3bcc357509
Now the list of whitelisted ip addresses can be updated simply by including the specific tasks in an external playbook without polluting our role list. This change takes effect for nginx, apache and fail2ban.
11 lines
232 B
YAML
11 lines
232 B
YAML
---
|
|
- name: Update ignoreips lists
|
|
ini_file:
|
|
dest: /etc/fail2ban/jail.local
|
|
section: "[DEFAULT]"
|
|
option: "ignoreips"
|
|
value: "{{ fail2ban_ignore_ips | join(' ') }}"
|
|
notify: restart fail2ban
|
|
tags:
|
|
- fail2ban
|