Merge pull request #4 from christopherobin/feature/enable

Add a flag to disable firewall
AerisCloud · Dec 24, 2015 · bf152af · bf152af
2 parents e7b40ca + d573c42
commit bf152af
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 3 deletions.
diff --git a/defaults/main.yml b/defaults/main.yml
@@ -0,0 +1 @@
+firewall_enabled: true
diff --git a/tasks/main.yml b/tasks/main.yml
@@ -1,8 +1,8 @@
 - include: centos.yml
-  when: ansible_distribution == 'CentOS'
+  when: firewall_enabled|bool and ansible_distribution == 'CentOS'
 
 - include: debian.yml
-  when: ansible_distribution == 'Debian'
+  when: firewall_enabled|bool and ansible_distribution == 'Debian'
 
 - name: "Ensure the iptables.d directory exists"
   file: >
@@ -11,6 +11,7 @@
     mode=0700
     owner=root
     group=root
+  when: firewall_enabled|bool
   tags:
     - firewall
 
@@ -22,6 +23,7 @@
     backup=no
     owner=root
     group=root
+  when: firewall_enabled|bool
   register: firewall_rule
   tags:
     - firewall
@@ -30,6 +32,6 @@
 - name: "Reload the firewall"
   firewall: >
     state=reloaded
-  when: firewall_rule|changed
+  when: firewall_enabled|bool and firewall_rule|changed
   tags:
     - firewall