Merge pull request 'refactor ♻️: Refactor task names and improve formatting in fail2ban.yml' (#50) from dev into main
Reviewed-on: #50
This commit was merged in pull request #50.
This commit is contained in:
@@ -156,6 +156,12 @@
|
|||||||
}}
|
}}
|
||||||
when: pve_installed.stat.exists | default(false)
|
when: pve_installed.stat.exists | default(false)
|
||||||
|
|
||||||
|
- name: fail2ban | Show firewall config path
|
||||||
|
ansible.builtin.debug:
|
||||||
|
msg: >
|
||||||
|
WARNING: Proxmox firewall config path is: {{ pve_firewall_config}}
|
||||||
|
when: pve_firewall_config is defined
|
||||||
|
|
||||||
#################################################
|
#################################################
|
||||||
# Detect firewall configuration
|
# Detect firewall configuration
|
||||||
#################################################
|
#################################################
|
||||||
@@ -172,15 +178,19 @@
|
|||||||
register: fw_content
|
register: fw_content
|
||||||
when: fw_stat.stat.exists | default(false)
|
when: fw_stat.stat.exists | default(false)
|
||||||
|
|
||||||
|
- name: fail2ban | Debug config contents
|
||||||
|
ansible.builtin.debug:
|
||||||
|
msg: >
|
||||||
|
{{ fw_content }}
|
||||||
|
when: not pve_firewall_enabled
|
||||||
|
|
||||||
- name: fail2ban | Determine if firewall enabled
|
- name: fail2ban | Determine if firewall enabled
|
||||||
ansible.builtin.set_fact:
|
ansible.builtin.set_fact:
|
||||||
pve_firewall_enabled: >-
|
pve_firewall_enabled: >-
|
||||||
{{
|
{{
|
||||||
(fw_stat.stat.exists | default(false)) and
|
fw_stat.stat.exists and
|
||||||
(
|
(fw_content.content | b64decode)
|
||||||
(fw_content.content | default('') | b64decode)
|
is search('^enable:\s*1$', multiline=True)
|
||||||
is search('enable:\s*1')
|
|
||||||
)
|
|
||||||
}}
|
}}
|
||||||
|
|
||||||
- name: fail2ban | Warn if firewall not enabled
|
- name: fail2ban | Warn if firewall not enabled
|
||||||
|
|||||||
Reference in New Issue
Block a user