tasks/main.yml

@@ -16,17 +16,6 @@
     when:
       - openvpn_bridge_type == "ovs"
 
-# Does I need to run it 2 times ? Interface need to bee up when it run ?
-  - name: set bridge interface firewalld zone
-    ansible.posix.firewalld:
-      permanent: yes
-      zone: internal
-      interface: '{{ openvpn_bridge }}'
-      state: enabled
-      immediate: yes
-    when:
-      - openvpn_bridge_type == "bridge"
-
 #  - openvswitch_bridge:
 #      bridge: "{{ openvpn_bridge }}"
 #      parent: "{{ openvpn_bridgemaster }}"
@@ -35,15 +24,25 @@
 #    when:
 #      - openvpn_bridge_type == "ovs"
 
+# Doesn't work !!
   - name: try nmcli add bridge - conn_name only & ip4 gw4 mode
     community.general.nmcli:
       type: bridge
       conn_name: '{{ openvpn_bridge }}'
       ifname: '{{ openvpn_bridge }}'
-      ip4: '{{ openvpn_bridge_ip }}'
+      ip4: '{{ openvpn_bridge_ip }}/24'
       state: present
     when:
       - openvpn_bridge_type == "bridge"
+  - name: set bridge interface firewalld zone
+    ansible.posix.firewalld:
+      permanent: yes
+      zone: internal
+      interface: '{{ openvpn_bridge }}'
+      state: enabled
+      immediate: yes
+    when:
+      - openvpn_bridge_type == "bridge"
 
   - name: Make server config directory
     file:
@@ -133,7 +132,7 @@
     when: result is changed
 
   - name: Open Firewalld
-    ansible.posix.firewalld:
+    firewalld:
       service: openvpn-{{ openvpn_vpn_name | regex_replace('\.','_') }}
       permanent: true
       state: enabled