在当前系统上,我有此 ip6tables 规则
-A INPUT -d <ip6address> -p udp -m udp --dport <port> -m state --state NEW -j ACCEPT
对于新系统,我编写了一个 ansible 剧本:
- name: Allow someport for ipv6
ansible.builtin.iptables:
chain: INPUT
protocol: udp
match: udp
ip_version: ipv6
ctstate: NEW
destination_port: 'port'
destination: 'ip6address'
jump: ACCEPT
tags:
- iptables6
但是当我尝试播放这个时出现错误:
{... "stderr_lines": ["ip6tables v1.8.7 (nf_tables): unknown option \"--destination-port\"", "Try `ip6tables -h' or 'ip6tables --help' for more information."], "stdout": "", "stdout_lines": []}
- Ansible 2.10.8
- Debian 11
如何正确定义这个规则?