| Parameter |
Choices/Defaults |
Comments |
|
config
list
/ elements=dictionary
|
|
A list of Object Group options.
|
|
object_groups
list
/ elements=dictionary
|
|
The object groups.
|
|
|
description
string
|
|
The description for the object-group.
|
|
|
group_object
list
/ elements=string
|
|
Configure an object group as an object
|
|
|
icmp_type
dictionary
|
|
Configure an ICMP-type object
|
|
|
|
icmp_object
list
/ elements=string
|
Choices:
- alternate-address
- conversion-error
- echo
- echo-reply
- information-reply
- information-request
- mask-reply
- mask-request
- mobile-redirect
- parameter-problem
- redirect
- router-advertisement
- router-solicitation
- source-quench
- time-exceeded
- timestamp-reply
- timestamp-request
- traceroute
- unreachable
|
Defines the ICMP types in the group.
|
|
|
name
string
/ required
|
|
Specifies object-group ID
|
|
|
network_object
dictionary
|
|
Configure a network object
|
|
|
|
address
list
/ elements=string
|
|
Enter an IPv4 network address with space seperated netmask.
|
|
|
|
host
list
/ elements=string
|
|
Set this to specify a single host object.
|
|
|
|
ipv6_address
list
/ elements=string
|
|
Enter an IPv6 prefix.
|
|
|
|
object
list
/ elements=string
|
|
Enter this keyword to specify a network object
|
|
|
port_object
list
/ elements=dictionary
|
|
Configure a port object
|
|
|
|
eq
string
|
|
Enter this keyword to specify a port
|
|
|
|
range
dictionary
|
|
Enter this keyword to specify a range of ports
|
|
|
|
|
end
integer
|
|
Specify the end of the port range.
|
|
|
|
|
start
integer
|
|
Specify the start of the port range.
|
|
|
protocol
string
|
|
Specifies that object-group is for only specified protocol only.
Required when port-object need to be configured
|
|
|
protocol_object
dictionary
|
|
Configure a protocol object
|
|
|
|
protocol
list
/ elements=string
|
|
Defines the protocols in the group.
User can either specify protocols directly/protocol numbers(0-255)
|
|
|
security_group
dictionary
|
|
Configure a security-group
|
|
|
|
sec_name
list
/ elements=string
|
|
Enter this keyword to specify a security-group name.
|
|
|
|
tag
list
/ elements=string
|
|
Enter this keyword to specify a security-group tag.
|
|
|
service_object
dictionary
|
|
Configure a service object
NEW 'services_object' param is introduced at object_group level, please use the newer 'services_object' param defined at object_group level instead of 'service_object' param at object_group level, as 'service_object' option will get deprecated and removed in a future release.
|
|
|
|
object
string
|
|
Enter this keyword to specify a service object
|
|
|
|
protocol
list
/ elements=string
|
Choices:
- ah
- eigrp
- esp
- gre
- icmp
- icmp6
- igmp
- igrp
- ip
- ipinip
- ipsec
- nos
- ospf
- pcp
- pim
- pptp
- sctp
- snp
- tcp
- tcp-udp
- udp
|
Defines the protocols in the group.
|
|
|
services_object
list
/ elements=dictionary
|
|
Configure list of service objects
Newer OGs services_object param which will replace service_object param
Relased with version 2.1.0
|
|
|
|
destination_port
dictionary
|
|
Keyword to specify destination port
|
|
|
|
|
eq
string
|
|
Match only packets on a given port number.
|
|
|
|
|
gt
string
|
|
Match only packets with a greater port number.
|
|
|
|
|
lt
string
|
|
Match only packets with a lower port number.
|
|
|
|
|
neq
string
|
|
Match only packets not on a given port number.
|
|
|
|
|
range
dictionary
|
|
Port range operator
|
|
|
|
|
|
end
integer
|
|
Specify the end of the port range.
|
|
|
|
|
|
start
integer
|
|
Specify the start of the port range.
|
|
|
|
object
string
|
|
Enter this keyword to specify a service object
|
|
|
|
protocol
string
|
|
Defines the protocols in the group.
|
|
|
|
source_port
dictionary
|
|
Keyword to specify source port
|
|
|
|
|
eq
string
|
|
Match only packets on a given port number.
|
|
|
|
|
gt
string
|
|
Match only packets with a greater port number.
|
|
|
|
|
lt
string
|
|
Match only packets with a lower port number.
|
|
|
|
|
neq
string
|
|
Match only packets not on a given port number.
|
|
|
|
|
range
dictionary
|
|
Port range operator
|
|
|
|
|
|
end
integer
|
|
Specify the end of the port range.
|
|
|
|
|
|
start
integer
|
|
Specify the start of the port range.
|
|
|
user_object
dictionary
|
|
Configures single user, local or import user group
|
|
|
|
user
list
/ elements=dictionary
|
|
Configure a user objectUser name to configure a user object.
|
|
|
|
|
domain
string
/ required
|
|
User domain
|
|
|
|
|
name
string
/ required
|
|
Enter the name of the user
|
|
|
|
user_group
list
/ elements=dictionary
|
|
Configure a user group object.
|
|
|
|
|
domain
string
/ required
|
|
Group domain
|
|
|
|
|
name
string
/ required
|
|
Enter the name of the group
|
|
object_type
string
/ required
|
Choices:
- icmp-type
- network
- protocol
- security
- service
- user
|
The object group type.
|
|
running_config
string
|
|
The module, by default, will connect to the remote device and retrieve the current running-config to use as a base for comparing against the contents of source. There are times when it is not desirable to have the task get the current running-config for every task in a playbook. The running_config argument allows the implementer to pass in the configuration to use as the base config for comparison. This value of this option should be the output received from device by executing command.
|
|
state
string
|
Choices:
merged ← - replaced
- overridden
- deleted
- gathered
- rendered
- parsed
|
The state the configuration should be left in
|