From 1f91776374ecbe2a733f07ea789635d46133b38f Mon Sep 17 00:00:00 2001
From: Leonardo <14614620+aardbol@users.noreply.github.com>
Date: Sun, 24 May 2020 09:59:30 +0200
Subject: [PATCH] Another playbook example

It was hard for me to learn how to use the role and override the default rules. Therefore I want to contribute another example
---
 README.md | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/README.md b/README.md
index d7b742c..807c86b 100644
--- a/README.md
+++ b/README.md
@@ -252,6 +252,24 @@ table inet filter {
     - role: ipr-cnrs.nftables
 ```
 
+* Override some of the default defined sets:
+
+``` yml
+- hosts: serverXYZ
+  vars:
+    - nft_define:
+      input tcp accepted:
+        desc: Custom SSH port and torrent
+        name: in_tcp_accept
+        value: '{ 2201, 6881 }'
+      input udp accepted:
+        desc: torrent
+        name: in_udp_accept
+        value: '{ 6881 }'
+  roles:
+    - role: ipr-cnrs.nftables
+```
+
 * Use default rules with allow incoming ICMP and count dropped input packets :
 
 `group_vars/first_group` :