evolix
/
EvoBSD
14
0
Fork 0
Code Issues 2 Pull Requests Releases 3 Wiki Activity

Add a pf tag that we skip for subsequent use
continuous-integration/drone/push Build is failing Details 

PacketFilter need to be customized only once, at the first use.
After that, pf.conf will be modified on the server for the needs of the
network. It must not be overwriten.
This commit is contained in:
Jérémy Dubois 2020-10-14 09:40:59 +02:00
parent dc2707c004
commit 5adeaa31e1
2 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
evolixisation.yml
View File

@ -1,9 +1,9 @@
# yamllint disable rule:line-length
# Playbook command
# First use (become_method: su) :
# ansible-playbook evolixisation.yml --ask-vault-pass -CDki hosts -l HOSTNAME -u root
# ansible-playbook evolixisation.yml --ask-vault-pass -CDki hosts -u root -l HOSTNAME
# Subsequent use (become_method: sudo) :
# ansible-playbook evolixisation.yml --ask-vault-pass -CDKi hosts -l HOSTNAME
# ansible-playbook evolixisation.yml --ask-vault-pass -CDKi hosts --skip-tags pf -l HOSTNAME
---
- name: Evolixisation of an OpenBSD system

2
roles/pf/tasks/main.yml
View File

@ -5,3 +5,5 @@
dest: /etc/pf.conf
mode: "0600"
backup: true
tags:
- pf