Ansible常用模块firewalld模块-m firewalld 管理控制防火墙指令参数选项说明servicehttp\udp.....添加或者删除服务、协议port添加或者删除端口号stateenabled, disabled开启或者禁止防火墙zonepublic设置防火墙区域permanentyes, no修改规则是否重启生效-永久默认noimmediateyes, no修改规则是否立即生效-临时默认nomasqueradeyes, no启动或禁止防火墙地址伪装[rootansible ~]# ansible webservers -m shell -a systemctl start firewalld 192.168.92.20 | CHANGED | rc0 [rootansible ~]# ansible webservers -m firewalld -a servicehttp immediateyes permanentyes stateenabled 192.168.92.20 | CHANGED { ansible_facts: { discovered_interpreter_python: /usr/bin/python3 }, changed: true, msg: Permanent and Non-Permanent(immediate) operation, Changed service http to enabled } [rootansible ~]# ansible webservers -m shell -a systemctl stop firewalld 192.168.92.20 | CHANGED | rc0 [rootansible ~]#setup模块-m setup 主要收集信息 通过facts组件实现功能 用于采集被控端设备信息一个途径指令参数选项说明filter采集信息[rootansible ~]# ansible webservers -m setup -a filteransible_memory_mb 192.168.92.20 | SUCCESS { ansible_facts: { ansible_memory_mb: { nocache: { free: 1465, used: 273 }, real: { free: 1238, total: 1738, used: 500 }, swap: { cached: 0, free: 2047, total: 2047, used: 0 } }, discovered_interpreter_python: /usr/bin/python3 }, changed: false } [rootansible ~]# ansible webservers -m setup -a filteransible_all_ipv4_addresses 192.168.92.20 | SUCCESS { ansible_facts: { ansible_all_ipv4_addresses: [ 192.168.92.20 ], discovered_interpreter_python: /usr/bin/python3 }, changed: false } [rootansible ~]# ansible webservers -m setup -a filternameserver 192.168.92.20 | SUCCESS { ansible_facts: { discovered_interpreter_python: /usr/bin/python3 }, changed: false } [rootansible ~]#