wti.remote.cpm_iptables_config (1.0.5) — module

Install collection

Install with ansible-galaxy collection install wti.remote:==1.0.5

Add to requirements.yml

  collections:
    - name: wti.remote
      version: 1.0.5

Description

Set network IPTables parameters in WTI OOB and PDU devices

Usage examples

Scanned by Steampunk Spotter

• Success
  Steampunk Spotter scan finished with no errors, warnings or hints.

# Set Network IPTables Parameters
- name: Set the an IPTables Parameter for a WTI device
  cpm_iptables_config:
    cpm_url: "nonexist.wti.com"
    cpm_username: "super"
    cpm_password: "super"
    use_https: true
    validate_certs: false
    command: "iptables -A INPUT -p tcp -m state --state NEW -m tcp --dport 443 -j ACCEPT"

Scanned by Steampunk Spotter

• Success
  Steampunk Spotter scan finished with no errors, warnings or hints.

# Sets multiple Network IPTables Parameters
- name: Set the IPTables Parameters a WTI device
  cpm_iptables_config:
    cpm_url: "nonexist.wti.com"
    cpm_username: "super"
    cpm_password: "super"
    use_https: true
    validate_certs: false
    index:
      - 1
      - 2
    command:
      - "iptables -A INPUT -p tcp -m state --state NEW -m tcp --dport 443 -j ACCEPT"
      - "iptables -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT"

Inputs

    
clear:
    choices:
    - 0
    - 1
    description:
    - Removes all the iptables for the protocol being defined before setting the newly
      defined entry.
    required: false
    type: int

index:
    description:
    - Index in which command should be inserted. If not defined entry will start at position
      one.
    elements: int
    required: false
    type: list

command:
    description:
    - Actual iptables command to send to the WTI device.
    elements: str
    required: true
    type: list

cpm_url:
    description:
    - This is the URL of the WTI device to send the module.
    required: true
    type: str

protocol:
    choices:
    - 0
    - 1
    description:
    - The protocol that the iptables entry should be applied. 0 = ipv4, 1 = ipv6.
    required: false
    type: int

use_https:
    default: true
    description:
    - Designates to use an https connection or http connection.
    required: false
    type: bool

use_proxy:
    default: false
    description:
    - Flag to control if the lookup will observe HTTP proxy environment variables when
      present.
    required: false
    type: bool

cpm_password:
    description:
    - This is the Password of the WTI device to send the module.
    required: true
    type: str

cpm_username:
    description:
    - This is the Username of the WTI device to send the module.
    required: true
    type: str

validate_certs:
    default: true
    description:
    - If false, SSL certificates will not be validated. This should only be used
    - on personally controlled sites using self-signed certificates.
    required: false
    type: bool

Outputs

data:
  contains:
    iptables:
      description: Current k/v pairs of interface info for the WTI device after module
        execution.
      returned: always
      sample:
      - eth0:
          ietf-ipv4:
            clear: 1
            entries:
            - entry: iptables -A INPUT -p tcp -m state --state NEW -m tcp --dport
                443 -j ACCEPT
              index: '1'
            - entry: iptables -A INPUT -p tcp -m state --state NEW -m tcp --dport
                22 -j ACCEPT
              index: '2'
      type: dict
  description: The output JSON returned from the commands sent
  returned: always
  type: complex