evgeniy-pupkov
commented
4 years ago Firewalld just can't start on test environment, here's a main cause of an error:
"stdout_lines": [
"● firewalld.service - firewalld - dynamic firewall daemon",
" Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; vendor preset: enabled)",
" Active: inactive (dead) since Mon 2020-01-20 09:46:25 UTC; 97ms ago",
" Docs: man:firewalld(1)",
" Process: 1030 ExecStart=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS (code=exited, status=0/SUCCESS)",
" Main PID: 1030 (code=exited, status=0/SUCCESS)",
"",
"Jan 20 09:46:22 instance systemd[1]: Starting firewalld - dynamic firewall daemon...",
"Jan 20 09:46:23 instance systemd[1]: Started firewalld - dynamic firewall daemon.",
"Jan 20 09:46:25 instance firewalld[1030]: ERROR: Failed to load nf_conntrack module: modprobe: ERROR: could not find module by name='nf_conntrack'",
" modprobe: ERROR: could not insert 'nf_conntrack': Function not implemented",
" modprobe: ERROR: Error running install command for nf_conntrack",
" modprobe: ERROR: could not insert 'nf_conntrack': Operation not permitted",
"Jan 20 09:46:25 instance firewalld[1030]: ERROR: Raising SystemExit in run_server"
nkinder
Hello! I can see that Travis CI builds necessary for Ansible Galaxy fails on 'configure firewall for Keycloak ports' task. It seems that this task tries to open ports before firewalld service completes startup. I propose to add a looped check task before it. Something like this should work:
I'm going to create a PR, and if it fails on Travis CI, I'll try to fix it