Add OG service support #1147

ArchelonU · 2024-12-12T07:20:32Z

SUMMARY

Adding the ability to specify an object group of services in the ACL settings.

ISSUE TYPE

Feature Pull Request

COMPONENT NAME

acls.py

ADDITIONAL INFORMATION

Now you can add object-group service when creating ACL rule.

To do this, it is enough to specify a new variable "service_object_group":

- name: ACL_NAME
  acl_type: extended
  aces:
    - sequence: '10'
       grant: 'permit'
       service_object_group: 'OG_WITH_MANY_PORTS'
       source:
         object_group: 'OG_SOURCE_HOSTS'
       destination:
         object_group: 'OG_DESTINATION_HOSTS'

What actually translates into a command:

10 permit object-group OG_WITH_MANY_PORTS object-group OG_SOURCE_HOSTS object-group OG_DESTINATION_HOSTS

for more information, see https://pre-commit.ci

ArchelonU

This works for me

Add OG service support

a98cd15

ArchelonU temporarily deployed to push December 12, 2024 07:20 — with GitHub Actions Inactive

[pre-commit.ci] auto fixes from pre-commit.com hooks

181f02e

for more information, see https://pre-commit.ci

pre-commit-ci bot temporarily deployed to push December 12, 2024 07:21 Inactive

ArchelonU commented Dec 12, 2024

View reviewed changes

ArchelonU closed this Dec 12, 2024

ArchelonU reopened this Dec 12, 2024

ArchelonU closed this Dec 12, 2024

ArchelonU deleted the feature/Add-OG-service-support branch December 12, 2024 08:29

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add OG service support #1147

Add OG service support #1147

ArchelonU commented Dec 12, 2024 •

edited

Loading

ArchelonU left a comment

Add OG service support #1147

Add OG service support #1147

Conversation

ArchelonU commented Dec 12, 2024 • edited Loading

SUMMARY

ISSUE TYPE

COMPONENT NAME

ADDITIONAL INFORMATION

ArchelonU left a comment

Choose a reason for hiding this comment

ArchelonU commented Dec 12, 2024 •

edited

Loading