a10_ddos_template_udp
Synopsis
UDP template configuration
Parameters
Parameters |
Choices/Defaults |
Comment |
|
---|---|---|---|
state str/required |
[‘noop’, ‘present’, ‘absent’] |
State of the object to be created. |
|
ansible_host str/required |
Host for AXAPI authentication |
||
ansible_username str/required |
Username for AXAPI authentication |
||
ansible_password str/required |
Password for AXAPI authentication |
||
ansible_port int/required |
Port for AXAPI authentication |
||
a10_device_context_id int |
[‘1-8’] |
Device ID for aVCS configuration |
|
a10_partition str |
Destination/target partition for object/command |
||
name str/required |
DDOS UDP Template Name |
||
age int |
Configure session age(in minutes) for UDP sessions |
||
per_conn_pkt_rate_limit int |
Packet rate limit per connection per rate-interval |
||
per_conn_rate_interval str |
‘100ms’= 100ms; ‘1sec’= 1sec; |
||
tunnel_encap dict |
Field tunnel_encap |
||
ip_encap bool |
Enable Tunnel encapsulation using IP in IP |
||
always dict |
Field always |
||
gre_encap bool |
Enable Tunnel encapsulation using GRE |
||
gre_always dict |
Field gre_always |
||
spoof_detect_cfg dict |
Field spoof_detect_cfg |
||
spoof_detect bool |
Force client to retry on udp |
||
min_retry_gap_interval str |
‘100ms’= 100ms; ‘1sec’= 1sec; |
||
spoof_detect_retry_timeout_val_only int |
timeout in seconds |
||
min_retry_gap int |
Optional minimum gap between 2 UDP packets for spoof-detect pass, unit is specified by min-retry-gap-interval |
||
spoof_detect_retry_timeout int |
timeout in seconds |
||
drop_known_resp_src_port_cfg dict |
Field drop_known_resp_src_port_cfg |
||
drop_known_resp_src_port bool |
Drop well-known if src-port is less than 1024 |
||
exclude_src_resp_port bool |
excluding src port equal destination port |
||
drop_ntp_monlist bool |
Drop NTP monlist request/response |
||
token_authentication bool |
Enable Token Authentication |
||
token_authentication_hw_assist_disable bool |
token-authentication disable hardware assistance |
||
token_authentication_salt_prefix bool |
token-authentication salt-prefix |
||
token_authentication_salt_prefix_curr int |
Field token_authentication_salt_prefix_curr |
||
token_authentication_salt_prefix_prev int |
Field token_authentication_salt_prefix_prev |
||
token_authentication_formula str |
‘md5_Salt-SrcIp-SrcPort-DstIp-DstPort’= md5 of Salt-SrcIp-SrcPort-DstIp- DstPort; ‘md5_Salt-DstIp-DstPort’= md5 of Salt-DstIp-DstPort; ‘md5_Salt-SrcIp- DstIp’= md5 of Salt-SrcIp-DstIp; ‘md5_Salt-SrcPort-DstPort’= md5 of Salt- SrcPort-DstPort; ‘md5_Salt-UintDstIp-DstPort’= Using the uint value of IP for md5 of Salt-DstIp-DstPort; ‘sha1_Salt-SrcIp-SrcPort-DstIp-DstPort’= sha1 of Salt-SrcIp-SrcPort-DstIp-DstPort; ‘sha1_Salt-DstIp-DstPort’= sha1 of Salt- DstIp-DstPort; ‘sha1_Salt-SrcIp-DstIp’= sha1 of Salt-SrcIp-DstIp; ‘sha1_Salt- SrcPort-DstPort’= sha1 of Salt-SrcPort-DstPort; ‘sha1_Salt-UintDstIp-DstPort’= Using the uint value of IP for sha1 of Salt-DstIp-DstPort; |
||
previous_salt_timeout int |
Token-Authentication previous salt-prefix timeout in minutes, default is 1 min |
||
token_authentication_public_address bool |
The server public IP address |
||
public_ipv4_addr str |
IP address |
||
public_ipv6_addr str |
IPV6 address |
||
max_payload_size int |
Maximum UDP payload size for each single packet |
||
min_payload_size int |
Minimum UDP payload size for each single packet |
||
uuid str |
uuid of the object |
||
user_tag str |
Customized tag |
||
filter_list list |
Field filter_list |
||
udp_filter_seq int |
Sequence number |
||
udp_filter_regex str |
Regex Expression |
||
byte_offset_filter str |
Filter Expression using Berkeley Packet Filter syntax |
||
udp_filter_unmatched bool |
action taken when it does not match |
||
udp_filter_action str |
‘blacklist-src’= Also blacklist the source when action is taken; ‘whitelist- src’= Whitelist the source after filter passes, packets are dropped until then; ‘count-only’= Take no action and continue processing the next filter; |
||
uuid str |
uuid of the object |
||
user_tag str |
Customized tag |
Examples
Return Values
- modified_values (changed, dict, )
Values modified (or potential changes if using check_mode) as a result of task operation
- axapi_calls (always, list, )
Sequential list of AXAPI calls made by the task
- endpoint (, str, [‘/axapi/v3/slb/virtual_server’, ‘/axapi/v3/file/ssl-cert’])
The AXAPI endpoint being accessed.
- http_method (, str, [‘POST’, ‘GET’])
HTTP method being used by the primary task to interact with the AXAPI endpoint.
- request_body (, complex, )
Params used to query the AXAPI
- response_body (, complex, )
Response from the AXAPI
Status
This module is not guaranteed to have a backwards compatible interface. [preview]
This module is maintained by community.