a10_visibility_packet_capture_global_templates_template_trigger_sys_obj_stats_change_slb_ssl_error_trigger_stats_rate
Synopsis
Configure stats to trigger packet capture on increment rate
Parameters
Parameters |
Choices/Defaults |
Comment |
---|---|---|
state str/required |
[‘noop’, ‘present’, ‘absent’] |
State of the object to be created. |
ansible_host str/required |
Host for AXAPI authentication |
|
ansible_username str/required |
Username for AXAPI authentication |
|
ansible_password str/required |
Password for AXAPI authentication |
|
ansible_port int/required |
Port for AXAPI authentication |
|
a10_device_context_id int |
[‘1-8’] |
Device ID for aVCS configuration |
a10_partition str |
Destination/target partition for object/command |
|
template_name str/required |
Key to identify parent object |
|
threshold_exceeded_by int |
Set the threshold to the number of times greater than the previous duration to start the capture, default is 5 |
|
duration int |
Time in seconds to look for the anomaly, default is 60 |
|
app_data_in_handshake bool |
Enable automatic packet-capture for app data in handshake |
|
attempt_to_reuse_sess_in_diff_context bool |
Enable automatic packet-capture for attempt to reuse sess in diff context |
|
bad_alert_record bool |
Enable automatic packet-capture for bad alert record |
|
bad_authentication_type bool |
Enable automatic packet-capture for bad authentication type |
|
bad_change_cipher_spec bool |
Enable automatic packet-capture for bad change cipher spec |
|
bad_checksum bool |
Enable automatic packet-capture for bad checksum |
|
bad_data_returned_by_callback bool |
Enable automatic packet-capture for bad data returned by callback |
|
bad_decompression bool |
Enable automatic packet-capture for bad decompression |
|
bad_dh_g_length bool |
Enable automatic packet-capture for bad dh g length |
|
bad_dh_pub_key_length bool |
Enable automatic packet-capture for bad dh pub key length |
|
bad_dh_p_length bool |
Enable automatic packet-capture for bad dh p length |
|
bad_digest_length bool |
Enable automatic packet-capture for bad digest length |
|
bad_dsa_signature bool |
Enable automatic packet-capture for bad dsa signature |
|
bad_hello_request bool |
Enable automatic packet-capture for bad hello request |
|
bad_length bool |
Enable automatic packet-capture for bad length |
|
bad_mac_decode bool |
Enable automatic packet-capture for bad mac decode |
|
bad_message_type bool |
Enable automatic packet-capture for bad message type |
|
bad_packet_length bool |
Enable automatic packet-capture for bad packet length |
|
bad_protocol_version_counter bool |
Enable automatic packet-capture for bad protocol version counter |
|
bad_response_argument bool |
Enable automatic packet-capture for bad response argument |
|
bad_rsa_decrypt bool |
Enable automatic packet-capture for bad rsa decrypt |
|
bad_rsa_encrypt bool |
Enable automatic packet-capture for bad rsa encrypt |
|
bad_rsa_e_length bool |
Enable automatic packet-capture for bad rsa e length |
|
bad_rsa_modulus_length bool |
Enable automatic packet-capture for bad rsa modulus length |
|
bad_rsa_signature bool |
Enable automatic packet-capture for bad rsa signature |
|
bad_signature bool |
Enable automatic packet-capture for bad signature |
|
bad_ssl_filetype bool |
Enable automatic packet-capture for bad ssl filetype |
|
bad_ssl_session_id_length bool |
Enable automatic packet-capture for bad ssl session id length |
|
bad_state bool |
Enable automatic packet-capture for bad state |
|
bad_write_retry bool |
Enable automatic packet-capture for bad write retry |
|
bio_not_set bool |
Enable automatic packet-capture for bio not set |
|
block_cipher_pad_is_wrong bool |
Enable automatic packet-capture for block cipher pad is wrong |
|
bn_lib bool |
Enable automatic packet-capture for bn lib |
|
ca_dn_length_mismatch bool |
Enable automatic packet-capture for ca dn length mismatch |
|
ca_dn_too_long bool |
Enable automatic packet-capture for ca dn too long |
|
ccs_received_early bool |
Enable automatic packet-capture for ccs received early |
|
certificate_verify_failed bool |
Enable automatic packet-capture for certificate verify failed |
|
cert_length_mismatch bool |
Enable automatic packet-capture for cert length mismatch |
|
challenge_is_different bool |
Enable automatic packet-capture for challenge is different |
|
cipher_code_wrong_length bool |
Enable automatic packet-capture for cipher code wrong length |
|
cipher_or_hash_unavailable bool |
Enable automatic packet-capture for cipher or hash unavailable |
|
cipher_table_src_error bool |
Enable automatic packet-capture for cipher table src error |
|
compressed_length_too_long bool |
Enable automatic packet-capture for compressed length too long |
|
compression_failure bool |
Enable automatic packet-capture for compression failure |
|
compression_library_error bool |
Enable automatic packet-capture for compression library error |
|
connection_id_is_different bool |
Enable automatic packet-capture for connection id is different |
|
connection_type_not_set bool |
Enable automatic packet-capture for connection type not set |
|
data_between_ccs_and_finished bool |
Enable automatic packet-capture for data between ccs and finished |
|
data_length_too_long bool |
Enable automatic packet-capture for data length too long |
|
decryption_failed bool |
Enable automatic packet-capture for decryption failed |
|
decryption_failed_or_bad_record_mac bool |
Enable automatic packet-capture for decryption failed or bad record mac |
|
dh_public_value_length_is_wrong bool |
Enable automatic packet-capture for dh public value length is wrong |
|
digest_check_failed bool |
Enable automatic packet-capture for digest check failed |
|
encrypted_length_too_long bool |
Enable automatic packet-capture for encrypted length too long |
|
error_generating_tmp_rsa_key bool |
Enable automatic packet-capture for error generating tmp rsa key |
|
error_in_received_cipher_list bool |
Enable automatic packet-capture for error in received cipher list |
|
excessive_message_size bool |
Enable automatic packet-capture for excessive message size |
|
extra_data_in_message bool |
Enable automatic packet-capture for extra data in message |
|
got_a_fin_before_a_ccs bool |
Enable automatic packet-capture for got a fin before a ccs |
|
https_proxy_request bool |
Enable automatic packet-capture for https proxy request |
|
http_request bool |
Enable automatic packet-capture for http request |
|
illegal_padding bool |
Enable automatic packet-capture for illegal padding |
|
inappropriate_fallback bool |
Enable automatic packet-capture for inappropriate fallback |
|
invalid_challenge_length bool |
Enable automatic packet-capture for invalid challenge length |
|
invalid_command bool |
Enable automatic packet-capture for invalid command |
|
invalid_purpose bool |
Enable automatic packet-capture for invalid purpose |
|
invalid_status_response bool |
Enable automatic packet-capture for invalid status response |
|
invalid_trust bool |
Enable automatic packet-capture for invalid trust |
|
key_arg_too_long bool |
Enable automatic packet-capture for key arg too long |
|
krb5 bool |
Enable automatic packet-capture for krb5 |
|
krb5_client_cc_principal bool |
Enable automatic packet-capture for krb5 client cc principal |
|
krb5_client_get_cred bool |
Enable automatic packet-capture for krb5 client get cred |
|
krb5_client_init bool |
Enable automatic packet-capture for krb5 client init |
|
krb5_client_mk_req bool |
Enable automatic packet-capture for krb5 client mk_req |
|
krb5_server_bad_ticket bool |
Enable automatic packet-capture for krb5 server bad ticket |
|
krb5_server_init bool |
Enable automatic packet-capture for krb5 server init |
|
krb5_server_rd_req bool |
Enable automatic packet-capture for krb5 server rd_req |
|
krb5_server_tkt_expired bool |
Enable automatic packet-capture for krb5 server tkt expired |
|
krb5_server_tkt_not_yet_valid bool |
Enable automatic packet-capture for krb5 server tkt not yet valid |
|
krb5_server_tkt_skew bool |
Enable automatic packet-capture for krb5 server tkt skew |
|
length_mismatch bool |
Enable automatic packet-capture for length mismatch |
|
length_too_short bool |
Enable automatic packet-capture for length too short |
|
library_bug bool |
Enable automatic packet-capture for library bug |
|
library_has_no_ciphers bool |
Enable automatic packet-capture for library has no ciphers |
|
mast_key_too_long bool |
Enable automatic packet-capture for mast key too long |
|
message_too_long bool |
Enable automatic packet-capture for message too long |
|
missing_dh_dsa_cert bool |
Enable automatic packet-capture for missing dh dsa cert |
|
missing_dh_key bool |
Enable automatic packet-capture for missing dh key |
|
missing_dh_rsa_cert bool |
Enable automatic packet-capture for missing dh rsa cert |
|
missing_dsa_signing_cert bool |
Enable automatic packet-capture for missing dsa signing cert |
|
missing_export_tmp_dh_key bool |
Enable automatic packet-capture for missing export tmp dh key |
|
missing_export_tmp_rsa_key bool |
Enable automatic packet-capture for missing export tmp rsa key |
|
missing_rsa_certificate bool |
Enable automatic packet-capture for missing rsa certificate |
|
missing_rsa_encrypting_cert bool |
Enable automatic packet-capture for missing rsa encrypting cert |
|
missing_rsa_signing_cert bool |
Enable automatic packet-capture for missing rsa signing cert |
|
missing_tmp_dh_key bool |
Enable automatic packet-capture for missing tmp dh key |
|
missing_tmp_rsa_key bool |
Enable automatic packet-capture for missing tmp rsa key |
|
missing_tmp_rsa_pkey bool |
Enable automatic packet-capture for missing tmp rsa pkey |
|
missing_verify_message bool |
Enable automatic packet-capture for missing verify message |
|
non_sslv2_initial_packet bool |
Enable automatic packet-capture for non sslv2 initial packet |
|
no_certificates_returned bool |
Enable automatic packet-capture for no certificates returned |
|
no_certificate_assigned bool |
Enable automatic packet-capture for no certificate assigned |
|
no_certificate_returned bool |
Enable automatic packet-capture for no certificate returned |
|
no_certificate_set bool |
Enable automatic packet-capture for no certificate set |
|
no_certificate_specified bool |
Enable automatic packet-capture for no certificate specified |
|
no_ciphers_available bool |
Enable automatic packet-capture for no ciphers available |
|
no_ciphers_passed bool |
Enable automatic packet-capture for no ciphers passed |
|
no_ciphers_specified bool |
Enable automatic packet-capture for no ciphers specified |
|
no_cipher_list bool |
Enable automatic packet-capture for no cipher list |
|
no_cipher_match bool |
Enable automatic packet-capture for no cipher match |
|
no_client_cert_received bool |
Enable automatic packet-capture for no client cert received |
|
no_compression_specified bool |
Enable automatic packet-capture for no compression specified |
|
no_method_specified bool |
Enable automatic packet-capture for no method specified |
|
no_privatekey bool |
Enable automatic packet-capture for no privatekey |
|
no_private_key_assigned bool |
Enable automatic packet-capture for no private key assigned |
|
no_protocols_available bool |
Enable automatic packet-capture for no protocols available |
|
no_publickey bool |
Enable automatic packet-capture for no publickey |
|
no_shared_cipher bool |
Enable automatic packet-capture for no shared cipher |
|
no_verify_callback bool |
Enable automatic packet-capture for no verify callback |
|
null_ssl_ctx bool |
Enable automatic packet-capture for null ssl ctx |
|
null_ssl_method_passed bool |
Enable automatic packet-capture for null ssl method passed |
|
old_session_cipher_not_returned bool |
Enable automatic packet-capture for old session cipher not returned |
|
packet_length_too_long bool |
Enable automatic packet-capture for packet length too long |
|
path_too_long bool |
Enable automatic packet-capture for path too long |
|
peer_did_not_return_a_certificate bool |
Enable automatic packet-capture for peer did not return a certificate |
|
peer_error bool |
Enable automatic packet-capture for peer error |
|
peer_error_certificate bool |
Enable automatic packet-capture for peer error certificate |
|
peer_error_no_certificate bool |
Enable automatic packet-capture for peer error no certificate |
|
peer_error_no_cipher bool |
Enable automatic packet-capture for peer error no cipher |
|
peer_error_unsupported_certificate_type bool |
Enable automatic packet-capture for peer error unsupported certificate type |
|
pre_mac_length_too_long bool |
Enable automatic packet-capture for pre mac length too long |
|
problems_mapping_cipher_functions bool |
Enable automatic packet-capture for problems mapping cipher functions |
|
protocol_is_shutdown bool |
Enable automatic packet-capture for protocol is shutdown |
|
public_key_encrypt_error bool |
Enable automatic packet-capture for public key encrypt error |
|
public_key_is_not_rsa bool |
Enable automatic packet-capture for public key is not rsa |
|
public_key_not_rsa bool |
Enable automatic packet-capture for public key not rsa |
|
read_bio_not_set bool |
Enable automatic packet-capture for read bio not set |
|
read_wrong_packet_type bool |
Enable automatic packet-capture for read wrong packet type |
|
record_length_mismatch bool |
Enable automatic packet-capture for record length mismatch |
|
record_too_large bool |
Enable automatic packet-capture for record too large |
|
record_too_small bool |
Enable automatic packet-capture for record too small |
|
required_cipher_missing bool |
Enable automatic packet-capture for required cipher missing |
|
reuse_cert_length_not_zero bool |
Enable automatic packet-capture for reuse cert length not zero |
|
reuse_cert_type_not_zero bool |
Enable automatic packet-capture for reuse cert type not zero |
|
reuse_cipher_list_not_zero bool |
Enable automatic packet-capture for reuse cipher list not zero |
|
scsv_received_when_renegotiating bool |
Enable automatic packet-capture for scsv received when renegotiating |
|
session_id_context_uninitialized bool |
Enable automatic packet-capture for session id context uninitialized |
|
short_read bool |
Enable automatic packet-capture for short read |
|
signature_for_non_signing_certificate bool |
Enable automatic packet-capture for signature for non signing certificate |
|
ssl23_doing_session_id_reuse bool |
Enable automatic packet-capture for ssl23 doing session id reuse |
|
ssl2_connection_id_too_long bool |
Enable automatic packet-capture for ssl2 connection id too long |
|
ssl3_session_id_too_long bool |
Enable automatic packet-capture for ssl3 session id too long |
|
ssl3_session_id_too_short bool |
Enable automatic packet-capture for ssl3 session id too short |
|
sslv3_alert_bad_certificate bool |
Enable automatic packet-capture for sslv3 alert bad certificate |
|
sslv3_alert_bad_record_mac bool |
Enable automatic packet-capture for sslv3 alert bad record mac |
|
sslv3_alert_certificate_expired bool |
Enable automatic packet-capture for sslv3 alert certificate expired |
|
sslv3_alert_certificate_revoked bool |
Enable automatic packet-capture for sslv3 alert certificate revoked |
|
sslv3_alert_certificate_unknown bool |
Enable automatic packet-capture for sslv3 alert certificate unknown |
|
sslv3_alert_decompression_failure bool |
Enable automatic packet-capture for sslv3 alert decompression failure |
|
sslv3_alert_handshake_failure bool |
Enable automatic packet-capture for sslv3 alert handshake failure |
|
sslv3_alert_illegal_parameter bool |
Enable automatic packet-capture for sslv3 alert illegal parameter |
|
sslv3_alert_no_certificate bool |
Enable automatic packet-capture for sslv3 alert no certificate |
|
sslv3_alert_peer_error_cert bool |
Enable automatic packet-capture for sslv3 alert peer error cert |
|
sslv3_alert_peer_error_no_cert bool |
Enable automatic packet-capture for sslv3 alert peer error no cert |
|
sslv3_alert_peer_error_no_cipher bool |
Enable automatic packet-capture for sslv3 alert peer error no cipher |
|
sslv3_alert_peer_error_unsupp_cert_type bool |
Enable automatic packet-capture for sslv3 alert peer error unsupp cert type |
|
sslv3_alert_unexpected_msg bool |
Enable automatic packet-capture for sslv3 alert unexpected msg |
|
sslv3_alert_unknown_remote_err_type bool |
Enable automatic packet-capture for sslv3 alert unknown remote err type |
|
sslv3_alert_unspported_cert bool |
Enable automatic packet-capture for sslv3 alert unspported cert |
|
ssl_ctx_has_no_default_ssl_version bool |
Enable automatic packet-capture for ssl ctx has no default ssl version |
|
ssl_handshake_failure bool |
Enable automatic packet-capture for ssl handshake failure |
|
ssl_library_has_no_ciphers bool |
Enable automatic packet-capture for ssl library has no ciphers |
|
ssl_session_id_callback_failed bool |
Enable automatic packet-capture for ssl session id callback failed |
|
ssl_session_id_conflict bool |
Enable automatic packet-capture for ssl session id conflict |
|
ssl_session_id_context_too_long bool |
Enable automatic packet-capture for ssl session id context too long |
|
ssl_session_id_has_bad_length bool |
Enable automatic packet-capture for ssl session id has bad length |
|
ssl_session_id_is_different bool |
Enable automatic packet-capture for ssl session id is different |
|
tlsv1_alert_access_denied bool |
Enable automatic packet-capture for tlsv1 alert access denied |
|
tlsv1_alert_decode_error bool |
Enable automatic packet-capture for tlsv1 alert decode error |
|
tlsv1_alert_decryption_failed bool |
Enable automatic packet-capture for tlsv1 alert decryption failed |
|
tlsv1_alert_decrypt_error bool |
Enable automatic packet-capture for tlsv1 alert decrypt error |
|
tlsv1_alert_export_restriction bool |
Enable automatic packet-capture for tlsv1 alert export restriction |
|
tlsv1_alert_insufficient_security bool |
Enable automatic packet-capture for tlsv1 alert insufficient security |
|
tlsv1_alert_internal_error bool |
Enable automatic packet-capture for tlsv1 alert internal error |
|
tlsv1_alert_no_renegotiation bool |
Enable automatic packet-capture for tlsv1 alert no renegotiation |
|
tlsv1_alert_protocol_version bool |
Enable automatic packet-capture for tlsv1 alert protocol version |
|
tlsv1_alert_record_overflow bool |
Enable automatic packet-capture for tlsv1 alert record overflow |
|
tlsv1_alert_unknown_ca bool |
Enable automatic packet-capture for tlsv1 alert unknown ca |
|
tlsv1_alert_user_cancelled bool |
Enable automatic packet-capture for tlsv1 alert user cancelled |
|
tls_client_cert_req_with_anon_cipher bool |
Enable automatic packet-capture for tls client cert req with anon cipher |
|
tls_peer_did_not_respond_with_cert_list bool |
Enable automatic packet-capture for tls peer did not respond with cert list |
|
tls_rsa_encrypted_value_length_is_wrong bool |
Enable automatic packet-capture for tls rsa encrypted value length is wrong |
|
tried_to_use_unsupported_cipher bool |
Enable automatic packet-capture for tried to use unsupported cipher |
|
unable_to_decode_dh_certs bool |
Enable automatic packet-capture for unable to decode dh certs |
|
unable_to_extract_public_key bool |
Enable automatic packet-capture for unable to extract public key |
|
unable_to_find_dh_parameters bool |
Enable automatic packet-capture for unable to find dh parameters |
|
unable_to_find_public_key_parameters bool |
Enable automatic packet-capture for unable to find public key parameters |
|
unable_to_find_ssl_method bool |
Enable automatic packet-capture for unable to find ssl method |
|
unable_to_load_ssl2_md5_routines bool |
Enable automatic packet-capture for unable to load ssl2 md5 routines |
|
unable_to_load_ssl3_md5_routines bool |
Enable automatic packet-capture for unable to load ssl3 md5 routines |
|
unable_to_load_ssl3_sha1_routines bool |
Enable automatic packet-capture for unable to load ssl3 sha1 routines |
|
unexpected_message bool |
Enable automatic packet-capture for unexpected message |
|
unexpected_record bool |
Enable automatic packet-capture for unexpected record |
|
uninitialized bool |
Enable automatic packet-capture for uninitialized |
|
unknown_alert_type bool |
Enable automatic packet-capture for unknown alert type |
|
unknown_certificate_type bool |
Enable automatic packet-capture for unknown certificate type |
|
unknown_cipher_returned bool |
Enable automatic packet-capture for unknown cipher returned |
|
unknown_cipher_type bool |
Enable automatic packet-capture for unknown cipher type |
|
unknown_key_exchange_type bool |
Enable automatic packet-capture for unknown key exchange type |
|
unknown_pkey_type bool |
Enable automatic packet-capture for unknown pkey type |
|
unknown_protocol bool |
Enable automatic packet-capture for unknown protocol |
|
unknown_remote_error_type bool |
Enable automatic packet-capture for unknown remote error type |
|
unknown_ssl_version bool |
Enable automatic packet-capture for unknown ssl version |
|
unknown_state bool |
Enable automatic packet-capture for unknown state |
|
unsupported_cipher bool |
Enable automatic packet-capture for unsupported cipher |
|
unsupported_compression_algorithm bool |
Enable automatic packet-capture for unsupported compression algorithm |
|
unsupported_option bool |
Enable automatic packet-capture for unsupported option |
|
unsupported_protocol bool |
Enable automatic packet-capture for unsupported protocol |
|
unsupported_ssl_version bool |
Enable automatic packet-capture for unsupported ssl version |
|
unsupported_status_type bool |
Enable automatic packet-capture for unsupported status type |
|
write_bio_not_set bool |
Enable automatic packet-capture for write bio not set |
|
wrong_cipher_returned bool |
Enable automatic packet-capture for wrong cipher returned |
|
wrong_message_type bool |
Enable automatic packet-capture for wrong message type |
|
wrong_counter_of_key_bits bool |
Enable automatic packet-capture for wrong counter of key bits |
|
wrong_signature_length bool |
Enable automatic packet-capture for wrong signature length |
|
wrong_signature_size bool |
Enable automatic packet-capture for wrong signature size |
|
wrong_ssl_version bool |
Enable automatic packet-capture for wrong ssl version |
|
wrong_version_counter bool |
Enable automatic packet-capture for wrong version counter |
|
x509_lib bool |
Enable automatic packet-capture for x509 lib |
|
x509_verification_setup_problems bool |
Enable automatic packet-capture for x509 verification setup problems |
|
clienthello_tlsext bool |
Enable automatic packet-capture for clienthello tlsext |
|
parse_tlsext bool |
Enable automatic packet-capture for parse tlsext |
|
serverhello_tlsext bool |
Enable automatic packet-capture for serverhello tlsext |
|
ssl3_ext_invalid_servername bool |
Enable automatic packet-capture for ssl3 ext invalid servername |
|
ssl3_ext_invalid_servername_type bool |
Enable automatic packet-capture for ssl3 ext invalid servername type |
|
multiple_sgc_restarts bool |
Enable automatic packet-capture for multiple sgc restarts |
|
tls_invalid_ecpointformat_list bool |
Enable automatic packet-capture for tls invalid ecpointformat list |
|
bad_ecc_cert bool |
Enable automatic packet-capture for bad ecc cert |
|
bad_ecdsa_sig bool |
Enable automatic packet-capture for bad ecdsa sig |
|
bad_ecpoint bool |
Enable automatic packet-capture for bad ecpoint |
|
cookie_mismatch bool |
Enable automatic packet-capture for cookie mismatch |
|
unsupported_elliptic_curve bool |
Enable automatic packet-capture for unsupported elliptic curve |
|
no_required_digest bool |
Enable automatic packet-capture for no required digest |
|
unsupported_digest_type bool |
Enable automatic packet-capture for unsupported digest type |
|
bad_handshake_length bool |
Enable automatic packet-capture for bad handshake length |
|
uuid str |
uuid of the object |
Examples
Return Values
- modified_values (changed, dict, )
Values modified (or potential changes if using check_mode) as a result of task operation
- axapi_calls (always, list, )
Sequential list of AXAPI calls made by the task
- endpoint (, str, [‘/axapi/v3/slb/virtual_server’, ‘/axapi/v3/file/ssl-cert’])
The AXAPI endpoint being accessed.
- http_method (, str, [‘POST’, ‘GET’])
HTTP method being used by the primary task to interact with the AXAPI endpoint.
- request_body (, complex, )
Params used to query the AXAPI
- response_body (, complex, )
Response from the AXAPI
Status
This module is not guaranteed to have a backwards compatible interface. [preview]
This module is maintained by community.