:source: fmgd_vpn_ipsec_phase2.py :orphan: .. _fmgd_vpn_ipsec_phase2: fmgd_vpn_ipsec_phase2 -- Configure VPN autokey tunnel. ++++++++++++++++++++++++++++++++++++++++++++++++++++++ .. versionadded:: 1.0.0 .. contents:: :local: :depth: 1 Synopsis -------- - This module is able to configure a FortiManager device. - Examples include all parameters and values need to be adjusted to data sources before usage. - Tested with FortiManager v7.x. Requirements ------------ The below requirements are needed on the host that executes this module. - ansible-core>=2.16.0 FortiManager Version Compatibility ---------------------------------- .. raw:: html

Supported Version Ranges: v7.2.6 -> v7.2.12, v7.4.3 -> latest

Parameters ---------- .. raw:: html Notes ----- .. note:: - Running in workspace locking mode is supported in this FortiManager module, the top level parameters workspace_locking_adom and workspace_locking_timeout help do the work. - To create or update an object, use state: present directive. - To delete an object, use state: absent directive - Normally, running one module can fail when a non-zero rc is returned. you can also override the conditions to fail or succeed with parameters rc_failed and rc_succeeded Examples -------- .. code-block:: yaml+jinja - name: Example playbook (generated based on argument schema) hosts: fortimanagers connection: httpapi gather_facts: false vars: ansible_httpapi_use_ssl: true ansible_httpapi_validate_certs: false ansible_httpapi_port: 443 tasks: - name: Configure VPN autokey tunnel. fortinet.fmgdevice.fmgd_vpn_ipsec_phase2: # bypass_validation: false # workspace_locking_adom: # workspace_locking_timeout: 300 # rc_succeeded: [0, -2, -3, ...] # rc_failed: [-2, -3, ...] device: vdom: state: present # vpn_ipsec_phase2: name: "your value" # Required variable, string # add_route: # auto_negotiate: # comments: # dhcp_ipsec: # dhgrp: # - "1" # - "2" # - "5" # - "14" # - "15" # - "16" # - "17" # - "18" # - "19" # - "20" # - "21" # - "27" # - "28" # - "29" # - "30" # - "31" # - "32" # diffserv: # diffservcode: # dst_addr_type: # dst_end_ip: # dst_end_ip6: # dst_name: # dst_name6: # dst_port: # dst_start_ip: # dst_start_ip6: # dst_subnet: # dst_subnet6: # encapsulation: # inbound_dscp_copy: # initiator_ts_narrow: # ipv4_df: # keepalive: # keylife_type: # keylifekbs: # keylifeseconds: # l2tp: # pfs: # phase1name: # proposal: # protocol: # replay: # route_overlap: # selector_match: # single_source: # src_addr_type: # src_end_ip: # src_end_ip6: # src_name: # src_name6: # src_port: # src_start_ip: # src_start_ip6: # src_subnet: # src_subnet6: # use_natip: # addke1: # - "0" # - "1080" # - "1081" # - "1082" # - "1083" # - "1084" # - "1085" # - "1089" # - "1090" # - "1091" # - "1092" # - "1093" # - "1094" # - "35" # - "36" # - "37" # addke2: # - "0" # - "1080" # - "1081" # - "1082" # - "1083" # - "1084" # - "1085" # - "1089" # - "1090" # - "1091" # - "1092" # - "1093" # - "1094" # - "35" # - "36" # - "37" # addke3: # - "0" # - "1080" # - "1081" # - "1082" # - "1083" # - "1084" # - "1085" # - "1089" # - "1090" # - "1091" # - "1092" # - "1093" # - "1094" # - "35" # - "36" # - "37" # addke4: # - "0" # - "1080" # - "1081" # - "1082" # - "1083" # - "1084" # - "1085" # - "1089" # - "1090" # - "1091" # - "1092" # - "1093" # - "1094" # - "35" # - "36" # - "37" # addke5: # - "0" # - "1080" # - "1081" # - "1082" # - "1083" # - "1084" # - "1085" # - "1089" # - "1090" # - "1091" # - "1092" # - "1093" # - "1094" # - "35" # - "36" # - "37" # addke6: # - "0" # - "1080" # - "1081" # - "1082" # - "1083" # - "1084" # - "1085" # - "1089" # - "1090" # - "1091" # - "1092" # - "1093" # - "1094" # - "35" # - "36" # - "37" # addke7: # - "0" # - "1080" # - "1081" # - "1082" # - "1083" # - "1084" # - "1085" # - "1089" # - "1090" # - "1091" # - "1092" # - "1093" # - "1094" # - "35" # - "36" # - "37" Return Values ------------- Common return values are documented: https://docs.ansible.com/ansible/latest/reference_appendices/common_return_values.html#common-return-values, the following are the fields unique to this module: .. raw:: html
  • meta - The result of the request.returned: always type: dict
    • request_url - The full url requested. returned: always type: str sample: /sys/login/user
    • response_code - The status of api request. returned: always type: int sample: 0
    • response_data - The data body of the api response. returned: optional type: list or dict
    • response_message - The descriptive message of the api response. returned: always type: str sample: OK
    • system_information - The information of the target system. returned: always type: dict
  • rc - The status the request. returned: always type: int sample: 0
  • version_check_warning - Warning if the parameters used in the playbook are not supported by the current FortiManager version. returned: if at least one parameter not supported by the current FortiManager version type: list
Status ------ - This module is not guaranteed to have a backwards compatible interface. Authors ------- - Xinwei Du (@dux-fortinet) - Xing Li (@lix-fortinet) - Jie Xue (@JieX19) - Link Zheng (@chillancezen) - Frank Shen (@fshen01) - Hongbin Lu (@fgtdev-hblu)