community.network.avi_networksecuritypolicy – Module for setup of NetworkSecurityPolicy Avi RESTful Object¶
Note
This plugin is part of the community.network collection (version 2.1.1).
To install it use: ansible-galaxy collection install community.network
.
To use it in a playbook, specify: community.network.avi_networksecuritypolicy
.
Synopsis¶
This module is used to configure NetworkSecurityPolicy object
more examples at https://github.com/avinetworks/devops
Parameters¶
Notes¶
Note
For more information on using Ansible to manage Avi Network devices see https://www.ansible.com/ansible-avi-networks.
Examples¶
- name: Create a network security policy to block clients represented by ip group known_attackers
community.network.avi_networksecuritypolicy:
controller: '{{ controller }}'
username: '{{ username }}'
password: '{{ password }}'
name: vs-gurutest-ns
rules:
- action: NETWORK_SECURITY_POLICY_ACTION_TYPE_DENY
age: 0
enable: true
index: 1
log: false
match:
client_ip:
group_refs:
- Demo:known_attackers
match_criteria: IS_IN
name: Rule 1
tenant_ref: Demo
Return Values¶
Common return values are documented here, the following are the fields unique to this module:
Key | Returned | Description |
---|---|---|
obj
dictionary
|
success, changed |
NetworkSecurityPolicy (api/networksecuritypolicy) object
|
Authors¶
Gaurav Rastogi (@grastogi23) <grastogi@avinetworks.com>