aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
-rw-r--r--roles/pf/handlers/main.yml10
-rw-r--r--roles/pf/tasks/main.yml12
2 files changed, 12 insertions, 10 deletions
diff --git a/roles/pf/handlers/main.yml b/roles/pf/handlers/main.yml
index 187e769..5d75a1a 100644
--- a/roles/pf/handlers/main.yml
+++ b/roles/pf/handlers/main.yml
@@ -1,2 +1,12 @@
- name: lint pf configuration
command: "pfctl -nf {{ pf_configuration_file }}"
+
+- name: enable pf
+ command: pfctl -e
+ register: result
+ failed_when:
+ - result.rc != 0
+ - "'already enabled' not in result.stderr"
+
+- name: restart pf
+ command: pfctl -f "{{ pf_configuration_file }}"
diff --git a/roles/pf/tasks/main.yml b/roles/pf/tasks/main.yml
index 4fafb77..3924a89 100644
--- a/roles/pf/tasks/main.yml
+++ b/roles/pf/tasks/main.yml
@@ -7,16 +7,8 @@
mode: 0600
notify:
- lint pf configuration
-
-- name: enable pf
- command: pfctl -e
- register: result
- failed_when:
- - result.rc != 0
- - "'already enabled' not in result.stderr"
-
-- name: restart pf
- command: pfctl -f "{{ pf_configuration_file }}"
+ - enable pf
+ - restart pf
- name: test ssh connection on new pf rule
wait_for:
remember that computers suck.