/ home / check_point / check_point.mgmt / 5.2.3 / module / cp_mgmt_set_threat_advanced_settings

check_point.mgmt.cp_mgmt_set_threat_advanced_settings (5.2.3) — module

Edit Threat Prevention's Blades' Settings.

| "added in version" 3.0.0 of check_point.mgmt"

Authors: Eden Brillant (@chkp-edenbr)

preview | supported by community

Install collection

Install with ansible-galaxy collection install check_point.mgmt:==5.2.3

Add to requirements.yml

  collections:
    - name: check_point.mgmt
      version: 5.2.3

Description

Edit Threat Prevention's Blades' Settings.

All operations are performed over Web Services API.

Usage examples

Scanned by Steampunk Spotter

- name: set-threat-advanced-settings
  cp_mgmt_set_threat_advanced_settings:
    feed_retrieving_interval: 00:05
    httpi_non_standard_ports: true
    internal_error_fail_mode: allow connections
    log_unification_timeout: 600
    resource_classification.mode: hold
    resource_classification.web_service_fail_mode: block connections

Inputs

    
version:
    description:
    - Version of checkpoint. If not given one, the latest version taken.
    type: str

ignore_errors:
    description:
    - Apply changes ignoring errors. You won't be able to publish such a changes. If ignore-warnings
      flag was omitted - warnings will also be ignored.
    type: bool

wait_for_task:
    default: true
    description:
    - Wait for the task to end. Such as publish task.
    type: bool

ignore_warnings:
    description:
    - Apply changes ignoring warnings.
    type: bool

auto_publish_session:
    default: false
    description:
    - Publish the current session if changes have been performed after task completes.
    type: bool

wait_for_task_timeout:
    default: 30
    description:
    - How many minutes to wait until throwing a timeout error.
    type: int

log_unification_timeout:
    description:
    - Session unification timeout for logs (minutes).
    type: int

resource_classification:
    description:
    - Allow (Background) or Block (Hold) requests until categorization is complete.
    suboptions:
      custom_settings:
        description:
        - On Custom mode, custom resources classification per service.
        suboptions:
          anti_bot:
            choices:
            - background
            - hold
            description:
            - Custom Settings for Anti Bot Blade.
            type: str
          anti_virus:
            choices:
            - background
            - hold
            description:
            - Custom Settings for Anti Virus Blade.
            type: str
          zero_phishing:
            choices:
            - background
            - hold
            description:
            - Custom Settings for Zero Phishing Blade.
            type: str
        type: dict
      mode:
        choices:
        - background
        - hold
        - custom
        description:
        - Set all services to the same mode or choose a custom mode.
        type: str
      web_service_fail_mode:
        choices:
        - allow connections
        - block connections
        description:
        - Block connections when the web service is unavailable.
        type: str
    type: dict

feed_retrieving_interval:
    description:
    - Feed retrieving intervals of External Feed, in the form of HH,MM.
    type: str

httpi_non_standard_ports:
    description:
    - Enable HTTP Inspection on non standard ports for Threat Prevention blades.
    type: bool

internal_error_fail_mode:
    choices:
    - allow connections
    - block connections
    description:
    - In case of internal system error, allow or block all connections.
    type: str

Outputs

cp_mgmt_set_threat_advanced_settings:
  description: The checkpoint set-threat-advanced-settings output.
  returned: always.
  type: dict