feat(firewall): Add dependencies for firewalld helper script

README.md

@@ -11,7 +11,7 @@ We're assuming that you're running Ansible as a Python package inside a virtual
 pip install ansible
 ```
 
-We're also assuming that secrets are stored in a HashiCorp Vault instance to which you have access. These role access Vault via `hvac`, the HashiCorp Vault API client for Python 3.x, see [github.com/hvac/hvac](https://github.com/hvac/hvac) for reference. Install it like so:
+We're also assuming that secrets are stored in a HashiCorp Vault instance to which you have access. These roles access Vault via `hvac`, the HashiCorp Vault API client for Python 3.x, see [github.com/hvac/hvac](https://github.com/hvac/hvac) for reference. Install it like so:
 ```
 pip install hvac
 ```

ansible/roles/50-service-mailcow/tasks/40-install-mailcow.yml

@@ -13,28 +13,34 @@
 
 
 - name: 'Install Docker engine basics'
+  tags:
+    - 'testing'
   ansible.builtin.dnf:
     name:
-      - 'yum-utils'
+      - 'docker-ce'             # Docker
-      - 'docker-ce'
+      - 'docker-ce-cli'         #
-      - 'docker-ce-cli'
+      - 'containerd.io'         #
-      - 'containerd.io'
+      - 'docker-compose-plugin' #
-      - 'docker-compose-plugin'
+      - 'git'                   # git clone Mailcow repo
-      - 'git'
+      - '@Development tools'    # Install 'update-firewall-source' Python package
     state: 'latest'
 
 
 
+- name: 'Start systemd iptables.service'
+  ansible.builtin.systemd:
+    name: 'iptables.service'
+    state: 'started'
+    enabled: 'yes'
+
+
+
 - name: 'Populate service facts'
-  tags:
-    - 'testing'
   ansible.builtin.service_facts:
 
 
 
 - name: 'Store Docker daemon.json'
-  tags:
-    - 'testing'
   register: 'rv_upload_daemonjson'
   ansible.builtin.copy:
     src: 'etc/docker/daemon.json'
@@ -48,8 +54,6 @@
 
 
 - name: 'Start systemd docker.service'
-  tags:
-    - 'testing'
   when: '(ansible_facts.services[''docker.service''].state != ''running'')'
   ansible.builtin.systemd:
     name: 'docker.service'