Class: Ansible::Ruby::Modules::Panos_security_rule
- Inherits:
-
Base
- Object
- Ansible::Ruby::Models::Base
- Base
- Ansible::Ruby::Modules::Panos_security_rule
- Defined in:
- lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb
Overview
Security policies allow you to enforce rules and take action, and can be as general or specific as needed. The policy rules are compared against the incoming traffic in sequence, and because the first rule that matches the traffic is applied, the more specific rules must precede the more general ones.
Instance Method Summary collapse
-
#action ⇒ String?
Action to apply once rules maches.
-
#antivirus ⇒ String?
Name of the already defined antivirus profile.
-
#api_key ⇒ String?
API key that can be used instead of I(username)/I(password) credentials.
-
#application ⇒ String?
List of applications.
-
#commit ⇒ :yes, ...
Commit configuration if changed.
-
#data_filtering ⇒ Object?
Name of the already defined data_filtering profile.
-
#description ⇒ String?
Description for the security rule.
-
#destination_ip ⇒ String?
List of destination addresses.
-
#destination_zone ⇒ String?
List of destination zones.
-
#devicegroup ⇒ String?
-
Device groups are used for the Panorama interaction with Firewall(s).
-
-
#file_blocking ⇒ Object?
Name of the already defined file_blocking profile.
-
#group_profile ⇒ Object?
-
Security profile group that is already defined in the system.
-
-
#hip_profiles ⇒ String?
-
If you are using GlobalProtect with host information profile (HIP) enabled, you can also base the policy on information collected by GlobalProtect.
-
-
#ip_address ⇒ String
IP address (or hostname) of PAN-OS device being configured.
-
#log_end ⇒ Boolean?
Whether to log at session end.
-
#log_start ⇒ Boolean?
Whether to log at session start.
-
#operation ⇒ String?
The action to be taken.
-
#password ⇒ String
Password credentials to use for auth unless I(api_key) is set.
-
#rule_name ⇒ String
Name of the security rule.
-
#rule_type ⇒ String?
Type of security rule (version 6.1 of PanOS and above).
-
#service ⇒ String?
List of services.
-
#source_ip ⇒ String?
List of source addresses.
-
#source_user ⇒ String?
Use users to enforce policy for individual users or a group of users.
-
#source_zone ⇒ String?
List of source zones.
-
#spyware ⇒ String?
Name of the already defined spyware profile.
-
#tag_name ⇒ Array<String>, ...
Administrative tags that can be added to the rule.
-
#url_filtering ⇒ String?
Name of the already defined url_filtering profile.
-
#username ⇒ String?
Username credentials to use for auth unless I(api_key) is set.
-
#vulnerability ⇒ String?
Name of the already defined vulnerability profile.
-
#wildfire_analysis ⇒ String?
Name of the already defined wildfire_analysis profile.
Methods inherited from Base
Methods inherited from Ansible::Ruby::Models::Base
attr_option, attr_options, attribute, #initialize, remove_existing_validations, #to_h, validates
Constructor Details
This class inherits a constructor from Ansible::Ruby::Models::Base
Instance Method Details
#action ⇒ String?
Returns Action to apply once rules maches.
88 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 88 attribute :action |
#antivirus ⇒ String?
Returns Name of the already defined antivirus profile.
95 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 95 attribute :antivirus |
#api_key ⇒ String?
Returns API key that can be used instead of I(username)/I(password) credentials.
24 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 24 attribute :api_key |
#application ⇒ String?
Returns List of applications.
72 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 72 attribute :application |
#commit ⇒ :yes, ...
Returns Commit configuration if changed.
125 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 125 attribute :commit |
#data_filtering ⇒ Object?
Returns Name of the already defined data_filtering profile.
114 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 114 attribute :data_filtering |
#description ⇒ String?
Returns Description for the security rule.
40 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 40 attribute :description |
#destination_ip ⇒ String?
Returns List of destination addresses.
68 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 68 attribute :destination_ip |
#destination_zone ⇒ String?
Returns List of destination zones.
52 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 52 attribute :destination_zone |
#devicegroup ⇒ String?
Returns - Device groups are used for the Panorama interaction with Firewall(s). The group must exists on Panorama. If device group is not define we assume that we are contacting Firewall.rn.
121 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 121 attribute :devicegroup |
#file_blocking ⇒ Object?
Returns Name of the already defined file_blocking profile.
111 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 111 attribute :file_blocking |
#group_profile ⇒ Object?
Returns - Security profile group that is already defined in the system. This property supersedes antivirus, vulnerability, spyware, url_filtering, file_blocking, data_filtering, and wildfire_analysis properties.rn.
92 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 92 attribute :group_profile |
#hip_profiles ⇒ String?
Returns - If you are using GlobalProtect with host information profile (HIP) enabled, you can also base the policy on information collected by GlobalProtect. For example, the user access level can be determined HIP that notifies the firewall about the user’s local configuration.rn.
64 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 64 attribute :hip_profiles |
#ip_address ⇒ String
Returns IP address (or hostname) of PAN-OS device being configured.
12 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 12 attribute :ip_address |
#log_end ⇒ Boolean?
Returns Whether to log at session end.
84 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 84 attribute :log_end |
#log_start ⇒ Boolean?
Returns Whether to log at session start.
80 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 80 attribute :log_start |
#operation ⇒ String?
Returns The action to be taken. Supported values are I(add)/I(update)/I(find)/I(delete).
28 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 28 attribute :operation |
#password ⇒ String
Returns Password credentials to use for auth unless I(api_key) is set.
20 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 20 attribute :password |
#rule_name ⇒ String
Returns Name of the security rule.
32 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 32 attribute :rule_name |
#rule_type ⇒ String?
Returns Type of security rule (version 6.1 of PanOS and above).
36 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 36 attribute :rule_type |
#service ⇒ String?
Returns List of services.
76 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 76 attribute :service |
#source_ip ⇒ String?
Returns List of source addresses.
56 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 56 attribute :source_ip |
#source_user ⇒ String?
Returns Use users to enforce policy for individual users or a group of users.
60 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 60 attribute :source_user |
#source_zone ⇒ String?
Returns List of source zones.
48 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 48 attribute :source_zone |
#spyware ⇒ String?
Returns Name of the already defined spyware profile.
103 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 103 attribute :spyware |
#tag_name ⇒ Array<String>, ...
Returns Administrative tags that can be added to the rule. Note, tags must be already defined.
44 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 44 attribute :tag_name |
#url_filtering ⇒ String?
Returns Name of the already defined url_filtering profile.
107 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 107 attribute :url_filtering |
#username ⇒ String?
Returns Username credentials to use for auth unless I(api_key) is set.
16 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 16 attribute :username |
#vulnerability ⇒ String?
Returns Name of the already defined vulnerability profile.
99 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 99 attribute :vulnerability |
#wildfire_analysis ⇒ String?
Returns Name of the already defined wildfire_analysis profile.
117 |
# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 117 attribute :wildfire_analysis |