 From: Kris Lamoureux Date: Fri, 29 Jan 2021 15:03:40 -0500 Subject: [PATCH] Variablize new IP ranges --- config.yml | 4 ++++ roles/easyredmine/tasks/firewall.yml | 6 +----- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/config.yml b/config.yml index a6c334b..00d2400 100644 --- a/config.yml +++ b/config.yml @@ -45,6 +45,10 @@ _redmine_db_import_file: /tmp/redmine_dump.sql _redmine_db_import_success: /tmp/redmine_db_import_success _redmine_install_wrapper: '/home/{{ redmine_owner }}/install_wrapper' +firewall_addrs: + - 192.168.0.0/16 + - 172.16.0.0/16 + # rvm1-ansible module vars rvm1_rubies: - 'ruby-{{ ruby_version }}' diff --git a/roles/easyredmine/tasks/firewall.yml b/roles/easyredmine/tasks/firewall.yml index 8574987..641ae22 100644 --- a/roles/easyredmine/tasks/firewall.yml +++ b/roles/easyredmine/tasks/firewall.yml @@ -27,11 +27,7 @@ rich_rule: 'rule service name="ssh" family="ipv4" source address="{{ item }}" accept' permanent: true state: enabled - with_items: - - 128.192.75.0/24 - - 192.168.0.0/16 - - 172.16.0.0/16 - - 128.91.49.0/24 + with_items: "{{ firewall_addrs }}" become: yes notify: restart firewalld when: is_production_vm == True