Specify ipv6 for iptables and ufw rules

kyl191 · Dec 28, 2024 · 8fef88b · 8fef88b
1 parent c1ea2d9
commit 8fef88b
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 2 deletions.
diff --git a/tasks/firewall/iptables.yml b/tasks/firewall/iptables.yml
@@ -75,6 +75,7 @@
         jump: SNAT
         action: insert
         comment: "Perform NAT IPv6 readdressing"
+        ip_version: ipv6
       when: openvpn_server_ipv6_network is defined
 
 - name: firewall | iptables | Perform NAT readdressing with MASQUERADE
@@ -99,6 +100,7 @@
         jump: MASQUERADE
         action: insert
         comment: "Perform NAT IPv6 readdressing"
+        ip_version: ipv6
       when: openvpn_server_ipv6_network is defined
 
 - name: firewall | iptables | Save existing iptables rule before start iptables service

diff --git a/tasks/firewall/ufw.yml b/tasks/firewall/ufw.yml
@@ -49,7 +49,7 @@
 
     - name: firewall | ufw | Setup IPv6 SNAT rules
       ansible.builtin.blockinfile:
-        dest: /etc/ufw/before.rules
+        dest: /etc/ufw/before6.rules
         state: present
         insertbefore: \*filter
         block: |
@@ -78,7 +78,7 @@
           COMMIT
     - name: firewall | ufw | Setup IPv6 NAT with MASQUERADE
       ansible.builtin.blockinfile:
-        dest: /etc/ufw/before.rules
+        dest: /etc/ufw/before6.rules
         state: present
         insertbefore: \*filter
         block: |