a10_ddos_template_ssl_l4
Synopsis
SSL-L4 template Configuration
Parameters
Parameters |
Choices/Defaults |
Comment |
|
---|---|---|---|
state str/required |
[‘noop’, ‘present’, ‘absent’] |
State of the object to be created. |
|
ansible_host str/required |
Host for AXAPI authentication |
||
ansible_username str/required |
Username for AXAPI authentication |
||
ansible_password str/required |
Password for AXAPI authentication |
||
ansible_port int/required |
Port for AXAPI authentication |
||
a10_device_context_id int |
[‘1-8’] |
Device ID for aVCS configuration |
|
a10_partition str |
Destination/target partition for object/command |
||
ssl_l4_tmpl_name str/required |
Field ssl_l4_tmpl_name |
||
action str |
‘drop’= drop; ‘reset’= reset; |
||
disable bool |
Disable this template |
||
renegotiation int |
Configure renegotiation limiting for SSL (Number of renegotiation allowed) |
||
request_rate_limit int |
Configure rate limiting for SSL |
||
allow_non_tls bool |
Allow Non-TLS (SSLv3 and lower) traffic (Warning= security may be compromised) |
||
multi_pu_threshold_distribution dict |
Field multi_pu_threshold_distribution |
||
multi_pu_threshold_distribution_value int |
Destination side rate limit only. Default= 0 |
||
multi_pu_threshold_distribution_disable str |
‘disable’= Destination side rate limit only. Default= Enable; |
||
auth_config_cfg dict |
Field auth_config_cfg |
||
timeout int |
Connection timeout |
||
trials int |
Number of failed handshakes |
||
auth_handshake_fail_action str |
‘blacklist-src’= Blacklist-src when auth handshake fails; |
||
cert_cfg dict |
Field cert_cfg |
||
cert str |
SSL certificate |
||
key str |
SSL key |
||
key_passphrase str |
Password Phrase |
||
key_encrypted str |
Do NOT use this option manually. (This is an A10 reserved keyword.) (The ENCRYPTED password string) |
||
server_name_list list |
Field server_name_list |
||
server_name str |
Server name indication in Client hello extension (Server name String) |
||
server_cert str |
Server Certificate associated to SNI (Server Certificate Name) |
||
server_key str |
Server Private Key associated to SNI (Server Private Key Name) |
||
server_passphrase str |
Password Phrase |
||
server_encrypted str |
Do NOT use this option manually. (This is an A10 reserved keyword.) (The ENCRYPTED password string) |
||
uuid str |
uuid of the object |
||
user_tag str |
Customized tag |
||
ssl_traffic_check dict |
Field ssl_traffic_check |
||
header_inspection bool |
Inspect ssl header |
||
header_action str |
‘drop’= Drop packets with bad ssl header; ‘ignore’= Forward packets with bad ssl header; |
||
check_resumed_connection bool |
Apply checks to SSL connections initialized by ACK packets |
||
uuid str |
uuid of the object |
Examples
Return Values
- modified_values (changed, dict, )
Values modified (or potential changes if using check_mode) as a result of task operation
- axapi_calls (always, list, )
Sequential list of AXAPI calls made by the task
- endpoint (, str, [‘/axapi/v3/slb/virtual_server’, ‘/axapi/v3/file/ssl-cert’])
The AXAPI endpoint being accessed.
- http_method (, str, [‘POST’, ‘GET’])
HTTP method being used by the primary task to interact with the AXAPI endpoint.
- request_body (, complex, )
Params used to query the AXAPI
- response_body (, complex, )
Response from the AXAPI
Status
This module is not guaranteed to have a backwards compatible interface. [preview]
This module is maintained by community.