enable appliances_task_mode for fail2ban

Author: sjpb

Diff for: ansible/bootstrap.yml

@@ -119,6 +119,7 @@
   tasks:
     - import_role:
         name: fail2ban
+      tasks_from: "{{ appliances_task_mode }}.yml"
 
 - name: Setup podman
   gather_facts: false

Diff for: ansible/roles/fail2ban/tasks/configure.yml

@@ -0,0 +1,14 @@
+- name: Create config
+  template:
+    dest: /etc/fail2ban/jail.local
+    src: jail.local.j2
+  notify: Restart fail2ban
+
+- name: flush handlers
+  meta: flush_handlers
+
+- name: Ensure fail2ban running even if no config change
+  service:
+    name: fail2ban
+    state: started
+    enabled: true

Diff for: ansible/roles/fail2ban/tasks/install.yml

@@ -0,0 +1,10 @@
+- name: Install EPEL repo
+  package:
+    name: epel-release
+
+- name: Install fail2ban packages
+  package:
+    name:
+      - fail2ban-server
+      - fail2ban-firewalld
+    state: present

Diff for: ansible/roles/fail2ban/tasks/main.yml

@@ -1,26 +1,2 @@
----
-- name: Install EPEL repo
-  package:
-    name: epel-release
-
-- name: Install fail2ban packages
-  package:
-    name:
-      - fail2ban-server
-      - fail2ban-firewalld
-    state: present
-
-- name: Create config
-  template:
-    dest: /etc/fail2ban/jail.local
-    src: jail.local.j2
-  notify: Restart fail2ban
-
-- name: flush handlers
-  meta: flush_handlers
-
-- name: Ensure fail2ban running even if no config change
-  service:
-    name: fail2ban
-    state: started
-    enabled: true
+- import_tasks: install.yml
+- import_tasks: configure.yml