49 lines
1.7 KiB
YAML
49 lines
1.7 KiB
YAML
---
|
|
# Set state status for firewall nat
|
|
- name: Set state status for firewall nat {{ item.id | default('@nat[-1]') }}
|
|
ansible.builtin.set_fact:
|
|
firewall_nat_state: "{{ item.state | default('present') }}"
|
|
|
|
# Delete firewall nat
|
|
- name: Delete firewall nat {{ item.id }}
|
|
when: "'absent' in firewall_nat_state"
|
|
uci:
|
|
command: "absent"
|
|
config: "firewall"
|
|
section: "{{ item.id }}"
|
|
type: "nat"
|
|
|
|
# Create and configure firewall nat
|
|
- name: Create and configure firewall nat
|
|
when: "'present' in firewall_nat_state"
|
|
block:
|
|
# Create firewall nat
|
|
- name: Create firewall nat {{ item.id | default('@nat[-1]') }}
|
|
uci:
|
|
command: "add"
|
|
config: "firewall"
|
|
section: "{{ item.id | default('@nat[-1]') }}"
|
|
type: "nat"
|
|
|
|
# Configure firewall nat
|
|
- name: Configure firewall nat {{ item.id | default('@nat[-1]') }}
|
|
uci:
|
|
command: "set"
|
|
config: "firewall"
|
|
section: "{{ item.id | default('@nat[-1]') }}"
|
|
type: "nat"
|
|
value:
|
|
name: "{{ item.name | default(omit) }}"
|
|
src: "{{ item.src | default(omit) }}"
|
|
src_ip: "{{ item.src_ip | default(omit) }}"
|
|
src_port: "{{ item.src_port | default(omit) }}"
|
|
dest_ip: "{{ item.dest_ip | default(omit) }}"
|
|
dest_port: "{{ item.dest_port | default(omit) }}"
|
|
snat_ip: "{{ item.snat_ip | default(omit) }}"
|
|
snat_port: "{{ item.snat_port | default(omit) }}"
|
|
target: "{{ item.target | default(omit) }}"
|
|
proto: "{{ item.proto | default([]) | join(' ') }}"
|
|
family: "{{ item.family | default(omit) }}"
|
|
mark: "{{ item.mark | default(omit) }}"
|
|
enabled: "{{ item.enabled | default(omit) }}"
|