New in version 2.3.
| Removed in Ansible: | |
|---|---|
| version: 2.9 | |
| Why: | This module depended on outdated and old SDK, use panos_nat_rule instead. |
| Alternative: | Use panos_nat_rule instead. |
| Parameter | Choices/Defaults | Comments |
|---|---|---|
| commit |
|
commit if changed
|
| destination |
Default: [u'any']
|
list of destination addresses
|
| dnat_address |
dnat translated address
|
|
| dnat_port |
dnat translated port
|
|
|
from_zone
required |
list of source zones
|
|
|
ip_address
required |
IP address (or hostname) of PAN-OS device
|
|
| override |
|
attempt to override rule if one with the same name already exists
|
|
password
required |
password for authentication
|
|
|
rule_name
required |
name of the SNAT rule
|
|
| service |
Default: any
|
service
|
| snat_address |
snat translated address
|
|
| snat_bidirectional |
|
bidirectional flag
|
| snat_interface |
snat interface
|
|
| snat_interface_address |
snat interface address
|
|
| snat_type |
type of source translation
|
|
| source |
Default: [u'any']
|
list of source addresses
|
|
to_zone
required |
destination zone
|
|
| username |
Default: admin
|
username for authentication
|
# Create a source and destination nat rule
- name: create nat SSH221 rule for 10.0.1.101
panos_nat:
ip_address: "192.168.1.1"
password: "admin"
rule_name: "Web SSH"
from_zone: ["external"]
to_zone: "external"
source: ["any"]
destination: ["10.0.0.100"]
service: "service-tcp-221"
snat_type: "dynamic-ip-and-port"
snat_interface: "ethernet1/2"
dnat_address: "10.0.1.101"
dnat_port: "22"
commit: False
This module is flagged as deprecated and will be removed in version 2.9. For more information see DEPRECATED.
Hint
If you notice any issues in this documentation you can edit this document to improve it.