check_point.mgmt.checkpoint_access_rule – Manages access rules on Check Point over Web Services API
Note
This plugin is part of the check_point.mgmt collection (version 2.2.0).
You might already have this collection installed if you are using the ansible
package.
It is not included in ansible-core
.
To check whether it is installed, run ansible-galaxy collection list
.
To install it, use: ansible-galaxy collection install check_point.mgmt
.
To use it in a playbook, specify: check_point.mgmt.checkpoint_access_rule
.
Synopsis
Manages access rules on Check Point devices including creating, updating, removing access rules objects, All operations are performed over Web Services API.
Parameters
Parameter |
Comments |
---|---|
Action of the access rule (accept, drop, inform, etc). Default: “drop” |
|
Install the package policy if changes have been performed after the task completes. Choices:
|
|
Publish the current session if changes have been performed after task completes. Choices:
|
|
Destination object of the access rule. |
|
Enabled or disabled flag. Choices:
|
|
Layer to attach the access rule to. |
|
Name of the access rule. |
|
Package policy name to be installed. Default: “standard” |
|
Position of the access rule. |
|
Source object of the access rule. |
|
State of the access rule (present or absent). Defaults to present. Default: “present” |
|
Targets to install the package policy on. |
Examples
- name: Create access rule
checkpoint_access_rule:
layer: Network
name: "Drop attacker"
position: top
source: attacker
destination: Any
action: Drop
- name: Delete access rule
checkpoint_access_rule:
layer: Network
name: "Drop attacker"
Return Values
Common return values are documented here, the following are the fields unique to this module:
Key |
Description |
---|---|
The checkpoint access rule object created or updated. Returned: always, except when deleting the access rule. |
Authors
Ansible by Red Hat (@rcarrillocruz)