From 4a516eee157ad357eb73e90f1074ca658a7ccdf7 Mon Sep 17 00:00:00 2001
From: Ethan Paul <e@enp.one>
Date: Fri, 19 May 2023 16:39:52 -0400
Subject: [PATCH] Stop assuming rockylinux has firewalld installed by default

---
 skylab/infra/playbooks/bootstrap.yml | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/skylab/infra/playbooks/bootstrap.yml b/skylab/infra/playbooks/bootstrap.yml
index 160cfbb..5062150 100644
--- a/skylab/infra/playbooks/bootstrap.yml
+++ b/skylab/infra/playbooks/bootstrap.yml
@@ -168,6 +168,18 @@
       setype: ssh_port_t
       state: present
 
+  - name: Install Firewalld
+    become: true
+    ansible.builtin.dnf:
+      name: firewalld
+      state: present
+
+  - name: Enable Firewalld
+    become: true
+    ansible.builtin.service:
+      name: firewalld
+      enabled: true
+
   - name: Grant SSHD firewall access to the mgmt port
     become: true
     ansible.posix.firewalld: