mirror of
				https://github.com/ansible-collections/community.general.git
				synced 2025-10-25 05:23:58 -07:00 
			
		
		
		
	* win_firewall_rule only changes specified arguments defaults are controlled by com object integration test for built in rule * removed ignore psaliases for win_firewall_rule * direction and action are no longer required program and service respect default values documentation updated to reflect that defaults apply to rule creation added test to disable a rule and verify other values have not changed * fixed extra whitespace * Move each description sentance to a new entry
		
			
				
	
	
		
			136 lines
		
	
	
	
		
			3.8 KiB
		
	
	
	
		
			Python
		
	
	
	
	
	
			
		
		
	
	
			136 lines
		
	
	
	
		
			3.8 KiB
		
	
	
	
		
			Python
		
	
	
	
	
	
| #!/usr/bin/python
 | |
| # -*- coding: utf-8 -*-
 | |
| 
 | |
| # Copyright: (c) 2014, Timothy Vandenbrande <timothy.vandenbrande@gmail.com>
 | |
| # Copyright: (c) 2017, Artem Zinenko <zinenkoartem@gmail.com>
 | |
| # GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
 | |
| 
 | |
| ANSIBLE_METADATA = {'metadata_version': '1.1',
 | |
|                     'status': ['preview'],
 | |
|                     'supported_by': 'community'}
 | |
| 
 | |
| DOCUMENTATION = r'''
 | |
| ---
 | |
| module: win_firewall_rule
 | |
| version_added: "2.0"
 | |
| short_description: Windows firewall automation
 | |
| description:
 | |
|   - Allows you to create/remove/update firewall rules.
 | |
| options:
 | |
|   enabled:
 | |
|     description:
 | |
|       - Whether this firewall rule is enabled or disabled.
 | |
|       - Defaults to C(true) when creating a new rule.
 | |
|     type: bool
 | |
|     aliases: [ enable ]
 | |
|   state:
 | |
|     description:
 | |
|       - Should this rule be added or removed.
 | |
|     type: str
 | |
|     choices: [ absent, present ]
 | |
|     default: present
 | |
|   name:
 | |
|     description:
 | |
|       - The rule's display name.
 | |
|     type: str
 | |
|     required: yes
 | |
|   direction:
 | |
|     description:
 | |
|       - Whether this rule is for inbound or outbound traffic.
 | |
|       - Defaults to C(in) when creating a new rule.
 | |
|     type: str
 | |
|     choices: [ in, out ]
 | |
|   action:
 | |
|     description:
 | |
|       - What to do with the items this rule is for.
 | |
|       - Defaults to C(allow) when creating a new rule.
 | |
|     type: str
 | |
|     choices: [ allow, block ]
 | |
|   description:
 | |
|     description:
 | |
|       - Description for the firewall rule.
 | |
|     type: str
 | |
|   localip:
 | |
|     description:
 | |
|       - The local ip address this rule applies to.
 | |
|       - Set to C(any) to apply to all local ip addresses.
 | |
|       - Defaults to C(any) when creating a new rule.
 | |
|     type: str
 | |
|   remoteip:
 | |
|     description:
 | |
|       - The remote ip address/range this rule applies to.
 | |
|       - Set to C(any) to apply to all remote ip addresses.
 | |
|       - Defaults to C(any) when creating a new rule.
 | |
|     type: str
 | |
|   localport:
 | |
|     description:
 | |
|       - The local port this rule applies to.
 | |
|       - Set to C(any) to apply to all local ports.
 | |
|       - Defaults to C(any) when creating a new rule.
 | |
|     type: str
 | |
|   remoteport:
 | |
|     description:
 | |
|       - The remote port this rule applies to.
 | |
|       - Set to C(any) to apply to all remote ports.
 | |
|       - Defaults to C(any) when creating a new rule.
 | |
|     type: str
 | |
|   program:
 | |
|     description:
 | |
|       - The program this rule applies to.
 | |
|       - Set to C(any) to apply to all programs.
 | |
|       - Defaults to C(any) when creating a new rule.
 | |
|     type: str
 | |
|   service:
 | |
|     description:
 | |
|       - The service this rule applies to.
 | |
|       - Set to C(any) to apply to all services.
 | |
|       - Defaults to C(any) when creating a new rule.
 | |
|     type: str
 | |
|   protocol:
 | |
|     description:
 | |
|       - The protocol this rule applies to.
 | |
|       - Set to C(any) to apply to all services.
 | |
|       - Defaults to C(any) when creating a new rule.
 | |
|     type: str
 | |
|   profiles:
 | |
|     description:
 | |
|       - The profile this rule applies to.
 | |
|       - Defaults to C(domain,private,public) when creating a new rule.
 | |
|     type: list
 | |
|     aliases: [ profile ]
 | |
|   force:
 | |
|     description:
 | |
|     - Replace any existing rule by removing it first.
 | |
|     - This is no longer required in Ansible 2.4 as rules no longer need replacing when being modified.
 | |
|     - DEPRECATED in Ansible 2.4 and will be removed in Ansible 2.9.
 | |
|     type: bool
 | |
|     default: no
 | |
| seealso:
 | |
| - module: win_firewall
 | |
| author:
 | |
|   - Artem Zinenko (@ar7z1)
 | |
|   - Timothy Vandenbrande (@TimothyVandenbrande)
 | |
| '''
 | |
| 
 | |
| EXAMPLES = r'''
 | |
| - name: Firewall rule to allow SMTP on TCP port 25
 | |
|   win_firewall_rule:
 | |
|     name: SMTP
 | |
|     localport: 25
 | |
|     action: allow
 | |
|     direction: in
 | |
|     protocol: tcp
 | |
|     state: present
 | |
|     enabled: yes
 | |
| 
 | |
| - name: Firewall rule to allow RDP on TCP port 3389
 | |
|   win_firewall_rule:
 | |
|     name: Remote Desktop
 | |
|     localport: 3389
 | |
|     action: allow
 | |
|     direction: in
 | |
|     protocol: tcp
 | |
|     profiles: private
 | |
|     state: present
 | |
|     enabled: yes
 | |
| '''
 |