Skip to content

Commit

Permalink
removed blank lines
Browse files Browse the repository at this point in the history 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
  • Loading branch information
@uk-bolly
uk-bolly committed Jun 19, 2024
1 parent 1b07f37 commit c39d8bb
Showing 1 changed file with 0 additions and 2 deletions.
2 changes: 0 additions & 2 deletions tasks/section_3/cis_3.4.3.x.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -186,7 +186,6 @@
- '"iif \"lo\" accept" not in rhel7cis_3_4_3_5_iiflo.stdout'
ansible.builtin.shell: nft add rule inet "{{ rhel7cis_nft_tables_tablename }}" input iif lo accept


- name: "3.4.3.5 | PATCH | Ensure nftables loopback traffic is configured | Set ip sddr rule"
when:
- '"ip saddr 127.0.0.0/8 counter packets 0 bytes 0 drop" not in rhel7cis_3_4_3_5_ipsaddr.stdout'
Expand Down Expand Up @@ -237,7 +236,6 @@
- '"ip protocol icmp ct state established accept" not in rhel7cis_3_4_3_6_inconnectionrule.stdout'
ansible.builtin.shell: nft add rule inet "{{ rhel7cis_nft_tables_tablename }}" input ip protocol icmp ct state established accept


- name: "3.4.3.6 | PATCH | Ensure nftables outbound and established connections are configured | Add output tcp new, related, established accept policy"
when:
- '"ip protocol tcp ct state established,related,new accept" not in rhel7cis_3_4_3_6_outconnectionrule.stdout'
Expand Down

0 comments on commit c39d8bb

Please sign in to comment.