Update for CentOS 8

tasks/main.yml

@@ -5,7 +5,7 @@
     include_vars: "{{ ansible_os_family }}_{{ ansible_distribution_major_version }}.yml"
 
   - name: Install packages for openvpn
-    package:
+    ansible.builtin.package:
       name: "{{ openvpn_packages }}"
       state: present
       update_cache: yes
@@ -25,14 +25,24 @@
 #      - openvpn_bridge_type == "ovs"
 
 # Doesn't work !!
-#  - name: try nmcli add bridge - conn_name only & ip4 gw4 mode
+  - name: try nmcli add bridge - conn_name only & ip4 gw4 mode
-#    nmcli:
+    community.general.nmcli:
-#      type: bridge
+      type: bridge
-#      conn_name: '{{ openvpn_bridge }}'
+      conn_name: '{{ openvpn_bridge }}'
-#      ip4: '{{ openvpn_bridge_ip }}/24'
+      ifname: '{{ openvpn_bridge }}'
-#      state: present
+      ip4: '{{ openvpn_bridge_ip }}/24'
-#    when:
+      state: present
-#      - openvpn_bridge_type == "bridge"
+    when:
+      - openvpn_bridge_type == "bridge"
+  - name: set bridge interface firewalld zone
+    ansible.posix.firewalld:
+      permanent: yes
+      zone: internal
+      interface: '{{ openvpn_bridge }}'
+      state: enabled
+      immediate: yes
+    when:
+      - openvpn_bridge_type == "bridge"
 
   - name: Make server config directory
     file:

vars/RedHat_7.yml

@@ -6,4 +6,5 @@ openvpn_packages:
   - NetworkManager-glib
   - libsemanage-python
   - policycoreutils-python
-
+#  - python-libsemanage
+#  - python-policycoreutils

vars/RedHat_8.yml

@@ -3,4 +3,4 @@ openvpn_packages:
   - openvpn
   - python3-libsemanage
   - python3-policycoreutils
-#  - NetworkManager-libnm
+  - NetworkManager-libnm