Try SpotterConfigures ACL in Ruckus ICX 7000 series switches.
Authors: Ruckus Wireless (@Commscope)
Install with ansible-galaxy collection install sushma_alethea.test:==1.0.0
collections:
- name: sushma_alethea.test
version: 1.0.0Configures ACL in Ruckus ICX 7000 series switches.
- name: create mac acl and add rules
community.network.icx_acl_mac:
acl_name: mac123
rule:
- rule_type: permit
source:
source_mac_address: 1111.2222.3333
source_mask: ffff.ffff.ffff
any: yes
destination:
destination_mac_address: 4444.5555.6666
destination_mask: ffff.ffff.ffff
any: yes
- rule_type: permit
source:
source_mac_address: 1111.2222.3333
source_mask: ffff.ffff.ffff
any: yes
destination:
destination_mac_address: 4444.5555.6666
destination_mask: ffff.ffff.ffff
any: yes
state: absent
- rule_type: permit
source:
source_mac_address: 1111.2222.3333
source_mask: ffff.ffff.ffff
destination:
any: yes
log: yes
mirror: yes
ether_type: 0800
- name: create only mac acl
icx_acl_mac:
acl_name: mac123
register: output
- name: remove mac acl
icx_acl_mac:
acl_name: mac123
state: absent
rule:
description: Inserts filtering rules in mac access control list
elements: dict
suboptions:
destination:
description: destination_mac_address destination_mask | any
required: true
suboptions:
any:
default: false
description: Matches any.
type: bool
destination_mac_address:
description: HHHH.HHHH.HHHH Destination Ethernet MAC address.
type: str
destination_mask:
description: HHHH.HHHH.HHHH Destination mask
type: str
type: dict
ether_type:
description: Specifies whether to configure or remove rule.
type: str
log:
default: false
description: Enables SNMP traps and syslog messages for the rule.
type: bool
mirror:
default: false
description: Mirrors packets matching the rule.
type: bool
rule_type:
choices:
- deny
- permit
description: Inserts filtering rules in IPv4 standard named or numbered ACLs that
will deny/permit packets.
required: true
type: str
source:
description: source_mac_address | source_mask | any
required: true
suboptions:
any:
default: false
description: Matches any.
type: bool
source_mac_address:
description: HHHH.HHHH.HHHH Source Ethernet MAC address.
type: str
source_mask:
description: HHHH.HHHH.HHHH Source mask
type: str
type: dict
state:
choices:
- present
- absent
default: present
description: Specifies whether to configure or remove rule.
type: str
type: list
state:
choices:
- present
- absent
default: present
description: Create/Remove an IPv6 access control list (ACL).
type: str
acl_name:
description: Specifies a unique ACL name.
required: true
type: str
accounting:
choices:
- enable
- disable
description: Enables/Disables accounting for the ipv6 ACL.
type: str