From 6b106cce38106e7beb9db623a9d98784cb8bbc86 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Romain=20Gon=C3=A7alves?= <me@rgoncalves.se>
Date: Thu, 30 Dec 2021 15:39:08 +0000
Subject: ansible_port: Add ssh port switch to network roles

---
 roles/pf/tasks/main.yml       | 2 +-
 roles/pf/templates/pf.conf.j2 | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

(limited to 'roles/pf')

diff --git a/roles/pf/tasks/main.yml b/roles/pf/tasks/main.yml
index 3924a89..e5b8af8 100644
--- a/roles/pf/tasks/main.yml
+++ b/roles/pf/tasks/main.yml
@@ -12,6 +12,6 @@
 
 - name: test ssh connection on new pf rule
   wait_for:
-    port: 22
+    port: "{{ ansible_port }}"
     delay: 2
     state: started
diff --git a/roles/pf/templates/pf.conf.j2 b/roles/pf/templates/pf.conf.j2
index 6bc936a..1b51fe7 100644
--- a/roles/pf/templates/pf.conf.j2
+++ b/roles/pf/templates/pf.conf.j2
@@ -8,7 +8,7 @@ set skip on { lo wg0 }
 block all
 
 # force ssh if not present below
-pass in quick on egress proto tcp to port 22
+pass in quick on egress proto tcp to port {{ ansible_port }}
 
 # host services
 {% for service in __services %}
-- 
cgit v1.2.3