another attempt at fixing apache IPv6 listening
authorRalf Jung <post@ralfj.de>
Fri, 5 Oct 2018 12:54:54 +0000 (14:54 +0200)
committerRalf Jung <post@ralfj.de>
Fri, 5 Oct 2018 12:54:54 +0000 (14:54 +0200)
roles/apache/tasks/main.yml

index 95bf531cd0444cb5613fe84db8944ccc27febc9c..fee26efff5be7b765f1e34d53fd537d57f45ade8 100644 (file)
       Wants=network-online.target
       [Service]
       Restart=on-failure
-- name: sysconfig to disable DAD
+- name: cleanup old sysconfig
+  file: path=/etc/sysctl.d/50-no-dad.conf state=absent
+- name: sysconfig to fix IPv6 listening
   copy:
-    dest: /etc/sysctl.d/50-no-dad.conf
+    dest: /etc/sysctl.d/50-ipv6-listen.conf
     content: |
-      # Disable DAD so network-online.target works for IPv6
-      net.ipv6.conf.all.accept_dad=0
+      # Allow binding to IPv6 address before we got that address
+      net.ipv6.ip_nonlocal_bind=1