:source: fortios_system_fabric_vpn.py :orphan: .. fortios_system_fabric_vpn: fortios_system_fabric_vpn -- Setup for self orchestrated fabric auto discovery VPN in Fortinet's FortiOS and FortiGate. +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ .. versionadded:: 2.0.0 .. contents:: :local: :depth: 1 Synopsis -------- - This module is able to configure a FortiGate or FortiOS (FOS) device by allowing the user to set and modify system feature and fabric_vpn category. Examples include all parameters and values need to be adjusted to datasources before usage. Tested with FOS v6.0.0 Requirements ------------ The below requirements are needed on the host that executes this module. - ansible>=2.16 Tips ---- Using member operation to add an element to an existing object. FortiOS Version Compatibility ----------------------------- Supported Version Ranges: v7.2.4 -> v7.6.6 Parameters ---------- .. raw:: html Notes ----- .. note:: - Legacy fortiosapi has been deprecated, httpapi is the preferred way to run playbooks - The module supports check_mode. Examples -------- .. code-block:: yaml+jinja - name: Setup for self orchestrated fabric auto discovery VPN. fortinet.fortios.fortios_system_fabric_vpn: vdom: "{{ vdom }}" system_fabric_vpn: advertised_subnets: - access: "inbound" bgp_network: "0" firewall_address: " (source firewall.address.name)" id: "7" policies: " (source firewall.policy.policyid)" prefix: "" bgp_as: "" branch_name: "" health_checks: " (source system.sdwan.health-check.name)" loopback_address_block: "" loopback_advertised_subnet: "0" loopback_interface: " (source system.interface.name)" overlays: - bgp_neighbor: " (source router.bgp.neighbor.ip)" bgp_neighbor_group: " (source router.bgp.neighbor-group.name)" bgp_neighbor_range: "0" bgp_network: "0" interface: " (source system.interface.name)" ipsec_network_id: "0" ipsec_phase1: " (source vpn.ipsec.phase1-interface.name)" name: "default_name_24" overlay_policy: "0" overlay_tunnel_block: "" remote_gw: "" route_policy: "0" sdwan_member: "0" policy_rule: "health-check" psksecret: "" sdwan_zone: " (source system.sdwan.zone.name)" status: "enable" sync_mode: "enable" vpn_role: "hub" Return Values ------------- Common return values are documented: https://docs.ansible.com/ansible/latest/reference_appendices/common_return_values.html#common-return-values, the following are the fields unique to this module: .. raw:: html
  • build - Build number of the fortigate image returned: always type: str sample: 1547
  • http_method - Last method used to provision the content into FortiGate returned: always type: str sample: PUT
  • http_status - Last result given by FortiGate on last operation applied returned: always type: str sample: 200
  • mkey - Master key (id) used in the last call to FortiGate returned: success type: str sample: id
  • name - Name of the table used to fulfill the request returned: always type: str sample: urlfilter
  • path - Path of the table used to fulfill the request returned: always type: str sample: webfilter
  • revision - Internal revision number returned: always type: str sample: 17.0.2.10658
  • serial - Serial number of the unit returned: always type: str sample: FGVMEVYYQT3AB5352
  • status - Indication of the operation's result returned: always type: str sample: success
  • vdom - Virtual domain used returned: always type: str sample: root
  • version - Version of the FortiGate returned: always type: str sample: v5.6.3
Status ------ - This module is not guaranteed to have a backwards compatible interface. Authors ------- - Link Zheng (@chillancezen) - Jie Xue (@JieX19) - Hongbin Lu (@fgtdev-hblu) - Frank Shen (@frankshen01) - Miguel Angel Munoz (@mamunozgonzalez) - Nicolas Thomas (@thomnico) .. hint:: If you notice any issues in this documentation, you can create a pull request to improve it.