Add a pf tag that we skip for subsequent use
continuous-integration/drone/push Build is failing Details

PacketFilter need to be customized only once, at the first use.
After that, pf.conf will be modified on the server for the needs of the
network. It must not be overwriten.
This commit is contained in:
Jérémy Dubois 2020-10-14 09:40:59 +02:00
parent dc2707c004
commit 5adeaa31e1
2 changed files with 4 additions and 2 deletions

View File

@ -1,9 +1,9 @@
# yamllint disable rule:line-length
# Playbook command
# First use (become_method: su) :
# ansible-playbook evolixisation.yml --ask-vault-pass -CDki hosts -l HOSTNAME -u root
# ansible-playbook evolixisation.yml --ask-vault-pass -CDki hosts -u root -l HOSTNAME
# Subsequent use (become_method: sudo) :
# ansible-playbook evolixisation.yml --ask-vault-pass -CDKi hosts -l HOSTNAME
# ansible-playbook evolixisation.yml --ask-vault-pass -CDKi hosts --skip-tags pf -l HOSTNAME
---
- name: Evolixisation of an OpenBSD system

View File

@ -5,3 +5,5 @@
dest: /etc/pf.conf
mode: "0600"
backup: true
tags:
- pf