From a96a7c84b35a62d1da621d57c0bb540b7c571f6d Mon Sep 17 00:00:00 2001
From: Bo-Chun Louis Chen <louistw@uab.edu>
Date: Wed, 5 Mar 2025 10:40:27 -0600
Subject: [PATCH] feat: open node exporter port in firewalld

---
 ansible/roles/install_node_exporter/tasks/main.yaml | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/ansible/roles/install_node_exporter/tasks/main.yaml b/ansible/roles/install_node_exporter/tasks/main.yaml
index 3bee4a7..cb52fd3 100644
--- a/ansible/roles/install_node_exporter/tasks/main.yaml
+++ b/ansible/roles/install_node_exporter/tasks/main.yaml
@@ -58,3 +58,16 @@
     name: node_exporter
     state: restarted
     enabled: true
+
+- name: Collect facts about system services
+  ansible.builtin.service_facts:
+
+- name: Configure firewalld to allow prometheus
+  ansible.posix.firewalld:
+    port: "{{ node_exporter_port }}/tcp"
+    zone: public
+    state: enabled
+    permanent: true
+  when:
+    - "'firewalld.service' in ansible_facts.services"
+    - ansible_facts.services["firewalld.service"].state == "running"
-- 
GitLab