From 95a082d3c771fbe9a380f10280134406b7dc3f93 Mon Sep 17 00:00:00 2001 From: Egor Tensin Date: Tue, 8 Aug 2023 22:30:18 +0200 Subject: firewall: reboot on rule changes Just restaring netfilter-persistent could break other services depending on iptables, like Docker. Also, I'm not sure why I need a wait_for_connection after a reboot call, so get rid of those. --- roles/firewall/handlers/main.yml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) (limited to 'roles/firewall/handlers') diff --git a/roles/firewall/handlers/main.yml b/roles/firewall/handlers/main.yml index 70387f3..81438db 100644 --- a/roles/firewall/handlers/main.yml +++ b/roles/firewall/handlers/main.yml @@ -1,5 +1,5 @@ -- name: Reload iptables +- name: Reboot become: true - ansible.builtin.systemd_service: - name: netfilter-persistent - state: restarted + ansible.builtin.reboot: + # 3 minutes is plenty. + reboot_timeout: 180 -- cgit v1.2.3