From c593b0c5ed0395c4fe31d074cfaf2e2657ae0856 Mon Sep 17 00:00:00 2001 From: Dmitry Ilvokhin Date: Sat, 1 Jun 2024 19:12:52 +0100 Subject: Migrate netfwd to systemd-sysctl /etc/sysctl.conf doesn't work, see [1]. Intrestingly enough, I catched it only with system upgrade and reboot. Just reboot didn't catch it for some reason, or I didn't notice. [1]: https://wiki.archlinux.org/title/sysctl --- roles/netfwd/files/99-net-ipv4-forward.conf | 2 ++ roles/netfwd/handlers/main.yml | 4 ++++ roles/netfwd/tasks/main.yml | 18 +++++++++--------- 3 files changed, 15 insertions(+), 9 deletions(-) create mode 100644 roles/netfwd/files/99-net-ipv4-forward.conf create mode 100644 roles/netfwd/handlers/main.yml (limited to 'roles/netfwd') diff --git a/roles/netfwd/files/99-net-ipv4-forward.conf b/roles/netfwd/files/99-net-ipv4-forward.conf new file mode 100644 index 0000000..be105e2 --- /dev/null +++ b/roles/netfwd/files/99-net-ipv4-forward.conf @@ -0,0 +1,2 @@ +net.ipv4.ip_forward = 1 +net.ipv4.conf.all.forwarding = 1 diff --git a/roles/netfwd/handlers/main.yml b/roles/netfwd/handlers/main.yml new file mode 100644 index 0000000..0e5f805 --- /dev/null +++ b/roles/netfwd/handlers/main.yml @@ -0,0 +1,4 @@ +- name: Restart systemd-sysctl + ansible.builtin.service: + name: systemd-sysctl + state: restarted diff --git a/roles/netfwd/tasks/main.yml b/roles/netfwd/tasks/main.yml index 47e389a..3ba74ab 100644 --- a/roles/netfwd/tasks/main.yml +++ b/roles/netfwd/tasks/main.yml @@ -1,9 +1,9 @@ -- name: Configure IPv4 and IPv6 packet forwarding - ansible.builtin.sysctl: - name: '{{ item }}' - value: '1' - sysctl_set: true - loop: - - net.ipv4.ip_forward - - net.ipv4.conf.all.forwarding - - net.ipv6.conf.all.forwarding +- name: Configure IPv4 packet forwarding + ansible.builtin.copy: + src: files/99-net-ipv4-forward.conf + dest: /etc/sysctl.d/99-net-ipv4-forward.conf + owner: root + group: root + mode: u+rw,g+r,o+r + notify: + - Restart systemd-sysctl -- cgit v1.2.3-70-g09d2