dokuwiki

User Tools

Site Tools

Trace: udp qa ansible
burim:paloalto:ansible

— - name: Add some address objects to the firewall 

hosts: my-firewall
connection: local
gather_facts: False
tasks:
- name: Grab the credentials from ansible-vault
  include_vars: 'firewall-secrets.yml'
  no_log: 'yes'

- name: Create object 'Test-One' 

panos_address_object:
  ip_address: '{{ fw_ip_address }}'
  username: '{{ fw_username }}'
  password: '{{ fw_password }}'
  name: 'Test-One'
  value: '1.1.1.1'
  description: 'Description One'
  tag: ['Prod']

- name: Create object 'Test-Two' 

panos_address_object:
  ip_address: '{{ fw_ip_address }}'
  username: '{{ fw_username }}'
  password: '{{ fw_password }}'
  name: 'Test-Two'
  address_type: 'ip-range'
  value: '1.1.1.1-2.2.2.2'
  description: 'Description Two'
  tag: ['SI']

- name: Create object 'Test-Three' 

panos_address_object:
  ip_address: '{{ fw_ip_address }}'
  username: '{{ fw_username }}'
  password: '{{ fw_password }}'
  name: 'Test-Three'
  address_type: 'fqdn'
  value: 'foo.bar.baz'
  description: 'Description Three'

- name: Delete object 'Test-Two' 

panos_address_object:
  ip_address: '{{ fw_ip_address }}'
  username: '{{ fw_username }}'
  password: '{{ fw_password }}'
  name: 'Test-Two'
  state: 'absent'
burim/paloalto/ansible.txt · Last modified: 2021/01/04 15:15 by burim
Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki