Add firewalld service

tasks/RedHat.yml

@@ -15,3 +15,31 @@
     dest: /etc/yum.repos.d/docker-ce.repo
     mode: 0644
 
+- name: Register docker firewalld service
+  template:
+    src: "etc/firewalld/services/docker-swarm.xml.j2"
+    dest: "/etc/firewalld/services/docker-swarm.xml"
+    group: root
+    owner: root
+    mode: 0644
+  register: need_firewalld_reload
+
+#- name: Reload firewalld configuration
+#  service:
+#    name: firewalld
+#    state: reloaded
+#    enabled: yes
+- name: reload firewalld to refresh service list
+  command: firewall-cmd --reload
+  when:
+    - need_firewalld_reload is changed
+
+- name: Open Firewalld
+  firewalld:
+    service: docker-swarm
+    permanent: true
+    state: enabled
+    immediate: true
+#  when:
+#    - need_firewall == true
+#    - firewall_name == "firewalld"

templates/etc/firewalld/services/docker-swarm.xml.j2

@@ -0,0 +1,10 @@
+<?xml version="1.0" encoding="utf-8"?>
+<service>
+  <short>Docker swarm mode</short>
+  <description>Open Docker swarm mode ports.</description>
+  <port protocol="tcp" port="2376"/>
+  <port protocol="tcp" port="2377"/>
+  <port protocol="udp" port="4789"/>
+  <port protocol="tcp" port="7946"/>
+  <port protocol="udp" port="7946"/>
+</service>