ansible.nftables/templates/etc/nftables.d/nat-postrouting.nft.j2

#jinja2: lstrip_blocks: "True", trim_blocks: "True"
# {{ ansible_managed }}
{% set postroutingmerged = nft__nat_default_postrouting_rules.copy() %}
{% set _ = postroutingmerged.update(nft__nat_postrouting_rules) %}
{% set _ = postroutingmerged.update(nft__nat_group_postrouting_rules) %}
{% if merged_groups and hostvars[inventory_hostname]['nft_combined_rules'].nft__nat_group_postrouting_rules is defined %}
  {% set _ = postroutingmerged.update(hostvars[inventory_hostname]['nft_combined_rules'].nft__nat_group_postrouting_rules) %}
{% endif %}
{% set _ = postroutingmerged.update(nft__nat_host_postrouting_rules) %}

chain postrouting {
{% for group, rules in postroutingmerged|dictsort  %}
	# {{ group }}
  {% if not rules %}
	# (none)
  {% endif %}
  {% for rule in rules %}
	{{ rule }}
  {% endfor %}
{% endfor %}
}
Support merged firewall rules for multiple groups per host. - Multiple groups for a single server will now lead to all firewall rules being merged instead of overwritten. 2020-11-10 21:17:11 +01:00			`#jinja2: lstrip_blocks: "True", trim_blocks: "True"`
Generate Nat table rules files 2019-04-16 15:48:30 +02:00			`# {{ ansible_managed }}`
			`{% set postroutingmerged = nft__nat_default_postrouting_rules.copy() %}`
			`{% set _ = postroutingmerged.update(nft__nat_postrouting_rules) %}`
			`{% set _ = postroutingmerged.update(nft__nat_group_postrouting_rules) %}`
Support merged firewall rules for multiple groups per host. - Multiple groups for a single server will now lead to all firewall rules being merged instead of overwritten. 2020-11-10 21:17:11 +01:00			`{% if merged_groups and hostvars[inventory_hostname]['nft_combined_rules'].nft__nat_group_postrouting_rules is defined %}`
			`{% set _ = postroutingmerged.update(hostvars[inventory_hostname]['nft_combined_rules'].nft__nat_group_postrouting_rules) %}`
			`{% endif %}`
Generate Nat table rules files 2019-04-16 15:48:30 +02:00			`{% set _ = postroutingmerged.update(nft__nat_host_postrouting_rules) %}`

			`chain postrouting {`
			`{% for group, rules in postroutingmerged\|dictsort %}`
			`# {{ group }}`
Support merged firewall rules for multiple groups per host. - Multiple groups for a single server will now lead to all firewall rules being merged instead of overwritten. 2020-11-10 21:17:11 +01:00			`{% if not rules %}`
Generate Nat table rules files 2019-04-16 15:48:30 +02:00			`# (none)`
Support merged firewall rules for multiple groups per host. - Multiple groups for a single server will now lead to all firewall rules being merged instead of overwritten. 2020-11-10 21:17:11 +01:00			`{% endif %}`
			`{% for rule in rules %}`
Generate Nat table rules files 2019-04-16 15:48:30 +02:00			`{{ rule }}`
Support merged firewall rules for multiple groups per host. - Multiple groups for a single server will now lead to all firewall rules being merged instead of overwritten. 2020-11-10 21:17:11 +01:00			`{% endfor %}`
Generate Nat table rules files 2019-04-16 15:48:30 +02:00			`{% endfor %}`
			`}`