remote_address_phase2:
- 192.168.88.0/24
- 192.168.1.0/24
任務:
i have to create a firewall group
- name: "addrgrp"
fortios_firewall_addrgrp:
vdom: "{{ vdom }}"
state: "present"
firewall_addrgrp:
allow_routing: "disable"
#category: "default"
color: "21"
comment: "try"
exclude: "disable"
fabric_object: "disable"
member:
- name: "NET-{{ item}}"
name: "try"
type: "default"
with_items: "{{ remote_address_phase2 }}"
如果我做了這個活動,我有 2 個不同的任務,但最后一個操作會覆寫第一個
任何的想法?
uj5u.com熱心網友回復:
按照模塊檔案中的示例,該member:引數似乎采用了一個字典串列。
模塊檔案中的示例:
member:
-
name: "default_name_7 (source firewall.address.name firewall.addrgrp.name)"
還沒有測驗過,但我們可以在"addrgrp"任務之前創建一個類似的結構,set_fact并使用新創建的變數。
- set_fact:
fw_members: "{{ fw_members | default([]) [{'name': 'NET-' ~ item}] }}"
loop: "{{ remote_address_phase2 }}"
這給出:
"fw_members": [
{
"name": "NET-192.168.88.0/24"
},
{
"name": "NET-192.168.1.0/24"
}
]
然后應該可以將此變數作為值傳遞給member:引數。例子:
- set_fact:
fw_members: "{{ fw_members | default([]) [{'name': 'NET-' ~ item}] }}"
loop: "{{ remote_address_phase2 }}"
- name: "addrgrp"
fortios_firewall_addrgrp:
vdom: "{{ vdom }}"
state: "present"
firewall_addrgrp:
allow_routing: "disable"
#category: "default"
color: "21"
comment: "try"
exclude: "disable"
fabric_object: "disable"
member: "{{ fw_members }}"
name: "try"
type: "default"
轉載請註明出處,本文鏈接:https://www.uj5u.com/gongcheng/315522.html