Ansible - Firewall config

1. ### Firewall Configurations ###
2. - hosts: testservers
3.   tasks:
5.     # CentOS #
6.  
7.    - name: Allow HTTP CentOS
8.      command: firewall-cmd --add-service=http --permanent
9.      when: ansible_distribution == "CentOS"
10.  
11.    - name: Allow HTTPs CentOS
12.      command: firewall-cmd --add-service=https --permanent
13.      when: ansible_distribution == "CentOS"
14.  
15.    - name: Allow SQL CentOS
16.      command: firewall-cmd --add-port=3306/tcp --permanent
17.      when: ansible_distribution == "CentOS"
18.  
19.     # SUSE #
20.  
21.    - name: Allow HTTP SUSE
22.      lineinfile: dest=/etc/sysconfig/SuSEfirewall2 line='FW_CONFIGURATIONS_EXT="apache2"' create="yes"
23.      when: ansible_os_family == "Suse"
24.  
25.    - name: Allow SSH SUSE
26.      lineinfile: dest=/etc/sysconfig/SuSEfirewall2 line='FW_SERVICES_EXT_TCP="ssh"' create="yes"
27.      when: ansible_os_family == "Suse"
28.  
29.    - name: Allow PING SUSE
30.      lineinfile: dest=/etc/sysconfig/SuSEfirewall2 line='FW_ALLOW_PING_FW="yes"' create="yes"
31.      when: ansible_os_family == "Suse"
32.  
33. ### Firewall reboot ###
34.  
35.     # CentOS #
36.  
37.    - name: Reload Firewall settings CentOS
38.      command: firewall-cmd --reload
39.      when: ansible_distribution == "CentOS"
40.  
41.     # SUSE #
42.  
43.    - name: Reload init Firewall settings SUSE
44.      command: /etc/init.d/SuSEfirewall2_init restart
45.      when: ansible_os_family == "Suse"
46.  
47.    - name: Reload setup Firewall settings SUSE
48.      command: /etc/init.d/SuSEfirewall2_setup restart
49.      when: ansible_os_family == "Suse"