paloaltonetworks.panos.panos_op module – execute arbitrary OP commands on PANW devices (e.g. show interface all)
Note
This module is part of the paloaltonetworks.panos collection (version 2.21.2).
To install it, use: ansible-galaxy collection install paloaltonetworks.panos.
You need further requirements to be able to use this module,
see Requirements for details.
To use it in a playbook, specify: paloaltonetworks.panos.panos_op.
New in paloaltonetworks.panos 1.0.0
Synopsis
This module will allow user to pass and execute any supported OP command on the PANW device.
Requirements
The below requirements are needed on the host that executes this module.
pan-python can be obtained from PyPI https://pypi.python.org/pypi/pan-python
pandevice can be obtained from PyPI https://pypi.python.org/pypi/pandevice
xmltodict (optional)
Parameters
Parameter |
Comments |
|---|---|
Deprecated Use provider to specify PAN-OS connectivity instead. The API key to use instead of generating it using username / password. |
|
The OP command to be performed. |
|
The cmd is already given in XML format, so don’t convert it. Choices: |
|
Some op commands disconnect the client before returning a response. Enable this to prevent this module from erroring out if the command could cause this. If running such a command, you can use paloaltonetworks.panos.panos_check to wait for PAN-OS to be accessible. Choices: |
|
Deprecated Use provider to specify PAN-OS connectivity instead. The IP address or hostname of the PAN-OS device being configured. |
|
Deprecated Use provider to specify PAN-OS connectivity instead. The password to use for authentication. This is ignored if api_key is specified. |
|
Deprecated Use provider to specify PAN-OS connectivity instead. The port number to connect to the PAN-OS device on. Default: :ansible-option-default:`443` |
|
A dict object containing connection details. |
|
The API key to use instead of generating it using username / password. |
|
The IP address or hostname of the PAN-OS device being configured. |
|
The password to use for authentication. This is ignored if api_key is specified. |
|
The port number to connect to the PAN-OS device on. Default: :ansible-option-default:`443` |
|
The serial number of a firewall to use for targeted commands. If ip_address is not a Panorama PAN-OS device, then this param is ignored. |
|
The username to use for authentication. This is ignored if api_key is specified. Default: :ansible-option-default:`"admin"` |
|
Deprecated Use provider to specify PAN-OS connectivity instead. The username to use for authentication. This is ignored if api_key is specified. Default: :ansible-option-default:`"admin"` |
|
The vsys target where the OP command will be performed. Default: :ansible-option-default:`"vsys1"` |
Notes
Note
Checkmode is NOT supported.
Panorama is supported.
PAN-OS connectivity should be specified using provider or the classic PAN-OS connectivity params (ip_address, username, password, api_key, and port). If both are present, then the classic params are ignored.
Examples
- name: show list of all interfaces
paloaltonetworks.panos.panos_op:
provider: '{{ provider }}'
cmd: 'show interfaces all'
- name: show system info
paloaltonetworks.panos.panos_op:
provider: '{{ provider }}'
cmd: 'show system info'
- name: show system info as XML command
paloaltonetworks.panos.panos_op:
provider: '{{ provider }}'
cmd: '<show><system><info/></system></show>'
cmd_is_xml: true
- name: set serial number with error ignore
paloaltonetworks.panos.panos_op:
provider: '{{ provider }}'
cmd: 'set serial-number "123456"'
ignore_disconnect: true
Return Values
Common return values are documented here, the following are the fields unique to this module:
Key |
Description |
|---|---|
output of the given OP command as JSON formatted string Returned: success Sample: :ansible-rv-sample-value:`"{system: {app-release-date: 2017/05/01 15:09:12}}"` |
|
output of the given OP command as an XML formatted string Returned: success |