a10_ddos_detection
Synopsis
DDoS Detection Commands
Parameters
Parameters |
Choices/Defaults |
Comment |
|
|---|---|---|---|
state str/required |
[‘noop’, ‘present’, ‘absent’] |
State of the object to be created. |
|
ansible_host str/required |
Host for AXAPI authentication |
||
ansible_username str/required |
Username for AXAPI authentication |
||
ansible_password str/required |
Password for AXAPI authentication |
||
ansible_port int/required |
Port for AXAPI authentication |
||
a10_device_context_id int |
[‘1-8’] |
Device ID for aVCS configuration |
|
a10_partition str |
Destination/target partition for object/command |
||
disable bool |
Disable DDoS detection (default= enabled) |
||
uuid str |
uuid of the object |
||
resource_usage dict |
Field resource_usage |
||
uuid str |
uuid of the object |
||
ddos_script dict |
Field ddos_script |
||
file str |
startup-config local file name |
||
action str |
‘delete’= delete; |
||
uuid str |
uuid of the object |
||
settings dict |
Field settings |
||
detector_mode str |
‘standalone’= Standalone detector; ‘on-box’= Mitigator and Detector on the same box; ‘auto-svc-discovery’= Auto Service discovery using Visibility module (Deprecatd); |
||
dedicated_cpus int |
Configure the number of dedicated cores for detection |
||
ctrl_cpu_usage int |
Control cpu usage threshold for DDoS detection |
||
full_core_enable bool |
Enable full core |
||
top_k_reset_interval int |
Configure top-k reset interval |
||
pkt_sampling dict |
Field pkt_sampling |
||
histogram_escalate_percentage int |
histogram escalate sensitivity for DDoS detection |
||
histogram_de_escalate_percentage int |
histogram de-escalate sensitivity for DDoS detection |
||
detection_window_size int |
Configure detection window size in seconds (DDoS detection window size in seconds(default= 1)) |
||
initial_learning_interval int |
Initial learning interval (in hours) before processing |
||
export_interval int |
Configure Baselining and export interval in seconds (DDoS Baselining and export interval in seconds(default= 20)) |
||
notification_debug_log str |
‘enable’= Enable detection notification debug log (default= disabled); |
||
network_object_window_size str |
‘5’= 5 seconds; ‘10’= 10 seconds; ‘15’= 15 seconds; ‘30’= 30 seconds; (DDoS detection window size in seconds(default= 30)) |
||
network_object_flooding_multiple int |
multiplier for flooding detection threshold in network objects (default 2x threshold) |
||
de_escalation_quiet_time int |
Configure de-escalation needed time in minutes from level 1 to 0.(default 1 minutes) |
||
network_object_subnet_notify_percent int |
Send subnet notification when anomaly children subnet entries over configured percentage.(default 50%) |
||
uuid str |
uuid of the object |
||
entry_saving dict |
Field entry_saving |
||
reflection_attack_detection dict |
Field reflection_attack_detection |
||
standalone_settings dict |
Field standalone_settings |
||
entry_saving dict |
Field entry_saving |
||
clear_saved_data bool |
Clear all saved network-object-based detection entries and learned indicators |
||
manual_save bool |
Manually save network-object-based detection entries and learned indicators |
||
manual_restore bool |
Manually restore network-object-based detection entries and learned indicators |
||
uuid str |
uuid of the object |
||
agent_list list |
Field agent_list |
||
agent_name str |
Specify name for the agent |
||
agent_v4_addr str |
Configure agent’s IPv4 address |
||
agent_v6_addr str |
Configure agent’s IPv6 address |
||
agent_type str |
‘Cisco’= Cisco; ‘Juniper’= Juniper; |
||
uuid str |
uuid of the object |
||
user_tag str |
Customized tag |
||
sampling_enable list |
Field sampling_enable |
||
sflow dict |
Field sflow |
||
netflow dict |
Field netflow |
||
statistics dict |
Field statistics |
||
uuid str |
uuid of the object |
||
Examples
Return Values
- modified_values (changed, dict, )
Values modified (or potential changes if using check_mode) as a result of task operation
- axapi_calls (always, list, )
Sequential list of AXAPI calls made by the task
- endpoint (, str, [‘/axapi/v3/slb/virtual_server’, ‘/axapi/v3/file/ssl-cert’])
The AXAPI endpoint being accessed.
- http_method (, str, [‘POST’, ‘GET’])
HTTP method being used by the primary task to interact with the AXAPI endpoint.
- request_body (, complex, )
Params used to query the AXAPI
- response_body (, complex, )
Response from the AXAPI
Status
This module is not guaranteed to have a backwards compatible interface. [preview]
This module is maintained by community.