XLAB Steampunk logo Try Spotter
 / home / nleiva / nleiva.capirca_acl / 0.3.1 / module / translate

nleiva.capirca_acl.translate (0.3.1) — module

Generate ACL's for different Operating Systems using Capirca.

| "added in version" 2.9 of nleiva.capirca_acl"

Authors: Nicolas Leiva (@_nleiva)

preview | supported by community

Install collection | Add to requirements.yml | Description | Requirements | Usage examples | Inputs | Outputs

Install collection

Install with ansible-galaxy collection install nleiva.capirca_acl:==0.3.1


Add to requirements.yml

  collections:
    - name: nleiva.capirca_acl
      version: 0.3.1

Description

Generate an ACL out of three input files; prefixes, ports and terms.


Requirements

Usage examples

Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
# Generate ACL for JunOS and save the output
- name: Run this module to generate an Juniper ACL
  nleiva.capirca_acl.translate:
    platform: 'juniper'
    filter_options: ["Test Name"]
    def_folder: "files/def"
    pol_file: "files/policies/terms.pol"
  register: testout
Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
# Generate ACL for Arista EOS and save the output
- name: Run this module to generate an Arista ACL
  nleiva.capirca_acl.translate:
    platform: 'arista'
    filter_options: ["Test Name"]
    def_folder: "files/def"
    pol_file: "files/policies/terms.pol"
  register: testout
Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
# Generate an IPv6 ACL for Cisco IOS XR and save the output
- name: Run this module to generate an Cisco IOS XR ACL
  nleiva.capirca_acl.translate:
    platform: 'ciscoxr'
    filter_options:
      - ipv6-test-filter
      - inet6
    def_folder: "integration/targets/translate/files/def"
    pol_file: "integration/targets/translate/files/policies/terms.pol"
  register: testout
Scanned by Steampunk Spotter
  • Success
    Steampunk Spotter scan finished with no errors, warnings or hints.
# Generate an iptables and save the output
- name: Run this module to generate an iptables filter
  nleiva.capirca_acl.translate:
    platform: 'iptables'
    filter_options: ['INPUT', 'ACCEPT', 'abbreviateterms']
    def_folder: "integration/targets/translate/files/def"
    pol_file: "integration/targets/translate/files/policies/terms.pol"
  register: testout

Inputs

    
new:
    description:
    - Control to demo if the result of this module is changed or not
    required: false

comment:
    description:
    - This is a comment/description of the ACL to generate
    required: false

platform:
    description:
    - This is the target Operating System
    required: true

pol_file:
    description:
    - This is the file where your ACL terms are defined
    required: false

def_folder:
    description:
    - This is the folder where IP prefixes and Services are defined
    required: false

filter_options:
    description:
    - These are the options for the filter. It varies per platform.
    required: false

Outputs

message:
  description: The ACL that this module generates
  returned: always
  type: str
original_message:
  description: The Platform target passed to the module
  returned: always
  type: str
Got feedback? steampunk@xlab.si | © 2024. All rights reserved.
Cookie policy-Privacy policy-Terms of use-Security policy