kamigerami · May 21, 2018 14:49
diff --git a/idempotent_lineinfile_ansible b/idempotent_lineinfile_ansible
  - name: Create persistent DNS rules for acepting port 53
    lineinfile:
      path: /etc/sysconfig/iptables
      state: "{{ item.1 }}"
      insertbefore: "^-A INPUT (1 - p {{ item.0 }} -- dport 53 -j ACCEPT)?"
      line: "-A INPUT 1 -p {{ item.0 }} --dport 53 -j ACCEPT"
    with_nested:
      - ['TCP', 'UDP']
      - ['absent', 'present']
	- name: Create persistent DNS rules for acepting port 53
	lineinfile:
	path: /etc/sysconfig/iptables
	state: "{{ item.1 }}"
	insertbefore: "^-A INPUT (1 - p {{ item.0 }} -- dport 53 -j ACCEPT)?"
	line: "-A INPUT 1 -p {{ item.0 }} --dport 53 -j ACCEPT"
	with_nested:
	- ['TCP', 'UDP']
	- ['absent', 'present']