Try SpotterManages the ACL configuration
| "added in version" 2.13.6 of alliedtelesis.awplus"
Authors: Ben Hoelker
preview | supported by network
Install with ansible-galaxy collection install alliedtelesis.awplus:==1.2.2
collections:
- name: alliedtelesis.awplus
version: 1.2.2This module manages the ACL configuration of Alliedware Plus devices.
state:
choices:
- merged
- replaced
- overridden
- deleted
default: merged
description:
- The state the configuration should be left in
type: str
config:
description:
- The provided configuration for the ACL module.
elements: dict
suboptions:
acls:
description:
- Configures the Lists of ACLs
elements: dict
suboptions:
aces:
description:
- Configures the parameters for the relevant ACL.
elements: dict
suboptions:
ICMP_type_number:
description:
- Specifies the ICMP type.
type: int
ace_ID:
description:
- Defines the ace ID for a filter entry in an ACL.
type: int
action:
choices:
- permit
- deny
- copy-to-cpu
- copy-to-mirror
- send-to-mirror
- send-to-cpu
description:
- Action to do with matched packets.
destination_addr:
description:
- Destination address in the form of an IPv4/IPv6 address.
- Putting 'any', will match any destination IP address.
type: str
destination_port_protocol:
description:
- Defines the protocols for the distination port.
elements: dict
suboptions:
eq:
description:
- Matches port numbers that are equal to the specified port.
type: int
gt:
description:
- Matches port numbers that are greater than the specified port.
type: int
lt:
description:
- Matches port numbers that are less than the specified port.
type: int
ne:
description:
- Matches port numbers that are not equal to the specified port.
type: int
range:
description:
- Matches a range of port numbers.
suboptions:
end:
description:
- The end port.
type: int
start:
description:
- The starting port.
type: int
type: list
type: list
protocols:
choices:
- tcp
- udp
- icmp
- ip
description:
- Defines which protocol (IP/TCP/UDP or ICMP) the user wants to target.
source_addr:
description:
- Source address in the form of an IPv4/IPv6 address.
- Putting 'any', will match any source IP address.
type: str
source_port_protocol:
description:
- Defines the protocols for the source port.
elements: dict
suboptions:
eq:
description:
- Matches port numbers that are equal to the specified port.
type: int
gt:
description:
- Matches port numbers that are greater than the specified port.
type: int
lt:
description:
- Matches port numbers that are less than the specified port.
type: int
ne:
description:
- Matches port numbers that are not equal to the specified port.
type: int
range:
description:
- Matches a range of port numbers.
elements: dict
suboptions:
end:
description:
- The end port.
type: int
start:
description:
- The starting port.
type: int
type: list
type: list
type: list
acl_type:
choices:
- extended
- standard
- hardware
description:
- 'Defines what mode to use: extended, standard or hardware.'
required: true
name:
description:
- defines the name of the ACL.
- Can either be named or numbered.
required: true
type: str
type: list
afi:
choices:
- IPv4
- IPv6
description:
- defines whether IPv4 or IPv6 is used
required: true
type: list
after:
description: The resulting configuration model invocation.
returned: when changed
sample: "The configuration returned will always be in the same format\n of the parameters\
\ above.\n"
before:
description: The configuration prior to the model invocation.
returned: always
sample: "The configuration returned will always be in the same format\n of the parameters\
\ above.\n"
commands:
description: The set of commands pushed to the remote device.
returned: always
sample:
- access-list
- 4 deny ip 192.168.72.0 any
type: list