diff --git a/roles/ipabackup/tasks/restore.yml b/roles/ipabackup/tasks/restore.yml index 27e3c7d6..30777064 100644 --- a/roles/ipabackup/tasks/restore.yml +++ b/roles/ipabackup/tasks/restore.yml @@ -91,20 +91,21 @@ enabled: yes state: started - - name: Firewalld - Verify runtime zone "{{ ipabackup_firewalld_zone }}" - ansible.builtin.shell: > - firewall-cmd - --info-zone="{{ ipabackup_firewalld_zone }}" - >/dev/null + - name: Firewalld - Verify zones when: ipabackup_firewalld_zone is defined + block: + - name: Firewalld - Verify runtime zone from ipabackup_firewalld_zone + ansible.builtin.shell: > + firewall-cmd + --info-zone="{{ ipabackup_firewalld_zone }}" + >/dev/null - - name: Firewalld - Verify permanent zone "{{ ipabackup_firewalld_zone }}" - ansible.builtin.shell: > - firewall-cmd - --permanent - --info-zone="{{ ipabackup_firewalld_zone }}" - >/dev/null - when: ipabackup_firewalld_zone is defined + - name: Firewalld - Verify permanent zone from ipabackup_firewalld_zone + ansible.builtin.shell: > + firewall-cmd + --permanent + --info-zone="{{ ipabackup_firewalld_zone }}" + >/dev/null ### RESTORE diff --git a/roles/ipareplica/tasks/install.yml b/roles/ipareplica/tasks/install.yml index 76cffffd..41d5cdbe 100644 --- a/roles/ipareplica/tasks/install.yml +++ b/roles/ipareplica/tasks/install.yml @@ -47,20 +47,21 @@ enabled: yes state: started - - name: Firewalld - Verify runtime zone "{{ ipareplica_firewalld_zone }}" - ansible.builtin.shell: > - firewall-cmd - --info-zone="{{ ipareplica_firewalld_zone }}" - >/dev/null + - name: Firewalld - Verify zones when: ipareplica_firewalld_zone is defined + block: + - name: Firewalld - Verify runtime zone from ipareplica_firewalld_zone + ansible.builtin.shell: > + firewall-cmd + --info-zone="{{ ipareplica_firewalld_zone }}" + >/dev/null - - name: Firewalld - Verify permanent zone "{{ ipareplica_firewalld_zone }}" - ansible.builtin.shell: > - firewall-cmd - --permanent - --info-zone="{{ ipareplica_firewalld_zone }}" - >/dev/null - when: ipareplica_firewalld_zone is defined + - name: Firewalld - Verify permanent zone from ipareplica_firewalld_zone + ansible.builtin.shell: > + firewall-cmd + --permanent + --info-zone="{{ ipareplica_firewalld_zone }}" + >/dev/null - name: Install - Set ipareplica_servers ansible.builtin.set_fact: diff --git a/roles/ipaserver/tasks/install.yml b/roles/ipaserver/tasks/install.yml index f7ad7472..a9e15a9d 100644 --- a/roles/ipaserver/tasks/install.yml +++ b/roles/ipaserver/tasks/install.yml @@ -47,20 +47,21 @@ enabled: yes state: started - - name: Firewalld - Verify runtime zone "{{ ipaserver_firewalld_zone }}" - ansible.builtin.shell: > - firewall-cmd - --info-zone="{{ ipaserver_firewalld_zone }}" - >/dev/null + - name: Firewalld - verify zones when: ipaserver_firewalld_zone is defined + block: + - name: Firewalld - Verify runtime zone from ipaserver_firewalld_zone + ansible.builtin.shell: > + firewall-cmd + --info-zone="{{ ipaserver_firewalld_zone }}" + >/dev/null - - name: Firewalld - Verify permanent zone "{{ ipaserver_firewalld_zone }}" - ansible.builtin.shell: > - firewall-cmd - --permanent - --info-zone="{{ ipaserver_firewalld_zone }}" - >/dev/null - when: ipaserver_firewalld_zone is defined + - name: Firewalld - Verify permanent zone from ipaserver_firewalld_zone + ansible.builtin.shell: > + firewall-cmd + --permanent + --info-zone="{{ ipaserver_firewalld_zone }}" + >/dev/null - name: Copy external certs ansible.builtin.include_tasks: "{{ role_path }}/tasks/copy_external_cert.yml"