ctucx.git: ansible-configs

roles/common/nftables: provide a default config

diff --git a/roles/common/tasks/firewall-nftables.yml b/roles/common/tasks/firewall-nftables.yml
@@ -18,17 +18,9 @@
     - ansible_distribution == "Archlinux"
     - network.nftables.enable is true
 
-- name: Fail when use nftables and no configFile
-  fail:
-    msg: Option 'network.nftables.configFile' not set!
-  when: 
-    - network.nftables.enable is true
-    - network.nftables.configFile is not defined
-
-
-- name: "[Alpine] Copy nftables config to destination"
+- name: "[Alpine] Create file: /etc/nftables.nft"
   copy:
-    src: "{{ network.nftables.configFile }}"
+    src: "{{ network.nftables.configFile | default('nftables-config.nft') }}"
     dest: /etc/nftables.nft
     mode: 0644
   register: nftablesConfig

@@ -36,9 +28,9 @@
     - ansible_distribution == "Alpine"
     - network.nftables.enable is true
 
-- name: "[Archlinux]  Copy nftables config to destination"
+- name: "[Archlinux] Create file: /etc/nftables.conf"
   copy:
-    src: "{{ network.nftables.configFile }}"
+    src: "{{ network.nftables.configFile | default('nftables-config.nft') }}"
     dest: /etc/nftables.conf
     mode: 0644
   register: nftablesConfig