community.aws icon indicating copy to clipboard operation
community.aws copied to clipboard

Published 20 hours ago verified publisher icon ansible-collections

networkfirewall_policy should allow managed stateful rule group to run in alert mode

Open linusguan opened this issue 9 months ago • 0 comments

Summary

When add or update managed stateful groups, AWS allows you to run it in alert mode. This is very useful when there is false positive and you want to disable a managed rule group temporarily. While you can do it in the console, the Ansible module currently does not allow you to specify a mode when adding managed stateful rule group.

image

Issue Type

Feature Idea

Component Name

networkfirewall_policy

Additional Information

- name: NFW policy
  community.aws.networkfirewall_policy:
    name: 'test-1'
    state: present
    region: "ap-southeast-2"
    stateful_rule_groups:
      - name: "arn:aws:network-firewall:ap-southeast-2:aws-managed:stateful-rulegroup/AbusedLegitMalwareDomainsStrictOrder"
        alert_mode: true

Code of Conduct

  • [X] I agree to follow the Ansible Code of Conduct

linusguan avatar May 22 '24 14:05 linusguan