From 6f22bde72578e61f2d2c66fc76b7baf773429ebf Mon Sep 17 00:00:00 2001
From: Markus Hauschild <markus@moepman.eu>
Date: Thu, 18 Jan 2018 12:52:12 +0100
Subject: [PATCH] make sure nf_conntrack is loaded early on

---
 roles/exit-ipv4/tasks/main.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/roles/exit-ipv4/tasks/main.yml b/roles/exit-ipv4/tasks/main.yml
index f40a699..d94bbaf 100644
--- a/roles/exit-ipv4/tasks/main.yml
+++ b/roles/exit-ipv4/tasks/main.yml
@@ -9,6 +9,9 @@
 - name: Load nf_conntrack module
   modprobe: name=nf_conntrack
 
+- name: Enable nf_conntrack during boot
+  lineinfile: dest=/etc/modules line=nf_conntrack
+
 - name: Increas conntrack limit
   sysctl: name=net.netfilter.nf_conntrack_max value={{ conntrack_max }} state=present