Class: Ansible::Ruby::Modules::Panos_security_rule

Inherits:

Base

• Object
• Ansible::Ruby::Models::Base
• Base
• Ansible::Ruby::Modules::Panos_security_rule

Defined in:

lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb

Overview

Security policies allow you to enforce rules and take action, and can be as general or specific as needed. The policy rules are compared against the incoming traffic in sequence, and because the first rule that matches the traffic is applied, the more specific rules must precede the more general ones.

Instance Method Summary

• #action ⇒ String^?

  Action to apply once rules maches.

• #antivirus ⇒ String^?

  Name of the already defined antivirus profile.

• #api_key ⇒ String^?

  API key that can be used instead of I(username)/I(password) credentials.

• #application ⇒ String^?

  List of applications.

• #commit ⇒ :yes, ...

  Commit configuration if changed.

• #data_filtering ⇒ Object^?

  Name of the already defined data_filtering profile.

• #description ⇒ String^?

  Description for the security rule.

• #destination_ip ⇒ String^?

  List of destination addresses.

• #destination_zone ⇒ String^?

  List of destination zones.

• #devicegroup ⇒ String^?

  • Device groups are used for the Panorama interaction with Firewall(s).

• #file_blocking ⇒ Object^?

  Name of the already defined file_blocking profile.

• #group_profile ⇒ Object^?

  • Security profile group that is already defined in the system.

• #hip_profiles ⇒ String^?

  • If you are using GlobalProtect with host information profile (HIP) enabled, you can also base the policy on information collected by GlobalProtect.

• #ip_address ⇒ String

  IP address (or hostname) of PAN-OS device being configured.

• #log_end ⇒ Boolean^?

  Whether to log at session end.

• #log_start ⇒ Boolean^?

  Whether to log at session start.

• #operation ⇒ String^?

  The action to be taken.

• #password ⇒ String

  Password credentials to use for auth unless I(api_key) is set.

• #rule_name ⇒ String

  Name of the security rule.

• #rule_type ⇒ String^?

  Type of security rule (version 6.1 of PanOS and above).

• #service ⇒ String^?

  List of services.

• #source_ip ⇒ String^?

  List of source addresses.

• #source_user ⇒ String^?

  Use users to enforce policy for individual users or a group of users.

• #source_zone ⇒ String^?

  List of source zones.

• #spyware ⇒ String^?

  Name of the already defined spyware profile.

• #tag_name ⇒ Array<String>, ...

  Administrative tags that can be added to the rule.

• #url_filtering ⇒ String^?

  Name of the already defined url_filtering profile.

• #username ⇒ String^?

  Username credentials to use for auth unless I(api_key) is set.

• #vulnerability ⇒ String^?

  Name of the already defined vulnerability profile.

• #wildfire_analysis ⇒ String^?

  Name of the already defined wildfire_analysis profile.

Methods inherited from Base

#ansible_name, #to_h

Methods inherited from Ansible::Ruby::Models::Base

attr_option, attr_options, attribute, #initialize, remove_existing_validations, #to_h, validates

Constructor Details

This class inherits a constructor from Ansible::Ruby::Models::Base

Instance Method Details

#action ⇒ String^?

Returns Action to apply once rules maches.

Returns:

• (String, nil) —

  Action to apply once rules maches.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 88

attribute :action

#antivirus ⇒ String^?

Returns Name of the already defined antivirus profile.

Returns:

• (String, nil) —

  Name of the already defined antivirus profile.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 95

attribute :antivirus

#api_key ⇒ String^?

Returns API key that can be used instead of I(username)/I(password) credentials.

Returns:

• (String, nil) —

  API key that can be used instead of I(username)/I(password) credentials.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 24

attribute :api_key

#application ⇒ String^?

Returns List of applications.

Returns:

• (String, nil) —

  List of applications.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 72

attribute :application

#commit ⇒ :yes, ...

Returns Commit configuration if changed.

Returns:

• (:yes, :no, nil) —

  Commit configuration if changed.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 125

attribute :commit

#data_filtering ⇒ Object^?

Returns Name of the already defined data_filtering profile.

Returns:

• (Object, nil) —

  Name of the already defined data_filtering profile.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 114

attribute :data_filtering

#description ⇒ String^?

Returns Description for the security rule.

Returns:

• (String, nil) —

  Description for the security rule.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 40

attribute :description

#destination_ip ⇒ String^?

Returns List of destination addresses.

Returns:

• (String, nil) —

  List of destination addresses.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 68

attribute :destination_ip

#destination_zone ⇒ String^?

Returns List of destination zones.

Returns:

• (String, nil) —

  List of destination zones.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 52

attribute :destination_zone

#devicegroup ⇒ String^?

Returns - Device groups are used for the Panorama interaction with Firewall(s). The group must exists on Panorama. If device group is not define we assume that we are contacting Firewall.rn.

Returns:

• (String, nil) —

  • Device groups are used for the Panorama interaction with Firewall(s). The group must exists on Panorama. If device group is not define we assume that we are contacting Firewall.rn

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 121

attribute :devicegroup

#file_blocking ⇒ Object^?

Returns Name of the already defined file_blocking profile.

Returns:

• (Object, nil) —

  Name of the already defined file_blocking profile.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 111

attribute :file_blocking

#group_profile ⇒ Object^?

Returns - Security profile group that is already defined in the system. This property supersedes antivirus, vulnerability, spyware, url_filtering, file_blocking, data_filtering, and wildfire_analysis properties.rn.

Returns:

• (Object, nil) —

  • Security profile group that is already defined in the system. This property supersedes antivirus, vulnerability, spyware, url_filtering, file_blocking, data_filtering, and wildfire_analysis properties.rn

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 92

attribute :group_profile

#hip_profiles ⇒ String^?

Returns - If you are using GlobalProtect with host information profile (HIP) enabled, you can also base the policy on information collected by GlobalProtect. For example, the user access level can be determined HIP that notifies the firewall about the user’s local configuration.rn.

Returns:

• (String, nil) —

  • If you are using GlobalProtect with host information profile (HIP) enabled, you can also base the policy on information collected by GlobalProtect. For example, the user access level can be determined HIP that notifies the firewall about the user’s local configuration.rn

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 64

attribute :hip_profiles

#ip_address ⇒ String

Returns IP address (or hostname) of PAN-OS device being configured.

Returns:

• (String) —

  IP address (or hostname) of PAN-OS device being configured.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 12

attribute :ip_address

#log_end ⇒ Boolean^?

Returns Whether to log at session end.

Returns:

• (Boolean, nil) —

  Whether to log at session end.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 84

attribute :log_end

#log_start ⇒ Boolean^?

Returns Whether to log at session start.

Returns:

• (Boolean, nil) —

  Whether to log at session start.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 80

attribute :log_start

#operation ⇒ String^?

Returns The action to be taken. Supported values are I(add)/I(update)/I(find)/I(delete).

Returns:

• (String, nil) —

  The action to be taken. Supported values are I(add)/I(update)/I(find)/I(delete).

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 28

attribute :operation

#password ⇒ String

Returns Password credentials to use for auth unless I(api_key) is set.

Returns:

• (String) —

  Password credentials to use for auth unless I(api_key) is set.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 20

attribute :password

#rule_name ⇒ String

Returns Name of the security rule.

Returns:

• (String) —

  Name of the security rule.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 32

attribute :rule_name

#rule_type ⇒ String^?

Returns Type of security rule (version 6.1 of PanOS and above).

Returns:

• (String, nil) —

  Type of security rule (version 6.1 of PanOS and above).

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 36

attribute :rule_type

#service ⇒ String^?

Returns List of services.

Returns:

• (String, nil) —

  List of services.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 76

attribute :service

#source_ip ⇒ String^?

Returns List of source addresses.

Returns:

• (String, nil) —

  List of source addresses.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 56

attribute :source_ip

#source_user ⇒ String^?

Returns Use users to enforce policy for individual users or a group of users.

Returns:

• (String, nil) —

  Use users to enforce policy for individual users or a group of users.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 60

attribute :source_user

#source_zone ⇒ String^?

Returns List of source zones.

Returns:

• (String, nil) —

  List of source zones.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 48

attribute :source_zone

#spyware ⇒ String^?

Returns Name of the already defined spyware profile.

Returns:

• (String, nil) —

  Name of the already defined spyware profile.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 103

attribute :spyware

#tag_name ⇒ Array<String>, ...

Returns Administrative tags that can be added to the rule. Note, tags must be already defined.

Returns:

• (Array<String>, String, nil) —

  Administrative tags that can be added to the rule. Note, tags must be already defined.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 44

attribute :tag_name

#url_filtering ⇒ String^?

Returns Name of the already defined url_filtering profile.

Returns:

• (String, nil) —

  Name of the already defined url_filtering profile.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 107

attribute :url_filtering

#username ⇒ String^?

Returns Username credentials to use for auth unless I(api_key) is set.

Returns:

• (String, nil) —

  Username credentials to use for auth unless I(api_key) is set.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 16

attribute :username

#vulnerability ⇒ String^?

Returns Name of the already defined vulnerability profile.

Returns:

• (String, nil) —

  Name of the already defined vulnerability profile.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 99

attribute :vulnerability

#wildfire_analysis ⇒ String^?

Returns Name of the already defined wildfire_analysis profile.

Returns:

• (String, nil) —

  Name of the already defined wildfire_analysis profile.

# File 'lib/ansible/ruby/modules/generated/network/panos/panos_security_rule.rb', line 117

attribute :wildfire_analysis