a10_ddos_zone_template_ssl_l4
Synopsis
SSL-L4 template Configuration
Parameters
Parameters |
Choices/Defaults |
Comment |
|
|---|---|---|---|
state str/required |
[‘noop’, ‘present’, ‘absent’] |
State of the object to be created. |
|
ansible_host str/required |
Host for AXAPI authentication |
||
ansible_username str/required |
Username for AXAPI authentication |
||
ansible_password str/required |
Password for AXAPI authentication |
||
ansible_port int/required |
Port for AXAPI authentication |
||
a10_device_context_id int |
[‘1-8’] |
Device ID for aVCS configuration |
|
a10_partition str |
Destination/target partition for object/command |
||
ssl_l4_tmpl_name str/required |
Field ssl_l4_tmpl_name |
||
disable bool |
Disable this template |
||
multi_pu_threshold_distribution dict |
Field multi_pu_threshold_distribution |
||
multi_pu_threshold_distribution_value int |
Destination side rate limit only. Default= 0 |
||
multi_pu_threshold_distribution_disable str |
‘disable’= Destination side rate limit only. Default= Enable; |
||
renegotiation dict |
Field renegotiation |
||
num_renegotiation int |
Number of renegotiation allowed |
||
ssl_l4_reneg_action_list_name str |
Configure action-list to take |
||
ssl_l4_reneg_action str |
‘drop’= Drop packets (Default); ‘ignore’= Take no action; ‘blacklist-src’= Blacklist-src; ‘reset’= Reset client connection; |
||
allow_non_tls bool |
Allow Non-TLS (SSLv3 and lower) traffic (Warning= security may be compromised) |
||
auth_handshake dict |
Field auth_handshake |
||
auth_handshake_timeout int |
Connection timeout (default 5 seconds) and trials (default 5 times) (DST support only) |
||
auth_handshake_trials int |
Number of failed handshakes before entry marked black |
||
cert_cfg dict |
Field cert_cfg |
||
server_name_list list |
Field server_name_list |
||
auth_handshake_pass_action_list_name str |
Configure action-list to take for passing the authentication |
||
auth_handshake_pass_action str |
‘authenticate-src’= authenticate-src (Default); |
||
auth_handshake_fail_action_list_name str |
Configure action-list to take for failing the authentication |
||
auth_handshake_fail_action str |
‘drop’= Drop packets (Default); ‘blacklist-src’= Blacklist-src; ‘reset’= Reset client connection; |
||
src dict |
Field src |
||
rate_limit dict |
Field rate_limit |
||
dst dict |
Field dst |
||
rate_limit dict |
Field rate_limit |
||
uuid str |
uuid of the object |
||
user_tag str |
Customized tag |
||
ssl_traffic_check dict |
Field ssl_traffic_check |
||
header_inspection bool |
Inspect ssl header |
||
header_action str |
‘drop’= Drop packets with bad ssl header; ‘ignore’= Forward packets with bad ssl header; |
||
check_resumed_connection bool |
Apply checks to SSL connections initialized by ACK packets |
||
uuid str |
uuid of the object |
||
Examples
Return Values
- modified_values (changed, dict, )
Values modified (or potential changes if using check_mode) as a result of task operation
- axapi_calls (always, list, )
Sequential list of AXAPI calls made by the task
- endpoint (, str, [‘/axapi/v3/slb/virtual_server’, ‘/axapi/v3/file/ssl-cert’])
The AXAPI endpoint being accessed.
- http_method (, str, [‘POST’, ‘GET’])
HTTP method being used by the primary task to interact with the AXAPI endpoint.
- request_body (, complex, )
Params used to query the AXAPI
- response_body (, complex, )
Response from the AXAPI
Status
This module is not guaranteed to have a backwards compatible interface. [preview]
This module is maintained by community.