From f9db5452f371a32da20d68bd870054b2c30575ac Mon Sep 17 00:00:00 2001 From: Robert de Bock Date: Mon, 7 Nov 2022 15:39:10 +0100 Subject: [PATCH] Make a list out of ignoreips. --- README.md | 3 ++- defaults/main.yml | 3 ++- tasks/assert.yml | 2 +- vars/main.yml | 2 +- 4 files changed, 6 insertions(+), 4 deletions(-) diff --git a/README.md b/README.md index 28603ce..3f15225 100644 --- a/README.md +++ b/README.md @@ -49,7 +49,8 @@ fail2ban_loglevel: INFO fail2ban_logtarget: /var/log/fail2ban.log fail2ban_ignoreself: "true" -fail2ban_ignoreips: "127.0.0.1/8 ::1" +fail2ban_ignoreips: + - "127.0.0.1/8 ::1" # In seconds fail2ban_bantime: 600 diff --git a/defaults/main.yml b/defaults/main.yml index 5f777ff..4a3e15b 100644 --- a/defaults/main.yml +++ b/defaults/main.yml @@ -5,7 +5,8 @@ fail2ban_loglevel: INFO fail2ban_logtarget: /var/log/fail2ban.log fail2ban_ignoreself: "true" -fail2ban_ignoreips: "127.0.0.1/8 ::1" +fail2ban_ignoreips: + - "127.0.0.1/8 ::1" # In seconds fail2ban_bantime: 600 diff --git a/tasks/assert.yml b/tasks/assert.yml index 3ce9e0a..25d7366 100644 --- a/tasks/assert.yml +++ b/tasks/assert.yml @@ -27,7 +27,7 @@ ansible.builtin.assert: that: - fail2ban_ignoreips is defined - - fail2ban_ignoreips is string + - fail2ban_ignoreips is iterable quiet: yes - name: Test if fail2ban_bantime is set correctly diff --git a/vars/main.yml b/vars/main.yml index feaba74..99a96ff 100644 --- a/vars/main.yml +++ b/vars/main.yml @@ -19,7 +19,7 @@ fail2ban_base_jail_configuration: value: "{{ fail2ban_ignoreself }}" section: DEFAULT - option: ignoreip - value: "{{ fail2ban_ignoreips }}" + value: "{{ fail2ban_ignoreips | join(' ') }}" section: DEFAULT - option: bantime value: "{{ fail2ban_bantime }}"