aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
-rw-r--r--roles/pf/defaults/main.yml2
-rw-r--r--roles/pf/handlers/main.yml6
-rw-r--r--roles/pf/tasks/main.yml5
3 files changed, 8 insertions, 5 deletions
diff --git a/roles/pf/defaults/main.yml b/roles/pf/defaults/main.yml
index 0523589..edba159 100644
--- a/roles/pf/defaults/main.yml
+++ b/roles/pf/defaults/main.yml
@@ -1,3 +1,5 @@
---
pf_configuration_file: /etc/pf.conf
+pf_test_ports:
+ - "{{ ansible_port }}"
diff --git a/roles/pf/handlers/main.yml b/roles/pf/handlers/main.yml
index 85a0996..2d518eb 100644
--- a/roles/pf/handlers/main.yml
+++ b/roles/pf/handlers/main.yml
@@ -5,10 +5,10 @@
- name: enable pf
ansible.builtin.command: pfctl -e
- register: result
+ register: pf_result_enable
failed_when:
- - result.rc != 0
- - "'already enabled' not in result.stderr"
+ - pf_result_enable.result.rc != 0
+ - "'already enabled' not in pf_result_enabled.result.stderr"
- name: restart pf
ansible.builtin.command: pfctl -f "{{ pf_configuration_file }}"
diff --git a/roles/pf/tasks/main.yml b/roles/pf/tasks/main.yml
index e90e348..8e81e1c 100644
--- a/roles/pf/tasks/main.yml
+++ b/roles/pf/tasks/main.yml
@@ -12,8 +12,9 @@
- enable pf
- restart pf
-- name: test ssh connection on new pf rule
+- name: test pf rules
ansible.builtin.wait_for:
- port: "{{ ansible_port }}"
+ port: "{{ item }}"
delay: 2
state: started
+ loop: "{{ pf_test_ports }}"
remember that computers suck.