- name: Set firewalld rule for required ports
  firewalld:
    port: "{{ item }}"
    permanent: yes
    state: enabled
    immediate: yes
  loop:
    - 2379-2380/tcp
    - 6443/tcp
    - 8472/udp
    - 10250/tcp
    # tcp and udb for metallb
    - 7946/udp
    - 7946/tcp
    
- name: Set firewalld rule for rquired zones
  firewalld:
    zone: trusted
    source: "{{ item }}"
    permanent: yes
    state: enabled
    immediate: yes
  loop:
    - 10.42.0.0/16 # pods
    - 10.43.0.0/16 # services

- name: Update hostname to be unique
  ansible.builtin.replace:
    path: /etc/hosts
    regexp: '(\s+)localhost(\s+.*)?$'
    replace: '\{{ inventory_hostname }}\2'

- name: Set hostname
  ansible.builtin.hostname:
    name: "{{ inventory_hostname }}"