forked from ISTI-ansible-roles/ansible-roles
16 lines
406 B
Django/Jinja
16 lines
406 B
Django/Jinja
#
|
|
# {{ ansible_managed }} don't manually modify this file
|
|
#
|
|
*filter
|
|
:INPUT ACCEPT [0:0]
|
|
:FORWARD ACCEPT [0:0]
|
|
:OUTPUT ACCEPT [0:0]
|
|
{% if iptables_default_policy == 'REJECT' %}
|
|
-A INPUT -j REJECT --reject-with icmp6-addr-unreachable
|
|
-A FORWARD -j REJECT --reject-with icmp6-addr-unreachable
|
|
{% else %}
|
|
-A INPUT -j {{ iptables_default_policy }}
|
|
-A FORWARD -j {{ iptables_default_policy }}
|
|
{% endif %}
|
|
COMMIT
|