nftables: # Rules to add # Handled as templates # Creates separate files for each entry. # The identifier is necessary for ansible to be able to merge the keys (when 'hash_behaviour = merge') # rule-ids have to be unique across files and raw rules: # Files with Rules to add files: #'': '' #'': # main: # '': '' # Rules to add raw: #'': '' #'': # main: # '': '' # Decides if /etc/nftables.conf is applied or separate files which have changed # Separate changes require the files to be self-tyding to not end up with duplicate rules # e.g. # table ip mytable # flush table ip mytable # delete table ip mytable # table ip mytable {} ... apply_global: false