Parameter |
Choices/Defaults |
Comments |
host
string
|
|
FortiOS or FortiGate IP address.
|
https
boolean
|
|
Indicates if the requests towards FortiGate must use HTTPS protocol.
|
password
string
|
Default:
""
|
FortiOS or FortiGate password.
|
ssl_verify
boolean
added in 2.9 |
|
Ensures FortiGate certificate must be verified by a proper CA.
|
state
string
added in 2.9 |
|
Indicates whether to create or remove the object. This attribute was present already in previous version in a deeper level. It has been moved out to this outer level.
|
username
string
|
|
FortiOS or FortiGate username.
|
vdom
string
|
Default:
"root"
|
Virtual domain, among those defined previously. A vdom is a virtual instance of the FortiGate that can be configured and used as a different unit.
|
wanopt_profile
dictionary
|
Default:
null
|
Configure WAN optimization profiles.
|
|
auth_group
string
|
|
Optionally add an authentication group to restrict access to the WAN Optimization tunnel to peers in the authentication group. Source wanopt.auth-group.name.
|
|
cifs
dictionary
|
|
Enable/disable CIFS (Windows sharing) WAN Optimization and configure CIFS WAN Optimization features.
|
|
|
byte_caching
string
|
|
Enable/disable byte-caching for HTTP. Byte caching reduces the amount of traffic by caching file data sent across the WAN and in future serving if from the cache.
|
|
|
log_traffic
string
|
|
Enable/disable logging.
|
|
|
port
integer
|
|
Single port number or port number range for CIFS. Only packets with a destination port number that matches this port number or range are accepted by this profile.
|
|
|
prefer_chunking
string
|
|
Select dynamic or fixed-size data chunking for HTTP WAN Optimization.
|
|
|
secure_tunnel
string
|
|
Enable/disable securing the WAN Opt tunnel using SSL. Secure and non-secure tunnels use the same TCP port (7810).
|
|
|
status
string
|
|
Enable/disable HTTP WAN Optimization.
|
|
|
tunnel_sharing
string
|
Choices:
- private
- shared
- express-shared
|
Tunnel sharing mode for aggressive/non-aggressive and/or interactive/non-interactive protocols.
|
|
comments
string
|
|
Comment.
|
|
ftp
dictionary
|
|
Enable/disable FTP WAN Optimization and configure FTP WAN Optimization features.
|
|
|
byte_caching
string
|
|
Enable/disable byte-caching for HTTP. Byte caching reduces the amount of traffic by caching file data sent across the WAN and in future serving if from the cache.
|
|
|
log_traffic
string
|
|
Enable/disable logging.
|
|
|
port
integer
|
|
Single port number or port number range for FTP. Only packets with a destination port number that matches this port number or range are accepted by this profile.
|
|
|
prefer_chunking
string
|
|
Select dynamic or fixed-size data chunking for HTTP WAN Optimization.
|
|
|
secure_tunnel
string
|
|
Enable/disable securing the WAN Opt tunnel using SSL. Secure and non-secure tunnels use the same TCP port (7810).
|
|
|
status
string
|
|
Enable/disable HTTP WAN Optimization.
|
|
|
tunnel_sharing
string
|
Choices:
- private
- shared
- express-shared
|
Tunnel sharing mode for aggressive/non-aggressive and/or interactive/non-interactive protocols.
|
|
http
dictionary
|
|
Enable/disable HTTP WAN Optimization and configure HTTP WAN Optimization features.
|
|
|
byte_caching
string
|
|
Enable/disable byte-caching for HTTP. Byte caching reduces the amount of traffic by caching file data sent across the WAN and in future serving if from the cache.
|
|
|
log_traffic
string
|
|
Enable/disable logging.
|
|
|
port
integer
|
|
Single port number or port number range for HTTP. Only packets with a destination port number that matches this port number or range are accepted by this profile.
|
|
|
prefer_chunking
string
|
|
Select dynamic or fixed-size data chunking for HTTP WAN Optimization.
|
|
|
secure_tunnel
string
|
|
Enable/disable securing the WAN Opt tunnel using SSL. Secure and non-secure tunnels use the same TCP port (7810).
|
|
|
ssl
string
|
|
Enable/disable SSL/TLS offloading (hardware acceleration) for HTTPS traffic in this tunnel.
|
|
|
ssl_port
integer
|
|
Port on which to expect HTTPS traffic for SSL/TLS offloading.
|
|
|
status
string
|
|
Enable/disable HTTP WAN Optimization.
|
|
|
tunnel_non_http
string
|
|
Configure how to process non-HTTP traffic when a profile configured for HTTP traffic accepts a non-HTTP session. Can occur if an application sends non-HTTP traffic using an HTTP destination port.
|
|
|
tunnel_sharing
string
|
Choices:
- private
- shared
- express-shared
|
Tunnel sharing mode for aggressive/non-aggressive and/or interactive/non-interactive protocols.
|
|
|
unknown_http_version
string
|
Choices:
- reject
- tunnel
- best-effort
|
How to handle HTTP sessions that do not comply with HTTP 0.9, 1.0, or 1.1.
|
|
mapi
dictionary
|
|
Enable/disable MAPI email WAN Optimization and configure MAPI WAN Optimization features.
|
|
|
byte_caching
string
|
|
Enable/disable byte-caching for HTTP. Byte caching reduces the amount of traffic by caching file data sent across the WAN and in future serving if from the cache.
|
|
|
log_traffic
string
|
|
Enable/disable logging.
|
|
|
port
integer
|
|
Single port number or port number range for MAPI. Only packets with a destination port number that matches this port number or range are accepted by this profile.
|
|
|
secure_tunnel
string
|
|
Enable/disable securing the WAN Opt tunnel using SSL. Secure and non-secure tunnels use the same TCP port (7810).
|
|
|
status
string
|
|
Enable/disable HTTP WAN Optimization.
|
|
|
tunnel_sharing
string
|
Choices:
- private
- shared
- express-shared
|
Tunnel sharing mode for aggressive/non-aggressive and/or interactive/non-interactive protocols.
|
|
name
string
/ required
|
|
Profile name.
|
|
state
string
|
|
Deprecated
Starting with Ansible 2.9 we recommend using the top-level 'state' parameter.
Indicates whether to create or remove the object.
|
|
tcp
dictionary
|
|
Enable/disable TCP WAN Optimization and configure TCP WAN Optimization features.
|
|
|
byte_caching
string
|
|
Enable/disable byte-caching for HTTP. Byte caching reduces the amount of traffic by caching file data sent across the WAN and in future serving if from the cache.
|
|
|
byte_caching_opt
string
|
Choices:
- mem-only
- mem-disk
|
Select whether TCP byte-caching uses system memory only or both memory and disk space.
|
|
|
log_traffic
string
|
|
Enable/disable logging.
|
|
|
port
string
|
|
Single port number or port number range for TCP. Only packets with a destination port number that matches this port number or range are accepted by this profile.
|
|
|
secure_tunnel
string
|
|
Enable/disable securing the WAN Opt tunnel using SSL. Secure and non-secure tunnels use the same TCP port (7810).
|
|
|
ssl
string
|
|
Enable/disable SSL/TLS offloading.
|
|
|
ssl_port
integer
|
|
Port on which to expect HTTPS traffic for SSL/TLS offloading.
|
|
|
status
string
|
|
Enable/disable HTTP WAN Optimization.
|
|
|
tunnel_sharing
string
|
Choices:
- private
- shared
- express-shared
|
Tunnel sharing mode for aggressive/non-aggressive and/or interactive/non-interactive protocols.
|
|
transparent
string
|
|
Enable/disable transparent mode.
|