XLAB Steampunk logo Try Spotter
 / home / community / community.general / 0.1.1 / module / fmgr_fwpol_package

community.general.fmgr_fwpol_package (0.1.1) — module

Manages FortiManager Firewall Policies Packages.

Authors: Luke Weighall (@lweighall), Andrew Welsh (@Ghilli3), Jim Huber (@p4r4n0y1ng)

preview | supported by community

Install collection | Add to requirements.yml | Description | Usage examples | Inputs | Outputs

Install collection

Install with ansible-galaxy collection install community.general:==0.1.1


Add to requirements.yml

  collections:
    - name: community.general
      version: 0.1.1

Description

Manages FortiManager Firewall Policies Packages. Policy Packages contain one or more Firewall Policies/Rules and are distritbuted via FortiManager to Fortigates.

This module controls the creation/edit/delete/assign of these packages.

Usage examples

Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
- name: CREATE BASIC POLICY PACKAGE
  fmgr_fwpol_package:
    adom: "ansible"
    mode: "add"
    name: "testPackage"
    object_type: "pkg"
Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
- name: ADD PACKAGE WITH TARGETS
  fmgr_fwpol_package:
    mode: "add"
    adom: "ansible"
    name: "ansibleTestPackage1"
    object_type: "pkg"
    inspection_mode: "flow"
    ngfw_mode: "profile-based"
    scope_members: "seattle-fgt02, seattle-fgt03"
Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
- name: ADD FOLDER
  fmgr_fwpol_package:
    mode: "add"
    adom: "ansible"
    name: "ansibleTestFolder1"
    object_type: "folder"
Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
- name: ADD PACKAGE INTO PARENT FOLDER
  fmgr_fwpol_package:
    mode: "set"
    adom: "ansible"
    name: "ansibleTestPackage2"
    object_type: "pkg"
    parent_folder: "ansibleTestFolder1"
Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
- name: ADD FOLDER INTO PARENT FOLDER
  fmgr_fwpol_package:
    mode: "set"
    adom: "ansible"
    name: "ansibleTestFolder2"
    object_type: "folder"
    parent_folder: "ansibleTestFolder1"
Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
- name: INSTALL PACKAGE
  fmgr_fwpol_package:
    mode: "set"
    adom: "ansible"
    name: "ansibleTestPackage1"
    object_type: "install"
    scope_members: "seattle-fgt03, seattle-fgt02"
Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
- name: REMOVE PACKAGE
  fmgr_fwpol_package:
    mode: "delete"
    adom: "ansible"
    name: "ansibleTestPackage1"
    object_type: "pkg"
Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
- name: REMOVE NESTED PACKAGE
  fmgr_fwpol_package:
    mode: "delete"
    adom: "ansible"
    name: "ansibleTestPackage2"
    object_type: "pkg"
    parent_folder: "ansibleTestFolder1"
Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
- name: REMOVE NESTED FOLDER
  fmgr_fwpol_package:
    mode: "delete"
    adom: "ansible"
    name: "ansibleTestFolder2"
    object_type: "folder"
    parent_folder: "ansibleTestFolder1"
Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
- name: REMOVE FOLDER
  fmgr_fwpol_package:
    mode: "delete"
    adom: "ansible"
    name: "ansibleTestFolder1"
    object_type: "folder"

Inputs

    
adom:
    default: root
    description:
    - The ADOM the configuration should belong to.
    required: false

mode:
    choices:
    - add
    - set
    - delete
    default: add
    description:
    - Sets one of three modes for managing the object.

name:
    description:
    - Name of the FortiManager package or folder.
    required: true

ngfw_mode:
    choices:
    - profile-based
    - policy-based
    default: profile-based
    description:
    - NGFW mode setting for the policies flow or proxy.
    required: false

central_nat:
    choices:
    - enable
    - disable
    default: disable
    description:
    - Central NAT setting.
    required: false

object_type:
    choices:
    - pkg
    - folder
    - install
    description:
    - Are we managing packages or folders, or installing packages?
    required: true

parent_folder:
    description:
    - The parent folder name you want to add this object under.
    required: false

scope_members:
    description:
    - The devices or scope that you want to assign this policy package to.
    required: false

package_folder:
    description:
    - Name of the folder you want to put the package into.
    required: false

inspection_mode:
    choices:
    - flow
    - proxy
    default: flow
    description:
    - Inspection mode setting for the policies flow or proxy.
    required: false

ssl_ssh_profile:
    description:
    - if policy-based ngfw-mode, refer to firewall ssl-ssh-profile.
    required: false

scope_members_vdom:
    default: root
    description:
    - The members VDOM you want to assign the package to.
    required: false

fwpolicy_implicit_log:
    choices:
    - enable
    - disable
    default: disable
    description:
    - Implicit Log setting for all IPv4 policies in package.
    required: false

fwpolicy6_implicit_log:
    choices:
    - enable
    - disable
    default: disable
    description:
    - Implicit Log setting for all IPv6 policies in package.
    required: false

Outputs

api_result:
  description: full API response, includes status code and message
  returned: always
  type: str
Got feedback? steampunk@xlab.si | © 2024. All rights reserved.
Cookie policy-Privacy policy-Terms of use-Security policy