homeserver/roles/oefenweb.ufw/tasks/fix-dropped-ssh-sessions.yml

# tasks file
---
- name: check if conntrack exists
  stat:
    path: /proc/sys/net/netfilter/nf_conntrack_tcp_be_liberal
  register: _nf_conntrack_tcp_be_liberal

- name: fix dropped ssh sessions | configure kernel
  sysctl:
    name: net.netfilter.nf_conntrack_tcp_be_liberal
    value: '1'
    state: present
    sysctl_set: true
    reload: true
  when: _nf_conntrack_tcp_be_liberal.stat.exists
  tags:
    - ufw-fix-dropped-ssh-sessions-configure-kernel
Rolle aktualisiert: ufw (#459) Co-authored-by: Michael Grote <michael.grote@posteo.de> Reviewed-on: https://git.mgrote.net/mg/homeserver/pulls/459 2023-02-17 12:07:48 +01:00			`# tasks file`
rollen "ausgeschrieben" 2021-02-13 14:20:18 +01:00			`---`
			`- name: check if conntrack exists`
			`stat:`
			`path: /proc/sys/net/netfilter/nf_conntrack_tcp_be_liberal`
			`register: _nf_conntrack_tcp_be_liberal`

			`- name: fix dropped ssh sessions \| configure kernel`
			`sysctl:`
			`name: net.netfilter.nf_conntrack_tcp_be_liberal`
			`value: '1'`
			`state: present`
			`sysctl_set: true`
			`reload: true`
			`when: _nf_conntrack_tcp_be_liberal.stat.exists`
			`tags:`
			`- ufw-fix-dropped-ssh-sessions-configure-kernel`