I am currently looking into ansibles to store my configurations and deploy services more easily.
I have couple of iptable rules in /etc/iptables/rules.v4, which I can easily restore. Meanwhile, ansible has iptable role for configurations - hence, I am confused on what approach to take.
How do I persist this rules, especially across reboots? Should I rerun ansible every time on each reboot? I am at loss on how to best manage iptables, as other services can interact with it. How do you folks handle this? Thanks in advance!
You want something outside of IPtables like Firewalld. Ansible should only run to make changes to a existing system.
No. Ansible is fine for provisioning and initial deployment.
I miss phrased this
My existing system I mean some sort of Linux install. Don’t use Ansible to start a service on startup.