From e5e308fafab5dfa007f4281b570efc940884435f Mon Sep 17 00:00:00 2001
From: Jake Howard <git@theorangeone.net>
Date: Sun, 12 Jul 2020 17:04:13 +0100
Subject: [PATCH] Remove firewall role

firewalld does not play nice with docker!
---
 ansible/main.yml                      |  1 -
 ansible/roles/firewall/tasks/main.yml | 44 ---------------------------
 2 files changed, 45 deletions(-)
 delete mode 100644 ansible/roles/firewall/tasks/main.yml

diff --git a/ansible/main.yml b/ansible/main.yml
index d163e3e..2408d01 100644
--- a/ansible/main.yml
+++ b/ansible/main.yml
@@ -38,4 +38,3 @@
     - statping
     - socks-proxy
     - upload
-    - firewall
diff --git a/ansible/roles/firewall/tasks/main.yml b/ansible/roles/firewall/tasks/main.yml
deleted file mode 100644
index 15298b1..0000000
--- a/ansible/roles/firewall/tasks/main.yml
+++ /dev/null
@@ -1,44 +0,0 @@
-- name: Install firewalld
-  package:
-    name: firewalld
-  become: true
-
-- name: Enable firewalld
-  systemd:
-    name: firewalld
-    enabled: true
-    state: started
-  become: true
-
-- name: Mark wireguard as internal traffic
-  firewalld:
-    source: "{{ wireguard.cidr }}"
-    zone: trusted
-    state: enabled
-    permanent: true
-    immediate: true
-  become: true
-
-- name: Get firewall ports
-  shell: firewall-cmd --list-ports --zone public
-  become: true
-  register: firewall_ports
-
-- name: Open firewall ports
-  firewalld:
-    port: "{{ item }}"
-    permanent: true
-    immediate: true
-    state: enabled
-  loop: "{{ requested_firewall_ports }}"
-  become: true
-
-- name: Close firewall ports
-  firewalld:
-    port: "{{ item }}"
-    permanent: true
-    immediate: true
-    state: disabled
-  when: item and item not in requested_firewall_ports
-  loop: "{{ firewall_ports.stdout.split(' ') }}"
-  become: true