a10_dnssec

Synopsis

Domain Name System Security Extensions commands

Parameters

Parameters

Choices/Defaults

Comment

state

str/required

[‘noop’, ‘present’, ‘absent’]

State of the object to be created.

ansible_host

str/required

Host for AXAPI authentication

ansible_username

str/required

Username for AXAPI authentication

ansible_password

str/required

Password for AXAPI authentication

ansible_port

int/required

Port for AXAPI authentication

a10_device_context_id

int

[‘1-8’]

Device ID for aVCS configuration

a10_partition

str

Destination/target partition for object/command

standalone

bool

Run DNSSEC in standalone mode, in GSLB group mode by default

uuid

str

uuid of the object

dnskey

dict

Field dnskey

key_delete

bool

Delete the DNSKEY file

zone_name

str

DNS zone name of the child zone

ds

dict

Field ds

ds_delete

bool

Delete the DS file

zone_name

str

DNS zone name of the child zone

sign_zone_now

dict

Field sign_zone_now

zone_name

str

Specify the name for the DNS zone, empty means sign all zones

key_rollover

dict

Field key_rollover

zone_name

str

Specify the name for the DNS zone

dnssec_key_type

str

‘ZSK’= Zone Signing Key; ‘KSK’= Key Signing Key;

zsk_start

bool

start ZSK rollover in emergency mode

ksk_start

bool

start KSK rollover in emergency mode

ds_ready_in_parent_zone

bool

DS RR is already ready in the parent zone

template_list

list

Field template_list

dnssec_temp_name

str

DNSSEC Template Name

algorithm

str

‘RSASHA1’= RSASHA1 algorithm; ‘RSASHA256’= RSASHA256 algorithm; ‘RSASHA512’= RSASHA512 algorithm;

combinations_limit

int

the max number of combinations per RRset (Default value is 31)

dnskey_ttl_k

bool

The TTL value of DNSKEY RR

dnskey_ttl_v

int

in seconds, 14400 seconds by default

enable_nsec3

bool

enable NSEC3 support. disabled by default

return_nsec_on_failure

bool

return NSEC/NSEC3 or not on failure case. return by default

signature_validity_period_k

bool

The period that a signature is valid

signature_validity_period_v

int

in days, 10 days by default

hsm

str

specify the HSM template

dnssec_template_zsk

dict

Field dnssec_template_zsk

dnssec_template_ksk

dict

Field dnssec_template_ksk

uuid

str

uuid of the object

user_tag

str

Customized tag

oper

dict

Field oper

soa_memory

int

Field soa_memory

soa_objects

int

Field soa_objects

dnskey_memory

int

Field dnskey_memory

dnskey_objects

int

Field dnskey_objects

ds_memory

int

Field ds_memory

ds_objects

int

Field ds_objects

nsec3param_memory

int

Field nsec3param_memory

nsec3param_objects

int

Field nsec3param_objects

nsec_memory

int

Field nsec_memory

nsec_objects

int

Field nsec_objects

nsec3_memory

int

Field nsec3_memory

nsec3_objects

int

Field nsec3_objects

rrsig_memory

int

Field rrsig_memory

rrsig_objects

int

Field rrsig_objects

a_memory

int

Field a_memory

a_objects

int

Field a_objects

aaaa_memory

int

Field aaaa_memory

aaaa_objects

int

Field aaaa_objects

ptr_memory

int

Field ptr_memory

ptr_objects

int

Field ptr_objects

cname_memory

int

Field cname_memory

cname_objects

int

Field cname_objects

ns_memory

int

Field ns_memory

ns_objects

int

Field ns_objects

mx_memory

int

Field mx_memory

mx_objects

int

Field mx_objects

srv_memory

int

Field srv_memory

srv_objects

int

Field srv_objects

txt_memory

int

Field txt_memory

txt_objects

int

Field txt_objects

zone_memory

int

Field zone_memory

zone_objects

int

Field zone_objects

domain_memory

int

Field domain_memory

domain_objects

int

Field domain_objects

table_memory

int

Field table_memory

table_objects

int

Field table_objects

reference_memory

int

Field reference_memory

reference_objects

int

Field reference_objects

array_memory

int

Field array_memory

array_objects

int

Field array_objects

rrsig2_memory

int

Field rrsig2_memory

rrsig2_objects

int

Field rrsig2_objects

total_memory

int

Field total_memory

total_objects

int

Field total_objects

Status

  • This module is not guaranteed to have a backwards compatible interface. [preview]

  • This module is maintained by community.

Authors

  • A10 Networks 2021