summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--roles/netfwd/files/99-net-ipv4-forward.conf2
-rw-r--r--roles/netfwd/handlers/main.yml4
-rw-r--r--roles/netfwd/tasks/main.yml18
3 files changed, 15 insertions, 9 deletions
diff --git a/roles/netfwd/files/99-net-ipv4-forward.conf b/roles/netfwd/files/99-net-ipv4-forward.conf
new file mode 100644
index 0000000..be105e2
--- /dev/null
+++ b/roles/netfwd/files/99-net-ipv4-forward.conf
@@ -0,0 +1,2 @@
+net.ipv4.ip_forward = 1
+net.ipv4.conf.all.forwarding = 1
diff --git a/roles/netfwd/handlers/main.yml b/roles/netfwd/handlers/main.yml
new file mode 100644
index 0000000..0e5f805
--- /dev/null
+++ b/roles/netfwd/handlers/main.yml
@@ -0,0 +1,4 @@
+- name: Restart systemd-sysctl
+ ansible.builtin.service:
+ name: systemd-sysctl
+ state: restarted
diff --git a/roles/netfwd/tasks/main.yml b/roles/netfwd/tasks/main.yml
index 47e389a..3ba74ab 100644
--- a/roles/netfwd/tasks/main.yml
+++ b/roles/netfwd/tasks/main.yml
@@ -1,9 +1,9 @@
-- name: Configure IPv4 and IPv6 packet forwarding
- ansible.builtin.sysctl:
- name: '{{ item }}'
- value: '1'
- sysctl_set: true
- loop:
- - net.ipv4.ip_forward
- - net.ipv4.conf.all.forwarding
- - net.ipv6.conf.all.forwarding
+- name: Configure IPv4 packet forwarding
+ ansible.builtin.copy:
+ src: files/99-net-ipv4-forward.conf
+ dest: /etc/sysctl.d/99-net-ipv4-forward.conf
+ owner: root
+ group: root
+ mode: u+rw,g+r,o+r
+ notify:
+ - Restart systemd-sysctl
generated by cgit v1.2.3-70-g09d2 (git 2.49.0) at 2025-04-28 07:39:51 +0000