-
Notifications
You must be signed in to change notification settings - Fork 0
/
asa.yaml
41 lines (34 loc) · 1001 Bytes
/
asa.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
---
- hosts: all
gather_facts: no
connection: network_cli
tasks:
- name: configure network object-group
asa_og:
name: ansible_network_og
group_type: network-object
state: present
description: ansible network object-group
host_ip:
- 8.8.8.8
- 8.8.4.4
# THIS DOES NOT WORK
# - name: configure port-object object-group
# asa_og:
# name: ansible_test_1
# group_type: port-object
# state: replace
# description: ansible_test object-group description
# protocol: tcp-udp
# port_eq:
# - 1025
# - kerberos
# port_range:
# - 1025 5201
# - 0 1024
- asa_acl:
lines:
- access-list ACL-ANSIBLE extended permit tcp any object-group ansible_network_og eq https
# before: clear configure access-list ACL-ANSIBLE
match: strict
replace: block