a10_ip_access_list
Synopsis
Configure Access List
Parameters
Parameters |
Choices/Defaults |
Comment |
|
---|---|---|---|
state str/required |
[‘noop’, ‘present’, ‘absent’] |
State of the object to be created. |
|
ansible_host str/required |
Host for AXAPI authentication |
||
ansible_username str/required |
Username for AXAPI authentication |
||
ansible_password str/required |
Password for AXAPI authentication |
||
ansible_port int/required |
Port for AXAPI authentication |
||
a10_device_context_id int |
[‘1-8’] |
Device ID for aVCS configuration |
|
a10_partition str |
Destination/target partition for object/command |
||
name str/required |
IP Access List Name. Does not support name as digits or start with digit. |
||
rules list |
Field rules |
||
seq_num int |
Sequence Number |
||
action str |
‘deny’= Deny; ‘permit’= Permit; ‘l3-vlan-fwd-disable’= Disable L3 forwarding between VLANs; |
||
remark str |
Access list entry comment (Notes for this ACL) |
||
icmp bool |
Internet Control Message Protocol |
||
tcp bool |
protocol TCP |
||
udp bool |
protocol UDP |
||
ip bool |
Any Internet Protocol |
||
service_obj_group str |
Service object group (Source object group name) |
||
geo_location str |
Specify geo-location name |
||
icmp_type int |
ICMP type number |
||
any_type bool |
Any ICMP type |
||
special_type str |
‘echo-reply’= Type 0, echo reply; ‘echo-request’= Type 8, echo request; ‘info- reply’= Type 16, information reply; ‘info-request’= Type 15, information request; ‘mask-reply’= Type 18, address mask reply; ‘mask-request’= Type 17, address mask request; ‘parameter-problem’= Type 12, parameter problem; ‘redirect’= Type 5, redirect message; ‘source-quench’= Type 4, source quench; ‘time-exceeded’= Type 11, time exceeded; ‘timestamp’= Type 13, timestamp; ‘timestamp-reply’= Type 14, timestamp reply; ‘dest-unreachable’= Type 3, destination unreachable; |
||
any_code bool |
Any ICMP code |
||
icmp_code int |
ICMP code number |
||
special_code str |
‘frag-required’= Code 4, fragmentation required; ‘host-unreachable’= Code 1, destination host unreachable; ‘network-unreachable’= Code 0, destination network unreachable; ‘port-unreachable’= Code 3, destination port unreachable; ‘proto-unreachable’= Code 2, destination protocol unreachable; ‘route-failed’= Code 5, source route failed; |
||
src_any bool |
Any source host |
||
src_host str |
A single source host (Host address) |
||
src_subnet str |
Source Address |
||
src_mask str |
Source Mask 0=apply 255=ignore |
||
src_object_group str |
Network object group (Source network object group name) |
||
src_eq int |
Match only packets on a given source port (port number) |
||
src_gt int |
Match only packets with a greater port number |
||
src_lt int |
Match only packets with a lower port number |
||
src_range int |
match only packets in the range of port numbers (Starting Port Number) |
||
src_port_end int |
Ending Port Number |
||
dst_any bool |
Any destination host |
||
dst_host str |
A single destination host (Host address) |
||
dst_subnet str |
Destination Address |
||
dst_mask str |
Destination Mask 0=apply 255=ignore |
||
dst_object_group str |
Destination network object group name |
||
dst_eq int |
Match only packets on a given destination port (port number) |
||
dst_gt int |
Match only packets with a greater port number |
||
dst_lt int |
Match only packets with a lesser port number |
||
dst_range int |
Match only packets in the range of port numbers (Starting Destination Port Number) |
||
dst_port_end int |
Edning Destination Port Number |
||
fragments bool |
IP fragments |
||
vlan int |
VLAN ID |
||
ethernet str |
Ethernet interface (Port number) |
||
trunk str |
Ethernet trunk (trunk number) |
||
dscp int |
DSCP |
||
established bool |
TCP established |
||
acl_log bool |
Log matches against this entry |
||
transparent_session_only bool |
Only log transparent sessions |
||
uuid str |
uuid of the object |
||
user_tag str |
Customized tag |
Examples
Return Values
- modified_values (changed, dict, )
Values modified (or potential changes if using check_mode) as a result of task operation
- axapi_calls (always, list, )
Sequential list of AXAPI calls made by the task
- endpoint (, str, [‘/axapi/v3/slb/virtual_server’, ‘/axapi/v3/file/ssl-cert’])
The AXAPI endpoint being accessed.
- http_method (, str, [‘POST’, ‘GET’])
HTTP method being used by the primary task to interact with the AXAPI endpoint.
- request_body (, complex, )
Params used to query the AXAPI
- response_body (, complex, )
Response from the AXAPI
Status
This module is not guaranteed to have a backwards compatible interface. [preview]
This module is maintained by community.