avi_networksecuritypolicy – Module for setup of NetworkSecurityPolicy Avi RESTful Object¶
New in version 2.4.
Synopsis¶
This module is used to configure NetworkSecurityPolicy object
more examples at https://github.com/avinetworks/devops
Requirements¶
The below requirements are needed on the host that executes this module.
avisdk
Parameters¶
Notes¶
Note
For more information on using Ansible to manage Avi Network devices see https://www.ansible.com/ansible-avi-networks.
Examples¶
- name: Create a network security policy to block clients represented by ip group known_attackers
avi_networksecuritypolicy:
controller: '{{ controller }}'
username: '{{ username }}'
password: '{{ password }}'
name: vs-gurutest-ns
rules:
- action: NETWORK_SECURITY_POLICY_ACTION_TYPE_DENY
age: 0
enable: true
index: 1
log: false
match:
client_ip:
group_refs:
- Demo:known_attackers
match_criteria: IS_IN
name: Rule 1
tenant_ref: Demo
Return Values¶
Common return values are documented here, the following are the fields unique to this module:
Key | Returned | Description |
---|---|---|
obj
dictionary
|
success, changed |
NetworkSecurityPolicy (api/networksecuritypolicy) object
|
Status¶
This module is not guaranteed to have a backwards compatible interface. [preview]
This module is maintained by the Ansible Community. [community]