add option to not configure nat (#187)

Co-authored-by: Kyle Lexmond <kyl191@users.noreply.github.com>

Author: manuelschneider

defaults/main/role.yml

@@ -19,6 +19,7 @@ iptables_service: iptables
 manage_firewall_rules: true
 openvpn_firewall: auto
 openvpn_masquerade_not_snat: false
+openvpn_no_nat: false
 
 # Misc
 ci_build: false

tasks/iptables.yml

@@ -69,7 +69,7 @@
     jump: SNAT
     action: insert
     comment: "Perform NAT readdressing"
-  when: not openvpn_masquerade_not_snat
+  when: not openvpn_masquerade_not_snat and not openvpn_no_nat
   notify: "save iptables"
 
 - name: Perform NAT readdressing with MASQUERADE - iptables
@@ -80,7 +80,7 @@
     jump: MASQUERADE
     action: insert
     comment: "Perform NAT readdressing"
-  when: openvpn_masquerade_not_snat
+  when: openvpn_masquerade_not_snat and not openvpn_no_nat
   notify:
     - Save iptables