2016-11-07 14:00:57 +01:00
|
|
|
---
|
|
|
|
|
2020-01-08 17:19:13 +01:00
|
|
|
- name: Compose minifirewall_restart_handler_name variable
|
|
|
|
set_fact:
|
2021-05-09 23:06:42 +02:00
|
|
|
minifirewall_restart_handler_name: "{{ minifirewall_restart_if_needed | bool | ternary('restart minifirewall', 'restart minifirewall (noop)') }}"
|
2018-08-30 17:04:14 +02:00
|
|
|
|
2022-04-28 12:40:02 +02:00
|
|
|
# Legacy or modern mode? ##############################################
|
|
|
|
|
|
|
|
- name: Check minifirewall
|
|
|
|
stat:
|
|
|
|
path: /etc/init.d/minifirewall
|
|
|
|
register: _minifirewall_check
|
|
|
|
|
|
|
|
# Legacy versions of minifirewall don't define the VERSION variable
|
|
|
|
- name: Look for minifirewall version
|
|
|
|
shell: "grep -E '^\\s*VERSION=' /etc/init.d/minifirewall"
|
|
|
|
failed_when: False
|
|
|
|
changed_when: False
|
|
|
|
check_mode: False
|
|
|
|
register: _minifirewall_version_check
|
|
|
|
|
|
|
|
- name: Set install mode to legacy if needed
|
|
|
|
set_fact:
|
|
|
|
minifirewall_install_mode: legacy
|
|
|
|
minifirewall_main_file: "{{ minifirewall_legacy_main_file }}"
|
|
|
|
minifirewall_tail_file: "{{ minifirewall_legacy_tail_file }}"
|
|
|
|
when:
|
|
|
|
- minifirewall_install_mode != 'modern'
|
|
|
|
- not (minifirewall_force_upgrade_script | bool)
|
|
|
|
- _minifirewall_version_check.rc == 1 # grep didn't find but the file exists
|
|
|
|
|
|
|
|
- name: Set install mode to modern if not legacy
|
|
|
|
set_fact:
|
|
|
|
minifirewall_install_mode: modern
|
|
|
|
when: minifirewall_install_mode != 'legacy'
|
|
|
|
|
|
|
|
- name: Debug install mode
|
|
|
|
debug:
|
|
|
|
var: minifirewall_install_mode
|
|
|
|
verbosity: 1
|
|
|
|
|
|
|
|
#######################################################################
|
|
|
|
|
|
|
|
- name: Fail if minifirewall_main_file is defined (legacy mode)
|
2022-03-15 23:07:33 +01:00
|
|
|
fail:
|
|
|
|
msg: "Variable minifirewall_main_file is deprecated and not configurable anymore."
|
2022-04-28 12:40:02 +02:00
|
|
|
when:
|
|
|
|
- minifirewall_install_mode != 'legacy'
|
|
|
|
- minifirewall_main_file is defined
|
2022-03-15 23:07:33 +01:00
|
|
|
|
2022-04-28 12:40:02 +02:00
|
|
|
- name: Install tasks (modern mode)
|
|
|
|
include: install.yml
|
|
|
|
when: minifirewall_install_mode != 'legacy'
|
2016-11-07 14:00:57 +01:00
|
|
|
|
2022-04-28 12:40:02 +02:00
|
|
|
- name: Install tasks (legacy mode)
|
|
|
|
include: install.legacy.yml
|
|
|
|
when: minifirewall_install_mode == 'legacy'
|
2017-05-02 10:56:12 +02:00
|
|
|
|
2022-04-28 12:40:02 +02:00
|
|
|
- name: Config tasks (modern mode)
|
|
|
|
include: config.yml
|
|
|
|
when:
|
|
|
|
- minifirewall_install_mode != 'legacy'
|
|
|
|
- minifirewall_update_config | bool
|
2018-04-02 21:04:26 +02:00
|
|
|
|
2022-04-28 12:40:02 +02:00
|
|
|
- name: Config tasks (legacy mode)
|
|
|
|
include: config.legacy.yml
|
|
|
|
when:
|
|
|
|
- minifirewall_install_mode == 'legacy'
|
|
|
|
- minifirewall_update_config | bool
|
2017-07-13 15:06:49 +02:00
|
|
|
|
2022-04-28 12:40:02 +02:00
|
|
|
- name: Utils tasks
|
|
|
|
include: utils.yml
|
|
|
|
|
|
|
|
- name: NRPE tasks
|
|
|
|
include: nrpe.yml
|
|
|
|
|
|
|
|
- name: Activation tasks
|
|
|
|
include: activate.yml
|
|
|
|
|
|
|
|
- name: Tail tasks (modern mode)
|
|
|
|
include: tail.yml
|
|
|
|
when:
|
|
|
|
- minifirewall_install_mode != 'legacy'
|
|
|
|
- minifirewall_tail_included | bool
|
|
|
|
|
|
|
|
- name: Tail tasks (legacy mode)
|
|
|
|
include: tail.legacy.yml
|
|
|
|
when:
|
|
|
|
- minifirewall_install_mode == 'legacy'
|
|
|
|
- minifirewall_tail_included | bool
|
|
|
|
|
|
|
|
# Restart?
|
|
|
|
|
|
|
|
- name: Force restart minifirewall (modern mode)
|
|
|
|
command: /etc/init.d/minifirewall restart
|
|
|
|
register: minifirewall_init_restart
|
2022-04-28 19:14:31 +02:00
|
|
|
failed_when: "'minifirewall failed' in minifirewall_init_restart.stdout"
|
|
|
|
changed_when: "'minifirewall started' in minifirewall_init_restart.stdout"
|
2022-04-28 12:40:02 +02:00
|
|
|
when:
|
|
|
|
- minifirewall_install_mode != 'legacy'
|
|
|
|
- minifirewall_restart_force | bool
|
2018-08-30 17:05:30 +02:00
|
|
|
|
2022-04-28 12:40:02 +02:00
|
|
|
- name: Force restart minifirewall (legacy mode)
|
2022-03-28 13:27:19 +02:00
|
|
|
command: /etc/init.d/minifirewall restart
|
|
|
|
register: minifirewall_init_restart
|
|
|
|
failed_when: "'starting IPTables rules is now finish : OK' not in minifirewall_init_restart.stdout"
|
2022-04-28 12:40:02 +02:00
|
|
|
changed_when: "'starting IPTables rules is now finish : OK' in minifirewall_init_restart.stdout"
|
|
|
|
when:
|
|
|
|
- minifirewall_install_mode == 'legacy'
|
|
|
|
- minifirewall_restart_force | bool
|