45 lines
829 B
YAML
45 lines
829 B
YAML
---
|
|
########################
|
|
#### FIREWALL TASKS ####
|
|
########################
|
|
|
|
## kubernetes requirements
|
|
- name: install firewalld
|
|
package:
|
|
name: firewalld
|
|
|
|
- name: enable and start firewalld
|
|
systemd:
|
|
name: firewalld
|
|
enabled: yes
|
|
state: started
|
|
|
|
- name: enable port 6443/tcp
|
|
firewalld:
|
|
port: 6443/tcp
|
|
permanent: yes
|
|
state: enabled
|
|
|
|
- name: enable port 10250/tcp
|
|
firewalld:
|
|
port: 10250/tcp
|
|
permanent: yes
|
|
state: enabled
|
|
|
|
- name: enable port 6443/udp
|
|
firewalld:
|
|
port: 6443/udp
|
|
permanent: yes
|
|
state: enabled
|
|
|
|
- name: enable port 10250/udp
|
|
firewalld:
|
|
port: 10250/udp
|
|
permanent: yes
|
|
state: enabled
|
|
|
|
## reload firewalld after setting rules
|
|
|
|
- name: reload firewalld
|
|
shell: firewall-cmd --reload
|