community.vmware.vca_fw module – add remove firewall rules in a gateway in a vca
Note
This module is part of the community.vmware collection (version 2.10.2).
You might already have this collection installed if you are using the ansible
package.
It is not included in ansible-core
.
To check whether it is installed, run ansible-galaxy collection list
.
To install it, use: ansible-galaxy collection install community.vmware
.
To use it in a playbook, specify: community.vmware.vca_fw
.
DEPRECATED
- Removed in:
major release after 2022-06-01
- Why:
Module depends upon deprecated version of Pyvcloud library.
- Alternative:
Use https://github.com/vmware/ansible-module-vcloud-director instead.
Synopsis
Adds or removes firewall rules from a gateway in a vca environment
Parameters
Parameter |
Comments |
---|---|
The API version to be used with the vca. Default: |
|
A list of firewall rules to be added to the gateway, Please see examples on valid entries Default: |
|
The name of the gateway of the vdc where the rule should be added. Default: |
|
The authentication host to be used when service type is vcd. |
|
The instance ID in a vchs environment to be used for creating the vapp. |
|
The org to login to for creating vapp. This option is required when the |
|
The vca password, if not set the environment variable |
|
The type of service we are authenticating against. Choices:
|
|
Whether the object should be added or removed. Choices:
|
|
The vca username or email address, if not set the environment variable |
|
If the certificates of the authentication is to be verified. Choices:
|
|
The name of the vdc where the gateway is located. |
Examples
#Add a set of firewall rules
- hosts: localhost
connection: local
tasks:
- community.vmware.vca_fw:
instance_id: 'b15ff1e5-1024-4f55-889f-ea0209726282'
vdc_name: 'benz_ansible'
fw_rules:
- description: "ben testing"
source_ip: "Any"
dest_ip: 192.0.2.23
- description: "ben testing 2"
source_ip: 192.0.2.50
source_port: "Any"
dest_port: "22"
dest_ip: 192.0.2.101
is_enable: "true"
enable_logging: "false"
protocol: "Tcp"
policy: "allow"
Status
This module will be removed in a major release after 2022-06-01. [deprecated]
For more information see DEPRECATED.