--- - name: open node_exporter port firewalld: port: "{{ node_exporter_port }}/tcp" zone: "{{ ceph_dashboard_firewall_zone }}" permanent: true immediate: true state: enabled - block: - name: open dashboard port firewalld: port: "{{ dashboard_port }}/tcp" zone: "{{ ceph_dashboard_firewall_zone }}" permanent: true immediate: true state: enabled - name: open mgr/prometheus port firewalld: port: "9283/tcp" zone: "{{ ceph_dashboard_firewall_zone }}" permanent: true immediate: true state: enabled when: - mgr_group_name is defined - (groups.get(mgr_group_name,[]) | length > 0 and mgr_group_name in group_names) or (groups.get(mgr_group_name,[]) | length == 0 and mon_group_name in group_names) - block: - name: open grafana port firewalld: port: "{{ grafana_port }}/tcp" zone: "{{ ceph_dashboard_firewall_zone }}" permanent: true immediate: true state: enabled - name: open prometheus port firewalld: port: "{{ prometheus_port }}/tcp" zone: "{{ ceph_dashboard_firewall_zone }}" permanent: true immediate: true state: enabled - name: open alertmanager port firewalld: port: "{{ alertmanager_port }}/tcp" zone: "{{ ceph_dashboard_firewall_zone }}" permanent: true immediate: true state: enabled - name: open alertmanager cluster port firewalld: port: "{{ alertmanager_cluster_port }}/{{ item }}" zone: "{{ ceph_dashboard_firewall_zone }}" permanent: true immediate: true state: enabled with_items: - "tcp" - "udp" when: - grafana_server_group_name is defined - grafana_server_group_name in group_names