Skip to content

Commit

Permalink
Adding missing lines to sysctl.d/50-default.conf
Browse files Browse the repository at this point in the history 
Signed-off-by: Bernd Grobauer <[email protected]>
  • Loading branch information
@bgro
bgro committed Oct 12, 2023
1 parent 9fa57a2 commit 646b4de
Showing 1 changed file with 13 additions and 0 deletions.
13 changes: 13 additions & 0 deletions tasks/post.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,6 +26,19 @@
- not system_is_container
- "'procps-ng' in ansible_facts.packages"

- name: POST | Update usr sysctl
ansible.builtin.lineinfile:
dest: /usr/lib/sysctl.d/50-default.conf
regexp: "{{ item.regexp }}"
line: "{{ item.line }}"
loop:
- { regexp: '^net.ipv4.conf.default.rp_filter', line: 'net.ipv4.conf.default.rp_filter = 1' }
- { regexp: '^net.ipv4.conf.*.rp_filter', line: 'net.ipv4.conf.*.rp_filter = 1' }
when:
- rhel9cis_sysctl_update
- not system_is_container
- "'procps-ng' in ansible_facts.packages"

- name: Flush handlers
ansible.builtin.meta: flush_handlers

Expand Down

0 comments on commit 646b4de

Please sign in to comment.