paloaltonetworks.panos.panos_dag module – Manage a dynamic address group
Note
This module is part of the paloaltonetworks.panos collection (version 2.13.2).
To install it, use: ansible-galaxy collection install paloaltonetworks.panos
.
You need further requirements to be able to use this module,
see Requirements for details.
To use it in a playbook, specify: paloaltonetworks.panos.panos_dag
.
New in paloaltonetworks.panos 1.0.0
DEPRECATED
- Removed in:
version 3.0.0
- Why:
This module’s functionality is a subset of paloaltonetworks.panos.panos_address_group.
- Alternative:
Use paloaltonetworks.panos.panos_address_group instead.
Synopsis
Manage a dynamic address group object in the firewall used for policy rules
Requirements
The below requirements are needed on the host that executes this module.
pan-python can be obtained from PyPI https://pypi.python.org/pypi/pan-python
pandevice can be obtained from PyPI https://pypi.python.org/pypi/pandevice
Parameters
Parameter |
Comments |
---|---|
API key that can be used instead of username/password credentials. |
|
commit if changed Choices: |
|
dynamic filter user by the dynamic address group |
|
name of the dynamic address group |
|
The description of the object. |
|
The name of the Panorama device group. The group must exist on Panorama. If device group is not defined it is assumed that we are contacting a firewall. |
|
IP address (or hostname) of PAN-OS device |
|
The operation to perform Supported values are add/list/delete. Choices: |
|
password for authentication |
|
Add administrative tags to the DAG |
|
username for authentication Default: :ansible-option-default:`"admin"` |
Examples
- name: Create dag
panos_dag:
ip_address: "192.168.1.1"
password: "admin"
dag_name: "dag-1"
dag_match_filter: "'aws-tag.aws:cloudformation:logical-id.ServerInstance' and 'instanceState.running'"
description: 'Add / create dynamic address group to allow access to SaaS Applications'
operation: 'add'
Status
This module will be removed in version 3.0.0. [deprecated]
For more information see DEPRECATED.