remove firewall rules before running ocp uninstall

ansible/configs/ocp4-cluster/destroy_env_gcp.yml

@@ -49,6 +49,14 @@
   tasks:
     - include_tasks: gcp_instances_start.yml
 
+- name: Destroy firewall rules that openshift-installer created but can't handle
+  hosts: localhost
+  connection: local
+  gather_facts: false
+  become: false
+  tasks:
+    - include_tasks: gcp_fw_destroy.yml
+
 - name: Have the OpenShift installer cleanup what it did
   hosts: bastions
   gather_facts: false

ansible/configs/ocp4-cluster/gcp_fw_destroy.yml

@@ -0,0 +1,19 @@
+---
+- name: Find k8s Firewall Rules in GCP
+  google.cloud.gcp_compute_firewall_info:
+    auth_kind: "{{ gcp_auth_type }}"
+    service_account_file: "{{ gcp_credentials_file }}"
+    project: "{{ gcp_project_id }}"
+  register: r_firewall_info
+
+- name: Delete k8s Firewall Rules in GCP
+  when:
+    - r_firewall_info.resources | length > 0
+    - item.name.startswith('k8s-')
+  google.cloud.gcp_compute_instance:
+    auth_kind: "{{ gcp_auth_type }}"
+    service_account_file: "{{ gcp_credentials_file }}"
+    project: "{{ gcp_project_id }}"
+    name: "{{ item.name }}"
+    state: absent
+  loop: "{{ r_firewall_info.resources }}"