check_point.mgmt.cp_mgmt_set_content_awareness_advanced_settings module – Edit Content Awareness Blades’ Settings.

Note

This module is part of the check_point.mgmt collection (version 6.2.1).

You might already have this collection installed if you are using the ansible package. It is not included in ansible-core. To check whether it is installed, run ansible-galaxy collection list.

To install it, use: ansible-galaxy collection install check_point.mgmt.

To use it in a playbook, specify: check_point.mgmt.cp_mgmt_set_content_awareness_advanced_settings.

New in check_point.mgmt 6.0.0

Synopsis

  • Edit Content Awareness Blades’ Settings.

  • All operations are performed over Web Services API.

Parameters

Parameter

Comments

auto_publish_session

boolean

Publish the current session if changes have been performed after task completes.

Choices:

  • false ← (default)

  • true

httpi_non_standard_ports

boolean

Servers usually send HTTP traffic on TCP port 80. Some servers send HTTP traffic on other ports also. By default, this setting is enabled and Content Awareness inspects HTTP traffic on non-standard ports. You can disable this setting and configure Content Awareness to inspect HTTP traffic only on port 80.

Choices:

  • false

  • true

inspect_archives

boolean

Examine the content of archive files. For example, files with the extension .zip, .gz, .tgz, .tar.Z, .tar, .lzma, .tlz, 7z, .rar.

Choices:

  • false

  • true

internal_error_fail_mode

string

In case of internal system error, allow or block all connections.

Choices:

  • "allow connections"

  • "block connections"

supported_services

list / elements=string

Specify the services that Content Awareness inspects.

version

string

Version of checkpoint. If not given one, the latest version taken.

wait_for_task

boolean

Wait for the task to end. Such as publish task.

Choices:

  • false

  • true ← (default)

wait_for_task_timeout

integer

How many minutes to wait until throwing a timeout error.

Default: 30

Examples

- name: set-content-awareness-advanced-settings
  cp_mgmt_set_content_awareness_advanced_settings:
    httpi_non_standard_ports: 'false'
    inspect_archives: 'false'
    internal_error_fail_mode: block connections
    supported_services:
    - Squid_NTLM

Return Values

Common return values are documented here, the following are the fields unique to this module:

Key

Description

cp_mgmt_set_content_awareness_advanced_settings

dictionary

The checkpoint set-content-awareness-advanced-settings output.

Returned: always.

Authors

  • Eden Brillant (@chkp-edenbr)