a10_visibility_packet_capture_global_templates_template_trigger_sys_obj_stats_change_slb_ssl_error
Synopsis
Configure triggers for slb.ssl-error object
Parameters
Parameters |
Choices/Defaults |
Comment |
|
|---|---|---|---|
state str/required |
[‘noop’, ‘present’, ‘absent’] |
State of the object to be created. |
|
ansible_host str/required |
Host for AXAPI authentication |
||
ansible_username str/required |
Username for AXAPI authentication |
||
ansible_password str/required |
Password for AXAPI authentication |
||
ansible_port int/required |
Port for AXAPI authentication |
||
a10_device_context_id int |
[‘1-8’] |
Device ID for aVCS configuration |
|
a10_partition str |
Destination/target partition for object/command |
||
template_name str/required |
Key to identify parent object |
||
uuid str |
uuid of the object |
||
trigger_stats_inc dict |
Field trigger_stats_inc |
||
app_data_in_handshake bool |
Enable automatic packet-capture for app data in handshake |
||
attempt_to_reuse_sess_in_diff_context bool |
Enable automatic packet-capture for attempt to reuse sess in diff context |
||
bad_alert_record bool |
Enable automatic packet-capture for bad alert record |
||
bad_authentication_type bool |
Enable automatic packet-capture for bad authentication type |
||
bad_change_cipher_spec bool |
Enable automatic packet-capture for bad change cipher spec |
||
bad_checksum bool |
Enable automatic packet-capture for bad checksum |
||
bad_data_returned_by_callback bool |
Enable automatic packet-capture for bad data returned by callback |
||
bad_decompression bool |
Enable automatic packet-capture for bad decompression |
||
bad_dh_g_length bool |
Enable automatic packet-capture for bad dh g length |
||
bad_dh_pub_key_length bool |
Enable automatic packet-capture for bad dh pub key length |
||
bad_dh_p_length bool |
Enable automatic packet-capture for bad dh p length |
||
bad_digest_length bool |
Enable automatic packet-capture for bad digest length |
||
bad_dsa_signature bool |
Enable automatic packet-capture for bad dsa signature |
||
bad_hello_request bool |
Enable automatic packet-capture for bad hello request |
||
bad_length bool |
Enable automatic packet-capture for bad length |
||
bad_mac_decode bool |
Enable automatic packet-capture for bad mac decode |
||
bad_message_type bool |
Enable automatic packet-capture for bad message type |
||
bad_packet_length bool |
Enable automatic packet-capture for bad packet length |
||
bad_protocol_version_counter bool |
Enable automatic packet-capture for bad protocol version counter |
||
bad_response_argument bool |
Enable automatic packet-capture for bad response argument |
||
bad_rsa_decrypt bool |
Enable automatic packet-capture for bad rsa decrypt |
||
bad_rsa_encrypt bool |
Enable automatic packet-capture for bad rsa encrypt |
||
bad_rsa_e_length bool |
Enable automatic packet-capture for bad rsa e length |
||
bad_rsa_modulus_length bool |
Enable automatic packet-capture for bad rsa modulus length |
||
bad_rsa_signature bool |
Enable automatic packet-capture for bad rsa signature |
||
bad_signature bool |
Enable automatic packet-capture for bad signature |
||
bad_ssl_filetype bool |
Enable automatic packet-capture for bad ssl filetype |
||
bad_ssl_session_id_length bool |
Enable automatic packet-capture for bad ssl session id length |
||
bad_state bool |
Enable automatic packet-capture for bad state |
||
bad_write_retry bool |
Enable automatic packet-capture for bad write retry |
||
bio_not_set bool |
Enable automatic packet-capture for bio not set |
||
block_cipher_pad_is_wrong bool |
Enable automatic packet-capture for block cipher pad is wrong |
||
bn_lib bool |
Enable automatic packet-capture for bn lib |
||
ca_dn_length_mismatch bool |
Enable automatic packet-capture for ca dn length mismatch |
||
ca_dn_too_long bool |
Enable automatic packet-capture for ca dn too long |
||
ccs_received_early bool |
Enable automatic packet-capture for ccs received early |
||
certificate_verify_failed bool |
Enable automatic packet-capture for certificate verify failed |
||
cert_length_mismatch bool |
Enable automatic packet-capture for cert length mismatch |
||
challenge_is_different bool |
Enable automatic packet-capture for challenge is different |
||
cipher_code_wrong_length bool |
Enable automatic packet-capture for cipher code wrong length |
||
cipher_or_hash_unavailable bool |
Enable automatic packet-capture for cipher or hash unavailable |
||
cipher_table_src_error bool |
Enable automatic packet-capture for cipher table src error |
||
compressed_length_too_long bool |
Enable automatic packet-capture for compressed length too long |
||
compression_failure bool |
Enable automatic packet-capture for compression failure |
||
compression_library_error bool |
Enable automatic packet-capture for compression library error |
||
connection_id_is_different bool |
Enable automatic packet-capture for connection id is different |
||
connection_type_not_set bool |
Enable automatic packet-capture for connection type not set |
||
data_between_ccs_and_finished bool |
Enable automatic packet-capture for data between ccs and finished |
||
data_length_too_long bool |
Enable automatic packet-capture for data length too long |
||
decryption_failed bool |
Enable automatic packet-capture for decryption failed |
||
decryption_failed_or_bad_record_mac bool |
Enable automatic packet-capture for decryption failed or bad record mac |
||
dh_public_value_length_is_wrong bool |
Enable automatic packet-capture for dh public value length is wrong |
||
digest_check_failed bool |
Enable automatic packet-capture for digest check failed |
||
encrypted_length_too_long bool |
Enable automatic packet-capture for encrypted length too long |
||
error_generating_tmp_rsa_key bool |
Enable automatic packet-capture for error generating tmp rsa key |
||
error_in_received_cipher_list bool |
Enable automatic packet-capture for error in received cipher list |
||
excessive_message_size bool |
Enable automatic packet-capture for excessive message size |
||
extra_data_in_message bool |
Enable automatic packet-capture for extra data in message |
||
got_a_fin_before_a_ccs bool |
Enable automatic packet-capture for got a fin before a ccs |
||
https_proxy_request bool |
Enable automatic packet-capture for https proxy request |
||
http_request bool |
Enable automatic packet-capture for http request |
||
illegal_padding bool |
Enable automatic packet-capture for illegal padding |
||
inappropriate_fallback bool |
Enable automatic packet-capture for inappropriate fallback |
||
invalid_challenge_length bool |
Enable automatic packet-capture for invalid challenge length |
||
invalid_command bool |
Enable automatic packet-capture for invalid command |
||
invalid_purpose bool |
Enable automatic packet-capture for invalid purpose |
||
invalid_status_response bool |
Enable automatic packet-capture for invalid status response |
||
invalid_trust bool |
Enable automatic packet-capture for invalid trust |
||
key_arg_too_long bool |
Enable automatic packet-capture for key arg too long |
||
krb5 bool |
Enable automatic packet-capture for krb5 |
||
krb5_client_cc_principal bool |
Enable automatic packet-capture for krb5 client cc principal |
||
krb5_client_get_cred bool |
Enable automatic packet-capture for krb5 client get cred |
||
krb5_client_init bool |
Enable automatic packet-capture for krb5 client init |
||
krb5_client_mk_req bool |
Enable automatic packet-capture for krb5 client mk_req |
||
krb5_server_bad_ticket bool |
Enable automatic packet-capture for krb5 server bad ticket |
||
krb5_server_init bool |
Enable automatic packet-capture for krb5 server init |
||
krb5_server_rd_req bool |
Enable automatic packet-capture for krb5 server rd_req |
||
krb5_server_tkt_expired bool |
Enable automatic packet-capture for krb5 server tkt expired |
||
krb5_server_tkt_not_yet_valid bool |
Enable automatic packet-capture for krb5 server tkt not yet valid |
||
krb5_server_tkt_skew bool |
Enable automatic packet-capture for krb5 server tkt skew |
||
length_mismatch bool |
Enable automatic packet-capture for length mismatch |
||
length_too_short bool |
Enable automatic packet-capture for length too short |
||
library_bug bool |
Enable automatic packet-capture for library bug |
||
library_has_no_ciphers bool |
Enable automatic packet-capture for library has no ciphers |
||
mast_key_too_long bool |
Enable automatic packet-capture for mast key too long |
||
message_too_long bool |
Enable automatic packet-capture for message too long |
||
missing_dh_dsa_cert bool |
Enable automatic packet-capture for missing dh dsa cert |
||
missing_dh_key bool |
Enable automatic packet-capture for missing dh key |
||
missing_dh_rsa_cert bool |
Enable automatic packet-capture for missing dh rsa cert |
||
missing_dsa_signing_cert bool |
Enable automatic packet-capture for missing dsa signing cert |
||
missing_export_tmp_dh_key bool |
Enable automatic packet-capture for missing export tmp dh key |
||
missing_export_tmp_rsa_key bool |
Enable automatic packet-capture for missing export tmp rsa key |
||
missing_rsa_certificate bool |
Enable automatic packet-capture for missing rsa certificate |
||
missing_rsa_encrypting_cert bool |
Enable automatic packet-capture for missing rsa encrypting cert |
||
missing_rsa_signing_cert bool |
Enable automatic packet-capture for missing rsa signing cert |
||
missing_tmp_dh_key bool |
Enable automatic packet-capture for missing tmp dh key |
||
missing_tmp_rsa_key bool |
Enable automatic packet-capture for missing tmp rsa key |
||
missing_tmp_rsa_pkey bool |
Enable automatic packet-capture for missing tmp rsa pkey |
||
missing_verify_message bool |
Enable automatic packet-capture for missing verify message |
||
non_sslv2_initial_packet bool |
Enable automatic packet-capture for non sslv2 initial packet |
||
no_certificates_returned bool |
Enable automatic packet-capture for no certificates returned |
||
no_certificate_assigned bool |
Enable automatic packet-capture for no certificate assigned |
||
no_certificate_returned bool |
Enable automatic packet-capture for no certificate returned |
||
no_certificate_set bool |
Enable automatic packet-capture for no certificate set |
||
no_certificate_specified bool |
Enable automatic packet-capture for no certificate specified |
||
no_ciphers_available bool |
Enable automatic packet-capture for no ciphers available |
||
no_ciphers_passed bool |
Enable automatic packet-capture for no ciphers passed |
||
no_ciphers_specified bool |
Enable automatic packet-capture for no ciphers specified |
||
no_cipher_list bool |
Enable automatic packet-capture for no cipher list |
||
no_cipher_match bool |
Enable automatic packet-capture for no cipher match |
||
no_client_cert_received bool |
Enable automatic packet-capture for no client cert received |
||
no_compression_specified bool |
Enable automatic packet-capture for no compression specified |
||
no_method_specified bool |
Enable automatic packet-capture for no method specified |
||
no_privatekey bool |
Enable automatic packet-capture for no privatekey |
||
no_private_key_assigned bool |
Enable automatic packet-capture for no private key assigned |
||
no_protocols_available bool |
Enable automatic packet-capture for no protocols available |
||
no_publickey bool |
Enable automatic packet-capture for no publickey |
||
no_shared_cipher bool |
Enable automatic packet-capture for no shared cipher |
||
no_verify_callback bool |
Enable automatic packet-capture for no verify callback |
||
null_ssl_ctx bool |
Enable automatic packet-capture for null ssl ctx |
||
null_ssl_method_passed bool |
Enable automatic packet-capture for null ssl method passed |
||
old_session_cipher_not_returned bool |
Enable automatic packet-capture for old session cipher not returned |
||
packet_length_too_long bool |
Enable automatic packet-capture for packet length too long |
||
path_too_long bool |
Enable automatic packet-capture for path too long |
||
peer_did_not_return_a_certificate bool |
Enable automatic packet-capture for peer did not return a certificate |
||
peer_error bool |
Enable automatic packet-capture for peer error |
||
peer_error_certificate bool |
Enable automatic packet-capture for peer error certificate |
||
peer_error_no_certificate bool |
Enable automatic packet-capture for peer error no certificate |
||
peer_error_no_cipher bool |
Enable automatic packet-capture for peer error no cipher |
||
peer_error_unsupported_certificate_type bool |
Enable automatic packet-capture for peer error unsupported certificate type |
||
pre_mac_length_too_long bool |
Enable automatic packet-capture for pre mac length too long |
||
problems_mapping_cipher_functions bool |
Enable automatic packet-capture for problems mapping cipher functions |
||
protocol_is_shutdown bool |
Enable automatic packet-capture for protocol is shutdown |
||
public_key_encrypt_error bool |
Enable automatic packet-capture for public key encrypt error |
||
public_key_is_not_rsa bool |
Enable automatic packet-capture for public key is not rsa |
||
public_key_not_rsa bool |
Enable automatic packet-capture for public key not rsa |
||
read_bio_not_set bool |
Enable automatic packet-capture for read bio not set |
||
read_wrong_packet_type bool |
Enable automatic packet-capture for read wrong packet type |
||
record_length_mismatch bool |
Enable automatic packet-capture for record length mismatch |
||
record_too_large bool |
Enable automatic packet-capture for record too large |
||
record_too_small bool |
Enable automatic packet-capture for record too small |
||
required_cipher_missing bool |
Enable automatic packet-capture for required cipher missing |
||
reuse_cert_length_not_zero bool |
Enable automatic packet-capture for reuse cert length not zero |
||
reuse_cert_type_not_zero bool |
Enable automatic packet-capture for reuse cert type not zero |
||
reuse_cipher_list_not_zero bool |
Enable automatic packet-capture for reuse cipher list not zero |
||
scsv_received_when_renegotiating bool |
Enable automatic packet-capture for scsv received when renegotiating |
||
session_id_context_uninitialized bool |
Enable automatic packet-capture for session id context uninitialized |
||
short_read bool |
Enable automatic packet-capture for short read |
||
signature_for_non_signing_certificate bool |
Enable automatic packet-capture for signature for non signing certificate |
||
ssl23_doing_session_id_reuse bool |
Enable automatic packet-capture for ssl23 doing session id reuse |
||
ssl2_connection_id_too_long bool |
Enable automatic packet-capture for ssl2 connection id too long |
||
ssl3_session_id_too_long bool |
Enable automatic packet-capture for ssl3 session id too long |
||
ssl3_session_id_too_short bool |
Enable automatic packet-capture for ssl3 session id too short |
||
sslv3_alert_bad_certificate bool |
Enable automatic packet-capture for sslv3 alert bad certificate |
||
sslv3_alert_bad_record_mac bool |
Enable automatic packet-capture for sslv3 alert bad record mac |
||
sslv3_alert_certificate_expired bool |
Enable automatic packet-capture for sslv3 alert certificate expired |
||
sslv3_alert_certificate_revoked bool |
Enable automatic packet-capture for sslv3 alert certificate revoked |
||
sslv3_alert_certificate_unknown bool |
Enable automatic packet-capture for sslv3 alert certificate unknown |
||
sslv3_alert_decompression_failure bool |
Enable automatic packet-capture for sslv3 alert decompression failure |
||
sslv3_alert_handshake_failure bool |
Enable automatic packet-capture for sslv3 alert handshake failure |
||
sslv3_alert_illegal_parameter bool |
Enable automatic packet-capture for sslv3 alert illegal parameter |
||
sslv3_alert_no_certificate bool |
Enable automatic packet-capture for sslv3 alert no certificate |
||
sslv3_alert_peer_error_cert bool |
Enable automatic packet-capture for sslv3 alert peer error cert |
||
sslv3_alert_peer_error_no_cert bool |
Enable automatic packet-capture for sslv3 alert peer error no cert |
||
sslv3_alert_peer_error_no_cipher bool |
Enable automatic packet-capture for sslv3 alert peer error no cipher |
||
sslv3_alert_peer_error_unsupp_cert_type bool |
Enable automatic packet-capture for sslv3 alert peer error unsupp cert type |
||
sslv3_alert_unexpected_msg bool |
Enable automatic packet-capture for sslv3 alert unexpected msg |
||
sslv3_alert_unknown_remote_err_type bool |
Enable automatic packet-capture for sslv3 alert unknown remote err type |
||
sslv3_alert_unspported_cert bool |
Enable automatic packet-capture for sslv3 alert unspported cert |
||
ssl_ctx_has_no_default_ssl_version bool |
Enable automatic packet-capture for ssl ctx has no default ssl version |
||
ssl_handshake_failure bool |
Enable automatic packet-capture for ssl handshake failure |
||
ssl_library_has_no_ciphers bool |
Enable automatic packet-capture for ssl library has no ciphers |
||
ssl_session_id_callback_failed bool |
Enable automatic packet-capture for ssl session id callback failed |
||
ssl_session_id_conflict bool |
Enable automatic packet-capture for ssl session id conflict |
||
ssl_session_id_context_too_long bool |
Enable automatic packet-capture for ssl session id context too long |
||
ssl_session_id_has_bad_length bool |
Enable automatic packet-capture for ssl session id has bad length |
||
ssl_session_id_is_different bool |
Enable automatic packet-capture for ssl session id is different |
||
tlsv1_alert_access_denied bool |
Enable automatic packet-capture for tlsv1 alert access denied |
||
tlsv1_alert_decode_error bool |
Enable automatic packet-capture for tlsv1 alert decode error |
||
tlsv1_alert_decryption_failed bool |
Enable automatic packet-capture for tlsv1 alert decryption failed |
||
tlsv1_alert_decrypt_error bool |
Enable automatic packet-capture for tlsv1 alert decrypt error |
||
tlsv1_alert_export_restriction bool |
Enable automatic packet-capture for tlsv1 alert export restriction |
||
tlsv1_alert_insufficient_security bool |
Enable automatic packet-capture for tlsv1 alert insufficient security |
||
tlsv1_alert_internal_error bool |
Enable automatic packet-capture for tlsv1 alert internal error |
||
tlsv1_alert_no_renegotiation bool |
Enable automatic packet-capture for tlsv1 alert no renegotiation |
||
tlsv1_alert_protocol_version bool |
Enable automatic packet-capture for tlsv1 alert protocol version |
||
tlsv1_alert_record_overflow bool |
Enable automatic packet-capture for tlsv1 alert record overflow |
||
tlsv1_alert_unknown_ca bool |
Enable automatic packet-capture for tlsv1 alert unknown ca |
||
tlsv1_alert_user_cancelled bool |
Enable automatic packet-capture for tlsv1 alert user cancelled |
||
tls_client_cert_req_with_anon_cipher bool |
Enable automatic packet-capture for tls client cert req with anon cipher |
||
tls_peer_did_not_respond_with_cert_list bool |
Enable automatic packet-capture for tls peer did not respond with cert list |
||
tls_rsa_encrypted_value_length_is_wrong bool |
Enable automatic packet-capture for tls rsa encrypted value length is wrong |
||
tried_to_use_unsupported_cipher bool |
Enable automatic packet-capture for tried to use unsupported cipher |
||
unable_to_decode_dh_certs bool |
Enable automatic packet-capture for unable to decode dh certs |
||
unable_to_extract_public_key bool |
Enable automatic packet-capture for unable to extract public key |
||
unable_to_find_dh_parameters bool |
Enable automatic packet-capture for unable to find dh parameters |
||
unable_to_find_public_key_parameters bool |
Enable automatic packet-capture for unable to find public key parameters |
||
unable_to_find_ssl_method bool |
Enable automatic packet-capture for unable to find ssl method |
||
unable_to_load_ssl2_md5_routines bool |
Enable automatic packet-capture for unable to load ssl2 md5 routines |
||
unable_to_load_ssl3_md5_routines bool |
Enable automatic packet-capture for unable to load ssl3 md5 routines |
||
unable_to_load_ssl3_sha1_routines bool |
Enable automatic packet-capture for unable to load ssl3 sha1 routines |
||
unexpected_message bool |
Enable automatic packet-capture for unexpected message |
||
unexpected_record bool |
Enable automatic packet-capture for unexpected record |
||
uninitialized bool |
Enable automatic packet-capture for uninitialized |
||
unknown_alert_type bool |
Enable automatic packet-capture for unknown alert type |
||
unknown_certificate_type bool |
Enable automatic packet-capture for unknown certificate type |
||
unknown_cipher_returned bool |
Enable automatic packet-capture for unknown cipher returned |
||
unknown_cipher_type bool |
Enable automatic packet-capture for unknown cipher type |
||
unknown_key_exchange_type bool |
Enable automatic packet-capture for unknown key exchange type |
||
unknown_pkey_type bool |
Enable automatic packet-capture for unknown pkey type |
||
unknown_protocol bool |
Enable automatic packet-capture for unknown protocol |
||
unknown_remote_error_type bool |
Enable automatic packet-capture for unknown remote error type |
||
unknown_ssl_version bool |
Enable automatic packet-capture for unknown ssl version |
||
unknown_state bool |
Enable automatic packet-capture for unknown state |
||
unsupported_cipher bool |
Enable automatic packet-capture for unsupported cipher |
||
unsupported_compression_algorithm bool |
Enable automatic packet-capture for unsupported compression algorithm |
||
unsupported_option bool |
Enable automatic packet-capture for unsupported option |
||
unsupported_protocol bool |
Enable automatic packet-capture for unsupported protocol |
||
unsupported_ssl_version bool |
Enable automatic packet-capture for unsupported ssl version |
||
unsupported_status_type bool |
Enable automatic packet-capture for unsupported status type |
||
write_bio_not_set bool |
Enable automatic packet-capture for write bio not set |
||
wrong_cipher_returned bool |
Enable automatic packet-capture for wrong cipher returned |
||
wrong_message_type bool |
Enable automatic packet-capture for wrong message type |
||
wrong_counter_of_key_bits bool |
Enable automatic packet-capture for wrong counter of key bits |
||
wrong_signature_length bool |
Enable automatic packet-capture for wrong signature length |
||
wrong_signature_size bool |
Enable automatic packet-capture for wrong signature size |
||
wrong_ssl_version bool |
Enable automatic packet-capture for wrong ssl version |
||
wrong_version_counter bool |
Enable automatic packet-capture for wrong version counter |
||
x509_lib bool |
Enable automatic packet-capture for x509 lib |
||
x509_verification_setup_problems bool |
Enable automatic packet-capture for x509 verification setup problems |
||
clienthello_tlsext bool |
Enable automatic packet-capture for clienthello tlsext |
||
parse_tlsext bool |
Enable automatic packet-capture for parse tlsext |
||
serverhello_tlsext bool |
Enable automatic packet-capture for serverhello tlsext |
||
ssl3_ext_invalid_servername bool |
Enable automatic packet-capture for ssl3 ext invalid servername |
||
ssl3_ext_invalid_servername_type bool |
Enable automatic packet-capture for ssl3 ext invalid servername type |
||
multiple_sgc_restarts bool |
Enable automatic packet-capture for multiple sgc restarts |
||
tls_invalid_ecpointformat_list bool |
Enable automatic packet-capture for tls invalid ecpointformat list |
||
bad_ecc_cert bool |
Enable automatic packet-capture for bad ecc cert |
||
bad_ecdsa_sig bool |
Enable automatic packet-capture for bad ecdsa sig |
||
bad_ecpoint bool |
Enable automatic packet-capture for bad ecpoint |
||
cookie_mismatch bool |
Enable automatic packet-capture for cookie mismatch |
||
unsupported_elliptic_curve bool |
Enable automatic packet-capture for unsupported elliptic curve |
||
no_required_digest bool |
Enable automatic packet-capture for no required digest |
||
unsupported_digest_type bool |
Enable automatic packet-capture for unsupported digest type |
||
bad_handshake_length bool |
Enable automatic packet-capture for bad handshake length |
||
uuid str |
uuid of the object |
||
trigger_stats_rate dict |
Field trigger_stats_rate |
||
threshold_exceeded_by int |
Set the threshold to the number of times greater than the previous duration to start the capture, default is 5 |
||
duration int |
Time in seconds to look for the anomaly, default is 60 |
||
app_data_in_handshake bool |
Enable automatic packet-capture for app data in handshake |
||
attempt_to_reuse_sess_in_diff_context bool |
Enable automatic packet-capture for attempt to reuse sess in diff context |
||
bad_alert_record bool |
Enable automatic packet-capture for bad alert record |
||
bad_authentication_type bool |
Enable automatic packet-capture for bad authentication type |
||
bad_change_cipher_spec bool |
Enable automatic packet-capture for bad change cipher spec |
||
bad_checksum bool |
Enable automatic packet-capture for bad checksum |
||
bad_data_returned_by_callback bool |
Enable automatic packet-capture for bad data returned by callback |
||
bad_decompression bool |
Enable automatic packet-capture for bad decompression |
||
bad_dh_g_length bool |
Enable automatic packet-capture for bad dh g length |
||
bad_dh_pub_key_length bool |
Enable automatic packet-capture for bad dh pub key length |
||
bad_dh_p_length bool |
Enable automatic packet-capture for bad dh p length |
||
bad_digest_length bool |
Enable automatic packet-capture for bad digest length |
||
bad_dsa_signature bool |
Enable automatic packet-capture for bad dsa signature |
||
bad_hello_request bool |
Enable automatic packet-capture for bad hello request |
||
bad_length bool |
Enable automatic packet-capture for bad length |
||
bad_mac_decode bool |
Enable automatic packet-capture for bad mac decode |
||
bad_message_type bool |
Enable automatic packet-capture for bad message type |
||
bad_packet_length bool |
Enable automatic packet-capture for bad packet length |
||
bad_protocol_version_counter bool |
Enable automatic packet-capture for bad protocol version counter |
||
bad_response_argument bool |
Enable automatic packet-capture for bad response argument |
||
bad_rsa_decrypt bool |
Enable automatic packet-capture for bad rsa decrypt |
||
bad_rsa_encrypt bool |
Enable automatic packet-capture for bad rsa encrypt |
||
bad_rsa_e_length bool |
Enable automatic packet-capture for bad rsa e length |
||
bad_rsa_modulus_length bool |
Enable automatic packet-capture for bad rsa modulus length |
||
bad_rsa_signature bool |
Enable automatic packet-capture for bad rsa signature |
||
bad_signature bool |
Enable automatic packet-capture for bad signature |
||
bad_ssl_filetype bool |
Enable automatic packet-capture for bad ssl filetype |
||
bad_ssl_session_id_length bool |
Enable automatic packet-capture for bad ssl session id length |
||
bad_state bool |
Enable automatic packet-capture for bad state |
||
bad_write_retry bool |
Enable automatic packet-capture for bad write retry |
||
bio_not_set bool |
Enable automatic packet-capture for bio not set |
||
block_cipher_pad_is_wrong bool |
Enable automatic packet-capture for block cipher pad is wrong |
||
bn_lib bool |
Enable automatic packet-capture for bn lib |
||
ca_dn_length_mismatch bool |
Enable automatic packet-capture for ca dn length mismatch |
||
ca_dn_too_long bool |
Enable automatic packet-capture for ca dn too long |
||
ccs_received_early bool |
Enable automatic packet-capture for ccs received early |
||
certificate_verify_failed bool |
Enable automatic packet-capture for certificate verify failed |
||
cert_length_mismatch bool |
Enable automatic packet-capture for cert length mismatch |
||
challenge_is_different bool |
Enable automatic packet-capture for challenge is different |
||
cipher_code_wrong_length bool |
Enable automatic packet-capture for cipher code wrong length |
||
cipher_or_hash_unavailable bool |
Enable automatic packet-capture for cipher or hash unavailable |
||
cipher_table_src_error bool |
Enable automatic packet-capture for cipher table src error |
||
compressed_length_too_long bool |
Enable automatic packet-capture for compressed length too long |
||
compression_failure bool |
Enable automatic packet-capture for compression failure |
||
compression_library_error bool |
Enable automatic packet-capture for compression library error |
||
connection_id_is_different bool |
Enable automatic packet-capture for connection id is different |
||
connection_type_not_set bool |
Enable automatic packet-capture for connection type not set |
||
data_between_ccs_and_finished bool |
Enable automatic packet-capture for data between ccs and finished |
||
data_length_too_long bool |
Enable automatic packet-capture for data length too long |
||
decryption_failed bool |
Enable automatic packet-capture for decryption failed |
||
decryption_failed_or_bad_record_mac bool |
Enable automatic packet-capture for decryption failed or bad record mac |
||
dh_public_value_length_is_wrong bool |
Enable automatic packet-capture for dh public value length is wrong |
||
digest_check_failed bool |
Enable automatic packet-capture for digest check failed |
||
encrypted_length_too_long bool |
Enable automatic packet-capture for encrypted length too long |
||
error_generating_tmp_rsa_key bool |
Enable automatic packet-capture for error generating tmp rsa key |
||
error_in_received_cipher_list bool |
Enable automatic packet-capture for error in received cipher list |
||
excessive_message_size bool |
Enable automatic packet-capture for excessive message size |
||
extra_data_in_message bool |
Enable automatic packet-capture for extra data in message |
||
got_a_fin_before_a_ccs bool |
Enable automatic packet-capture for got a fin before a ccs |
||
https_proxy_request bool |
Enable automatic packet-capture for https proxy request |
||
http_request bool |
Enable automatic packet-capture for http request |
||
illegal_padding bool |
Enable automatic packet-capture for illegal padding |
||
inappropriate_fallback bool |
Enable automatic packet-capture for inappropriate fallback |
||
invalid_challenge_length bool |
Enable automatic packet-capture for invalid challenge length |
||
invalid_command bool |
Enable automatic packet-capture for invalid command |
||
invalid_purpose bool |
Enable automatic packet-capture for invalid purpose |
||
invalid_status_response bool |
Enable automatic packet-capture for invalid status response |
||
invalid_trust bool |
Enable automatic packet-capture for invalid trust |
||
key_arg_too_long bool |
Enable automatic packet-capture for key arg too long |
||
krb5 bool |
Enable automatic packet-capture for krb5 |
||
krb5_client_cc_principal bool |
Enable automatic packet-capture for krb5 client cc principal |
||
krb5_client_get_cred bool |
Enable automatic packet-capture for krb5 client get cred |
||
krb5_client_init bool |
Enable automatic packet-capture for krb5 client init |
||
krb5_client_mk_req bool |
Enable automatic packet-capture for krb5 client mk_req |
||
krb5_server_bad_ticket bool |
Enable automatic packet-capture for krb5 server bad ticket |
||
krb5_server_init bool |
Enable automatic packet-capture for krb5 server init |
||
krb5_server_rd_req bool |
Enable automatic packet-capture for krb5 server rd_req |
||
krb5_server_tkt_expired bool |
Enable automatic packet-capture for krb5 server tkt expired |
||
krb5_server_tkt_not_yet_valid bool |
Enable automatic packet-capture for krb5 server tkt not yet valid |
||
krb5_server_tkt_skew bool |
Enable automatic packet-capture for krb5 server tkt skew |
||
length_mismatch bool |
Enable automatic packet-capture for length mismatch |
||
length_too_short bool |
Enable automatic packet-capture for length too short |
||
library_bug bool |
Enable automatic packet-capture for library bug |
||
library_has_no_ciphers bool |
Enable automatic packet-capture for library has no ciphers |
||
mast_key_too_long bool |
Enable automatic packet-capture for mast key too long |
||
message_too_long bool |
Enable automatic packet-capture for message too long |
||
missing_dh_dsa_cert bool |
Enable automatic packet-capture for missing dh dsa cert |
||
missing_dh_key bool |
Enable automatic packet-capture for missing dh key |
||
missing_dh_rsa_cert bool |
Enable automatic packet-capture for missing dh rsa cert |
||
missing_dsa_signing_cert bool |
Enable automatic packet-capture for missing dsa signing cert |
||
missing_export_tmp_dh_key bool |
Enable automatic packet-capture for missing export tmp dh key |
||
missing_export_tmp_rsa_key bool |
Enable automatic packet-capture for missing export tmp rsa key |
||
missing_rsa_certificate bool |
Enable automatic packet-capture for missing rsa certificate |
||
missing_rsa_encrypting_cert bool |
Enable automatic packet-capture for missing rsa encrypting cert |
||
missing_rsa_signing_cert bool |
Enable automatic packet-capture for missing rsa signing cert |
||
missing_tmp_dh_key bool |
Enable automatic packet-capture for missing tmp dh key |
||
missing_tmp_rsa_key bool |
Enable automatic packet-capture for missing tmp rsa key |
||
missing_tmp_rsa_pkey bool |
Enable automatic packet-capture for missing tmp rsa pkey |
||
missing_verify_message bool |
Enable automatic packet-capture for missing verify message |
||
non_sslv2_initial_packet bool |
Enable automatic packet-capture for non sslv2 initial packet |
||
no_certificates_returned bool |
Enable automatic packet-capture for no certificates returned |
||
no_certificate_assigned bool |
Enable automatic packet-capture for no certificate assigned |
||
no_certificate_returned bool |
Enable automatic packet-capture for no certificate returned |
||
no_certificate_set bool |
Enable automatic packet-capture for no certificate set |
||
no_certificate_specified bool |
Enable automatic packet-capture for no certificate specified |
||
no_ciphers_available bool |
Enable automatic packet-capture for no ciphers available |
||
no_ciphers_passed bool |
Enable automatic packet-capture for no ciphers passed |
||
no_ciphers_specified bool |
Enable automatic packet-capture for no ciphers specified |
||
no_cipher_list bool |
Enable automatic packet-capture for no cipher list |
||
no_cipher_match bool |
Enable automatic packet-capture for no cipher match |
||
no_client_cert_received bool |
Enable automatic packet-capture for no client cert received |
||
no_compression_specified bool |
Enable automatic packet-capture for no compression specified |
||
no_method_specified bool |
Enable automatic packet-capture for no method specified |
||
no_privatekey bool |
Enable automatic packet-capture for no privatekey |
||
no_private_key_assigned bool |
Enable automatic packet-capture for no private key assigned |
||
no_protocols_available bool |
Enable automatic packet-capture for no protocols available |
||
no_publickey bool |
Enable automatic packet-capture for no publickey |
||
no_shared_cipher bool |
Enable automatic packet-capture for no shared cipher |
||
no_verify_callback bool |
Enable automatic packet-capture for no verify callback |
||
null_ssl_ctx bool |
Enable automatic packet-capture for null ssl ctx |
||
null_ssl_method_passed bool |
Enable automatic packet-capture for null ssl method passed |
||
old_session_cipher_not_returned bool |
Enable automatic packet-capture for old session cipher not returned |
||
packet_length_too_long bool |
Enable automatic packet-capture for packet length too long |
||
path_too_long bool |
Enable automatic packet-capture for path too long |
||
peer_did_not_return_a_certificate bool |
Enable automatic packet-capture for peer did not return a certificate |
||
peer_error bool |
Enable automatic packet-capture for peer error |
||
peer_error_certificate bool |
Enable automatic packet-capture for peer error certificate |
||
peer_error_no_certificate bool |
Enable automatic packet-capture for peer error no certificate |
||
peer_error_no_cipher bool |
Enable automatic packet-capture for peer error no cipher |
||
peer_error_unsupported_certificate_type bool |
Enable automatic packet-capture for peer error unsupported certificate type |
||
pre_mac_length_too_long bool |
Enable automatic packet-capture for pre mac length too long |
||
problems_mapping_cipher_functions bool |
Enable automatic packet-capture for problems mapping cipher functions |
||
protocol_is_shutdown bool |
Enable automatic packet-capture for protocol is shutdown |
||
public_key_encrypt_error bool |
Enable automatic packet-capture for public key encrypt error |
||
public_key_is_not_rsa bool |
Enable automatic packet-capture for public key is not rsa |
||
public_key_not_rsa bool |
Enable automatic packet-capture for public key not rsa |
||
read_bio_not_set bool |
Enable automatic packet-capture for read bio not set |
||
read_wrong_packet_type bool |
Enable automatic packet-capture for read wrong packet type |
||
record_length_mismatch bool |
Enable automatic packet-capture for record length mismatch |
||
record_too_large bool |
Enable automatic packet-capture for record too large |
||
record_too_small bool |
Enable automatic packet-capture for record too small |
||
required_cipher_missing bool |
Enable automatic packet-capture for required cipher missing |
||
reuse_cert_length_not_zero bool |
Enable automatic packet-capture for reuse cert length not zero |
||
reuse_cert_type_not_zero bool |
Enable automatic packet-capture for reuse cert type not zero |
||
reuse_cipher_list_not_zero bool |
Enable automatic packet-capture for reuse cipher list not zero |
||
scsv_received_when_renegotiating bool |
Enable automatic packet-capture for scsv received when renegotiating |
||
session_id_context_uninitialized bool |
Enable automatic packet-capture for session id context uninitialized |
||
short_read bool |
Enable automatic packet-capture for short read |
||
signature_for_non_signing_certificate bool |
Enable automatic packet-capture for signature for non signing certificate |
||
ssl23_doing_session_id_reuse bool |
Enable automatic packet-capture for ssl23 doing session id reuse |
||
ssl2_connection_id_too_long bool |
Enable automatic packet-capture for ssl2 connection id too long |
||
ssl3_session_id_too_long bool |
Enable automatic packet-capture for ssl3 session id too long |
||
ssl3_session_id_too_short bool |
Enable automatic packet-capture for ssl3 session id too short |
||
sslv3_alert_bad_certificate bool |
Enable automatic packet-capture for sslv3 alert bad certificate |
||
sslv3_alert_bad_record_mac bool |
Enable automatic packet-capture for sslv3 alert bad record mac |
||
sslv3_alert_certificate_expired bool |
Enable automatic packet-capture for sslv3 alert certificate expired |
||
sslv3_alert_certificate_revoked bool |
Enable automatic packet-capture for sslv3 alert certificate revoked |
||
sslv3_alert_certificate_unknown bool |
Enable automatic packet-capture for sslv3 alert certificate unknown |
||
sslv3_alert_decompression_failure bool |
Enable automatic packet-capture for sslv3 alert decompression failure |
||
sslv3_alert_handshake_failure bool |
Enable automatic packet-capture for sslv3 alert handshake failure |
||
sslv3_alert_illegal_parameter bool |
Enable automatic packet-capture for sslv3 alert illegal parameter |
||
sslv3_alert_no_certificate bool |
Enable automatic packet-capture for sslv3 alert no certificate |
||
sslv3_alert_peer_error_cert bool |
Enable automatic packet-capture for sslv3 alert peer error cert |
||
sslv3_alert_peer_error_no_cert bool |
Enable automatic packet-capture for sslv3 alert peer error no cert |
||
sslv3_alert_peer_error_no_cipher bool |
Enable automatic packet-capture for sslv3 alert peer error no cipher |
||
sslv3_alert_peer_error_unsupp_cert_type bool |
Enable automatic packet-capture for sslv3 alert peer error unsupp cert type |
||
sslv3_alert_unexpected_msg bool |
Enable automatic packet-capture for sslv3 alert unexpected msg |
||
sslv3_alert_unknown_remote_err_type bool |
Enable automatic packet-capture for sslv3 alert unknown remote err type |
||
sslv3_alert_unspported_cert bool |
Enable automatic packet-capture for sslv3 alert unspported cert |
||
ssl_ctx_has_no_default_ssl_version bool |
Enable automatic packet-capture for ssl ctx has no default ssl version |
||
ssl_handshake_failure bool |
Enable automatic packet-capture for ssl handshake failure |
||
ssl_library_has_no_ciphers bool |
Enable automatic packet-capture for ssl library has no ciphers |
||
ssl_session_id_callback_failed bool |
Enable automatic packet-capture for ssl session id callback failed |
||
ssl_session_id_conflict bool |
Enable automatic packet-capture for ssl session id conflict |
||
ssl_session_id_context_too_long bool |
Enable automatic packet-capture for ssl session id context too long |
||
ssl_session_id_has_bad_length bool |
Enable automatic packet-capture for ssl session id has bad length |
||
ssl_session_id_is_different bool |
Enable automatic packet-capture for ssl session id is different |
||
tlsv1_alert_access_denied bool |
Enable automatic packet-capture for tlsv1 alert access denied |
||
tlsv1_alert_decode_error bool |
Enable automatic packet-capture for tlsv1 alert decode error |
||
tlsv1_alert_decryption_failed bool |
Enable automatic packet-capture for tlsv1 alert decryption failed |
||
tlsv1_alert_decrypt_error bool |
Enable automatic packet-capture for tlsv1 alert decrypt error |
||
tlsv1_alert_export_restriction bool |
Enable automatic packet-capture for tlsv1 alert export restriction |
||
tlsv1_alert_insufficient_security bool |
Enable automatic packet-capture for tlsv1 alert insufficient security |
||
tlsv1_alert_internal_error bool |
Enable automatic packet-capture for tlsv1 alert internal error |
||
tlsv1_alert_no_renegotiation bool |
Enable automatic packet-capture for tlsv1 alert no renegotiation |
||
tlsv1_alert_protocol_version bool |
Enable automatic packet-capture for tlsv1 alert protocol version |
||
tlsv1_alert_record_overflow bool |
Enable automatic packet-capture for tlsv1 alert record overflow |
||
tlsv1_alert_unknown_ca bool |
Enable automatic packet-capture for tlsv1 alert unknown ca |
||
tlsv1_alert_user_cancelled bool |
Enable automatic packet-capture for tlsv1 alert user cancelled |
||
tls_client_cert_req_with_anon_cipher bool |
Enable automatic packet-capture for tls client cert req with anon cipher |
||
tls_peer_did_not_respond_with_cert_list bool |
Enable automatic packet-capture for tls peer did not respond with cert list |
||
tls_rsa_encrypted_value_length_is_wrong bool |
Enable automatic packet-capture for tls rsa encrypted value length is wrong |
||
tried_to_use_unsupported_cipher bool |
Enable automatic packet-capture for tried to use unsupported cipher |
||
unable_to_decode_dh_certs bool |
Enable automatic packet-capture for unable to decode dh certs |
||
unable_to_extract_public_key bool |
Enable automatic packet-capture for unable to extract public key |
||
unable_to_find_dh_parameters bool |
Enable automatic packet-capture for unable to find dh parameters |
||
unable_to_find_public_key_parameters bool |
Enable automatic packet-capture for unable to find public key parameters |
||
unable_to_find_ssl_method bool |
Enable automatic packet-capture for unable to find ssl method |
||
unable_to_load_ssl2_md5_routines bool |
Enable automatic packet-capture for unable to load ssl2 md5 routines |
||
unable_to_load_ssl3_md5_routines bool |
Enable automatic packet-capture for unable to load ssl3 md5 routines |
||
unable_to_load_ssl3_sha1_routines bool |
Enable automatic packet-capture for unable to load ssl3 sha1 routines |
||
unexpected_message bool |
Enable automatic packet-capture for unexpected message |
||
unexpected_record bool |
Enable automatic packet-capture for unexpected record |
||
uninitialized bool |
Enable automatic packet-capture for uninitialized |
||
unknown_alert_type bool |
Enable automatic packet-capture for unknown alert type |
||
unknown_certificate_type bool |
Enable automatic packet-capture for unknown certificate type |
||
unknown_cipher_returned bool |
Enable automatic packet-capture for unknown cipher returned |
||
unknown_cipher_type bool |
Enable automatic packet-capture for unknown cipher type |
||
unknown_key_exchange_type bool |
Enable automatic packet-capture for unknown key exchange type |
||
unknown_pkey_type bool |
Enable automatic packet-capture for unknown pkey type |
||
unknown_protocol bool |
Enable automatic packet-capture for unknown protocol |
||
unknown_remote_error_type bool |
Enable automatic packet-capture for unknown remote error type |
||
unknown_ssl_version bool |
Enable automatic packet-capture for unknown ssl version |
||
unknown_state bool |
Enable automatic packet-capture for unknown state |
||
unsupported_cipher bool |
Enable automatic packet-capture for unsupported cipher |
||
unsupported_compression_algorithm bool |
Enable automatic packet-capture for unsupported compression algorithm |
||
unsupported_option bool |
Enable automatic packet-capture for unsupported option |
||
unsupported_protocol bool |
Enable automatic packet-capture for unsupported protocol |
||
unsupported_ssl_version bool |
Enable automatic packet-capture for unsupported ssl version |
||
unsupported_status_type bool |
Enable automatic packet-capture for unsupported status type |
||
write_bio_not_set bool |
Enable automatic packet-capture for write bio not set |
||
wrong_cipher_returned bool |
Enable automatic packet-capture for wrong cipher returned |
||
wrong_message_type bool |
Enable automatic packet-capture for wrong message type |
||
wrong_counter_of_key_bits bool |
Enable automatic packet-capture for wrong counter of key bits |
||
wrong_signature_length bool |
Enable automatic packet-capture for wrong signature length |
||
wrong_signature_size bool |
Enable automatic packet-capture for wrong signature size |
||
wrong_ssl_version bool |
Enable automatic packet-capture for wrong ssl version |
||
wrong_version_counter bool |
Enable automatic packet-capture for wrong version counter |
||
x509_lib bool |
Enable automatic packet-capture for x509 lib |
||
x509_verification_setup_problems bool |
Enable automatic packet-capture for x509 verification setup problems |
||
clienthello_tlsext bool |
Enable automatic packet-capture for clienthello tlsext |
||
parse_tlsext bool |
Enable automatic packet-capture for parse tlsext |
||
serverhello_tlsext bool |
Enable automatic packet-capture for serverhello tlsext |
||
ssl3_ext_invalid_servername bool |
Enable automatic packet-capture for ssl3 ext invalid servername |
||
ssl3_ext_invalid_servername_type bool |
Enable automatic packet-capture for ssl3 ext invalid servername type |
||
multiple_sgc_restarts bool |
Enable automatic packet-capture for multiple sgc restarts |
||
tls_invalid_ecpointformat_list bool |
Enable automatic packet-capture for tls invalid ecpointformat list |
||
bad_ecc_cert bool |
Enable automatic packet-capture for bad ecc cert |
||
bad_ecdsa_sig bool |
Enable automatic packet-capture for bad ecdsa sig |
||
bad_ecpoint bool |
Enable automatic packet-capture for bad ecpoint |
||
cookie_mismatch bool |
Enable automatic packet-capture for cookie mismatch |
||
unsupported_elliptic_curve bool |
Enable automatic packet-capture for unsupported elliptic curve |
||
no_required_digest bool |
Enable automatic packet-capture for no required digest |
||
unsupported_digest_type bool |
Enable automatic packet-capture for unsupported digest type |
||
bad_handshake_length bool |
Enable automatic packet-capture for bad handshake length |
||
uuid str |
uuid of the object |
||
Examples
Return Values
- modified_values (changed, dict, )
Values modified (or potential changes if using check_mode) as a result of task operation
- axapi_calls (always, list, )
Sequential list of AXAPI calls made by the task
- endpoint (, str, [‘/axapi/v3/slb/virtual_server’, ‘/axapi/v3/file/ssl-cert’])
The AXAPI endpoint being accessed.
- http_method (, str, [‘POST’, ‘GET’])
HTTP method being used by the primary task to interact with the AXAPI endpoint.
- request_body (, complex, )
Params used to query the AXAPI
- response_body (, complex, )
Response from the AXAPI
Status
This module is not guaranteed to have a backwards compatible interface. [preview]
This module is maintained by community.