/ home / ansible / ansible.builtin / v2.9.27 / module / clc_firewall_policy

ansible.builtin.clc_firewall_policy (v2.9.27) — module

Create/delete/update firewall policies

| "added in version" 2.0 of ansible.builtin"

Authors: CLC Runner (@clc-runner)

preview | supported by community

Install Ansible via `pip`

Install with pip install ansible==2.9.27

Description

Create or delete or update firewall policies on Centurylink Cloud

Requirements

python = 2.7
requests >= 2.5.0
clc-sdk

Usage examples

Scanned by Steampunk Spotter

---
- name: Create Firewall Policy
  hosts: localhost
  gather_facts: False
  connection: local
  tasks:
    - name: Create / Verify an Firewall Policy at CenturyLink Cloud
      clc_firewall:
        source_account_alias: WFAD
        location: VA1
        state: present
        source: 10.128.216.0/24
        destination: 10.128.216.0/24
        ports: Any
        destination_account_alias: WFAD

Scanned by Steampunk Spotter

---
- name: Create Firewall Policy
  hosts: localhost
  gather_facts: False
  connection: local
  tasks:
    - name: Create / Verify an Firewall Policy at CenturyLink Cloud
      clc_firewall:
        source_account_alias: WFAD
        location: VA1
        state: present
        source: 10.128.216.0/24
        destination: 10.128.216.0/24
        ports: Any
        destination_account_alias: WFAD

---
- name: Delete Firewall Policy
  hosts: localhost
  gather_facts: False
  connection: local
  tasks:
    - name: Delete an Firewall Policy at CenturyLink Cloud
      clc_firewall:
        source_account_alias: WFAD
        location: VA1
        state: absent
        firewall_policy_id: c62105233d7a4231bd2e91b9c791e43e1

Inputs

    
wait:
    default: 'yes'
    description:
    - Whether to wait for the provisioning tasks to finish before returning.
    type: bool

ports:
    choices:
    - any
    - icmp
    - TCP/123
    - UDP/123
    - TCP/123-456
    - UDP/123-456
    description:
    - The list of ports associated with the policy. TCP and UDP can take in single ports
      or port ranges.

state:
    choices:
    - present
    - absent
    default: present
    description:
    - Whether to create or delete the firewall policy

source:
    description:
    - The list  of source addresses for traffic on the originating firewall. This is required
      when state is 'present'

enabled:
    choices:
    - true
    - false
    default: 'yes'
    description:
    - Whether the firewall policy is enabled or disabled

location:
    description:
    - Target datacenter for the firewall policy
    required: true

destination:
    description:
    - The list of destination addresses for traffic on the terminating firewall. This
      is required when state is 'present'

firewall_policy_id:
    description:
    - Id of the firewall policy. This is required to update or delete an existing firewall
      policy

source_account_alias:
    description:
    - CLC alias for the source account
    required: true

destination_account_alias:
    description:
    - CLC alias for the destination account

Outputs

firewall_policy:
  description: The fire wall policy information
  returned: success
  sample:
    destination:
    - 10.1.1.0/24
    - 10.2.2.0/24
    destinationAccount: wfad
    enabled: true
    id: fc36f1bfd47242e488a9c44346438c05
    links:
    - href: http://api.ctl.io/v2-experimental/firewallPolicies/wfad/uc1/fc36f1bfd47242e488a9c44346438c05
      rel: self
      verbs:
      - GET
      - PUT
      - DELETE
    ports:
    - any
    source:
    - 10.1.1.0/24
    - 10.2.2.0/24
    status: active
  type: dict
firewall_policy_id:
  description: The fire wall policy id
  returned: success
  sample: fc36f1bfd47242e488a9c44346438c05
  type: str