packetcat/ansible-playbooks
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

make ipset.service import even if ipset already exists and then reload in main.yml

Browse Source
This commit is contained in:
staticsafe 2020-04-15 10:23:45 -04:00
parent 05176fb83e
commit dd4d335302
2 changed files with 3 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
ubuntu/roles/ipset-deploy/files/ipset.service
View File

@ -6,10 +6,9 @@ Before=netfilter-persistent.service
[Service] [Service]
Type=oneshot Type=oneshot
RemainAfterExit=yes RemainAfterExit=yes
ExecStart=/sbin/ipset -f /etc/ipset.conf restore ExecStart=/sbin/ipset -! -f /etc/ipset.conf restore
ExecReload=/sbin/ipset -f /etc/ipset.conf restore ExecReload=/sbin/ipset -! -f /etc/ipset.conf restore
ExecStop=/sbin/ipset flush ExecStop=/sbin/ipset flush
ExectStopPost=/sbin/ipset destroy
[Install] [Install]
WantedBy=multi-user.target WantedBy=multi-user.target

2
ubuntu/roles/ipset-deploy/tasks/main.yml
View File

@ -17,7 +17,7 @@
src: "{{ ansible_fqdn }}.ipset" src: "{{ ansible_fqdn }}.ipset"
dest: /etc/ipset.conf dest: /etc/ipset.conf
- name: Restart ipset - name: Restart ipset service
systemd: systemd:
name: ipset name: ipset
state: restarted state: restarted