a10_ddos_dst_entry_l4_type
Synopsis
DDOS L4 type
Parameters
Parameters |
Choices/Defaults |
Comment |
|
---|---|---|---|
state str/required |
[‘noop’, ‘present’, ‘absent’] |
State of the object to be created. |
|
ansible_host str/required |
Host for AXAPI authentication |
||
ansible_username str/required |
Username for AXAPI authentication |
||
ansible_password str/required |
Password for AXAPI authentication |
||
ansible_port int/required |
Port for AXAPI authentication |
||
a10_device_context_id int |
[‘1-8’] |
Device ID for aVCS configuration |
|
a10_partition str |
Destination/target partition for object/command |
||
entry_dst_entry_name str/required |
Key to identify parent object |
||
protocol str/required |
‘tcp’= L4-Type TCP; ‘udp’= L4-Type UDP; ‘icmp’= L4-Type ICMP; ‘other’= L4-Type OTHER; |
||
glid str |
Global limit ID |
||
glid_exceed_action dict |
Field glid_exceed_action |
||
stateless_encap_action_cfg dict |
Field stateless_encap_action_cfg |
||
deny bool |
Blacklist and Drop all incoming packets for protocol |
||
max_rexmit_syn_per_flow int |
Maximum number of re-transmit SYN per flow |
||
max_rexmit_syn_per_flow_exceed_action str |
‘drop’= Drop the packet; ‘black-list’= Add the source IP into black list; |
||
disable_syn_auth bool |
Disable TCP SYN Authentication |
||
syn_auth str |
‘send-rst’= Send RST to client upon client ACK; ‘force-rst-by-ack’= Force client RST via the use of ACK; ‘force-rst-by-synack’= Force client RST via the use of bad SYN|ACK; ‘disable’= Disable TCP SYN Authentication; |
||
syn_cookie bool |
Enable SYN Cookie |
||
tcp_reset_client bool |
Send reset to client when rate exceeds or session ages out |
||
tcp_reset_server bool |
Send reset to server when rate exceeds or session ages out |
||
drop_on_no_port_match str |
‘disable’= disable; ‘enable’= enable; |
||
stateful bool |
Enable stateful tracking of sessions (Default is stateless) |
||
tunnel_decap dict |
Field tunnel_decap |
||
ip_decap bool |
Enable IP Tunnel decapsulation |
||
gre_decap bool |
Enable GRE Tunnel decapsulation |
||
key_cfg list |
Field key_cfg |
||
tunnel_rate_limit dict |
Field tunnel_rate_limit |
||
ip_rate_limit bool |
Enable inner IP rate limiting on IPinIP traffic |
||
gre_rate_limit bool |
Enable inner IP rate limiting on GRE traffic |
||
drop_frag_pkt bool |
Drop fragmented packets |
||
undefined_port_hit_statistics dict |
Field undefined_port_hit_statistics |
||
undefined_port_hit_statistics bool |
Enable port scanning statistics |
||
reset_interval int |
Configure port scanning counter reset interval (minutes), Default 60 mins |
||
template dict |
Field template |
||
template_icmp_v4 str |
DDOS icmp-v4 template |
||
template_icmp_v6 str |
DDOS icmp-v6 template |
||
detection_enable bool |
Enable ddos detection |
||
enable_top_k bool |
Enable ddos top-k entries |
||
topk_num_records int |
Maximum number of records to show in topk |
||
set_counter_base_val int |
Set T2 counter value of current context to specified value |
||
ip_filtering_policy str |
Configure IP Filter |
||
uuid str |
uuid of the object |
||
user_tag str |
Customized tag |
||
ip_filtering_policy_oper dict |
Field ip_filtering_policy_oper |
||
uuid str |
uuid of the object |
||
port_ind dict |
Field port_ind |
||
uuid str |
uuid of the object |
||
sampling_enable list |
Field sampling_enable |
||
topk_sources dict |
Field topk_sources |
||
uuid str |
uuid of the object |
||
progression_tracking dict |
Field progression_tracking |
||
uuid str |
uuid of the object |
||
oper dict |
Field oper |
||
ddos_entry_list list |
Field ddos_entry_list |
||
undefined_port_hit_stats_wellknown list |
Field undefined_port_hit_stats_wellknown |
||
undefined_port_hit_stats_non_wellknown list |
Field undefined_port_hit_stats_non_wellknown |
||
entry_displayed_count int |
Field entry_displayed_count |
||
service_displayed_count int |
Field service_displayed_count |
||
reporting_status int |
Field reporting_status |
||
undefined_port_hit_statistics bool |
Field undefined_port_hit_statistics |
||
undefined_stats_port_num int |
Field undefined_stats_port_num |
||
all_l4_types bool |
Field all_l4_types |
||
hw_blacklisted str |
Field hw_blacklisted |
||
protocol str |
‘tcp’= L4-Type TCP; ‘udp’= L4-Type UDP; ‘icmp’= L4-Type ICMP; ‘other’= L4-Type OTHER; |
||
ip_filtering_policy_oper dict |
Field ip_filtering_policy_oper |
||
port_ind dict |
Field port_ind |
||
topk_sources dict |
Field topk_sources |
||
progression_tracking dict |
Field progression_tracking |
Examples
Return Values
- modified_values (changed, dict, )
Values modified (or potential changes if using check_mode) as a result of task operation
- axapi_calls (always, list, )
Sequential list of AXAPI calls made by the task
- endpoint (, str, [‘/axapi/v3/slb/virtual_server’, ‘/axapi/v3/file/ssl-cert’])
The AXAPI endpoint being accessed.
- http_method (, str, [‘POST’, ‘GET’])
HTTP method being used by the primary task to interact with the AXAPI endpoint.
- request_body (, complex, )
Params used to query the AXAPI
- response_body (, complex, )
Response from the AXAPI
Status
This module is not guaranteed to have a backwards compatible interface. [preview]
This module is maintained by community.