a10_ip_anomaly_drop¶
Parameters¶
Parameters |
Choices/Defaults |
Comment |
|
|---|---|---|---|
state str/required |
[‘noop’, ‘present’, ‘absent’] |
State of the object to be created. |
|
ansible_host str/required |
Host for AXAPI authentication |
||
ansible_username str/required |
Username for AXAPI authentication |
||
ansible_password str/required |
Password for AXAPI authentication |
||
ansible_port int/required |
Port for AXAPI authentication |
||
a10_device_context_id int |
[‘1-8’] |
Device ID for aVCS configuration |
|
a10_partition str |
Destination/target partition for object/command |
||
packet_deformity dict |
Field packet_deformity |
||
packet_deformity_layer_3 bool |
drop packets with layer 3 anomaly |
||
packet_deformity_layer_4 bool |
drop packets with layer 4 anomaly |
||
security_attack dict |
Field security_attack |
||
security_attack_layer_3 bool |
drop packets with layer 3 anomaly |
||
security_attack_layer_4 bool |
drop packets with layer 4 anomaly |
||
bad_content int |
bad content threshold (threshold value) |
||
drop_all bool |
drop all IP anomaly packets |
||
frag bool |
drop all fragmented packets |
||
ip_option bool |
drop packets with IP options |
||
land_attack bool |
drop IP packets with the same source and destination addresses |
||
out_of_sequence int |
out of sequence packet threshold (threshold value) |
||
ping_of_death bool |
drop oversize ICMP packets |
||
tcp_no_flag bool |
drop TCP packets with no flag |
||
tcp_syn_fin bool |
drop TCP packets with both syn and fin flags set |
||
tcp_syn_frag bool |
drop fragmented TCP packets with syn flag set |
||
zero_window int |
zero window size threshold (threshold value) |
||
uuid str |
uuid of the object |
||
sampling_enable list |
Field sampling_enable |
||
counters1 str |
‘all’= all; ‘land’= land; ‘emp_frg’= emp_frg; ‘emp_mic_frg’= emp_mic_frg; ‘opt’= opt; ‘frg’= frg; ‘bad_ip_hdrlen’= bad_ip_hdrlen; ‘bad_ip_flg’= bad_ip_flg; ‘bad_ip_ttl’= bad_ip_ttl; ‘no_ip_payload’= no_ip_payload; ‘over_ip_payload’= over_ip_payload; ‘bad_ip_payload_len’= bad_ip_payload_len; ‘bad_ip_frg_offset’= bad_ip_frg_offset; ‘csum’= csum; ‘pod’= pod; ‘bad_tcp_urg_offset’= bad_tcp_urg_offset; ‘tcp_sht_hdr’= tcp_sht_hdr; ‘tcp_bad_iplen’= tcp_bad_iplen; ‘tcp_null_frg’= tcp_null_frg; ‘tcp_null_scan’= tcp_null_scan; ‘tcp_syn_fin’= tcp_syn_fin; ‘tcp_xmas’= tcp_xmas; ‘tcp_xmas_scan’= tcp_xmas_scan; ‘tcp_syn_frg’= tcp_syn_frg; ‘tcp_frg_hdr’= tcp_frg_hdr; ‘tcp_bad_csum’= tcp_bad_csum; ‘udp_srt_hdr’= udp_srt_hdr; ‘udp_bad_len’= udp_bad_len; ‘udp_kerb_frg’= udp_kerb_frg; ‘udp_port_lb’= udp_port_lb; ‘udp_bad_csum’= udp_bad_csum; ‘runt_ip_hdr’= runt_ip_hdr; ‘runt_tcp_udp_hdr’= runt_tcp_udp_hdr; ‘ipip_tnl_msmtch’= ipip_tnl_msmtch; ‘tcp_opt_err’= tcp_opt_err; ‘ipip_tnl_err’= ipip_tnl_err; ‘vxlan_err’= vxlan_err; ‘nvgre_err’= nvgre_err; ‘gre_pptp_err’= gre_pptp_err; |
||
stats dict |
Field stats |
||
land str |
Field land |
||
emp_frg str |
Field emp_frg |
||
emp_mic_frg str |
Field emp_mic_frg |
||
opt str |
Field opt |
||
frg str |
Field frg |
||
bad_ip_hdrlen str |
Field bad_ip_hdrlen |
||
bad_ip_flg str |
Field bad_ip_flg |
||
bad_ip_ttl str |
Field bad_ip_ttl |
||
no_ip_payload str |
Field no_ip_payload |
||
over_ip_payload str |
Field over_ip_payload |
||
bad_ip_payload_len str |
Field bad_ip_payload_len |
||
bad_ip_frg_offset str |
Field bad_ip_frg_offset |
||
csum str |
Field csum |
||
pod str |
Field pod |
||
bad_tcp_urg_offset str |
Field bad_tcp_urg_offset |
||
tcp_sht_hdr str |
Field tcp_sht_hdr |
||
tcp_bad_iplen str |
Field tcp_bad_iplen |
||
tcp_null_frg str |
Field tcp_null_frg |
||
tcp_null_scan str |
Field tcp_null_scan |
||
tcp_syn_fin str |
Field tcp_syn_fin |
||
tcp_xmas str |
Field tcp_xmas |
||
tcp_xmas_scan str |
Field tcp_xmas_scan |
||
tcp_syn_frg str |
Field tcp_syn_frg |
||
tcp_frg_hdr str |
Field tcp_frg_hdr |
||
tcp_bad_csum str |
Field tcp_bad_csum |
||
udp_srt_hdr str |
Field udp_srt_hdr |
||
udp_bad_len str |
Field udp_bad_len |
||
udp_kerb_frg str |
Field udp_kerb_frg |
||
udp_port_lb str |
Field udp_port_lb |
||
udp_bad_csum str |
Field udp_bad_csum |
||
runt_ip_hdr str |
Field runt_ip_hdr |
||
runt_tcp_udp_hdr str |
Field runt_tcp_udp_hdr |
||
ipip_tnl_msmtch str |
Field ipip_tnl_msmtch |
||
tcp_opt_err str |
Field tcp_opt_err |
||
ipip_tnl_err str |
Field ipip_tnl_err |
||
vxlan_err str |
Field vxlan_err |
||
nvgre_err str |
Field nvgre_err |
||
gre_pptp_err str |
Field gre_pptp_err |
||