ansible: remove firewall.yml

Due to migration to nftables, allowed ports are now managed via the open-ports role, so firewall.yml is no longer needed.
2024-10-01 18:31:43 +02:00 · 2024-10-01 18:31:43 +02:00 · 34ac791489
parent 6df4916cd8
commit 34ac791489
3 changed files with 0 additions and 29 deletions
--- a/defaults/main.yml
+++ b/defaults/main.yml
@ -38,10 +38,6 @@ erigon_extra_flags: []

 # DevP2P Port
 erigon_port: 30303
-erigon_p2p_allowed_ports:
-  - '{{ erigon_port }}'
-  - '{{ erigon_port|int + 1 }}'
-  - '{{ erigon_port|int + 2 }}'
 # Address to advertise
 erigon_public_addr: '{{ ansible_host }}'
 # Enable metrics
--- a/tasks/firewall.yml
+++ b/tasks/firewall.yml
@ -1,24 +0,0 @@
---
- name: Enable TCP P2P ports on firewall
-  iptables:
-    comment: '{{ erigon_cont_name }} {{ item }}/tcp'
-    jump: 'ACCEPT'
-    chain: 'SERVICES'
-    source: '0.0.0.0/0'
-    protocol: 'tcp'
-    destination_port: '{{ item | string }}'
-  with_items: '{{ erigon_p2p_allowed_ports }}'
-  notify:
-    - Save iptables rules
-
- name: Enable UDP P2P ports on firewall
-  iptables:
-    comment: '{{ erigon_cont_name }} {{ item }}/udp'
-    jump: 'ACCEPT'
-    chain: 'SERVICES'
-    source: '0.0.0.0/0'
-    protocol: 'udp'
-    destination_port: '{{ item | string }}'
-  with_items: '{{ erigon_p2p_allowed_ports }}'
-  notify:
-    - Save iptables rules
--- a/tasks/main.yml
+++ b/tasks/main.yml
@ -1,7 +1,6 @@
 ---
 - import_tasks: config.yml
 - import_tasks: container.yml
- import_tasks: firewall.yml
 - import_tasks: save_enode.yml
 - import_tasks: consul.yml
  when: erigon_consul_enabled