move docker0 interface to public firewalld zone by default

defaults/main.yml

@@ -2,7 +2,7 @@
 # Whether this module should use the "become" option for configuring firewalld
 
 disable_vhost_configuration: false
-reverse_proxy_firewall_zone: docker
+reverse_proxy_firewall_zone: public
 
 # Reverse proxy
 docker_shared_data: /usr/share/dockerdata

molecule/default/tests/test_default.py

@@ -78,7 +78,7 @@ def test_nginx_proxy_vhost_files_contains_target(host):
 
 def test_docker_interface_is_configured_in_firewalld(host):
     command = """
-        sudo firewall-cmd --list-all --zone=docker | \
+        sudo firewall-cmd --list-all --zone=public | \
         grep -c 'docker0'
     """
     cmd = host.run(command)

tasks/nginx-proxy.yml

@@ -8,6 +8,8 @@
       - name: "{{ reverse_proxy_firewall_zone }}"
         nics:
           - "{{ ansible_containerization_docker_network_interface }}"
+        enabled_services:
+          - service: https
 
 - name: Nginx-proxy | create nginx directories
   ansible.builtin.file: