Parameter |
Choices/Defaults |
Comments |
arp_flag
|
Choices:
- arp_reply
- arp_request
- unspecified
|
The arp flag to use when the ether_type is arp.
The APIC defaults to unspecified when unset during creation.
|
certificate_name
|
|
The X.509 certificate name attached to the APIC AAA user used for signature-based authentication.
It defaults to the private_key basename, without extension.
aliases: cert_name
|
description
|
|
Description for the Filter Entry.
aliases: descr
|
dst_port
|
|
Used to set both destination start and end ports to the same value when ip_protocol is tcp or udp.
Accepted values are any valid TCP/UDP port range.
The APIC defaults to unspecified when unset during creation.
|
dst_port_end
|
|
Used to set the destination end port when ip_protocol is tcp or udp.
Accepted values are any valid TCP/UDP port range.
The APIC defaults to unspecified when unset during creation.
|
dst_port_start
|
|
Used to set the destination start port when ip_protocol is tcp or udp.
Accepted values are any valid TCP/UDP port range.
The APIC defaults to unspecified when unset during creation.
|
entry
|
|
Then name of the Filter Entry.
aliases: entry_name, filter_entry, name
|
ether_type
|
Choices:
- arp
- fcoe
- ip
- mac_security
- mpls_ucast
- trill
- unspecified
|
The Ethernet type.
The APIC defaults to unspecified when unset during creation.
|
filter
|
|
The name of Filter that the entry should belong to.
aliases: filter_name
|
host
required |
|
IP Address or hostname of APIC resolvable by Ansible control host.
aliases: hostname
|
icmp6_msg_type
|
Choices:
- dst_unreachable
- echo_request
- echo_reply
- neighbor_advertisement
- neighbor_solicitation
- redirect
- time_exceeded
- unspecified
|
ICMPv6 message type; used when ip_protocol is icmpv6.
The APIC defaults to unspecified when unset during creation.
|
icmp_msg_type
|
Choices:
- dst_unreachable
- echo
- echo_reply
- src_quench
- time_exceeded
- unspecified
|
ICMPv4 message type; used when ip_protocol is icmp.
The APIC defaults to unspecified when unset during creation.
|
ip_protocol
|
Choices:
- eigrp
- egp
- icmp
- icmpv6
- igmp
- igp
- l2tp
- ospfigp
- pim
- tcp
- udp
- unspecified
|
The IP Protocol type when ether_type is ip.
The APIC defaults to unspecified when unset during creation.
|
output_level
|
Choices:
- debug
- info
normal ←
|
Influence the output of this ACI module.
normal means the standard output, incl. current dict
info adds informational output, incl. previous , proposed and sent dicts
debug adds debugging output, incl. filter_string , method , response , status and url information
|
password
required |
|
The password to use for authentication.
This option is mutual exclusive with private_key . If private_key is provided too, it will be used instead.
|
port
|
|
Port number to be used for REST connection.
The default value depends on parameter `use_ssl`.
|
private_key
required |
|
PEM formatted file that contains your private key to be used for signature-based authentication.
The name of the key (without extension) is used as the certificate name in ACI, unless certificate_name is specified.
This option is mutual exclusive with password . If password is provided too, it will be ignored.
aliases: cert_key
|
state
|
Choices:
- absent
present ←
- query
|
present, absent, query
|
stateful
bool |
|
Determines the statefulness of the filter entry.
|
tenant
|
|
The name of the tenant.
aliases: tenant_name
|
timeout
int |
Default:
30
|
The socket level timeout in seconds.
|
use_proxy
bool |
|
If no , it will not use a proxy, even if one is defined in an environment variable on the target hosts.
|
use_ssl
bool |
|
If no , an HTTP connection will be used instead of the default HTTPS connection.
|
username
|
Default:
admin
|
The username to use for authentication.
aliases: user
|
validate_certs
bool |
|
If no , SSL certificates will not be validated.
This should only set to no when used on personally controlled sites using self-signed certificates.
|