oracle / oracle.oci / 2.38.0 / module / oci_network_ip_sec_connection_tunnel_facts Fetches details about one or multiple IpSecConnectionTunnel resources in Oracle Cloud Infrastructure | "added in version" 2.9.0 of oracle.oci" Authors: Oracle (@oracle) preview | supported by communityoracle.oci.oci_network_ip_sec_connection_tunnel_facts (2.38.0) — module
Install with ansible-galaxy collection install oracle.oci:==2.38.0
collections: - name: oracle.oci version: 2.38.0
Fetches details about one or multiple IpSecConnectionTunnel resources in Oracle Cloud Infrastructure
Lists the tunnel information for the specified IPSec connection.
If I(tunnel_id) is specified, the details of a single IpSecConnectionTunnel will be returned.
- name: Get a specific ip_sec_connection_tunnel oci_network_ip_sec_connection_tunnel_facts: # required ipsc_id: "ocid1.ipsc.oc1..xxxxxxEXAMPLExxxxxx" tunnel_id: "ocid1.tunnel.oc1..xxxxxxEXAMPLExxxxxx"
- name: List ip_sec_connection_tunnels oci_network_ip_sec_connection_tunnel_facts: # required ipsc_id: "ocid1.ipsc.oc1..xxxxxxEXAMPLExxxxxx"
region: description: - The Oracle Cloud Infrastructure region to use for all OCI API requests. If not set, then the value of the OCI_REGION variable, if any, is used. This option is required if the region is not specified through a configuration file (See C(config_file_location)). Please refer to U(https://docs.us-phoenix-1.oraclecloud.com/Content/General/Concepts/regions.htm) for more information on OCI regions. type: str ipsc_id: description: - The L(OCID,https://docs.cloud.oracle.com/Content/General/Concepts/identifiers.htm) of the IPSec connection. required: true type: str tenancy: description: - OCID of your tenancy. If not set, then the value of the OCI_TENANCY variable, if any, is used. This option is required if the tenancy OCID is not specified through a configuration file (See C(config_file_location)). To get the tenancy OCID, please refer U(https://docs.us-phoenix-1.oraclecloud.com/Content/API/Concepts/apisigningkey.htm) type: str api_user: description: - The OCID of the user, on whose behalf, OCI APIs are invoked. If not set, then the value of the OCI_USER_ID environment variable, if any, is used. This option is required if the user is not specified through a configuration file (See C(config_file_location)). To get the user's OCID, please refer U(https://docs.us-phoenix-1.oraclecloud.com/Content/API/Concepts/apisigningkey.htm). type: str auth_type: choices: - api_key - instance_principal - instance_obo_user - resource_principal default: api_key description: - The type of authentication to use for making API requests. By default C(auth_type="api_key") based authentication is performed and the API key (see I(api_user_key_file)) in your config file will be used. If this 'auth_type' module option is not specified, the value of the OCI_ANSIBLE_AUTH_TYPE, if any, is used. Use C(auth_type="instance_principal") to use instance principal based authentication when running ansible playbooks within an OCI compute instance. type: str tunnel_id: aliases: - id description: - The L(OCID,https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the tunnel. - Required to get a specific ip_sec_connection_tunnel. type: str display_name: description: Use I(display_name) along with the other options to return only resources that match the given display name exactly. type: str api_user_key_file: description: - Full path and filename of the private key (in PEM format). If not set, then the value of the OCI_USER_KEY_FILE variable, if any, is used. This option is required if the private key is not specified through a configuration file (See C(config_file_location)). If the key is encrypted with a pass-phrase, the C(api_user_key_pass_phrase) option must also be provided. type: str config_profile_name: description: - The profile to load from the config file referenced by C(config_file_location). If not set, then the value of the OCI_CONFIG_PROFILE environment variable, if any, is used. Otherwise, defaults to the "DEFAULT" profile in C(config_file_location). type: str api_user_fingerprint: description: - Fingerprint for the key pair being used. If not set, then the value of the OCI_USER_FINGERPRINT environment variable, if any, is used. This option is required if the key fingerprint is not specified through a configuration file (See C(config_file_location)). To get the key pair's fingerprint value please refer U(https://docs.us-phoenix-1.oraclecloud.com/Content/API/Concepts/apisigningkey.htm). type: str config_file_location: description: - Path to configuration file. If not set then the value of the OCI_CONFIG_FILE environment variable, if any, is used. Otherwise, defaults to ~/.oci/config. type: str api_user_key_pass_phrase: description: - Passphrase used by the key referenced in C(api_user_key_file), if it is encrypted. If not set, then the value of the OCI_USER_KEY_PASS_PHRASE variable, if any, is used. This option is required if the key passphrase is not specified through a configuration file (See C(config_file_location)). type: str
ip_sec_connection_tunnels: contains: bgp_session_info: contains: bgp_ipv6_state: description: - The state of the BGP IPv6 session. returned: on success sample: UP type: str bgp_state: description: - The state of the BGP session. returned: on success sample: UP type: str customer_bgp_asn: description: - If the tunnel's `routing` attribute is set to `BGP` (see L(IPSecConnectionTunnel,https://docs.cloud.oracle.com/en-us/iaas/api/#/en/iaas/latest/IPSecConnectionTunnel/)), this ASN is required and used for the tunnel's BGP session. This is the ASN of the network on the CPE end of the BGP session. Can be a 2-byte or 4-byte ASN. Uses "asplain" format. - If the tunnel uses static routing, the `customerBgpAsn` must be null. - 'Example: `12345` (2-byte) or `1587232876` (4-byte)' returned: on success sample: customer_bgp_asn_example type: str customer_interface_ip: description: - The IP address for the CPE end of the inside tunnel interface. - If the tunnel's `routing` attribute is set to `BGP` (see L(IPSecConnectionTunnel,https://docs.cloud.oracle.com/en-us/iaas/api/#/en/iaas/latest/IPSecConnectionTunnel/)), this IP address is required and used for the tunnel's BGP session. - If `routing` is instead set to `STATIC`, this IP address is optional. You can set this IP address so you can troubleshoot or monitor the tunnel. - The value must be a /30 or /31. - 'Example: `10.0.0.5/31`' returned: on success sample: customer_interface_ip_example type: str customer_interface_ipv6: description: - The IPv6 address for the CPE end of the inside tunnel interface. This IP address is optional. - If the tunnel's `routing` attribute is set to `BGP` (see L(IPSecConnectionTunnel,https://docs.cloud.oracle.com/en-us/iaas/api/#/en/iaas/latest/IPSecConnectionTunnel/)), this IP address is used for the tunnel's BGP session. - If `routing` is instead set to `STATIC`, you can set this IP address to troubleshoot or monitor the tunnel. - Only subnet masks from /64 up to /127 are allowed. - 'Example: `2001:db8::1/64`' returned: on success sample: customer_interface_ipv6_example type: str oracle_bgp_asn: description: - The Oracle BGP ASN. returned: on success sample: oracle_bgp_asn_example type: str oracle_interface_ip: description: - The IP address for the Oracle end of the inside tunnel interface. - If the tunnel's `routing` attribute is set to `BGP` (see L(IPSecConnectionTunnel,https://docs.cloud.oracle.com/en-us/iaas/api/#/en/iaas/latest/IPSecConnectionTunnel/)), this IP address is required and used for the tunnel's BGP session. - If `routing` is instead set to `STATIC`, this IP address is optional. You can set this IP address so you can troubleshoot or monitor the tunnel. - The value must be a /30 or /31. - 'Example: `10.0.0.4/31`' returned: on success sample: oracle_interface_ip_example type: str oracle_interface_ipv6: description: - The IPv6 address for the Oracle end of the inside tunnel interface. This IP address is optional. - If the tunnel's `routing` attribute is set to `BGP` (see L(IPSecConnectionTunnel,https://docs.cloud.oracle.com/en-us/iaas/api/#/en/iaas/latest/IPSecConnectionTunnel/)), this IP address is used for the tunnel's BGP session. - If `routing` is instead set to `STATIC`, you can set this IP address to troubleshoot or monitor the tunnel. - Only subnet masks from /64 up to /127 are allowed. - 'Example: `2001:db8::1/64`' returned: on success sample: oracle_interface_ipv6_example type: str description: - '' returned: on success type: complex compartment_id: description: - The L(OCID,https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the compartment containing the tunnel. returned: on success sample: ocid1.compartment.oc1..xxxxxxEXAMPLExxxxxx type: str cpe_ip: description: - The IP address of the CPE's VPN headend. - 'Example: `203.0.113.22`' returned: on success sample: cpe_ip_example type: str display_name: description: - A user-friendly name. Does not have to be unique, and it's changeable. Avoid entering confidential information. returned: on success sample: display_name_example type: str encryption_domain_config: contains: cpe_traffic_selector: description: - Lists IPv4 or IPv6-enabled subnets in your on-premises network. returned: on success sample: [] type: list oracle_traffic_selector: description: - Lists IPv4 or IPv6-enabled subnets in your Oracle tenancy. returned: on success sample: [] type: list description: - '' returned: on success type: complex id: description: - The L(OCID,https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the tunnel. returned: on success sample: ocid1.resource.oc1..xxxxxxEXAMPLExxxxxx type: str ike_version: description: - Internet Key Exchange protocol version. returned: on success sample: V1 type: str lifecycle_state: description: - The tunnel's lifecycle state. returned: on success sample: PROVISIONING type: str routing: description: - The type of routing used for this tunnel (either BGP dynamic routing or static routing). returned: on success sample: BGP type: str status: description: - The status of the tunnel based on IPSec protocol characteristics. returned: on success sample: UP type: str time_created: description: - The date and time the IPSec connection tunnel was created, in the format defined by L(RFC3339,https://tools.ietf.org/html/rfc3339). - 'Example: `2016-08-25T21:10:29.600Z`' returned: on success sample: '2013-10-20T19:20:30+01:00' type: str time_status_updated: description: - When the status of the tunnel last changed, in the format defined by L(RFC3339,https://tools.ietf.org/html/rfc3339). - 'Example: `2016-08-25T21:10:29.600Z`' returned: on success sample: '2013-10-20T19:20:30+01:00' type: str vpn_ip: description: - The IP address of Oracle's VPN headend. - 'Example: `203.0.113.21`' returned: on success sample: vpn_ip_example type: str description: - List of IpSecConnectionTunnel resources returned: on success sample: - bgp_session_info: bgp_ipv6_state: UP bgp_state: UP customer_bgp_asn: customer_bgp_asn_example customer_interface_ip: customer_interface_ip_example customer_interface_ipv6: customer_interface_ipv6_example oracle_bgp_asn: oracle_bgp_asn_example oracle_interface_ip: oracle_interface_ip_example oracle_interface_ipv6: oracle_interface_ipv6_example compartment_id: ocid1.compartment.oc1..xxxxxxEXAMPLExxxxxx cpe_ip: cpe_ip_example display_name: display_name_example encryption_domain_config: cpe_traffic_selector: [] oracle_traffic_selector: [] id: ocid1.resource.oc1..xxxxxxEXAMPLExxxxxx ike_version: V1 lifecycle_state: PROVISIONING routing: BGP status: UP time_created: '2013-10-20T19:20:30+01:00' time_status_updated: '2013-10-20T19:20:30+01:00' vpn_ip: vpn_ip_example type: complex