a10_ddos_dst_zone_port_zone_service_level
Synopsis
Policy Level Configuration
Parameters
Parameters |
Choices/Defaults |
Comment |
|
|---|---|---|---|
state str/required |
[‘noop’, ‘present’, ‘absent’] |
State of the object to be created. |
|
ansible_host str/required |
Host for AXAPI authentication |
||
ansible_username str/required |
Username for AXAPI authentication |
||
ansible_password str/required |
Password for AXAPI authentication |
||
ansible_port int/required |
Port for AXAPI authentication |
||
a10_device_context_id int |
[‘1-8’] |
Device ID for aVCS configuration |
|
a10_partition str |
Destination/target partition for object/command |
||
protocol str/required |
Key to identify parent object |
||
zone_service_port_num str/required |
Key to identify parent object |
||
zone_name str/required |
Key to identify parent object |
||
level_num str/required |
‘0’= Default policy level; ‘1’= Policy level 1; ‘2’= Policy level 2; ‘3’= Policy level 3; ‘4’= Policy level 4; |
||
src_default_glid str |
Global limit ID |
||
glid_action str |
‘drop’= Drop packets for glid exceed (Default); ‘blacklist-src’= Blacklist-src for glid exceed; ‘ignore’= Do nothing for glid exceed; |
||
zone_escalation_score int |
Zone activation score of this level |
||
zone_violation_actions str |
Violation actions apply due to zone escalate from this level |
||
src_escalation_score int |
Source activation score of this level |
||
src_violation_actions str |
Violation actions apply due to source escalate from this level |
||
zone_template dict |
Field zone_template |
||
quic str |
DDOS quic template |
||
dns str |
DDOS dns template |
||
http str |
DDOS http template |
||
ssl_l4 str |
DDOS ssl-l4 template |
||
sip str |
DDOS sip template |
||
tcp str |
DDOS tcp template |
||
udp str |
DDOS udp template |
||
encap str |
DDOS encap template (IPv6-over-IPv4 / IPv4-over-IPv6 are not supported.) |
||
close_sessions_for_unauth_sources bool |
Close session for unauthenticated sources |
||
start_signature_extraction bool |
Start signature extraction from this level |
||
start_pattern_recognition bool |
Start pattern recognition from this level |
||
apply_extracted_filters bool |
Apply extracted filters from this level |
||
uuid str |
uuid of the object |
||
user_tag str |
Customized tag |
||
indicator_list list |
Field indicator_list |
||
ntype str |
‘pkt-rate’= rate of incoming packets; ‘pkt-drop-rate’= rate of packets got dropped; ‘bit-rate’= rate of incoming bits; ‘pkt-drop-ratio’= ratio of incoming packet rate divided by the rate of dropping packets; ‘bytes-to-bytes-from- ratio’= ratio of incoming packet rate divided by the rate of outgoing packets; ‘concurrent-conns’= number of concurrent connections; ‘conn-miss-rate’= rate of incoming packets for which no previously established connection exists; ‘syn- rate’= rate on incoming SYN packets; ‘fin-rate’= rate on incoming FIN packets; ‘rst-rate’= rate of incoming RST packets; ‘small-window-ack-rate’= rate of small window advertisement; ‘empty-ack-rate’= rate of incoming packets which have no payload; ‘small-payload-rate’= rate of short payload packet; ‘syn-fin- ratio’= ratio of incoming SYN packet rate divided by the rate of incoming FIN packets; ‘cpu-utilization’= average data CPU utilization; ‘interface- utilization’= outside interface utilization; |
||
tcp_window_size int |
Expected minimal window size |
||
data_packet_size int |
Expected minimal data size |
||
score int |
Score corresponding to the indicator |
||
src_threshold_num int |
Indicator per-src threshold |
||
src_threshold_large_num int |
Indicator per-src threshold |
||
src_threshold_str str |
Indicator per-src threshold (Non-zero floating point) |
||
src_violation_actions str |
Violation actions to use when this src indicator threshold reaches |
||
zone_threshold_large_num int |
Threshold for the entire zone |
||
zone_threshold_num int |
Threshold for the entire zone |
||
zone_threshold_str str |
Threshold for the entire zone (Non-zero floating point) |
||
zone_violation_actions str |
Violation actions to use when this zone indicator threshold reaches |
||
uuid str |
uuid of the object |
||
user_tag str |
Customized tag |
||
Examples
Return Values
- modified_values (changed, dict, )
Values modified (or potential changes if using check_mode) as a result of task operation
- axapi_calls (always, list, )
Sequential list of AXAPI calls made by the task
- endpoint (, str, [‘/axapi/v3/slb/virtual_server’, ‘/axapi/v3/file/ssl-cert’])
The AXAPI endpoint being accessed.
- http_method (, str, [‘POST’, ‘GET’])
HTTP method being used by the primary task to interact with the AXAPI endpoint.
- request_body (, complex, )
Params used to query the AXAPI
- response_body (, complex, )
Response from the AXAPI
Status
This module is not guaranteed to have a backwards compatible interface. [preview]
This module is maintained by community.