a10_ddos_template_udp

Synopsis

UDP template configuration

Parameters

Parameters

Choices/Defaults

Comment

state

str/required

[‘noop’, ‘present’, ‘absent’]

State of the object to be created.

ansible_host

str/required

Host for AXAPI authentication

ansible_username

str/required

Username for AXAPI authentication

ansible_password

str/required

Password for AXAPI authentication

ansible_port

int/required

Port for AXAPI authentication

a10_device_context_id

int

[‘1-8’]

Device ID for aVCS configuration

a10_partition

str

Destination/target partition for object/command

name

str/required

DDOS UDP Template Name

age

int

Configure session age(in minutes) for UDP sessions

per_conn_pkt_rate_limit

int

Packet rate limit per connection per rate-interval

per_conn_rate_interval

str

‘100ms’= 100ms; ‘1sec’= 1sec;

tunnel_encap

dict

Field tunnel_encap

ip_encap

bool

Enable Tunnel encapsulation using IP in IP

always

dict

Field always

gre_encap

bool

Enable Tunnel encapsulation using GRE

gre_always

dict

Field gre_always

spoof_detect_cfg

dict

Field spoof_detect_cfg

spoof_detect

bool

Force client to retry on udp

min_retry_gap_interval

str

‘100ms’= 100ms; ‘1sec’= 1sec;

spoof_detect_retry_timeout_val_only

int

timeout in seconds

min_retry_gap

int

Optional minimum gap between 2 UDP packets for spoof-detect pass, unit is specified by min-retry-gap-interval

spoof_detect_retry_timeout

int

timeout in seconds

drop_known_resp_src_port_cfg

dict

Field drop_known_resp_src_port_cfg

drop_known_resp_src_port

bool

Drop well-known if src-port is less than 1024

exclude_src_resp_port

bool

excluding src port equal destination port

drop_ntp_monlist

bool

Drop NTP monlist request/response

token_authentication

bool

Enable Token Authentication

token_authentication_hw_assist_disable

bool

token-authentication disable hardware assistance

token_authentication_salt_prefix

bool

token-authentication salt-prefix

token_authentication_salt_prefix_curr

int

Field token_authentication_salt_prefix_curr

token_authentication_salt_prefix_prev

int

Field token_authentication_salt_prefix_prev

token_authentication_formula

str

‘md5_Salt-SrcIp-SrcPort-DstIp-DstPort’= md5 of Salt-SrcIp-SrcPort-DstIp- DstPort; ‘md5_Salt-DstIp-DstPort’= md5 of Salt-DstIp-DstPort; ‘md5_Salt-SrcIp- DstIp’= md5 of Salt-SrcIp-DstIp; ‘md5_Salt-SrcPort-DstPort’= md5 of Salt- SrcPort-DstPort; ‘md5_Salt-UintDstIp-DstPort’= Using the uint value of IP for md5 of Salt-DstIp-DstPort; ‘sha1_Salt-SrcIp-SrcPort-DstIp-DstPort’= sha1 of Salt-SrcIp-SrcPort-DstIp-DstPort; ‘sha1_Salt-DstIp-DstPort’= sha1 of Salt- DstIp-DstPort; ‘sha1_Salt-SrcIp-DstIp’= sha1 of Salt-SrcIp-DstIp; ‘sha1_Salt- SrcPort-DstPort’= sha1 of Salt-SrcPort-DstPort; ‘sha1_Salt-UintDstIp-DstPort’= Using the uint value of IP for sha1 of Salt-DstIp-DstPort;

previous_salt_timeout

int

Token-Authentication previous salt-prefix timeout in minutes, default is 1 min

token_authentication_public_address

bool

The server public IP address

public_ipv4_addr

str

IP address

public_ipv6_addr

str

IPV6 address

max_payload_size

int

Maximum UDP payload size for each single packet

min_payload_size

int

Minimum UDP payload size for each single packet

uuid

str

uuid of the object

user_tag

str

Customized tag

filter_list

list

Field filter_list

udp_filter_seq

int

Sequence number

udp_filter_regex

str

Regex Expression

byte_offset_filter

str

Filter Expression using Berkeley Packet Filter syntax

udp_filter_unmatched

bool

action taken when it does not match

udp_filter_action

str

‘blacklist-src’= Also blacklist the source when action is taken; ‘whitelist- src’= Whitelist the source after filter passes, packets are dropped until then; ‘count-only’= Take no action and continue processing the next filter;

uuid

str

uuid of the object

user_tag

str

Customized tag

Examples


Return Values

modified_values (changed, dict, )

Values modified (or potential changes if using check_mode) as a result of task operation

axapi_calls (always, list, )

Sequential list of AXAPI calls made by the task

endpoint (, str, [‘/axapi/v3/slb/virtual_server’, ‘/axapi/v3/file/ssl-cert’])

The AXAPI endpoint being accessed.

http_method (, str, [‘POST’, ‘GET’])

HTTP method being used by the primary task to interact with the AXAPI endpoint.

request_body (, complex, )

Params used to query the AXAPI

response_body (, complex, )

Response from the AXAPI

Status

  • This module is not guaranteed to have a backwards compatible interface. [preview]

  • This module is maintained by community.

Authors

  • A10 Networks