refactor(roles/pf): modular test for open ports

3 files changed, 8 insertions, 5 deletions

diff --git a/roles/pf/defaults/main.yml b/roles/pf/defaults/main.yml
index 0523589..edba159 100644
--- a/roles/pf/defaults/main.yml
+++ b/roles/pf/defaults/main.yml
@@ -1,3 +1,5 @@
 ---
 
 pf_configuration_file: /etc/pf.conf
+pf_test_ports:
+  - "{{ ansible_port }}"
diff --git a/roles/pf/handlers/main.yml b/roles/pf/handlers/main.yml
index 85a0996..2d518eb 100644
--- a/roles/pf/handlers/main.yml
+++ b/roles/pf/handlers/main.yml
@@ -5,10 +5,10 @@
 
 - name: enable pf
   ansible.builtin.command: pfctl -e
-  register: result
+  register: pf_result_enable
   failed_when:
-    - result.rc != 0
-    - "'already enabled' not in result.stderr"
+    - pf_result_enable.result.rc != 0
+    - "'already enabled' not in pf_result_enabled.result.stderr"
 
 - name: restart pf
   ansible.builtin.command: pfctl -f "{{ pf_configuration_file }}"
diff --git a/roles/pf/tasks/main.yml b/roles/pf/tasks/main.yml
index e90e348..8e81e1c 100644
--- a/roles/pf/tasks/main.yml
+++ b/roles/pf/tasks/main.yml
@@ -12,8 +12,9 @@
     - enable pf
     - restart pf
 
-- name: test ssh connection on new pf rule
+- name: test pf rules
   ansible.builtin.wait_for:
-    port: "{{ ansible_port }}"
+    port: "{{ item }}"
     delay: 2
     state: started
+  loop: "{{ pf_test_ports }}"