alliedtelesis / alliedtelesis.awplus / 1.2.2 / module / awplus_acl Manages the ACL configuration | "added in version" 2.13.6 of alliedtelesis.awplus" Authors: Ben Hoelker preview | supported by networkalliedtelesis.awplus.awplus_acl (1.2.2) — module
Install with ansible-galaxy collection install alliedtelesis.awplus:==1.2.2
collections: - name: alliedtelesis.awplus version: 1.2.2
This module manages the ACL configuration of Alliedware Plus devices.
state: choices: - merged - replaced - overridden - deleted default: merged description: - The state the configuration should be left in type: str config: description: - The provided configuration for the ACL module. elements: dict suboptions: acls: description: - Configures the Lists of ACLs elements: dict suboptions: aces: description: - Configures the parameters for the relevant ACL. elements: dict suboptions: ICMP_type_number: description: - Specifies the ICMP type. type: int ace_ID: description: - Defines the ace ID for a filter entry in an ACL. type: int action: choices: - permit - deny - copy-to-cpu - copy-to-mirror - send-to-mirror - send-to-cpu description: - Action to do with matched packets. destination_addr: description: - Destination address in the form of an IPv4/IPv6 address. - Putting 'any', will match any destination IP address. type: str destination_port_protocol: description: - Defines the protocols for the distination port. elements: dict suboptions: eq: description: - Matches port numbers that are equal to the specified port. type: int gt: description: - Matches port numbers that are greater than the specified port. type: int lt: description: - Matches port numbers that are less than the specified port. type: int ne: description: - Matches port numbers that are not equal to the specified port. type: int range: description: - Matches a range of port numbers. suboptions: end: description: - The end port. type: int start: description: - The starting port. type: int type: list type: list protocols: choices: - tcp - udp - icmp - ip description: - Defines which protocol (IP/TCP/UDP or ICMP) the user wants to target. source_addr: description: - Source address in the form of an IPv4/IPv6 address. - Putting 'any', will match any source IP address. type: str source_port_protocol: description: - Defines the protocols for the source port. elements: dict suboptions: eq: description: - Matches port numbers that are equal to the specified port. type: int gt: description: - Matches port numbers that are greater than the specified port. type: int lt: description: - Matches port numbers that are less than the specified port. type: int ne: description: - Matches port numbers that are not equal to the specified port. type: int range: description: - Matches a range of port numbers. elements: dict suboptions: end: description: - The end port. type: int start: description: - The starting port. type: int type: list type: list type: list acl_type: choices: - extended - standard - hardware description: - 'Defines what mode to use: extended, standard or hardware.' required: true name: description: - defines the name of the ACL. - Can either be named or numbered. required: true type: str type: list afi: choices: - IPv4 - IPv6 description: - defines whether IPv4 or IPv6 is used required: true type: list
after: description: The resulting configuration model invocation. returned: when changed sample: "The configuration returned will always be in the same format\n of the parameters\ \ above.\n" before: description: The configuration prior to the model invocation. returned: always sample: "The configuration returned will always be in the same format\n of the parameters\ \ above.\n" commands: description: The set of commands pushed to the remote device. returned: always sample: - access-list - 4 deny ip 192.168.72.0 any type: list