---

- name: Accept FORWARD with tcp limit 1/second and tcp_flags
  ansible.builtin.iptables:
    chain: FORWARD
    protocol: tcp
    tcp_flags:
      flags:
        - SYN
        - ACK
        - FIN
        - RST
      flags_set:
        - RST
    limit: 1/second
    jump: ACCEPT
    comment: Accept FORWARD with tcp limit 1/second and tcp_flags
    state: present
  become: yes