Formatting '/cache/centos-7.qcow2c.snap', fmt=qcow2 cluster_size=65536 extended_l2=off compression_type=zlib size=8589934592 backing_file=/cache/centos-7.qcow2c backing_fmt=qcow2 lazy_refcounts=off refcount_bits=16 ansible-playbook [core 2.12.3] config file = /etc/ansible/ansible.cfg configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible ansible collection location = /tmp/tmp96utdw39 executable location = /usr/bin/ansible-playbook python version = 3.9.10 (main, Jan 17 2022, 00:00:00) [GCC 11.2.1 20210728 (Red Hat 11.2.1-1)] jinja version = 2.11.3 libyaml = True Using /etc/ansible/ansible.cfg as config file Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: centos-7_post_setup.yml ********************************************** 1 plays in /cache/centos-7_post_setup.yml PLAY [Post setup - these happen last] ****************************************** META: ran handlers TASK [force sync of filesystems - ensure setup changes are made to snapshot] *** task path: /cache/centos-7_post_setup.yml:5 Friday 22 April 2022 01:24:23 +0000 (0:00:00.012) 0:00:00.012 ********** changed: [/cache/centos-7.qcow2c.snap] => { "censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true } TASK [shutdown guest] ********************************************************** task path: /cache/centos-7_post_setup.yml:8 Friday 22 April 2022 01:24:24 +0000 (0:00:00.503) 0:00:00.516 ********** changed: [/cache/centos-7.qcow2c.snap] => { "censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true } META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c.snap : ok=2 changed=2 unreachable=0 failed=0 skipped=0 rescued=0 ignored=0 Friday 22 April 2022 01:24:24 +0000 (0:00:00.480) 0:00:00.997 ********** =============================================================================== force sync of filesystems - ensure setup changes are made to snapshot --- 0.50s /cache/centos-7_post_setup.yml:5 ---------------------------------------------- shutdown guest ---------------------------------------------------------- 0.48s /cache/centos-7_post_setup.yml:8 ---------------------------------------------- ansible-playbook [core 2.12.3] config file = /etc/ansible/ansible.cfg configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible ansible collection location = /tmp/tmp96utdw39 executable location = /usr/bin/ansible-playbook python version = 3.9.10 (main, Jan 17 2022, 00:00:00) [GCC 11.2.1 20210728 (Red Hat 11.2.1-1)] jinja version = 2.11.3 libyaml = True Using /etc/ansible/ansible.cfg as config file [DEPRECATION WARNING]: "include" is deprecated, use include_tasks/import_tasks instead. This feature will be removed in version 2.16. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. statically imported: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_ansible.yml **************************************************** 1 plays in /tmp/tmpf6xbqc6n/tests/tests_ansible.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:1 Friday 22 April 2022 01:25:09 +0000 (0:00:00.010) 0:00:00.010 ********** ok: [/cache/centos-7.qcow2c.snap] META: ran handlers TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:25:10 +0000 (0:00:01.122) 0:00:01.132 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "changes": { "installed": [ "firewalld" ] }, "rc": 0, "results": [ "Loaded plugins: fastestmirror\nLoading mirror speeds from cached hostfile\n * base: mirror.umd.edu\n * extras: mirror.ash.fastserv.com\n * updates: mirrors.mit.edu\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-13.el7_9 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-13.el7_9 updates 449 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 base 123 k\n firewalld-filesystem noarch 0.6.3-13.el7_9 updates 51 k\n ipset x86_64 7.1-1.el7 base 39 k\n ipset-libs x86_64 7.1-1.el7 base 64 k\n python-firewall noarch 0.6.3-13.el7_9 updates 355 k\n python-slip noarch 0.4.0-4.el7 base 31 k\n python-slip-dbus noarch 0.4.0-4.el7 base 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\nPublic key for ebtables-2.0.10-16.el7.x86_64.rpm is not installed\nPublic key for firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm is not installed\n--------------------------------------------------------------------------------\nTotal 5.2 MB/s | 1.1 MB 00:00 \nRetrieving key from file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-13.el7_9.noarch 7/8 \n Installing : firewalld-0.6.3-13.el7_9.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-13.el7_9.noarch 3/8 \n Verifying : firewalld-0.6.3-13.el7_9.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-13.el7_9 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-13.el7_9 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-13.el7_9 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n" ] } MSG: warning: /var/cache/yum/x86_64/7/base/packages/ebtables-2.0.10-16.el7.x86_64.rpm: Header V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY Importing GPG key 0xF4A80EB5: Userid : "CentOS-7 Key (CentOS 7 Official Signing Key) " Fingerprint: 6341 ab27 53d7 8a78 a7c2 7bb1 24c6 a8a7 f4a8 0eb5 Package : centos-release-7-8.2003.0.el7.centos.x86_64 (installed) From : /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7 TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:25:19 +0000 (0:00:08.731) 0:00:09.863 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:25:19 +0000 (0:00:00.495) 0:00:10.359 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:25:19 +0000 (0:00:00.022) 0:00:10.382 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "dbus.service polkit.service system.slice basic.target", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "multi-user.target network-pre.target shutdown.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "shutdown.target iptables.service ebtables.service ip6tables.service ipset.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice basic.target", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0" } } TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/main.yml:3 Friday 22 April 2022 01:25:20 +0000 (0:00:00.904) 0:00:11.286 ********** META: role_complete for /cache/centos-7.qcow2c.snap TASK [Remove custom zone] ****************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:14 Friday 22 April 2022 01:25:20 +0000 (0:00:00.022) 0:00:11.309 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--delete-zone=custom" ], "delta": "0:00:00.279961", "end": "2022-04-22 01:25:20.843140", "failed_when_result": false, "rc": 112, "start": "2022-04-22 01:25:20.563179" } STDERR: Error: INVALID_ZONE: custom MSG: non-zero return code TASK [Reset internal zone to defaults] ***************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:19 Friday 22 April 2022 01:25:21 +0000 (0:00:00.708) 0:00:12.017 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--load-zone-defaults=internal" ], "delta": "0:00:00.281378", "end": "2022-04-22 01:25:21.424111", "failed_when_result": false, "rc": 22, "start": "2022-04-22 01:25:21.142733" } STDERR: Error: NO_DEFAULTS: internal MSG: non-zero return code TASK [Reset trusted zone to defaults] ****************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:24 Friday 22 April 2022 01:25:21 +0000 (0:00:00.579) 0:00:12.597 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--load-zone-defaults=trusted" ], "delta": "0:00:00.263050", "end": "2022-04-22 01:25:21.976946", "failed_when_result": false, "rc": 22, "start": "2022-04-22 01:25:21.713896" } STDERR: Error: NO_DEFAULTS: trusted MSG: non-zero return code TASK [Reset dmz zone to defaults] ********************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:29 Friday 22 April 2022 01:25:22 +0000 (0:00:00.555) 0:00:13.153 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--load-zone-defaults=dmz" ], "delta": "0:00:00.279710", "end": "2022-04-22 01:25:22.564944", "failed_when_result": false, "rc": 22, "start": "2022-04-22 01:25:22.285234" } STDERR: Error: NO_DEFAULTS: dmz MSG: non-zero return code TASK [Reset drop zone to defaults] ********************************************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:34 Friday 22 April 2022 01:25:23 +0000 (0:00:00.587) 0:00:13.741 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--load-zone-defaults=drop" ], "delta": "0:00:00.283877", "end": "2022-04-22 01:25:23.184159", "failed_when_result": false, "rc": 22, "start": "2022-04-22 01:25:22.900282" } STDERR: Error: NO_DEFAULTS: drop MSG: non-zero return code TASK [Reset public zone to defaults] ******************************************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:39 Friday 22 April 2022 01:25:23 +0000 (0:00:00.619) 0:00:14.360 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--load-zone-defaults=public" ], "delta": "0:00:00.314029", "end": "2022-04-22 01:25:23.812121", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:25:23.498092" } STDOUT: success TASK [Reset default zone to defaults] ****************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:44 Friday 22 April 2022 01:25:24 +0000 (0:00:00.630) 0:00:14.990 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": "zone=$(firewall-cmd --get-default-zone)\nfirewall-cmd --permanent --load-zone-defaults=$zone\n", "delta": "0:00:00.538896", "end": "2022-04-22 01:25:24.667993", "failed_when_result": false, "rc": 22, "start": "2022-04-22 01:25:24.129097" } STDERR: Error: NO_DEFAULTS: public MSG: non-zero return code TASK [Create custom zone] ****************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:52 Friday 22 April 2022 01:25:25 +0000 (0:00:00.857) 0:00:15.848 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--new-zone=custom" ], "delta": "0:00:00.247749", "end": "2022-04-22 01:25:25.224482", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:25:24.976733" } STDOUT: success TASK [Reload firewalld] ******************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:57 Friday 22 April 2022 01:25:25 +0000 (0:00:00.550) 0:00:16.398 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--reload" ], "delta": "0:00:00.461279", "end": "2022-04-22 01:25:25.984296", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:25:25.523017" } STDOUT: success TASK [Permit traffic in default zone for https service] ************************ task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:64 Friday 22 April 2022 01:25:26 +0000 (0:00:00.765) 0:00:17.163 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Permit traffic in default zone for https service, again] ***************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:72 Friday 22 April 2022 01:25:27 +0000 (0:00:00.640) 0:00:17.804 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Permit traffic in default zone on port 8081/tcp] ************************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:80 Friday 22 April 2022 01:25:27 +0000 (0:00:00.481) 0:00:18.286 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Permit traffic in default zone on port 8081/tcp, again] ****************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:88 Friday 22 April 2022 01:25:28 +0000 (0:00:00.516) 0:00:18.803 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Allow port 161-162/udp in permanent default zone] ************************ task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:96 Friday 22 April 2022 01:25:28 +0000 (0:00:00.492) 0:00:19.295 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Allow port 161-162/udp in permanent default zone, again] ***************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:104 Friday 22 April 2022 01:25:29 +0000 (0:00:00.494) 0:00:19.789 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Do not permit traffic in default zone on port 8081/tcp] ****************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:112 Friday 22 April 2022 01:25:29 +0000 (0:00:00.500) 0:00:20.289 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Do not permit traffic in default zone on port 8081/tcp, again] *********** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:120 Friday 22 April 2022 01:25:30 +0000 (0:00:00.491) 0:00:20.781 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Allow service http in permanent dmz zone] ******************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:128 Friday 22 April 2022 01:25:30 +0000 (0:00:00.496) 0:00:21.277 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Allow service http in permanent dmz zone, again] ************************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:137 Friday 22 April 2022 01:25:31 +0000 (0:00:00.490) 0:00:21.768 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Allow service ftp with limitation using rich rule in permanent default zone] *** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:146 Friday 22 April 2022 01:25:31 +0000 (0:00:00.495) 0:00:22.264 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Allow service ftp with limitation using rich rule in permanent default zone, again] *** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:155 Friday 22 April 2022 01:25:32 +0000 (0:00:00.501) 0:00:22.766 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Allow source 192.0.2.0/24 in internal zone] ****************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:164 Friday 22 April 2022 01:25:32 +0000 (0:00:00.587) 0:00:23.354 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Allow source 192.0.2.0/24 in internal zone, again] *********************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:173 Friday 22 April 2022 01:25:33 +0000 (0:00:00.608) 0:00:23.962 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Allow interface eth2 in permanent trusted zone] ************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:182 Friday 22 April 2022 01:25:33 +0000 (0:00:00.490) 0:00:24.453 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Allow interface eth2 in permanent trusted zone, again] ******************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:191 Friday 22 April 2022 01:25:34 +0000 (0:00:00.492) 0:00:24.945 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Allow masquerading in permament dmz zone] ******************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:200 Friday 22 April 2022 01:25:34 +0000 (0:00:00.511) 0:00:25.457 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Allow masquerading in permament dmz zone, again] ************************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:209 Friday 22 April 2022 01:25:35 +0000 (0:00:00.509) 0:00:25.967 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Ensure permanent custom zone exists (no change)] ************************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:218 Friday 22 April 2022 01:25:35 +0000 (0:00:00.499) 0:00:26.467 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Ensure ICMP block inversion in permanent drop zone] ********************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:226 Friday 22 April 2022 01:25:36 +0000 (0:00:00.476) 0:00:26.944 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Ensure ICMP block inversion in permanent drop zone, again] *************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:235 Friday 22 April 2022 01:25:36 +0000 (0:00:00.513) 0:00:27.457 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Block ICMP echo-request in permanent drop zone] ************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:244 Friday 22 April 2022 01:25:37 +0000 (0:00:00.498) 0:00:27.956 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Block ICMP echo-request in permanent drop zone, again] ******************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:253 Friday 22 April 2022 01:25:37 +0000 (0:00:00.503) 0:00:28.459 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Ensure default target in permanent internal zone (no change)] ************ task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:262 Friday 22 April 2022 01:25:38 +0000 (0:00:00.505) 0:00:28.964 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Ensure target ACCEPT in permanent internal zone] ************************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:271 Friday 22 April 2022 01:25:38 +0000 (0:00:00.494) 0:00:29.459 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Ensure target ACCEPT in permanent internal zone, again] ****************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:280 Friday 22 April 2022 01:25:39 +0000 (0:00:00.716) 0:00:30.175 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Ensure default target in permanent internal zone] ************************ task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:289 Friday 22 April 2022 01:25:40 +0000 (0:00:00.499) 0:00:30.675 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Ensure default target in permanent internal zone, again] ***************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:298 Friday 22 April 2022 01:25:40 +0000 (0:00:00.728) 0:00:31.403 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Redirect port 443 to 8443 with Rich Rule in permanent and runtime public zone] *** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:307 Friday 22 April 2022 01:25:41 +0000 (0:00:00.499) 0:00:31.902 ********** [DEPRECATION WARNING]: Alias 'immediate' is deprecated. See the module docs for more information. This feature will be removed from ansible.posix in a release after 2021-09-23. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Redirect port 443 to 8443 with Rich Rule in permanent and runtime public zone, again] *** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:319 Friday 22 April 2022 01:25:41 +0000 (0:00:00.501) 0:00:32.404 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Firewalld custom zone] *************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:331 Friday 22 April 2022 01:25:42 +0000 (0:00:00.499) 0:00:32.904 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true } TASK [assert firewalld custom zone] ******************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:339 Friday 22 April 2022 01:25:43 +0000 (0:00:00.781) 0:00:33.685 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false } MSG: All assertions passed TASK [Add masquerade to custom zone] ******************************************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:344 Friday 22 April 2022 01:25:43 +0000 (0:00:00.024) 0:00:33.709 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Add masquerade to custom zone, again] ************************************ task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:354 Friday 22 April 2022 01:25:43 +0000 (0:00:00.493) 0:00:34.202 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [set default zone] ******************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:364 Friday 22 April 2022 01:25:44 +0000 (0:00:00.499) 0:00:34.702 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [set default zone, again] ************************************************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:371 Friday 22 April 2022 01:25:44 +0000 (0:00:00.515) 0:00:35.217 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [set previous replaced] *************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:378 Friday 22 April 2022 01:25:45 +0000 (0:00:00.507) 0:00:35.725 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [set previous replaced again] ********************************************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:389 Friday 22 April 2022 01:25:45 +0000 (0:00:00.749) 0:00:36.475 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [set previous replaced as only parameter] ********************************* task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:400 Friday 22 April 2022 01:25:46 +0000 (0:00:00.729) 0:00:37.204 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [set previous replaced as only parameter again] *************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:407 Friday 22 April 2022 01:25:47 +0000 (0:00:00.691) 0:00:37.896 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [set previous replaced to clean] ****************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:415 Friday 22 April 2022 01:25:47 +0000 (0:00:00.399) 0:00:38.295 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false } TASK [Reload firewalld] ******************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:420 Friday 22 April 2022 01:25:48 +0000 (0:00:00.402) 0:00:38.698 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--reload" ], "delta": "0:00:00.446220", "end": "2022-04-22 01:25:48.262022", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:25:47.815802" } STDOUT: success META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c.snap : ok=55 changed=31 unreachable=0 failed=0 skipped=2 rescued=0 ignored=0 Friday 22 April 2022 01:25:48 +0000 (0:00:00.746) 0:00:39.445 ********** =============================================================================== linux-system-roles.firewall : Install firewalld ------------------------- 8.73s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 Gathering Facts --------------------------------------------------------- 1.12s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:1 ------------------------------------ linux-system-roles.firewall : Enable and start firewalld service -------- 0.90s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 Reset default zone to defaults ------------------------------------------ 0.86s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:44 ----------------------------------- Firewalld custom zone --------------------------------------------------- 0.78s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:331 ---------------------------------- Reload firewalld -------------------------------------------------------- 0.77s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:57 ----------------------------------- set previous replaced --------------------------------------------------- 0.75s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:378 ---------------------------------- Reload firewalld -------------------------------------------------------- 0.75s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:420 ---------------------------------- set previous replaced again --------------------------------------------- 0.73s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:389 ---------------------------------- Ensure default target in permanent internal zone ------------------------ 0.73s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:289 ---------------------------------- Ensure target ACCEPT in permanent internal zone ------------------------- 0.72s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:271 ---------------------------------- Remove custom zone ------------------------------------------------------ 0.71s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:14 ----------------------------------- set previous replaced as only parameter --------------------------------- 0.69s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:400 ---------------------------------- Permit traffic in default zone for https service ------------------------ 0.64s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:64 ----------------------------------- Reset public zone to defaults ------------------------------------------- 0.63s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:39 ----------------------------------- Reset drop zone to defaults --------------------------------------------- 0.62s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:34 ----------------------------------- Allow source 192.0.2.0/24 in internal zone ------------------------------ 0.61s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:164 ---------------------------------- Allow service ftp with limitation using rich rule in permanent default zone, again --- 0.59s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:155 ---------------------------------- Reset dmz zone to defaults ---------------------------------------------- 0.59s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:29 ----------------------------------- Reset internal zone to defaults ----------------------------------------- 0.58s /tmp/tmpf6xbqc6n/tests/tests_ansible.yml:19 ----------------------------------- ansible-playbook [core 2.12.3] config file = /etc/ansible/ansible.cfg configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible ansible collection location = /tmp/tmp96utdw39 executable location = /usr/bin/ansible-playbook python version = 3.9.10 (main, Jan 17 2022, 00:00:00) [GCC 11.2.1 20210728 (Red Hat 11.2.1-1)] jinja version = 2.11.3 libyaml = True Using /etc/ansible/ansible.cfg as config file [DEPRECATION WARNING]: "include" is deprecated, use include_tasks/import_tasks instead. This feature will be removed in version 2.16. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. statically imported: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_default.yml **************************************************** 1 plays in /tmp/tmpf6xbqc6n/tests/tests_default.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpf6xbqc6n/tests/tests_default.yml:1 Friday 22 April 2022 01:26:02 +0000 (0:00:00.013) 0:00:00.013 ********** ok: [/cache/centos-7.qcow2c.snap] META: ran handlers TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:26:03 +0000 (0:00:01.071) 0:00:01.085 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "changes": { "installed": [ "firewalld" ] }, "rc": 0, "results": [ "Loaded plugins: fastestmirror\nLoading mirror speeds from cached hostfile\n * base: mirror.umd.edu\n * extras: mirror.ash.fastserv.com\n * updates: nc-centos-mirror.iwebfusion.net\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-13.el7_9 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-13.el7_9 updates 449 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 base 123 k\n firewalld-filesystem noarch 0.6.3-13.el7_9 updates 51 k\n ipset x86_64 7.1-1.el7 base 39 k\n ipset-libs x86_64 7.1-1.el7 base 64 k\n python-firewall noarch 0.6.3-13.el7_9 updates 355 k\n python-slip noarch 0.4.0-4.el7 base 31 k\n python-slip-dbus noarch 0.4.0-4.el7 base 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\nPublic key for firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm is not installed\nPublic key for ipset-7.1-1.el7.x86_64.rpm is not installed\n--------------------------------------------------------------------------------\nTotal 5.5 MB/s | 1.1 MB 00:00 \nRetrieving key from file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-13.el7_9.noarch 7/8 \n Installing : firewalld-0.6.3-13.el7_9.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-13.el7_9.noarch 3/8 \n Verifying : firewalld-0.6.3-13.el7_9.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-13.el7_9 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-13.el7_9 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-13.el7_9 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n" ] } MSG: warning: /var/cache/yum/x86_64/7/updates/packages/firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm: Header V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY Importing GPG key 0xF4A80EB5: Userid : "CentOS-7 Key (CentOS 7 Official Signing Key) " Fingerprint: 6341 ab27 53d7 8a78 a7c2 7bb1 24c6 a8a7 f4a8 0eb5 Package : centos-release-7-8.2003.0.el7.centos.x86_64 (installed) From : /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7 TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:26:13 +0000 (0:00:09.498) 0:00:10.583 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:26:13 +0000 (0:00:00.485) 0:00:11.069 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:26:13 +0000 (0:00:00.022) 0:00:11.092 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "system.slice polkit.service dbus.service basic.target", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "shutdown.target multi-user.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "ipset.service shutdown.target ebtables.service ip6tables.service iptables.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0" } } TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/main.yml:3 Friday 22 April 2022 01:26:14 +0000 (0:00:00.940) 0:00:12.032 ********** META: role_complete for /cache/centos-7.qcow2c.snap META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c.snap : ok=4 changed=2 unreachable=0 failed=0 skipped=2 rescued=0 ignored=0 Friday 22 April 2022 01:26:14 +0000 (0:00:00.029) 0:00:12.062 ********** =============================================================================== linux-system-roles.firewall : Install firewalld ------------------------- 9.50s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 Gathering Facts --------------------------------------------------------- 1.07s /tmp/tmpf6xbqc6n/tests/tests_default.yml:1 ------------------------------------ linux-system-roles.firewall : Enable and start firewalld service -------- 0.94s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 linux-system-roles.firewall : Install python-firewall ------------------- 0.49s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 linux-system-roles.firewall : Configure firewall ------------------------ 0.03s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/main.yml:3 ----- linux-system-roles.firewall : Install python3-firewall ------------------ 0.02s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:13 ansible-playbook [core 2.12.3] config file = /etc/ansible/ansible.cfg configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible ansible collection location = /tmp/tmp96utdw39 executable location = /usr/bin/ansible-playbook python version = 3.9.10 (main, Jan 17 2022, 00:00:00) [GCC 11.2.1 20210728 (Red Hat 11.2.1-1)] jinja version = 2.11.3 libyaml = True Using /etc/ansible/ansible.cfg as config file Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_target.yml ***************************************************** 1 plays in /tmp/tmpf6xbqc6n/tests/tests_target.yml PLAY [all] ********************************************************************* TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpf6xbqc6n/tests/tests_target.yml:1 Friday 22 April 2022 01:26:29 +0000 (0:00:00.009) 0:00:00.009 ********** ok: [/cache/centos-7.qcow2c.snap] META: ran handlers TASK [Call role to change target settings] ************************************* task path: /tmp/tmpf6xbqc6n/tests/tests_target.yml:3 Friday 22 April 2022 01:26:30 +0000 (0:00:01.089) 0:00:01.098 ********** [DEPRECATION WARNING]: "include" is deprecated, use include_tasks/import_tasks instead. This feature will be removed in version 2.16. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. statically imported: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:26:30 +0000 (0:00:00.030) 0:00:01.129 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "changes": { "installed": [ "firewalld" ] }, "rc": 0, "results": [ "Loaded plugins: fastestmirror\nLoading mirror speeds from cached hostfile\n * base: linux-mirrors.fnal.gov\n * extras: mirror.ash.fastserv.com\n * updates: mirrors.wcupa.edu\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-13.el7_9 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-13.el7_9 updates 449 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 base 123 k\n firewalld-filesystem noarch 0.6.3-13.el7_9 updates 51 k\n ipset x86_64 7.1-1.el7 base 39 k\n ipset-libs x86_64 7.1-1.el7 base 64 k\n python-firewall noarch 0.6.3-13.el7_9 updates 355 k\n python-slip noarch 0.4.0-4.el7 base 31 k\n python-slip-dbus noarch 0.4.0-4.el7 base 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\nPublic key for firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm is not installed\nPublic key for ipset-7.1-1.el7.x86_64.rpm is not installed\n--------------------------------------------------------------------------------\nTotal 3.1 MB/s | 1.1 MB 00:00 \nRetrieving key from file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-13.el7_9.noarch 7/8 \n Installing : firewalld-0.6.3-13.el7_9.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-13.el7_9.noarch 3/8 \n Verifying : firewalld-0.6.3-13.el7_9.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-13.el7_9 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-13.el7_9 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-13.el7_9 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n" ] } MSG: warning: /var/cache/yum/x86_64/7/updates/packages/firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm: Header V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY Importing GPG key 0xF4A80EB5: Userid : "CentOS-7 Key (CentOS 7 Official Signing Key) " Fingerprint: 6341 ab27 53d7 8a78 a7c2 7bb1 24c6 a8a7 f4a8 0eb5 Package : centos-release-7-8.2003.0.el7.centos.x86_64 (installed) From : /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7 TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:26:38 +0000 (0:00:08.790) 0:00:09.920 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:26:39 +0000 (0:00:00.556) 0:00:10.476 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:26:39 +0000 (0:00:00.021) 0:00:10.498 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "dbus.service basic.target polkit.service system.slice", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "multi-user.target shutdown.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "shutdown.target ipset.service ip6tables.service iptables.service ebtables.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0" } } TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/main.yml:3 Friday 22 April 2022 01:26:40 +0000 (0:00:00.902) 0:00:11.400 ********** ok: [/cache/centos-7.qcow2c.snap] => (item={'set_default_zone': 'public', 'state': 'enabled', 'permanent': True}) => { "ansible_loop_var": "item", "changed": false, "item": { "permanent": true, "set_default_zone": "public", "state": "enabled" } } changed: [/cache/centos-7.qcow2c.snap] => (item={'target': 'DROP', 'state': 'enabled', 'permanent': True}) => { "ansible_loop_var": "item", "changed": true, "item": { "permanent": true, "state": "enabled", "target": "DROP" } } META: role_complete for /cache/centos-7.qcow2c.snap TASK [Get target setting] ****************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_target.yml:15 Friday 22 April 2022 01:26:41 +0000 (0:00:01.407) 0:00:12.808 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "cmd": [ "firewall-cmd", "--info-zone=public" ], "delta": "0:00:00.266233", "end": "2022-04-22 01:26:42.280708", "rc": 0, "start": "2022-04-22 01:26:42.014475" } STDOUT: public target: DROP icmp-block-inversion: no interfaces: sources: services: dhcpv6-client ssh ports: protocols: masquerade: no forward-ports: source-ports: icmp-blocks: rich rules: TASK [Verify target setting] *************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_target.yml:20 Friday 22 April 2022 01:26:42 +0000 (0:00:00.704) 0:00:13.512 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false } MSG: All assertions passed TASK [Call role to reset target settings] ************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_target.yml:26 Friday 22 April 2022 01:26:42 +0000 (0:00:00.020) 0:00:13.533 ********** statically imported: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:26:42 +0000 (0:00:00.029) 0:00:13.563 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "firewalld-0.6.3-13.el7_9.noarch providing firewalld is already installed" ] } TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:26:43 +0000 (0:00:00.543) 0:00:14.107 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:26:43 +0000 (0:00:00.507) 0:00:14.614 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:26:43 +0000 (0:00:00.023) 0:00:14.637 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestamp": "Fri 2022-04-22 01:26:40 UTC", "ActiveEnterTimestampMonotonic": "20702113", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "dbus.service basic.target polkit.service system.slice", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Fri 2022-04-22 01:26:39 UTC", "AssertTimestampMonotonic": "20489964", "Before": "multi-user.target shutdown.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Fri 2022-04-22 01:26:39 UTC", "ConditionTimestampMonotonic": "20489964", "Conflicts": "shutdown.target ipset.service ip6tables.service iptables.service ebtables.service", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "7797", "ExecMainStartTimestamp": "Fri 2022-04-22 01:26:39 UTC", "ExecMainStartTimestampMonotonic": "20491036", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Fri 2022-04-22 01:26:39 UTC] ; stop_time=[n/a] ; pid=7797 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Fri 2022-04-22 01:26:39 UTC", "InactiveExitTimestampMonotonic": "20491080", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "7797", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Fri 2022-04-22 01:26:40 UTC", "WatchdogTimestampMonotonic": "20702052", "WatchdogUSec": "0" } } TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/main.yml:3 Friday 22 April 2022 01:26:44 +0000 (0:00:00.383) 0:00:15.021 ********** changed: [/cache/centos-7.qcow2c.snap] => (item={'target': 'DROP', 'state': 'absent', 'permanent': True}) => { "ansible_loop_var": "item", "changed": true, "item": { "permanent": true, "state": "absent", "target": "DROP" } } META: role_complete for /cache/centos-7.qcow2c.snap TASK [Get target setting] ****************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_target.yml:35 Friday 22 April 2022 01:26:44 +0000 (0:00:00.722) 0:00:15.743 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "cmd": [ "firewall-cmd", "--info-zone=public" ], "delta": "0:00:00.266514", "end": "2022-04-22 01:26:45.077014", "rc": 0, "start": "2022-04-22 01:26:44.810500" } STDOUT: public target: default icmp-block-inversion: no interfaces: sources: services: dhcpv6-client ssh ports: protocols: masquerade: no forward-ports: source-ports: icmp-blocks: rich rules: TASK [Verify target setting was reset] ***************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_target.yml:40 Friday 22 April 2022 01:26:45 +0000 (0:00:00.561) 0:00:16.304 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false } MSG: All assertions passed META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c.snap : ok=13 changed=4 unreachable=0 failed=0 skipped=2 rescued=0 ignored=0 Friday 22 April 2022 01:26:45 +0000 (0:00:00.028) 0:00:16.332 ********** =============================================================================== linux-system-roles.firewall : Install firewalld ------------------------- 8.79s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 linux-system-roles.firewall : Configure firewall ------------------------ 1.41s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/main.yml:3 ----- Gathering Facts --------------------------------------------------------- 1.09s /tmp/tmpf6xbqc6n/tests/tests_target.yml:1 ------------------------------------- linux-system-roles.firewall : Enable and start firewalld service -------- 0.90s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 linux-system-roles.firewall : Configure firewall ------------------------ 0.72s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/main.yml:3 ----- Get target setting ------------------------------------------------------ 0.70s /tmp/tmpf6xbqc6n/tests/tests_target.yml:15 ------------------------------------ Get target setting ------------------------------------------------------ 0.56s /tmp/tmpf6xbqc6n/tests/tests_target.yml:35 ------------------------------------ linux-system-roles.firewall : Install python-firewall ------------------- 0.56s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 linux-system-roles.firewall : Install firewalld ------------------------- 0.54s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 linux-system-roles.firewall : Install python-firewall ------------------- 0.51s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 linux-system-roles.firewall : Enable and start firewalld service -------- 0.38s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 Call role to change target settings ------------------------------------- 0.03s /tmp/tmpf6xbqc6n/tests/tests_target.yml:3 ------------------------------------- Call role to reset target settings -------------------------------------- 0.03s /tmp/tmpf6xbqc6n/tests/tests_target.yml:26 ------------------------------------ Verify target setting was reset ----------------------------------------- 0.03s /tmp/tmpf6xbqc6n/tests/tests_target.yml:40 ------------------------------------ linux-system-roles.firewall : Install python3-firewall ------------------ 0.02s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:13 linux-system-roles.firewall : Install python3-firewall ------------------ 0.02s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:13 Verify target setting --------------------------------------------------- 0.02s /tmp/tmpf6xbqc6n/tests/tests_target.yml:20 ------------------------------------ ansible-playbook [core 2.12.3] config file = /etc/ansible/ansible.cfg configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible ansible collection location = /tmp/tmp96utdw39 executable location = /usr/bin/ansible-playbook python version = 3.9.10 (main, Jan 17 2022, 00:00:00) [GCC 11.2.1 20210728 (Red Hat 11.2.1-1)] jinja version = 2.11.3 libyaml = True Using /etc/ansible/ansible.cfg as config file Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_zone.yml ******************************************************* 1 plays in /tmp/tmpf6xbqc6n/tests/tests_zone.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:1 Friday 22 April 2022 01:26:59 +0000 (0:00:00.009) 0:00:00.009 ********** ok: [/cache/centos-7.qcow2c.snap] META: ran handlers TASK [include_role : linux-system-roles.firewall] ****************************** task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:6 Friday 22 April 2022 01:27:00 +0000 (0:00:01.094) 0:00:01.103 ********** [DEPRECATION WARNING]: "include" is deprecated, use include_tasks/import_tasks instead. This feature will be removed in version 2.16. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. statically imported: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:27:00 +0000 (0:00:00.027) 0:00:01.131 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "changes": { "installed": [ "firewalld" ] }, "rc": 0, "results": [ "Loaded plugins: fastestmirror\nLoading mirror speeds from cached hostfile\n * base: mirror.umd.edu\n * extras: mirror.ash.fastserv.com\n * updates: mirrors.wcupa.edu\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-13.el7_9 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-13.el7_9 updates 449 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 base 123 k\n firewalld-filesystem noarch 0.6.3-13.el7_9 updates 51 k\n ipset x86_64 7.1-1.el7 base 39 k\n ipset-libs x86_64 7.1-1.el7 base 64 k\n python-firewall noarch 0.6.3-13.el7_9 updates 355 k\n python-slip noarch 0.4.0-4.el7 base 31 k\n python-slip-dbus noarch 0.4.0-4.el7 base 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\nPublic key for firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm is not installed\nPublic key for ipset-7.1-1.el7.x86_64.rpm is not installed\n--------------------------------------------------------------------------------\nTotal 4.4 MB/s | 1.1 MB 00:00 \nRetrieving key from file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-13.el7_9.noarch 7/8 \n Installing : firewalld-0.6.3-13.el7_9.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-13.el7_9.noarch 3/8 \n Verifying : firewalld-0.6.3-13.el7_9.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-13.el7_9 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-13.el7_9 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-13.el7_9 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n" ] } MSG: warning: /var/cache/yum/x86_64/7/updates/packages/firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm: Header V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY Importing GPG key 0xF4A80EB5: Userid : "CentOS-7 Key (CentOS 7 Official Signing Key) " Fingerprint: 6341 ab27 53d7 8a78 a7c2 7bb1 24c6 a8a7 f4a8 0eb5 Package : centos-release-7-8.2003.0.el7.centos.x86_64 (installed) From : /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7 TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:27:09 +0000 (0:00:08.360) 0:00:09.491 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:27:09 +0000 (0:00:00.500) 0:00:09.992 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:27:09 +0000 (0:00:00.021) 0:00:10.013 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "polkit.service dbus.service system.slice basic.target", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "network-pre.target shutdown.target multi-user.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "ip6tables.service ebtables.service ipset.service iptables.service shutdown.target", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice basic.target", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0" } } TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/main.yml:3 Friday 22 April 2022 01:27:10 +0000 (0:00:00.865) 0:00:10.879 ********** META: role_complete for /cache/centos-7.qcow2c.snap TASK [Verify used firewalld zones] ********************************************* task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:14 Friday 22 April 2022 01:27:10 +0000 (0:00:00.022) 0:00:10.902 ********** statically imported: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:27:10 +0000 (0:00:00.054) 0:00:10.956 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "firewalld-0.6.3-13.el7_9.noarch providing firewalld is already installed" ] } TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:27:11 +0000 (0:00:00.533) 0:00:11.490 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:27:11 +0000 (0:00:00.508) 0:00:11.998 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:27:11 +0000 (0:00:00.040) 0:00:12.039 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestamp": "Fri 2022-04-22 01:27:10 UTC", "ActiveEnterTimestampMonotonic": "20209287", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "polkit.service dbus.service system.slice basic.target", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Fri 2022-04-22 01:27:10 UTC", "AssertTimestampMonotonic": "19997330", "Before": "network-pre.target shutdown.target multi-user.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Fri 2022-04-22 01:27:10 UTC", "ConditionTimestampMonotonic": "19997330", "Conflicts": "ip6tables.service ebtables.service ipset.service iptables.service shutdown.target", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "7794", "ExecMainStartTimestamp": "Fri 2022-04-22 01:27:10 UTC", "ExecMainStartTimestampMonotonic": "19998101", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Fri 2022-04-22 01:27:10 UTC] ; stop_time=[n/a] ; pid=7794 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Fri 2022-04-22 01:27:10 UTC", "InactiveExitTimestampMonotonic": "19998132", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "7794", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice basic.target", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Fri 2022-04-22 01:27:10 UTC", "WatchdogTimestampMonotonic": "20209222", "WatchdogUSec": "0" } } TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/main.yml:3 Friday 22 April 2022 01:27:11 +0000 (0:00:00.403) 0:00:12.442 ********** ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'internal', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "state": "enabled", "zone": "internal" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'external', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "state": "enabled", "zone": "external" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'trusted', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "state": "enabled", "zone": "trusted" } } META: role_complete for /cache/centos-7.qcow2c.snap TASK [Fail on missing zones] *************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:26 Friday 22 April 2022 01:27:13 +0000 (0:00:01.739) 0:00:14.181 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [Setup firewalld] ********************************************************* task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:32 Friday 22 April 2022 01:27:13 +0000 (0:00:00.032) 0:00:14.214 ********** statically imported: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:27:13 +0000 (0:00:00.049) 0:00:14.264 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "firewalld-0.6.3-13.el7_9.noarch providing firewalld is already installed" ] } TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:27:14 +0000 (0:00:00.511) 0:00:14.775 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:27:14 +0000 (0:00:00.499) 0:00:15.275 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:27:14 +0000 (0:00:00.033) 0:00:15.308 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestamp": "Fri 2022-04-22 01:27:10 UTC", "ActiveEnterTimestampMonotonic": "20209287", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "polkit.service dbus.service system.slice basic.target", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Fri 2022-04-22 01:27:10 UTC", "AssertTimestampMonotonic": "19997330", "Before": "network-pre.target shutdown.target multi-user.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Fri 2022-04-22 01:27:10 UTC", "ConditionTimestampMonotonic": "19997330", "Conflicts": "ip6tables.service ebtables.service ipset.service iptables.service shutdown.target", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "7794", "ExecMainStartTimestamp": "Fri 2022-04-22 01:27:10 UTC", "ExecMainStartTimestampMonotonic": "19998101", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Fri 2022-04-22 01:27:10 UTC] ; stop_time=[n/a] ; pid=7794 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Fri 2022-04-22 01:27:10 UTC", "InactiveExitTimestampMonotonic": "19998132", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "7794", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice basic.target", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Fri 2022-04-22 01:27:10 UTC", "WatchdogTimestampMonotonic": "20209222", "WatchdogUSec": "0" } } TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/main.yml:3 Friday 22 April 2022 01:27:15 +0000 (0:00:00.398) 0:00:15.706 ********** changed: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'internal', 'service': ['tftp', 'ftp'], 'port': ['443/tcp', '443/udp'], 'forward_port': ['447/tcp;;1.2.3.4', '448/tcp;;1.2.3.5'], 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": true, "item": { "forward_port": [ "447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5" ], "port": [ "443/tcp", "443/udp" ], "service": [ "tftp", "ftp" ], "state": "enabled", "zone": "internal" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'internal', 'service': ['tftp', 'ftp'], 'port': ['443/tcp', '443/udp'], 'forward_port': ['447/tcp;;1.2.3.4', '448/tcp;;1.2.3.5'], 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "forward_port": [ "447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5" ], "port": [ "443/tcp", "443/udp" ], "service": [ "tftp", "ftp" ], "state": "enabled", "zone": "internal" } } changed: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'customzone', 'permanent': True, 'state': 'present'}) => { "ansible_loop_var": "item", "changed": true, "item": { "permanent": true, "state": "present", "zone": "customzone" } } changed: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'customzone', 'permanent': True, 'masquerade': True, 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": true, "item": { "masquerade": true, "permanent": true, "state": "enabled", "zone": "customzone" } } changed: [/cache/centos-7.qcow2c.snap] => (item={'set_default_zone': 'dmz', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": true, "item": { "set_default_zone": "dmz", "state": "enabled" } } changed: [/cache/centos-7.qcow2c.snap] => (item={'service': 'http', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": true, "item": { "service": "http", "state": "enabled" } } META: role_complete for /cache/centos-7.qcow2c.snap TASK [Fail if no changes are done] ********************************************* task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:62 Friday 22 April 2022 01:27:18 +0000 (0:00:03.225) 0:00:18.932 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [Setup firewalld again] *************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:68 Friday 22 April 2022 01:27:18 +0000 (0:00:00.032) 0:00:18.965 ********** TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:27:18 +0000 (0:00:00.048) 0:00:19.013 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "firewalld-0.6.3-13.el7_9.noarch providing firewalld is already installed" ] } TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:27:19 +0000 (0:00:00.546) 0:00:19.560 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:27:19 +0000 (0:00:00.527) 0:00:20.087 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:27:19 +0000 (0:00:00.035) 0:00:20.123 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestamp": "Fri 2022-04-22 01:27:10 UTC", "ActiveEnterTimestampMonotonic": "20209287", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "polkit.service dbus.service system.slice basic.target", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Fri 2022-04-22 01:27:10 UTC", "AssertTimestampMonotonic": "19997330", "Before": "network-pre.target shutdown.target multi-user.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Fri 2022-04-22 01:27:10 UTC", "ConditionTimestampMonotonic": "19997330", "Conflicts": "ip6tables.service ebtables.service ipset.service iptables.service shutdown.target", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "7794", "ExecMainStartTimestamp": "Fri 2022-04-22 01:27:10 UTC", "ExecMainStartTimestampMonotonic": "19998101", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Fri 2022-04-22 01:27:10 UTC] ; stop_time=[n/a] ; pid=7794 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Fri 2022-04-22 01:27:10 UTC", "InactiveExitTimestampMonotonic": "19998132", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "7794", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice basic.target", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Fri 2022-04-22 01:27:10 UTC", "WatchdogTimestampMonotonic": "20209222", "WatchdogUSec": "0" } } TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/main.yml:3 Friday 22 April 2022 01:27:20 +0000 (0:00:00.393) 0:00:20.517 ********** ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'internal', 'service': ['tftp', 'ftp'], 'port': ['443/tcp', '443/udp'], 'forward_port': ['447/tcp;;1.2.3.4', '448/tcp;;1.2.3.5'], 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "forward_port": [ "447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5" ], "port": [ "443/tcp", "443/udp" ], "service": [ "tftp", "ftp" ], "state": "enabled", "zone": "internal" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'internal', 'service': ['tftp', 'ftp'], 'port': ['443/tcp', '443/udp'], 'forward_port': ['447/tcp;;1.2.3.4', '448/tcp;;1.2.3.5'], 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "forward_port": [ "447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5" ], "port": [ "443/tcp", "443/udp" ], "service": [ "tftp", "ftp" ], "state": "enabled", "zone": "internal" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'customzone', 'permanent': True, 'state': 'present'}) => { "ansible_loop_var": "item", "changed": false, "item": { "permanent": true, "state": "present", "zone": "customzone" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'customzone', 'permanent': True, 'masquerade': True, 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "masquerade": true, "permanent": true, "state": "enabled", "zone": "customzone" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'set_default_zone': 'dmz', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "set_default_zone": "dmz", "state": "enabled" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'service': 'http', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "service": "http", "state": "enabled" } } META: role_complete for /cache/centos-7.qcow2c.snap TASK [Fail on newly changes] *************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:98 Friday 22 April 2022 01:27:23 +0000 (0:00:03.134) 0:00:23.651 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [Verify firewalld zone internal services] ********************************* task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:104 Friday 22 April 2022 01:27:23 +0000 (0:00:00.032) 0:00:23.684 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--zone=internal", "--list-services" ], "delta": "0:00:00.271111", "end": "2022-04-22 01:27:24.159527", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:27:23.888416" } STDOUT: dhcpv6-client ftp mdns samba-client ssh tftp TASK [Verify firewalld zone internal ports] ************************************ task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:111 Friday 22 April 2022 01:27:23 +0000 (0:00:00.719) 0:00:24.404 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--zone=internal", "--list-ports" ], "delta": "0:00:00.272417", "end": "2022-04-22 01:27:24.742453", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:27:24.470036" } STDOUT: 443/tcp 443/udp TASK [Verify firewalld zone internal forward ports] **************************** task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:118 Friday 22 April 2022 01:27:24 +0000 (0:00:00.581) 0:00:24.985 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--zone=internal", "--list-forward-ports" ], "delta": "0:00:00.291336", "end": "2022-04-22 01:27:25.357621", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:27:25.066285" } STDOUT: port=447:proto=tcp:toport=:toaddr=1.2.3.4 port=448:proto=tcp:toport=:toaddr=1.2.3.5 TASK [Verify custom zone has masquerade added to it] *************************** task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:127 Friday 22 April 2022 01:27:25 +0000 (0:00:00.615) 0:00:25.600 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--zone=customzone", "--query-masquerade" ], "delta": "0:00:00.272731", "end": "2022-04-22 01:27:25.954727", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:27:25.681996" } STDOUT: yes TASK [Verify custom zone has masquerade added to it] *************************** task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:133 Friday 22 April 2022 01:27:25 +0000 (0:00:00.598) 0:00:26.199 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--get-default-zone" ], "delta": "0:00:00.252921", "end": "2022-04-22 01:27:26.521298", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:27:26.268377" } STDOUT: dmz TASK [Verify that service http has been added to the default zone dmz] ********* task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:139 Friday 22 April 2022 01:27:26 +0000 (0:00:00.568) 0:00:26.768 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--zone=dmz", "--query-service=http" ], "delta": "0:00:00.268231", "end": "2022-04-22 01:27:27.103880", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:27:26.835649" } STDOUT: yes TASK [Reset to zone defaults] ************************************************** task path: /tmp/tmpf6xbqc6n/tests/tests_zone.yml:148 Friday 22 April 2022 01:27:26 +0000 (0:00:00.580) 0:00:27.348 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=internal\nfirewall-cmd --permanent --load-zone-defaults=external\nfirewall-cmd --permanent --load-zone-defaults=trusted\nfirewall-cmd --reload\n", "delta": "0:00:01.281112", "end": "2022-04-22 01:27:28.704051", "rc": 0, "start": "2022-04-22 01:27:27.422939" } STDOUT: success success STDERR: Error: NO_DEFAULTS: external Error: NO_DEFAULTS: trusted META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c.snap : ok=23 changed=10 unreachable=0 failed=0 skipped=8 rescued=0 ignored=0 Friday 22 April 2022 01:27:28 +0000 (0:00:01.600) 0:00:28.949 ********** =============================================================================== linux-system-roles.firewall : Install firewalld ------------------------- 8.36s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 linux-system-roles.firewall : Configure firewall ------------------------ 3.13s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/main.yml:3 ----- linux-system-roles.firewall : Configure firewall ------------------------ 1.74s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/main.yml:3 ----- Reset to zone defaults -------------------------------------------------- 1.60s /tmp/tmpf6xbqc6n/tests/tests_zone.yml:148 ------------------------------------- Gathering Facts --------------------------------------------------------- 1.09s /tmp/tmpf6xbqc6n/tests/tests_zone.yml:1 --------------------------------------- linux-system-roles.firewall : Enable and start firewalld service -------- 0.87s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 Verify firewalld zone internal services --------------------------------- 0.72s /tmp/tmpf6xbqc6n/tests/tests_zone.yml:104 ------------------------------------- Verify firewalld zone internal forward ports ---------------------------- 0.62s /tmp/tmpf6xbqc6n/tests/tests_zone.yml:118 ------------------------------------- Verify custom zone has masquerade added to it --------------------------- 0.60s /tmp/tmpf6xbqc6n/tests/tests_zone.yml:127 ------------------------------------- Verify firewalld zone internal ports ------------------------------------ 0.58s /tmp/tmpf6xbqc6n/tests/tests_zone.yml:111 ------------------------------------- Verify that service http has been added to the default zone dmz --------- 0.58s /tmp/tmpf6xbqc6n/tests/tests_zone.yml:139 ------------------------------------- Verify custom zone has masquerade added to it --------------------------- 0.57s /tmp/tmpf6xbqc6n/tests/tests_zone.yml:133 ------------------------------------- linux-system-roles.firewall : Install firewalld ------------------------- 0.55s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 linux-system-roles.firewall : Install firewalld ------------------------- 0.53s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:2 linux-system-roles.firewall : Install python-firewall ------------------- 0.53s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 linux-system-roles.firewall : Install python-firewall ------------------- 0.51s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 linux-system-roles.firewall : Install python-firewall ------------------- 0.50s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:7 linux-system-roles.firewall : Enable and start firewalld service -------- 0.40s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 linux-system-roles.firewall : Enable and start firewalld service -------- 0.39s /tmp/tmpf6xbqc6n/tests/roles/linux-system-roles.firewall/tasks/firewalld.yml:19 Verify used firewalld zones --------------------------------------------- 0.05s /tmp/tmpf6xbqc6n/tests/tests_zone.yml:14 -------------------------------------- ansible-playbook [core 2.12.3] config file = /etc/ansible/ansible.cfg configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible ansible collection location = /tmp/tmp96utdw39 executable location = /usr/bin/ansible-playbook python version = 3.9.10 (main, Jan 17 2022, 00:00:00) [GCC 11.2.1 20210728 (Red Hat 11.2.1-1)] jinja version = 2.11.3 libyaml = True Using /etc/ansible/ansible.cfg as config file [DEPRECATION WARNING]: "include" is deprecated, use include_tasks/import_tasks instead. This feature will be removed in version 2.16. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. statically imported: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_ansible.yml **************************************************** 1 plays in /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:1 Friday 22 April 2022 01:27:43 +0000 (0:00:00.009) 0:00:00.009 ********** ok: [/cache/centos-7.qcow2c.snap] META: ran handlers TASK [fedora.linux_system_roles.firewall : Install firewalld] ****************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:27:44 +0000 (0:00:01.052) 0:00:01.062 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "changes": { "installed": [ "firewalld" ] }, "rc": 0, "results": [ "Loaded plugins: fastestmirror\nLoading mirror speeds from cached hostfile\n * base: mirror.umd.edu\n * extras: mirror.ash.fastserv.com\n * updates: mirrors.wcupa.edu\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-13.el7_9 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-13.el7_9 updates 449 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 base 123 k\n firewalld-filesystem noarch 0.6.3-13.el7_9 updates 51 k\n ipset x86_64 7.1-1.el7 base 39 k\n ipset-libs x86_64 7.1-1.el7 base 64 k\n python-firewall noarch 0.6.3-13.el7_9 updates 355 k\n python-slip noarch 0.4.0-4.el7 base 31 k\n python-slip-dbus noarch 0.4.0-4.el7 base 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\nPublic key for firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm is not installed\nPublic key for ipset-7.1-1.el7.x86_64.rpm is not installed\n--------------------------------------------------------------------------------\nTotal 5.8 MB/s | 1.1 MB 00:00 \nRetrieving key from file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-13.el7_9.noarch 7/8 \n Installing : firewalld-0.6.3-13.el7_9.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-13.el7_9.noarch 3/8 \n Verifying : firewalld-0.6.3-13.el7_9.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-13.el7_9 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-13.el7_9 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-13.el7_9 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n" ] } MSG: warning: /var/cache/yum/x86_64/7/updates/packages/firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm: Header V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY Importing GPG key 0xF4A80EB5: Userid : "CentOS-7 Key (CentOS 7 Official Signing Key) " Fingerprint: 6341 ab27 53d7 8a78 a7c2 7bb1 24c6 a8a7 f4a8 0eb5 Package : centos-release-7-8.2003.0.el7.centos.x86_64 (installed) From : /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7 TASK [fedora.linux_system_roles.firewall : Install python-firewall] ************ task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:27:52 +0000 (0:00:07.967) 0:00:09.029 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [fedora.linux_system_roles.firewall : Install python3-firewall] *********** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:27:53 +0000 (0:00:00.526) 0:00:09.556 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.firewall : Enable and start firewalld service] *** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:27:53 +0000 (0:00:00.024) 0:00:09.581 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "dbus.service polkit.service basic.target system.slice", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "network-pre.target multi-user.target shutdown.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "ipset.service ip6tables.service ebtables.service shutdown.target iptables.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0" } } TASK [fedora.linux_system_roles.firewall : Configure firewall] ***************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/main.yml:3 Friday 22 April 2022 01:27:54 +0000 (0:00:00.935) 0:00:10.516 ********** META: role_complete for /cache/centos-7.qcow2c.snap TASK [Remove custom zone] ****************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:14 Friday 22 April 2022 01:27:54 +0000 (0:00:00.021) 0:00:10.538 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--delete-zone=custom" ], "delta": "0:00:00.278898", "end": "2022-04-22 01:27:54.964786", "failed_when_result": false, "rc": 112, "start": "2022-04-22 01:27:54.685888" } STDERR: Error: INVALID_ZONE: custom MSG: non-zero return code TASK [Reset internal zone to defaults] ***************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:19 Friday 22 April 2022 01:27:54 +0000 (0:00:00.716) 0:00:11.254 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--load-zone-defaults=internal" ], "delta": "0:00:00.314851", "end": "2022-04-22 01:27:55.606981", "failed_when_result": false, "rc": 22, "start": "2022-04-22 01:27:55.292130" } STDERR: Error: NO_DEFAULTS: internal MSG: non-zero return code TASK [Reset trusted zone to defaults] ****************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:24 Friday 22 April 2022 01:27:55 +0000 (0:00:00.634) 0:00:11.889 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--load-zone-defaults=trusted" ], "delta": "0:00:00.277098", "end": "2022-04-22 01:27:56.191405", "failed_when_result": false, "rc": 22, "start": "2022-04-22 01:27:55.914307" } STDERR: Error: NO_DEFAULTS: trusted MSG: non-zero return code TASK [Reset dmz zone to defaults] ********************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:29 Friday 22 April 2022 01:27:56 +0000 (0:00:00.583) 0:00:12.472 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--load-zone-defaults=dmz" ], "delta": "0:00:00.277522", "end": "2022-04-22 01:27:56.768333", "failed_when_result": false, "rc": 22, "start": "2022-04-22 01:27:56.490811" } STDERR: Error: NO_DEFAULTS: dmz MSG: non-zero return code TASK [Reset drop zone to defaults] ********************************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:34 Friday 22 April 2022 01:27:56 +0000 (0:00:00.589) 0:00:13.062 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--load-zone-defaults=drop" ], "delta": "0:00:00.265989", "end": "2022-04-22 01:27:57.347206", "failed_when_result": false, "rc": 22, "start": "2022-04-22 01:27:57.081217" } STDERR: Error: NO_DEFAULTS: drop MSG: non-zero return code TASK [Reset public zone to defaults] ******************************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:39 Friday 22 April 2022 01:27:57 +0000 (0:00:00.567) 0:00:13.630 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--load-zone-defaults=public" ], "delta": "0:00:00.285820", "end": "2022-04-22 01:27:57.927910", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:27:57.642090" } STDOUT: success TASK [Reset default zone to defaults] ****************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:44 Friday 22 April 2022 01:27:57 +0000 (0:00:00.584) 0:00:14.214 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": "zone=$(firewall-cmd --get-default-zone)\nfirewall-cmd --permanent --load-zone-defaults=$zone\n", "delta": "0:00:00.532775", "end": "2022-04-22 01:27:58.785190", "failed_when_result": false, "rc": 22, "start": "2022-04-22 01:27:58.252415" } STDERR: Error: NO_DEFAULTS: public MSG: non-zero return code TASK [Create custom zone] ****************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:52 Friday 22 April 2022 01:27:58 +0000 (0:00:00.851) 0:00:15.066 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--new-zone=custom" ], "delta": "0:00:00.258914", "end": "2022-04-22 01:27:59.339526", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:27:59.080612" } STDOUT: success TASK [Reload firewalld] ******************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:57 Friday 22 April 2022 01:27:59 +0000 (0:00:00.556) 0:00:15.623 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--reload" ], "delta": "0:00:00.485662", "end": "2022-04-22 01:28:00.128193", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:27:59.642531" } STDOUT: success TASK [Permit traffic in default zone for https service] ************************ task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:64 Friday 22 April 2022 01:28:00 +0000 (0:00:00.790) 0:00:16.413 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Permit traffic in default zone for https service, again] ***************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:72 Friday 22 April 2022 01:28:00 +0000 (0:00:00.635) 0:00:17.048 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Permit traffic in default zone on port 8081/tcp] ************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:80 Friday 22 April 2022 01:28:01 +0000 (0:00:00.503) 0:00:17.551 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Permit traffic in default zone on port 8081/tcp, again] ****************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:88 Friday 22 April 2022 01:28:01 +0000 (0:00:00.483) 0:00:18.035 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Allow port 161-162/udp in permanent default zone] ************************ task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:96 Friday 22 April 2022 01:28:02 +0000 (0:00:00.507) 0:00:18.542 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Allow port 161-162/udp in permanent default zone, again] ***************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:104 Friday 22 April 2022 01:28:02 +0000 (0:00:00.516) 0:00:19.059 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Do not permit traffic in default zone on port 8081/tcp] ****************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:112 Friday 22 April 2022 01:28:03 +0000 (0:00:00.512) 0:00:19.571 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Do not permit traffic in default zone on port 8081/tcp, again] *********** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:120 Friday 22 April 2022 01:28:03 +0000 (0:00:00.487) 0:00:20.059 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Allow service http in permanent dmz zone] ******************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:128 Friday 22 April 2022 01:28:04 +0000 (0:00:00.504) 0:00:20.564 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Allow service http in permanent dmz zone, again] ************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:137 Friday 22 April 2022 01:28:04 +0000 (0:00:00.501) 0:00:21.065 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Allow service ftp with limitation using rich rule in permanent default zone] *** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:146 Friday 22 April 2022 01:28:05 +0000 (0:00:00.501) 0:00:21.567 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Allow service ftp with limitation using rich rule in permanent default zone, again] *** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:154 Friday 22 April 2022 01:28:05 +0000 (0:00:00.507) 0:00:22.075 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Allow source 192.0.2.0/24 in internal zone] ****************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:162 Friday 22 April 2022 01:28:06 +0000 (0:00:00.511) 0:00:22.587 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Allow source 192.0.2.0/24 in internal zone, again] *********************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:171 Friday 22 April 2022 01:28:06 +0000 (0:00:00.491) 0:00:23.079 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Allow interface eth2 in permanent trusted zone] ************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:180 Friday 22 April 2022 01:28:07 +0000 (0:00:00.496) 0:00:23.576 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Allow interface eth2 in permanent trusted zone, again] ******************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:189 Friday 22 April 2022 01:28:07 +0000 (0:00:00.499) 0:00:24.075 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Allow masquerading in permament dmz zone] ******************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:198 Friday 22 April 2022 01:28:08 +0000 (0:00:00.518) 0:00:24.594 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Allow masquerading in permament dmz zone, again] ************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:207 Friday 22 April 2022 01:28:08 +0000 (0:00:00.501) 0:00:25.096 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Ensure permanent custom zone exists (no change)] ************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:216 Friday 22 April 2022 01:28:09 +0000 (0:00:00.502) 0:00:25.598 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Ensure ICMP block inversion in permanent drop zone] ********************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:224 Friday 22 April 2022 01:28:09 +0000 (0:00:00.511) 0:00:26.110 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Ensure ICMP block inversion in permanent drop zone, again] *************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:233 Friday 22 April 2022 01:28:10 +0000 (0:00:00.520) 0:00:26.631 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Block ICMP echo-request in permanent drop zone] ************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:242 Friday 22 April 2022 01:28:10 +0000 (0:00:00.494) 0:00:27.125 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Block ICMP echo-request in permanent drop zone, again] ******************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:251 Friday 22 April 2022 01:28:11 +0000 (0:00:00.516) 0:00:27.642 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Ensure default target in permanent internal zone (no change)] ************ task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:260 Friday 22 April 2022 01:28:11 +0000 (0:00:00.507) 0:00:28.149 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Ensure target ACCEPT in permanent internal zone] ************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:269 Friday 22 April 2022 01:28:12 +0000 (0:00:00.488) 0:00:28.637 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Ensure target ACCEPT in permanent internal zone, again] ****************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:278 Friday 22 April 2022 01:28:12 +0000 (0:00:00.722) 0:00:29.360 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Ensure default target in permanent internal zone] ************************ task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:287 Friday 22 April 2022 01:28:13 +0000 (0:00:00.518) 0:00:29.879 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Ensure default target in permanent internal zone, again] ***************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:296 Friday 22 April 2022 01:28:14 +0000 (0:00:00.748) 0:00:30.628 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Redirect port 443 to 8443 with Rich Rule in permanent and runtime public zone] *** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:305 Friday 22 April 2022 01:28:14 +0000 (0:00:00.514) 0:00:31.142 ********** [DEPRECATION WARNING]: Alias 'immediate' is deprecated. See the module docs for more information. This feature will be removed from ansible.posix in a release after 2021-09-23. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Redirect port 443 to 8443 with Rich Rule in permanent and runtime public zone, again] *** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:315 Friday 22 April 2022 01:28:15 +0000 (0:00:00.505) 0:00:31.648 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [Firewalld custom zone] *************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:325 Friday 22 April 2022 01:28:15 +0000 (0:00:00.507) 0:00:32.155 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true } TASK [assert firewalld custom zone] ******************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:333 Friday 22 April 2022 01:28:16 +0000 (0:00:00.717) 0:00:32.872 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false } MSG: All assertions passed TASK [Add masquerade to custom zone] ******************************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:338 Friday 22 April 2022 01:28:16 +0000 (0:00:00.023) 0:00:32.895 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [Add masquerade to custom zone, again] ************************************ task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:348 Friday 22 April 2022 01:28:17 +0000 (0:00:00.516) 0:00:33.412 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [set default zone] ******************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:358 Friday 22 April 2022 01:28:17 +0000 (0:00:00.496) 0:00:33.908 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [set default zone, again] ************************************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:365 Friday 22 April 2022 01:28:18 +0000 (0:00:00.539) 0:00:34.448 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [set previous replaced] *************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:372 Friday 22 April 2022 01:28:18 +0000 (0:00:00.523) 0:00:34.972 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [set previous replaced again] ********************************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:383 Friday 22 April 2022 01:28:19 +0000 (0:00:00.722) 0:00:35.694 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [set previous replaced as only parameter] ********************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:394 Friday 22 April 2022 01:28:19 +0000 (0:00:00.691) 0:00:36.386 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "failed_when_result": false } TASK [set previous replaced as only parameter again] *************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:401 Friday 22 April 2022 01:28:20 +0000 (0:00:00.714) 0:00:37.100 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "failed_when_result": false } TASK [set previous replaced to clean] ****************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:409 Friday 22 April 2022 01:28:21 +0000 (0:00:00.400) 0:00:37.501 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false } TASK [Reload firewalld] ******************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:414 Friday 22 April 2022 01:28:21 +0000 (0:00:00.388) 0:00:37.889 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--reload" ], "delta": "0:00:00.457809", "end": "2022-04-22 01:28:22.361005", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:28:21.903196" } STDOUT: success META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c.snap : ok=55 changed=31 unreachable=0 failed=0 skipped=2 rescued=0 ignored=0 Friday 22 April 2022 01:28:22 +0000 (0:00:00.760) 0:00:38.650 ********** =============================================================================== fedora.linux_system_roles.firewall : Install firewalld ------------------ 7.97s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 Gathering Facts --------------------------------------------------------- 1.05s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:1 --------------------------- fedora.linux_system_roles.firewall : Enable and start firewalld service --- 0.94s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 Reset default zone to defaults ------------------------------------------ 0.85s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:44 -------------------------- Reload firewalld -------------------------------------------------------- 0.79s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:57 -------------------------- Reload firewalld -------------------------------------------------------- 0.76s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:414 ------------------------- Ensure default target in permanent internal zone ------------------------ 0.75s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:287 ------------------------- Ensure target ACCEPT in permanent internal zone ------------------------- 0.72s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:269 ------------------------- set previous replaced --------------------------------------------------- 0.72s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:372 ------------------------- Firewalld custom zone --------------------------------------------------- 0.72s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:325 ------------------------- Remove custom zone ------------------------------------------------------ 0.72s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:14 -------------------------- set previous replaced as only parameter --------------------------------- 0.71s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:394 ------------------------- set previous replaced again --------------------------------------------- 0.69s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:383 ------------------------- Permit traffic in default zone for https service ------------------------ 0.64s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:64 -------------------------- Reset internal zone to defaults ----------------------------------------- 0.63s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:19 -------------------------- Reset dmz zone to defaults ---------------------------------------------- 0.59s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:29 -------------------------- Reset public zone to defaults ------------------------------------------- 0.58s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:39 -------------------------- Reset trusted zone to defaults ------------------------------------------ 0.58s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:24 -------------------------- Reset drop zone to defaults --------------------------------------------- 0.57s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:34 -------------------------- Create custom zone ------------------------------------------------------ 0.56s /tmp/tmpuofn2bw2/tests/firewall/tests_ansible.yml:52 -------------------------- ansible-playbook [core 2.12.3] config file = /etc/ansible/ansible.cfg configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible ansible collection location = /tmp/tmp96utdw39 executable location = /usr/bin/ansible-playbook python version = 3.9.10 (main, Jan 17 2022, 00:00:00) [GCC 11.2.1 20210728 (Red Hat 11.2.1-1)] jinja version = 2.11.3 libyaml = True Using /etc/ansible/ansible.cfg as config file [DEPRECATION WARNING]: "include" is deprecated, use include_tasks/import_tasks instead. This feature will be removed in version 2.16. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. statically imported: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_default.yml **************************************************** 1 plays in /tmp/tmpuofn2bw2/tests/firewall/tests_default.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_default.yml:1 Friday 22 April 2022 01:28:36 +0000 (0:00:00.011) 0:00:00.011 ********** ok: [/cache/centos-7.qcow2c.snap] META: ran handlers TASK [fedora.linux_system_roles.firewall : Install firewalld] ****************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:28:37 +0000 (0:00:01.115) 0:00:01.127 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "changes": { "installed": [ "firewalld" ] }, "rc": 0, "results": [ "Loaded plugins: fastestmirror\nLoading mirror speeds from cached hostfile\n * base: mirror.umd.edu\n * extras: mirror.ash.fastserv.com\n * updates: mirrors.wcupa.edu\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-13.el7_9 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-13.el7_9 updates 449 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 base 123 k\n firewalld-filesystem noarch 0.6.3-13.el7_9 updates 51 k\n ipset x86_64 7.1-1.el7 base 39 k\n ipset-libs x86_64 7.1-1.el7 base 64 k\n python-firewall noarch 0.6.3-13.el7_9 updates 355 k\n python-slip noarch 0.4.0-4.el7 base 31 k\n python-slip-dbus noarch 0.4.0-4.el7 base 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\nPublic key for firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm is not installed\nPublic key for ipset-7.1-1.el7.x86_64.rpm is not installed\n--------------------------------------------------------------------------------\nTotal 4.4 MB/s | 1.1 MB 00:00 \nRetrieving key from file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-13.el7_9.noarch 7/8 \n Installing : firewalld-0.6.3-13.el7_9.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-13.el7_9.noarch 3/8 \n Verifying : firewalld-0.6.3-13.el7_9.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-13.el7_9 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-13.el7_9 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-13.el7_9 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n" ] } MSG: warning: /var/cache/yum/x86_64/7/updates/packages/firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm: Header V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY Importing GPG key 0xF4A80EB5: Userid : "CentOS-7 Key (CentOS 7 Official Signing Key) " Fingerprint: 6341 ab27 53d7 8a78 a7c2 7bb1 24c6 a8a7 f4a8 0eb5 Package : centos-release-7-8.2003.0.el7.centos.x86_64 (installed) From : /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7 TASK [fedora.linux_system_roles.firewall : Install python-firewall] ************ task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:28:45 +0000 (0:00:08.145) 0:00:09.273 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [fedora.linux_system_roles.firewall : Install python3-firewall] *********** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:28:46 +0000 (0:00:00.489) 0:00:09.763 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.firewall : Enable and start firewalld service] *** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:28:46 +0000 (0:00:00.026) 0:00:09.789 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "basic.target system.slice dbus.service polkit.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "shutdown.target network-pre.target multi-user.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "iptables.service ip6tables.service ebtables.service shutdown.target ipset.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice basic.target", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0" } } TASK [fedora.linux_system_roles.firewall : Configure firewall] ***************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/main.yml:3 Friday 22 April 2022 01:28:47 +0000 (0:00:00.903) 0:00:10.692 ********** META: role_complete for /cache/centos-7.qcow2c.snap META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c.snap : ok=4 changed=2 unreachable=0 failed=0 skipped=2 rescued=0 ignored=0 Friday 22 April 2022 01:28:47 +0000 (0:00:00.038) 0:00:10.731 ********** =============================================================================== fedora.linux_system_roles.firewall : Install firewalld ------------------ 8.15s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 Gathering Facts --------------------------------------------------------- 1.12s /tmp/tmpuofn2bw2/tests/firewall/tests_default.yml:1 --------------------------- fedora.linux_system_roles.firewall : Enable and start firewalld service --- 0.90s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 fedora.linux_system_roles.firewall : Install python-firewall ------------ 0.49s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 fedora.linux_system_roles.firewall : Configure firewall ----------------- 0.04s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/main.yml:3 fedora.linux_system_roles.firewall : Install python3-firewall ----------- 0.03s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:13 ansible-playbook [core 2.12.3] config file = /etc/ansible/ansible.cfg configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible ansible collection location = /tmp/tmp96utdw39 executable location = /usr/bin/ansible-playbook python version = 3.9.10 (main, Jan 17 2022, 00:00:00) [GCC 11.2.1 20210728 (Red Hat 11.2.1-1)] jinja version = 2.11.3 libyaml = True Using /etc/ansible/ansible.cfg as config file Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_target.yml ***************************************************** 1 plays in /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml PLAY [all] ********************************************************************* TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:1 Friday 22 April 2022 01:29:01 +0000 (0:00:00.010) 0:00:00.010 ********** ok: [/cache/centos-7.qcow2c.snap] META: ran handlers TASK [Call role to change target settings] ************************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:3 Friday 22 April 2022 01:29:02 +0000 (0:00:01.044) 0:00:01.055 ********** [DEPRECATION WARNING]: "include" is deprecated, use include_tasks/import_tasks instead. This feature will be removed in version 2.16. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. statically imported: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml TASK [fedora.linux_system_roles.firewall : Install firewalld] ****************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:29:02 +0000 (0:00:00.032) 0:00:01.087 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "changes": { "installed": [ "firewalld" ] }, "rc": 0, "results": [ "Loaded plugins: fastestmirror\nLoading mirror speeds from cached hostfile\n * base: mirror.umd.edu\n * extras: mirror.ash.fastserv.com\n * updates: mirrors.wcupa.edu\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-13.el7_9 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-13.el7_9 updates 449 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 base 123 k\n firewalld-filesystem noarch 0.6.3-13.el7_9 updates 51 k\n ipset x86_64 7.1-1.el7 base 39 k\n ipset-libs x86_64 7.1-1.el7 base 64 k\n python-firewall noarch 0.6.3-13.el7_9 updates 355 k\n python-slip noarch 0.4.0-4.el7 base 31 k\n python-slip-dbus noarch 0.4.0-4.el7 base 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\nPublic key for firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm is not installed\nPublic key for ipset-7.1-1.el7.x86_64.rpm is not installed\n--------------------------------------------------------------------------------\nTotal 4.7 MB/s | 1.1 MB 00:00 \nRetrieving key from file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-13.el7_9.noarch 7/8 \n Installing : firewalld-0.6.3-13.el7_9.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-13.el7_9.noarch 3/8 \n Verifying : firewalld-0.6.3-13.el7_9.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-13.el7_9 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-13.el7_9 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-13.el7_9 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n" ] } MSG: warning: /var/cache/yum/x86_64/7/updates/packages/firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm: Header V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY Importing GPG key 0xF4A80EB5: Userid : "CentOS-7 Key (CentOS 7 Official Signing Key) " Fingerprint: 6341 ab27 53d7 8a78 a7c2 7bb1 24c6 a8a7 f4a8 0eb5 Package : centos-release-7-8.2003.0.el7.centos.x86_64 (installed) From : /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7 TASK [fedora.linux_system_roles.firewall : Install python-firewall] ************ task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:29:10 +0000 (0:00:08.492) 0:00:09.580 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [fedora.linux_system_roles.firewall : Install python3-firewall] *********** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:29:11 +0000 (0:00:00.492) 0:00:10.073 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.firewall : Enable and start firewalld service] *** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:29:11 +0000 (0:00:00.023) 0:00:10.096 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "system.slice basic.target dbus.service polkit.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "network-pre.target shutdown.target multi-user.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "iptables.service shutdown.target ipset.service ebtables.service ip6tables.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0" } } TASK [fedora.linux_system_roles.firewall : Configure firewall] ***************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/main.yml:3 Friday 22 April 2022 01:29:12 +0000 (0:00:00.879) 0:00:10.976 ********** ok: [/cache/centos-7.qcow2c.snap] => (item={'set_default_zone': 'public', 'state': 'enabled', 'permanent': True}) => { "ansible_loop_var": "item", "changed": false, "item": { "permanent": true, "set_default_zone": "public", "state": "enabled" } } changed: [/cache/centos-7.qcow2c.snap] => (item={'target': 'DROP', 'state': 'enabled', 'permanent': True}) => { "ansible_loop_var": "item", "changed": true, "item": { "permanent": true, "state": "enabled", "target": "DROP" } } META: role_complete for /cache/centos-7.qcow2c.snap TASK [Get target setting] ****************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:15 Friday 22 April 2022 01:29:13 +0000 (0:00:01.426) 0:00:12.403 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "cmd": [ "firewall-cmd", "--info-zone=public" ], "delta": "0:00:00.255616", "end": "2022-04-22 01:29:13.821384", "rc": 0, "start": "2022-04-22 01:29:13.565768" } STDOUT: public target: DROP icmp-block-inversion: no interfaces: sources: services: dhcpv6-client ssh ports: protocols: masquerade: no forward-ports: source-ports: icmp-blocks: rich rules: TASK [Verify target setting] *************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:20 Friday 22 April 2022 01:29:14 +0000 (0:00:00.675) 0:00:13.079 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false } MSG: All assertions passed TASK [Call role to reset target settings] ************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:26 Friday 22 April 2022 01:29:14 +0000 (0:00:00.019) 0:00:13.098 ********** statically imported: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml TASK [fedora.linux_system_roles.firewall : Install firewalld] ****************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:29:14 +0000 (0:00:00.031) 0:00:13.129 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "firewalld-0.6.3-13.el7_9.noarch providing firewalld is already installed" ] } TASK [fedora.linux_system_roles.firewall : Install python-firewall] ************ task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:29:14 +0000 (0:00:00.515) 0:00:13.645 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [fedora.linux_system_roles.firewall : Install python3-firewall] *********** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:29:15 +0000 (0:00:00.550) 0:00:14.196 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.firewall : Enable and start firewalld service] *** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:29:15 +0000 (0:00:00.024) 0:00:14.220 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestamp": "Fri 2022-04-22 01:29:11 UTC", "ActiveEnterTimestampMonotonic": "20261161", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "system.slice basic.target dbus.service polkit.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Fri 2022-04-22 01:29:11 UTC", "AssertTimestampMonotonic": "20053639", "Before": "network-pre.target shutdown.target multi-user.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Fri 2022-04-22 01:29:11 UTC", "ConditionTimestampMonotonic": "20053638", "Conflicts": "iptables.service shutdown.target ipset.service ebtables.service ip6tables.service", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "7796", "ExecMainStartTimestamp": "Fri 2022-04-22 01:29:11 UTC", "ExecMainStartTimestampMonotonic": "20054585", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Fri 2022-04-22 01:29:11 UTC] ; stop_time=[n/a] ; pid=7796 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Fri 2022-04-22 01:29:11 UTC", "InactiveExitTimestampMonotonic": "20054630", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "7796", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Fri 2022-04-22 01:29:11 UTC", "WatchdogTimestampMonotonic": "20261099", "WatchdogUSec": "0" } } TASK [fedora.linux_system_roles.firewall : Configure firewall] ***************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/main.yml:3 Friday 22 April 2022 01:29:15 +0000 (0:00:00.407) 0:00:14.627 ********** changed: [/cache/centos-7.qcow2c.snap] => (item={'target': 'DROP', 'state': 'absent', 'permanent': True}) => { "ansible_loop_var": "item", "changed": true, "item": { "permanent": true, "state": "absent", "target": "DROP" } } META: role_complete for /cache/centos-7.qcow2c.snap TASK [Get target setting] ****************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:35 Friday 22 April 2022 01:29:16 +0000 (0:00:00.724) 0:00:15.352 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "cmd": [ "firewall-cmd", "--info-zone=public" ], "delta": "0:00:00.251498", "end": "2022-04-22 01:29:16.651031", "rc": 0, "start": "2022-04-22 01:29:16.399533" } STDOUT: public target: default icmp-block-inversion: no interfaces: sources: services: dhcpv6-client ssh ports: protocols: masquerade: no forward-ports: source-ports: icmp-blocks: rich rules: TASK [Verify target setting was reset] ***************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:40 Friday 22 April 2022 01:29:17 +0000 (0:00:00.555) 0:00:15.908 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false } MSG: All assertions passed META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c.snap : ok=13 changed=4 unreachable=0 failed=0 skipped=2 rescued=0 ignored=0 Friday 22 April 2022 01:29:17 +0000 (0:00:00.026) 0:00:15.934 ********** =============================================================================== fedora.linux_system_roles.firewall : Install firewalld ------------------ 8.49s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 fedora.linux_system_roles.firewall : Configure firewall ----------------- 1.43s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/main.yml:3 Gathering Facts --------------------------------------------------------- 1.04s /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:1 ---------------------------- fedora.linux_system_roles.firewall : Enable and start firewalld service --- 0.88s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 fedora.linux_system_roles.firewall : Configure firewall ----------------- 0.72s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/main.yml:3 Get target setting ------------------------------------------------------ 0.68s /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:15 --------------------------- Get target setting ------------------------------------------------------ 0.56s /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:35 --------------------------- fedora.linux_system_roles.firewall : Install python-firewall ------------ 0.55s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 fedora.linux_system_roles.firewall : Install firewalld ------------------ 0.52s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 fedora.linux_system_roles.firewall : Install python-firewall ------------ 0.49s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 fedora.linux_system_roles.firewall : Enable and start firewalld service --- 0.41s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 Call role to change target settings ------------------------------------- 0.03s /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:3 ---------------------------- Call role to reset target settings -------------------------------------- 0.03s /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:26 --------------------------- Verify target setting was reset ----------------------------------------- 0.03s /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:40 --------------------------- fedora.linux_system_roles.firewall : Install python3-firewall ----------- 0.02s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:13 fedora.linux_system_roles.firewall : Install python3-firewall ----------- 0.02s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:13 Verify target setting --------------------------------------------------- 0.02s /tmp/tmpuofn2bw2/tests/firewall/tests_target.yml:20 --------------------------- ansible-playbook [core 2.12.3] config file = /etc/ansible/ansible.cfg configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible ansible collection location = /tmp/tmp96utdw39 executable location = /usr/bin/ansible-playbook python version = 3.9.10 (main, Jan 17 2022, 00:00:00) [GCC 11.2.1 20210728 (Red Hat 11.2.1-1)] jinja version = 2.11.3 libyaml = True Using /etc/ansible/ansible.cfg as config file Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_zone.yml ******************************************************* 1 plays in /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:1 Friday 22 April 2022 01:29:32 +0000 (0:00:00.009) 0:00:00.009 ********** ok: [/cache/centos-7.qcow2c.snap] META: ran handlers TASK [include_role : fedora.linux_system_roles.firewall] *********************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:6 Friday 22 April 2022 01:29:33 +0000 (0:00:01.086) 0:00:01.095 ********** [DEPRECATION WARNING]: "include" is deprecated, use include_tasks/import_tasks instead. This feature will be removed in version 2.16. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. statically imported: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml TASK [fedora.linux_system_roles.firewall : Install firewalld] ****************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:29:33 +0000 (0:00:00.031) 0:00:01.127 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "changes": { "installed": [ "firewalld" ] }, "rc": 0, "results": [ "Loaded plugins: fastestmirror\nLoading mirror speeds from cached hostfile\n * base: mirror.fileplanet.com\n * extras: mirror.ash.fastserv.com\n * updates: linux-mirrors.fnal.gov\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-13.el7_9 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-13.el7_9 updates 449 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 base 123 k\n firewalld-filesystem noarch 0.6.3-13.el7_9 updates 51 k\n ipset x86_64 7.1-1.el7 base 39 k\n ipset-libs x86_64 7.1-1.el7 base 64 k\n python-firewall noarch 0.6.3-13.el7_9 updates 355 k\n python-slip noarch 0.4.0-4.el7 base 31 k\n python-slip-dbus noarch 0.4.0-4.el7 base 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\nPublic key for ipset-7.1-1.el7.x86_64.rpm is not installed\nPublic key for firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm is not installed\n--------------------------------------------------------------------------------\nTotal 4.1 MB/s | 1.1 MB 00:00 \nRetrieving key from file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-13.el7_9.noarch 7/8 \n Installing : firewalld-0.6.3-13.el7_9.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-13.el7_9.noarch 3/8 \n Verifying : firewalld-0.6.3-13.el7_9.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-13.el7_9 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-13.el7_9 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-13.el7_9 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n" ] } MSG: warning: /var/cache/yum/x86_64/7/base/packages/ipset-7.1-1.el7.x86_64.rpm: Header V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY Importing GPG key 0xF4A80EB5: Userid : "CentOS-7 Key (CentOS 7 Official Signing Key) " Fingerprint: 6341 ab27 53d7 8a78 a7c2 7bb1 24c6 a8a7 f4a8 0eb5 Package : centos-release-7-8.2003.0.el7.centos.x86_64 (installed) From : /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7 TASK [fedora.linux_system_roles.firewall : Install python-firewall] ************ task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:29:41 +0000 (0:00:08.543) 0:00:09.670 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [fedora.linux_system_roles.firewall : Install python3-firewall] *********** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:29:42 +0000 (0:00:00.504) 0:00:10.175 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.firewall : Enable and start firewalld service] *** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:29:42 +0000 (0:00:00.022) 0:00:10.198 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "polkit.service basic.target dbus.service system.slice", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "multi-user.target shutdown.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "ipset.service ip6tables.service iptables.service ebtables.service shutdown.target", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0" } } TASK [fedora.linux_system_roles.firewall : Configure firewall] ***************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/main.yml:3 Friday 22 April 2022 01:29:43 +0000 (0:00:00.925) 0:00:11.124 ********** META: role_complete for /cache/centos-7.qcow2c.snap TASK [Verify used firewalld zones] ********************************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:14 Friday 22 April 2022 01:29:43 +0000 (0:00:00.026) 0:00:11.150 ********** statically imported: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml TASK [fedora.linux_system_roles.firewall : Install firewalld] ****************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:29:43 +0000 (0:00:00.049) 0:00:11.200 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "firewalld-0.6.3-13.el7_9.noarch providing firewalld is already installed" ] } TASK [fedora.linux_system_roles.firewall : Install python-firewall] ************ task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:29:44 +0000 (0:00:00.530) 0:00:11.730 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [fedora.linux_system_roles.firewall : Install python3-firewall] *********** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:29:44 +0000 (0:00:00.515) 0:00:12.246 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.firewall : Enable and start firewalld service] *** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:29:44 +0000 (0:00:00.036) 0:00:12.282 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestamp": "Fri 2022-04-22 01:29:42 UTC", "ActiveEnterTimestampMonotonic": "20390941", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "polkit.service basic.target dbus.service system.slice", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Fri 2022-04-22 01:29:42 UTC", "AssertTimestampMonotonic": "20163134", "Before": "multi-user.target shutdown.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Fri 2022-04-22 01:29:42 UTC", "ConditionTimestampMonotonic": "20163133", "Conflicts": "ipset.service ip6tables.service iptables.service ebtables.service shutdown.target", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "7799", "ExecMainStartTimestamp": "Fri 2022-04-22 01:29:42 UTC", "ExecMainStartTimestampMonotonic": "20163935", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Fri 2022-04-22 01:29:42 UTC] ; stop_time=[n/a] ; pid=7799 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Fri 2022-04-22 01:29:42 UTC", "InactiveExitTimestampMonotonic": "20163972", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "7799", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Fri 2022-04-22 01:29:42 UTC", "WatchdogTimestampMonotonic": "20390886", "WatchdogUSec": "0" } } TASK [fedora.linux_system_roles.firewall : Configure firewall] ***************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/main.yml:3 Friday 22 April 2022 01:29:44 +0000 (0:00:00.396) 0:00:12.679 ********** ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'internal', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "state": "enabled", "zone": "internal" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'external', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "state": "enabled", "zone": "external" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'trusted', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "state": "enabled", "zone": "trusted" } } META: role_complete for /cache/centos-7.qcow2c.snap TASK [Fail on missing zones] *************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:26 Friday 22 April 2022 01:29:46 +0000 (0:00:01.714) 0:00:14.393 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [Setup firewalld] ********************************************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:32 Friday 22 April 2022 01:29:46 +0000 (0:00:00.033) 0:00:14.426 ********** statically imported: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml TASK [fedora.linux_system_roles.firewall : Install firewalld] ****************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:29:46 +0000 (0:00:00.049) 0:00:14.476 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "firewalld-0.6.3-13.el7_9.noarch providing firewalld is already installed" ] } TASK [fedora.linux_system_roles.firewall : Install python-firewall] ************ task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:29:47 +0000 (0:00:00.517) 0:00:14.993 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [fedora.linux_system_roles.firewall : Install python3-firewall] *********** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:29:47 +0000 (0:00:00.535) 0:00:15.529 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.firewall : Enable and start firewalld service] *** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:29:47 +0000 (0:00:00.037) 0:00:15.567 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestamp": "Fri 2022-04-22 01:29:42 UTC", "ActiveEnterTimestampMonotonic": "20390941", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "polkit.service basic.target dbus.service system.slice", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Fri 2022-04-22 01:29:42 UTC", "AssertTimestampMonotonic": "20163134", "Before": "multi-user.target shutdown.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Fri 2022-04-22 01:29:42 UTC", "ConditionTimestampMonotonic": "20163133", "Conflicts": "ipset.service ip6tables.service iptables.service ebtables.service shutdown.target", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "7799", "ExecMainStartTimestamp": "Fri 2022-04-22 01:29:42 UTC", "ExecMainStartTimestampMonotonic": "20163935", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Fri 2022-04-22 01:29:42 UTC] ; stop_time=[n/a] ; pid=7799 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Fri 2022-04-22 01:29:42 UTC", "InactiveExitTimestampMonotonic": "20163972", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "7799", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Fri 2022-04-22 01:29:42 UTC", "WatchdogTimestampMonotonic": "20390886", "WatchdogUSec": "0" } } TASK [fedora.linux_system_roles.firewall : Configure firewall] ***************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/main.yml:3 Friday 22 April 2022 01:29:48 +0000 (0:00:00.401) 0:00:15.969 ********** changed: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'internal', 'service': ['tftp', 'ftp'], 'port': ['443/tcp', '443/udp'], 'forward_port': ['447/tcp;;1.2.3.4', '448/tcp;;1.2.3.5'], 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": true, "item": { "forward_port": [ "447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5" ], "port": [ "443/tcp", "443/udp" ], "service": [ "tftp", "ftp" ], "state": "enabled", "zone": "internal" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'internal', 'service': ['tftp', 'ftp'], 'port': ['443/tcp', '443/udp'], 'forward_port': ['447/tcp;;1.2.3.4', '448/tcp;;1.2.3.5'], 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "forward_port": [ "447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5" ], "port": [ "443/tcp", "443/udp" ], "service": [ "tftp", "ftp" ], "state": "enabled", "zone": "internal" } } changed: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'customzone', 'permanent': True, 'state': 'present'}) => { "ansible_loop_var": "item", "changed": true, "item": { "permanent": true, "state": "present", "zone": "customzone" } } changed: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'customzone', 'permanent': True, 'masquerade': True, 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": true, "item": { "masquerade": true, "permanent": true, "state": "enabled", "zone": "customzone" } } changed: [/cache/centos-7.qcow2c.snap] => (item={'set_default_zone': 'dmz', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": true, "item": { "set_default_zone": "dmz", "state": "enabled" } } changed: [/cache/centos-7.qcow2c.snap] => (item={'service': 'http', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": true, "item": { "service": "http", "state": "enabled" } } META: role_complete for /cache/centos-7.qcow2c.snap TASK [Fail if no changes are done] ********************************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:60 Friday 22 April 2022 01:29:51 +0000 (0:00:03.214) 0:00:19.183 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [Setup firewalld again] *************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:66 Friday 22 April 2022 01:29:51 +0000 (0:00:00.032) 0:00:19.216 ********** TASK [fedora.linux_system_roles.firewall : Install firewalld] ****************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 Friday 22 April 2022 01:29:51 +0000 (0:00:00.047) 0:00:19.263 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "firewalld-0.6.3-13.el7_9.noarch providing firewalld is already installed" ] } TASK [fedora.linux_system_roles.firewall : Install python-firewall] ************ task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 Friday 22 April 2022 01:29:52 +0000 (0:00:00.502) 0:00:19.765 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "rc": 0, "results": [ "python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed" ] } TASK [fedora.linux_system_roles.firewall : Install python3-firewall] *********** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:13 Friday 22 April 2022 01:29:52 +0000 (0:00:00.518) 0:00:20.284 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.firewall : Enable and start firewalld service] *** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 Friday 22 April 2022 01:29:52 +0000 (0:00:00.039) 0:00:20.324 ********** ok: [/cache/centos-7.qcow2c.snap] => { "changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": { "ActiveEnterTimestamp": "Fri 2022-04-22 01:29:42 UTC", "ActiveEnterTimestampMonotonic": "20390941", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "polkit.service basic.target dbus.service system.slice", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Fri 2022-04-22 01:29:42 UTC", "AssertTimestampMonotonic": "20163134", "Before": "multi-user.target shutdown.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Fri 2022-04-22 01:29:42 UTC", "ConditionTimestampMonotonic": "20163133", "Conflicts": "ipset.service ip6tables.service iptables.service ebtables.service shutdown.target", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "7799", "ExecMainStartTimestamp": "Fri 2022-04-22 01:29:42 UTC", "ExecMainStartTimestampMonotonic": "20163935", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Fri 2022-04-22 01:29:42 UTC] ; stop_time=[n/a] ; pid=7799 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Fri 2022-04-22 01:29:42 UTC", "InactiveExitTimestampMonotonic": "20163972", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "7799", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Fri 2022-04-22 01:29:42 UTC", "WatchdogTimestampMonotonic": "20390886", "WatchdogUSec": "0" } } TASK [fedora.linux_system_roles.firewall : Configure firewall] ***************** task path: /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/main.yml:3 Friday 22 April 2022 01:29:53 +0000 (0:00:00.408) 0:00:20.732 ********** ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'internal', 'service': ['tftp', 'ftp'], 'port': ['443/tcp', '443/udp'], 'forward_port': ['447/tcp;;1.2.3.4', '448/tcp;;1.2.3.5'], 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "forward_port": [ "447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5" ], "port": [ "443/tcp", "443/udp" ], "service": [ "tftp", "ftp" ], "state": "enabled", "zone": "internal" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'internal', 'service': ['tftp', 'ftp'], 'port': ['443/tcp', '443/udp'], 'forward_port': ['447/tcp;;1.2.3.4', '448/tcp;;1.2.3.5'], 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "forward_port": [ "447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5" ], "port": [ "443/tcp", "443/udp" ], "service": [ "tftp", "ftp" ], "state": "enabled", "zone": "internal" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'customzone', 'permanent': True, 'state': 'present'}) => { "ansible_loop_var": "item", "changed": false, "item": { "permanent": true, "state": "present", "zone": "customzone" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'zone': 'customzone', 'permanent': True, 'masquerade': True, 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "masquerade": true, "permanent": true, "state": "enabled", "zone": "customzone" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'set_default_zone': 'dmz', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "set_default_zone": "dmz", "state": "enabled" } } ok: [/cache/centos-7.qcow2c.snap] => (item={'service': 'http', 'state': 'enabled'}) => { "ansible_loop_var": "item", "changed": false, "item": { "service": "http", "state": "enabled" } } META: role_complete for /cache/centos-7.qcow2c.snap TASK [Fail on newly changes] *************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:94 Friday 22 April 2022 01:29:56 +0000 (0:00:03.029) 0:00:23.762 ********** skipping: [/cache/centos-7.qcow2c.snap] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [Verify firewalld zone internal services] ********************************* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:100 Friday 22 April 2022 01:29:56 +0000 (0:00:00.033) 0:00:23.796 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--zone=internal", "--list-services" ], "delta": "0:00:00.275833", "end": "2022-04-22 01:29:56.276353", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:29:56.000520" } STDOUT: dhcpv6-client ftp mdns samba-client ssh tftp TASK [Verify firewalld zone internal ports] ************************************ task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:105 Friday 22 April 2022 01:29:56 +0000 (0:00:00.724) 0:00:24.520 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--zone=internal", "--list-ports" ], "delta": "0:00:00.268019", "end": "2022-04-22 01:29:56.848106", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:29:56.580087" } STDOUT: 443/tcp 443/udp TASK [Verify firewalld zone internal forward ports] **************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:110 Friday 22 April 2022 01:29:57 +0000 (0:00:00.571) 0:00:25.091 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--zone=internal", "--list-forward-ports" ], "delta": "0:00:00.299910", "end": "2022-04-22 01:29:57.461117", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:29:57.161207" } STDOUT: port=447:proto=tcp:toport=:toaddr=1.2.3.4 port=448:proto=tcp:toport=:toaddr=1.2.3.5 TASK [Verify custom zone has masquerade added to it] *************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:115 Friday 22 April 2022 01:29:57 +0000 (0:00:00.613) 0:00:25.704 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--permanent", "--zone=customzone", "--query-masquerade" ], "delta": "0:00:00.278707", "end": "2022-04-22 01:29:58.057738", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:29:57.779031" } STDOUT: yes TASK [Verify custom zone has masquerade added to it] *************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:120 Friday 22 April 2022 01:29:58 +0000 (0:00:00.598) 0:00:26.303 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--get-default-zone" ], "delta": "0:00:00.253286", "end": "2022-04-22 01:29:58.615808", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:29:58.362522" } STDOUT: dmz TASK [Verify that service http has been added to the default zone dmz] ********* task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:125 Friday 22 April 2022 01:29:59 +0000 (0:00:00.561) 0:00:26.865 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": [ "firewall-cmd", "--zone=dmz", "--query-service=http" ], "delta": "0:00:00.256542", "end": "2022-04-22 01:29:59.192420", "failed_when_result": false, "rc": 0, "start": "2022-04-22 01:29:58.935878" } STDOUT: yes TASK [Reset to zone defaults] ************************************************** task path: /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:133 Friday 22 April 2022 01:29:59 +0000 (0:00:00.572) 0:00:27.438 ********** changed: [/cache/centos-7.qcow2c.snap] => { "changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=internal\nfirewall-cmd --permanent --load-zone-defaults=external\nfirewall-cmd --permanent --load-zone-defaults=trusted\nfirewall-cmd --reload\n", "delta": "0:00:01.257115", "end": "2022-04-22 01:30:00.760789", "rc": 0, "start": "2022-04-22 01:29:59.503674" } STDOUT: success success STDERR: Error: NO_DEFAULTS: external Error: NO_DEFAULTS: trusted META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c.snap : ok=23 changed=10 unreachable=0 failed=0 skipped=8 rescued=0 ignored=0 Friday 22 April 2022 01:30:01 +0000 (0:00:01.568) 0:00:29.007 ********** =============================================================================== fedora.linux_system_roles.firewall : Install firewalld ------------------ 8.54s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 fedora.linux_system_roles.firewall : Configure firewall ----------------- 3.03s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/main.yml:3 fedora.linux_system_roles.firewall : Configure firewall ----------------- 1.71s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/main.yml:3 Reset to zone defaults -------------------------------------------------- 1.57s /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:133 ---------------------------- Gathering Facts --------------------------------------------------------- 1.09s /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:1 ------------------------------ fedora.linux_system_roles.firewall : Enable and start firewalld service --- 0.93s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 Verify firewalld zone internal services --------------------------------- 0.72s /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:100 ---------------------------- Verify firewalld zone internal forward ports ---------------------------- 0.61s /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:110 ---------------------------- Verify custom zone has masquerade added to it --------------------------- 0.60s /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:115 ---------------------------- Verify that service http has been added to the default zone dmz --------- 0.57s /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:125 ---------------------------- Verify firewalld zone internal ports ------------------------------------ 0.57s /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:105 ---------------------------- Verify custom zone has masquerade added to it --------------------------- 0.56s /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:120 ---------------------------- fedora.linux_system_roles.firewall : Install firewalld ------------------ 0.53s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 fedora.linux_system_roles.firewall : Install python-firewall ------------ 0.52s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 fedora.linux_system_roles.firewall : Install python-firewall ------------ 0.52s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 fedora.linux_system_roles.firewall : Install python-firewall ------------ 0.50s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:7 fedora.linux_system_roles.firewall : Install firewalld ------------------ 0.50s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:2 fedora.linux_system_roles.firewall : Enable and start firewalld service --- 0.41s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 fedora.linux_system_roles.firewall : Enable and start firewalld service --- 0.40s /tmp/tmp96utdw39/ansible_collections/fedora/linux_system_roles/roles/firewall/tasks/firewalld.yml:19 Setup firewalld --------------------------------------------------------- 0.05s /tmp/tmpuofn2bw2/tests/firewall/tests_zone.yml:32 -----------------------------