XLAB Steampunk logo Try Spotter
 / home / ansible / ansible.builtin / v2.8.20 / module / _panos_nat_policy

Deprecated

Removed in 2.9

i

Reason:This module depended on outdated and old SDK, use M(panos_nat_rule) instead. | Alternative:Use M(panos_nat_rule) instead.

ansible.builtin._panos_nat_policy (v2.8.20) — module

create a policy NAT rule

| "added in version" 2.3 of ansible.builtin"

Authors: Luigi Mori (@jtschichold), Ivan Bojer (@ivanbojer)

deprecated | supported by community

Install Ansible via pip | Description | Requirements | Usage examples | Inputs

Install Ansible via pip

Install with pip install ansible==2.8.20

Description

Create a policy nat rule. Keep in mind that we can either end up configuring source NAT, destination NAT, or both. Instead of splitting it into two we will make a fair attempt to determine which one the user wants.


Requirements

Usage examples

Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
# Create a source and destination nat rule
  - name: create nat SSH221 rule for 10.0.1.101
    panos_nat:
      ip_address: "192.168.1.1"
      password: "admin"
      rule_name: "Web SSH"
      from_zone: ["external"]
      to_zone: "external"
      source: ["any"]
      destination: ["10.0.0.100"]
      service: "service-tcp-221"
      snat_type: "dynamic-ip-and-port"
      snat_interface: "ethernet1/2"
      dnat_address: "10.0.1.101"
      dnat_port: "22"
      commit: False

Inputs

    
commit:
    default: 'yes'
    description:
    - commit if changed
    type: bool

source:
    default:
    - any
    description:
    - list of source addresses

service:
    default: any
    description:
    - service

to_zone:
    description:
    - destination zone
    required: true

override:
    default: 'no'
    description:
    - attempt to override rule if one with the same name already exists
    type: bool

password:
    description:
    - password for authentication
    required: true

username:
    default: admin
    description:
    - username for authentication

dnat_port:
    description:
    - dnat translated port

from_zone:
    description:
    - list of source zones
    required: true

rule_name:
    description:
    - name of the SNAT rule
    required: true

snat_type:
    description:
    - type of source translation

ip_address:
    description:
    - IP address (or hostname) of PAN-OS device
    required: true

destination:
    default:
    - any
    description:
    - list of destination addresses

dnat_address:
    description:
    - dnat translated address

snat_address:
    description:
    - snat translated address

snat_interface:
    description:
    - snat interface

snat_bidirectional:
    default: 'no'
    description:
    - bidirectional flag
    type: bool

snat_interface_address:
    description:
    - snat interface address
Got feedback? steampunk@xlab.si | © 2024. All rights reserved.
Cookie policy-Privacy policy-Terms of use-Security policy