adrien/ansible-role-kubernetes
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Update firewall configuration

Browse source
This commit is contained in:
Adrien Reslinger 2024-09-14 10:29:48 +02:00
parent be494c827c
commit 43353b130b
Signed by: adrien
GPG key ID: DA7B27055C66D6DE
1 changed files with 14 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

15
tasks/RedHat.yml
View file

@ -118,10 +118,23 @@
when: when:
- kubernetes_server|bool - kubernetes_server|bool
with_items: with_items:
- "{{ (lookup('vars', 'ansible_' + kubernetes_interface ).ipv4.network + '/' + lookup('vars', 'ansible_' + kubernetes_interface ).ipv4.netmask) | ansible.utils.ipaddr('net') }}"
- "{{ kubernetes_pods_network }}" - "{{ kubernetes_pods_network }}"
- "10.96.0.0/12" - "10.96.0.0/12"
- name: Add kubernetes networks to trusted firewalld zone
ansible.posix.firewalld:
# zone: kubernetes
zone: trusted
permanent: true
state: enabled
source: "{{ item }}"
when:
- kubernetes_server|bool
- kubernetes_interface is defined
# - false
with_items:
- "{{ (lookup('vars', 'ansible_' + kubernetes_interface ).ipv4.network + '/' + lookup('vars', 'ansible_' + kubernetes_interface ).ipv4.netmask) | ansible.utils.ipaddr('net') }}"
- name: Install kubernetes tools - name: Install kubernetes tools
ansible.builtin.dnf: ansible.builtin.dnf:
name: "{{ kubernetes_package_name }}" name: "{{ kubernetes_package_name }}"