it-team/lmn-client
3
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Apply libvirt firewall policy only on devices with vm_support

Browse source
This commit is contained in:
Raphael Dannecker 2025-12-17 13:19:43 +01:00
parent 405fed1fcf
commit 93a0f07846
1 changed files with 5 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
roles/lmn_exam/tasks/main.yml
View file

@ -62,9 +62,11 @@
src: no-way-out.xml.j2 src: no-way-out.xml.j2
dest: "/etc/firewalld/policies/no-way-out-{{ item }}.xml" dest: "/etc/firewalld/policies/no-way-out-{{ item }}.xml"
mode: '0644' mode: '0644'
loop: vars:
zones:
- HOST - HOST
- libvirt - "{{ 'libvirt' if vm_support | default(false) else '' }}"
loop: "{{ zones | reject('match','^$') }}"
when: when:
- exam_destination_allowed_ipv4 is defined - exam_destination_allowed_ipv4 is defined
- exam_destination_allowed_ipv4 | length > 0 - exam_destination_allowed_ipv4 | length > 0