From 088123b3cedab0f4c325a0b143eb32acfcd06423 Mon Sep 17 00:00:00 2001
From: Ethan Paul <24588726+enpaul@users.noreply.github.com>
Date: Sun, 22 Mar 2020 21:21:39 -0400
Subject: [PATCH] Update firewall config for docker usage

---
 playbooks/configure-docker.yml | 13 ++++++++++---
 1 file changed, 10 insertions(+), 3 deletions(-)

diff --git a/playbooks/configure-docker.yml b/playbooks/configure-docker.yml
index ffb69e7..f683c17 100644
--- a/playbooks/configure-docker.yml
+++ b/playbooks/configure-docker.yml
@@ -1,16 +1,23 @@
 ---
-- import_playbook: meta.yml
-
 - name: Configure docker hosts
   hosts: servers
   roles:
     - role: docker
   tasks:
-    - name: Disable firewall on internal interface
+    - name: Allow swarm traffic through the firewall
       become: true
       firewalld:
         state: enabled
         service: docker-swarm
+        zone: public
+        permanent: true
+        immediate: true
+    - name: Disable firewall on docker bridge interface
+      become: true
+      firewalld:
+        state: enabled
+        interface: docker0
+        zone: trusted
         permanent: true
         immediate: true