Another playbook example

It was hard for me to learn how to use the role and override the default rules. Therefore I want to contribute another example
2020-05-24 09:59:30 +02:00 · 2020-05-24 09:59:30 +02:00 · 1f91776374
parent 1fe24f01e4
commit 1f91776374
1 changed files with 18 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -252,6 +252,24 @@ table inet filter {
    - role: ipr-cnrs.nftables
 ```

+* Override some of the default defined sets:
+
+``` yml
+- hosts: serverXYZ
+  vars:
+    - nft_define:
+      input tcp accepted:
+        desc: Custom SSH port and torrent
+        name: in_tcp_accept
+        value: '{ 2201, 6881 }'
+      input udp accepted:
+        desc: torrent
+        name: in_udp_accept
+        value: '{ 6881 }'
+  roles:
+    - role: ipr-cnrs.nftables
+```
+
 * Use default rules with allow incoming ICMP and count dropped input packets :

 `group_vars/first_group` :