community.general.hetzner_firewall_info – Manage Hetzner’s dedicated server firewall
community.general.hetzner_firewall_info – Manage Hetzner’s dedicated server firewall
Note
This plugin is part of the community.general collection (version 1.3.2).
To install it use: ansible-galaxy collection install community.general.
To use it in a playbook, specify: community.general.hetzner_firewall_info.
New in version 0.2.0: of community.general
Synopsis
- Manage Hetzner’s dedicated server firewall.
Parameters
| Parameter | Choices/Defaults | Comments |
|---|---|---|
|
hetzner_password string / required |
The password for the Robot webservice user. | |
|
hetzner_user string / required |
The username for the Robot webservice user. | |
|
server_ip string / required |
The server's main IP address. | |
|
timeout integer |
Default: 180 |
Timeout (in seconds) for waiting for firewall to be configured. |
|
wait_delay integer |
Default: 10 |
Delay to wait (in seconds) before checking again whether the firewall has been configured. |
|
wait_for_configured boolean |
|
Whether to wait until the firewall has been successfully configured before determining what to do, and before returning from the module. The API returns status Please note that there is a request limit. If you have to do multiple updates, it can be better to disable waiting, and regularly use community.general.hetzner_firewall_info to query status. |
See Also
See also
- Firewall documentation
- Hetzner’s documentation on the stateless firewall for dedicated servers
- community.general.hetzner_firewall
- Configure firewall.
Examples
- name: Get firewall configuration for server with main IP 1.2.3.4
community.general.hetzner_firewall_info:
hetzner_user: foo
hetzner_password: bar
server_ip: 1.2.3.4
register: result
- ansible.builtin.debug:
msg: "{{ result.firewall }}"Return Values
Common return values are documented here, the following are the fields unique to this module:
| Key | Returned | Description | |||
|---|---|---|---|---|---|
|
firewall dictionary |
success |
The firewall configuration.
| |||
|
port string |
success |
Switch port of firewall.
Sample: main | |||
|
rules dictionary |
success |
Firewall rules.
| |||
|
input list / elements=dictionary |
success |
Input firewall rules.
| |||
|
action string |
success |
Action if rule matches.
Sample: accept | |||
|
dst_ip string |
success |
Destination IP address or subnet address. CIDR notation.
Sample: 1.2.3.4/32 | |||
|
dst_port string |
success |
Destination port or port range.
Sample: 443 | |||
|
ip_version string |
success |
Internet protocol version.
Sample: ipv4 | |||
|
name string |
success |
Name of the firewall rule.
Sample: Allow HTTP access to server | |||
|
protocol string |
success |
Protocol above IP layer
Sample: tcp | |||
|
src_ip string |
success |
Source IP address or subnet address. CIDR notation.
| |||
|
src_port string |
success |
Source port or port range.
| |||
|
tcp_flags string |
success |
TCP flags or logical combination of flags.
| |||
|
server_ip string |
success |
Server's main IP address.
Sample: 1.2.3.4 | |||
|
server_number integer |
success |
Hetzner's internal server number.
Sample: 12345 | |||
|
status string |
success |
Status of the firewall.
Will be
Sample: active | |||
|
whitelist_hos boolean |
success |
Whether Hetzner services have access.
Sample: True |
Authors
- Felix Fontein (@felixfontein)
© 2012–2018 Michael DeHaan
© 2018–2019 Red Hat, Inc.
Licensed under the GNU General Public License version 3.
https://docs.ansible.com/ansible/2.10/collections/community/general/hetzner_firewall_info_module.html
