refactor ♻️: Refactor fail2ban tasks for better IPSet management
This refactoring removes redundant 'blockinfile' and 'reload' commands in fail2ban tasks, ensuring that IPSet and drop rules are correctly placed. A new handler has been added to reload the PVE firewall after a fail2ban restart.
This commit is contained in:
@@ -36,3 +36,7 @@
|
||||
ansible.builtin.systemd:
|
||||
name: fail2ban
|
||||
state: restarted
|
||||
|
||||
- name: Reload pve firewall
|
||||
ansible.builtin.command: pve-firewall reload
|
||||
changed_when: false
|
||||
Reference in New Issue
Block a user