36 lines
754 B
YAML
36 lines
754 B
YAML
- name: Set firewalld rule for required ports
|
|
firewalld:
|
|
port: "{{ item }}"
|
|
permanent: yes
|
|
state: enabled
|
|
immediate: yes
|
|
loop:
|
|
- 2379-2380/tcp
|
|
- 6443/tcp
|
|
- 8472/udp
|
|
- 10250/tcp
|
|
# tcp and udb for metallb
|
|
- 7946/udp
|
|
- 7946/tcp
|
|
|
|
- name: Set firewalld rule for rquired zones
|
|
firewalld:
|
|
zone: trusted
|
|
source: "{{ item }}"
|
|
permanent: yes
|
|
state: enabled
|
|
immediate: yes
|
|
loop:
|
|
- 10.42.0.0/16 # pods
|
|
- 10.43.0.0/16 # services
|
|
|
|
- name: Update hostname to be unique
|
|
ansible.builtin.replace:
|
|
path: /etc/hosts
|
|
regexp: '(\s+)localhost(\s+.*)?$'
|
|
replace: '\{{ inventory_hostname }}\2'
|
|
|
|
- name: Set hostname
|
|
ansible.builtin.hostname:
|
|
name: "{{ inventory_hostname }}"
|