3 changed files with 14 additions and 1 deletions
--- a/kvm-host/defaults/main.yml
+++ b/kvm-host/defaults/main.yml
@ -3,4 +3,6 @@ kvm_custom_libvirt_images_path: ''
 kvm_install_drbd: True
 kvm_scripts_dir: /usr/local/sbin

-kvm_pair: null
+kvm_pair: null
+
+kvm_drbd_interface: null
--- a/kvm-host/tasks/firewall.yml
+++ b/kvm-host/tasks/firewall.yml
@ -0,0 +1,9 @@
+---
+- name: Allow all traffic through DRBD interface
+  ansible.builtin.lineinfile:
+    path: /etc/minifirewall.d/drbd
+    line: "/sbin/iptables -I INPUT -p tcp -i {{ kvm_drbd_interface }} -j ACCEPT"
+    create: yes
+  when:
+    - kvm_drbd_interface is defined
+    - kvm_drbd_interface | length > 0
--- a/kvm-host/tasks/main.yml
+++ b/kvm-host/tasks/main.yml
@ -14,3 +14,5 @@
 - ansible.builtin.include: images.yml

 - ansible.builtin.include: tools.yml
+
+- ansible.builtin.include: firewall.yml