Try SpotterManages https-rules objects on Check Point over Web Services API
| "added in version" 1.0 of octupus.o4n_checkpoint_modules"
Authors: Randy Rozo
preview | supported by octupus
Install with ansible-galaxy collection install octupus.o4n_checkpoint_modules:==1.1.8
collections:
- name: octupus.o4n_checkpoint_modules
version: 1.1.8Manages https rule objects in Check Point devices, including creation and updating if the rule to be created matches another,
it will add missing sources or destinations
All operations are performed over Web Services API.
layers:
description:
- Layer that the rule belongs to identified by the name or UID.
elements: dict
required: true
suboptions:
name:
description:
- Object name.
required: true
type: str
rules:
description:
- List of rules.
elements: dict
required: true
suboptions:
action:
description:
- a "Bypass" or "Inspect".
type: str
blade:
choices:
- Anti Bot
- Anti Virus
- Application Control
- Data Awareness
- DLP
- IPS
- Threat Emulation
- Url Filtering
description:
- blade settings.
type: str
certificate:
description:
- certificate string.
type: str
comments:
description:
- Comments string.
type: str
destination:
description:
- Collection of Network objects identified by the name or UID.
elements: str
type: list
enabled:
description:
- Enable/Disable the rule.
type: bool
install_on:
description:
- Which Gateways identified by the name or UID to install the policy on.
elements: str
type: list
name:
description:
- Object name.
required: true
type: str
service:
description:
- Collection of Network objects identified by the name or UID.
elements: str
type: list
site_category:
description:
- List of site category objects.
elements: str
type: list
source:
description:
- Collection of Network objects identified by the name or UID.
elements: str
type: list
state:
choices:
- present
- absent
default: present
description:
- State of the https rule (present or absent). Defaults to present.
type: str
track:
choices:
- None
- Log
- Alert
- Mail
- SNMP trap
- Mail
- User Alert 1
- User Alert 2
- User Alert 3
description:
- Track Settings.
type: str
type: list
type: list
provider:
elements: dict
required: true
suboptions:
domain:
required: true
type: str
host:
required: true
type: str
password:
required: true
type: str
port:
required: true
type: integer
user:
required: true
type: str
validate_certs:
required: true
type: boolean
type: dic
output:
description: The checkpoint add https rules output
returned: allways
sample:
output:
changed: false
content:
- layer_name:
- action: Accept
blade:
- All
destination:
- Any
enabled: false
install-on:
- Cluster-TEST
number: ''
section: REGLA ACCESO
service:
- Any
source:
- Any
track: Log
discard: []
failed: false
logout: OK
msg:
layer_name: Se han agregado 1 reglas.
publish:
progress-percentage: 100
status: succeeded
suppressed: false
task-details:
- publishResponse:
mode: async
numberOfPublishedChanges: 1
revision: 4330f-0ddf-4bb4-92a6-1d73b9f
task-id: 04567-89ab-cdef-87f4-5730958
task-name: Publish operation
type: dict