forked from ansible-lockdown/RHEL9-CIS
reorder 3.4.1.2
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
This commit is contained in:
Mark Bolwell
parent
96abe45eb2
commit
32c409cb48
1 changed files with 4 additions and 2 deletions
|
|
@ -21,16 +21,18 @@
|
||||||
- name: "3.4.1.2 | PATCH | Ensure iptables-services not installed with firewalld | Stop running services"
|
- name: "3.4.1.2 | PATCH | Ensure iptables-services not installed with firewalld | Stop running services"
|
||||||
systemd:
|
systemd:
|
||||||
name: "{{ item }}"
|
name: "{{ item }}"
|
||||||
masked: true
|
state: stopped
|
||||||
|
enabled: false
|
||||||
with_items:
|
with_items:
|
||||||
- iptables
|
- iptables
|
||||||
- ip6tables
|
- ip6tables
|
||||||
when: item in ansible_facts.packages
|
when: item in ansible_facts.packages
|
||||||
|
|
||||||
- name: "3.4.1.2 | PATCH | Ensure iptables-services not installed with firewalld | Remove IPTables"
|
- name: "3.4.1.2 | PATCH | Ensure iptables-services not installed with firewalld | remove iptables-services pkg "
|
||||||
package:
|
package:
|
||||||
name: iptables-services
|
name: iptables-services
|
||||||
state: absent
|
state: absent
|
||||||
|
when: "'iptables-services' in ansible_facts.packages"
|
||||||
when:
|
when:
|
||||||
- rhel9cis_rule_3_4_1_2
|
- rhel9cis_rule_3_4_1_2
|
||||||
tags:
|
tags:
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue