Open
Description
Summary
Module is reporting changed when no real change has occurred. I suspect Amazon tweaked their APIs.
Issue Type
Bug Report
Component Name
networkfirewall_rule_group
Ansible Version
CI
Collection Versions
CI
AWS SDK versions
$ pip show boto boto3 botocoreConfiguration
CI
OS / Environment
CI
Steps to Reproduce
Run CI
Expected Results
Tests pass
Actual Results
2023-01-02 16:38:13.331696 | controller | TASK [networkfirewall_rule_group : Create a 5-Tuple Rule Group] ****************
2023-01-02 16:38:13.331701 | controller | task path: /home/zuul/.ansible/collections/ansible_collections/community/aws/tests/integration/targets/networkfirewall_rule_group/tasks/5-tuple.yml:111
2023-01-02 16:38:15.112520 | controller | Using module file /home/zuul/.ansible/collections/ansible_collections/community/aws/plugins/modules/networkfirewall_rule_group.py
2023-01-02 16:38:15.112558 | controller | Pipelining is enabled.
2023-01-02 16:38:15.112565 | controller | <testhost> ESTABLISH LOCAL CONNECTION FOR USER: zuul
2023-01-02 16:38:15.112571 | controller | <testhost> EXEC /bin/sh -c 'ANSIBLE_DEBUG_BOTOCORE_LOGS=True /home/zuul/venv/bin/python && sleep 0'
2023-01-02 16:38:15.112576 | controller | --- before
2023-01-02 16:38:15.112581 | controller | +++ after
2023-01-02 16:38:15.112586 | controller | @@ -0,0 +1,36 @@
2023-01-02 16:38:15.112591 | controller | +{
2023-01-02 16:38:15.112596 | controller | + "rule_group": {
2023-01-02 16:38:15.112601 | controller | + "rules_source": {
2023-01-02 16:38:15.112606 | controller | + "stateful_rules": [
2023-01-02 16:38:15.112611 | controller | + {
2023-01-02 16:38:15.112616 | controller | + "action": "PASS",
2023-01-02 16:38:15.112621 | controller | + "header": {
2023-01-02 16:38:15.112631 | controller | + "destination": "198.51.100.0/24",
2023-01-02 16:38:15.112636 | controller | + "destination_port": "22",
2023-01-02 16:38:15.112646 | controller | + "direction": "FORWARD",
2023-01-02 16:38:15.112652 | controller | + "protocol": "TCP",
2023-01-02 16:38:15.112657 | controller | + "source": "192.0.2.74",
2023-01-02 16:38:15.112661 | controller | + "source_port": "any"
2023-01-02 16:38:15.112666 | controller | + },
2023-01-02 16:38:15.112671 | controller | + "rule_options": [
2023-01-02 16:38:15.112676 | controller | + {
2023-01-02 16:38:15.112681 | controller | + "keyword": "sid",
2023-01-02 16:38:15.112686 | controller | + "settings": [
2023-01-02 16:38:15.112690 | controller | + "10001"
2023-01-02 16:38:15.112695 | controller | + ]
2023-01-02 16:38:15.112700 | controller | + }
2023-01-02 16:38:15.112705 | controller | + ]
2023-01-02 16:38:15.112710 | controller | + }
2023-01-02 16:38:15.112714 | controller | + ]
2023-01-02 16:38:15.112719 | controller | + }
2023-01-02 16:38:15.112724 | controller | + },
2023-01-02 16:38:15.112729 | controller | + "rule_group_metadata": {
2023-01-02 16:38:15.112734 | controller | + "capacity": 50,
2023-01-02 16:38:15.112738 | controller | + "rule_group_arn": "arn:aws:network-firewall:us-east-1:966509639900:stateful-rulegroup/AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:15.112744 | controller | + "rule_group_id": "ba087c14-8450-4b85-b335-108755252f04",
2023-01-02 16:38:15.112749 | controller | + "rule_group_name": "AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:15.112753 | controller | + "rule_group_status": "ACTIVE",
2023-01-02 16:38:15.112758 | controller | + "tags": {},
2023-01-02 16:38:15.112763 | controller | + "type": "STATEFUL"
2023-01-02 16:38:15.112768 | controller | + }
2023-01-02 16:38:15.112772 | controller | +}
2023-01-02 16:38:15.112777 | controller |
2023-01-02 16:38:15.112782 | controller | changed: [testhost] => {
2023-01-02 16:38:15.112786 | controller | "changed": true,
2023-01-02 16:38:15.112792 | controller | "diff": {
2023-01-02 16:38:15.112796 | controller | "after": {
2023-01-02 16:38:15.112801 | controller | "rule_group": {
2023-01-02 16:38:15.112806 | controller | "rules_source": {
2023-01-02 16:38:15.112810 | controller | "stateful_rules": [
2023-01-02 16:38:15.112815 | controller | {
2023-01-02 16:38:15.112820 | controller | "action": "PASS",
2023-01-02 16:38:15.112825 | controller | "header": {
2023-01-02 16:38:15.112829 | controller | "destination": "198.51.100.0/24",
2023-01-02 16:38:15.112834 | controller | "destination_port": "22",
2023-01-02 16:38:15.112839 | controller | "direction": "FORWARD",
2023-01-02 16:38:15.112844 | controller | "protocol": "TCP",
2023-01-02 16:38:15.112849 | controller | "source": "192.0.2.74",
2023-01-02 16:38:15.112854 | controller | "source_port": "any"
2023-01-02 16:38:15.112859 | controller | },
2023-01-02 16:38:15.112863 | controller | "rule_options": [
2023-01-02 16:38:15.112868 | controller | {
2023-01-02 16:38:15.112873 | controller | "keyword": "sid",
2023-01-02 16:38:15.112877 | controller | "settings": [
2023-01-02 16:38:15.112882 | controller | "10001"
2023-01-02 16:38:15.112887 | controller | ]
2023-01-02 16:38:15.112891 | controller | }
2023-01-02 16:38:15.112896 | controller | ]
2023-01-02 16:38:15.112901 | controller | }
2023-01-02 16:38:15.112906 | controller | ]
2023-01-02 16:38:15.112911 | controller | }
2023-01-02 16:38:15.112916 | controller | },
2023-01-02 16:38:15.112923 | controller | "rule_group_metadata": {
2023-01-02 16:38:15.112928 | controller | "capacity": 50,
2023-01-02 16:38:15.112933 | controller | "rule_group_arn": "arn:aws:network-firewall:us-east-1:966509639900:stateful-rulegroup/AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:15.112938 | controller | "rule_group_id": "ba087c14-8450-4b85-b335-108755252f04",
2023-01-02 16:38:15.112946 | controller | "rule_group_name": "AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:15.112951 | controller | "rule_group_status": "ACTIVE",
2023-01-02 16:38:15.112956 | controller | "tags": {},
2023-01-02 16:38:15.112975 | controller | "type": "STATEFUL"
2023-01-02 16:38:15.112981 | controller | }
2023-01-02 16:38:15.112987 | controller | },
2023-01-02 16:38:15.112992 | controller | "before": null
2023-01-02 16:38:15.112997 | controller | },
2023-01-02 16:38:15.113002 | controller | "invocation": {
2023-01-02 16:38:15.113007 | controller | "module_args": {
2023-01-02 16:38:15.113011 | controller | "access_key": "ASIA6CCDWXDOMXUMKTA6",
2023-01-02 16:38:15.113016 | controller | "arn": null,
2023-01-02 16:38:15.113021 | controller | "aws_access_key": "ASIA6CCDWXDOMXUMKTA6",
2023-01-02 16:38:15.113025 | controller | "aws_ca_bundle": null,
2023-01-02 16:38:15.113030 | controller | "aws_config": null,
2023-01-02 16:38:15.113034 | controller | "aws_secret_key": "VALUE_SPECIFIED_IN_NO_LOG_PARAMETER",
2023-01-02 16:38:15.113039 | controller | "capacity": 50,
2023-01-02 16:38:15.113044 | controller | "debug_botocore_endpoint_logs": true,
2023-01-02 16:38:15.113049 | controller | "description": null,
2023-01-02 16:38:15.113054 | controller | "domain_list": null,
2023-01-02 16:38:15.113242 | controller | "endpoint_url": null,
2023-01-02 16:38:15.113248 | controller | "ip_variables": null,
2023-01-02 16:38:15.113253 | controller | "name": "AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:15.113258 | controller | "port_variables": null,
2023-01-02 16:38:15.113263 | controller | "profile": null,
2023-01-02 16:38:15.113268 | controller | "purge_ip_variables": true,
2023-01-02 16:38:15.113273 | controller | "purge_port_variables": true,
2023-01-02 16:38:15.113278 | controller | "purge_tags": true,
2023-01-02 16:38:15.113283 | controller | "region": "us-east-1",
2023-01-02 16:38:15.113288 | controller | "rule_list": [
2023-01-02 16:38:15.113293 | controller | {
2023-01-02 16:38:15.113297 | controller | "action": "pass",
2023-01-02 16:38:15.113312 | controller | "destination": "198.51.100.0/24",
2023-01-02 16:38:15.113317 | controller | "destination_port": "22",
2023-01-02 16:38:15.113322 | controller | "direction": "forward",
2023-01-02 16:38:15.113326 | controller | "protocol": "TCP",
2023-01-02 16:38:15.113331 | controller | "rule_options": null,
2023-01-02 16:38:15.113336 | controller | "sid": 10001,
2023-01-02 16:38:15.113341 | controller | "source": "192.0.2.74",
2023-01-02 16:38:15.113346 | controller | "source_port": "any"
2023-01-02 16:38:15.113351 | controller | }
2023-01-02 16:38:15.113356 | controller | ],
2023-01-02 16:38:15.113360 | controller | "rule_order": null,
2023-01-02 16:38:15.113365 | controller | "rule_strings": null,
2023-01-02 16:38:15.113370 | controller | "rule_type": "stateful",
2023-01-02 16:38:15.113374 | controller | "secret_key": "VALUE_SPECIFIED_IN_NO_LOG_PARAMETER",
2023-01-02 16:38:15.113379 | controller | "security_token": "VALUE_SPECIFIED_IN_NO_LOG_PARAMETER",
2023-01-02 16:38:15.113384 | controller | "session_token": "VALUE_SPECIFIED_IN_NO_LOG_PARAMETER",
2023-01-02 16:38:15.113389 | controller | "state": "present",
2023-01-02 16:38:15.113394 | controller | "tags": null,
2023-01-02 16:38:15.113398 | controller | "type": "stateful",
2023-01-02 16:38:15.113403 | controller | "validate_certs": true,
2023-01-02 16:38:15.113408 | controller | "wait": true,
2023-01-02 16:38:15.113413 | controller | "wait_timeout": null
2023-01-02 16:38:15.113417 | controller | }
2023-01-02 16:38:15.113422 | controller | },
2023-01-02 16:38:15.113427 | controller | "resource_actions": [
2023-01-02 16:38:15.113431 | controller | "network-firewall:DescribeRuleGroup",
2023-01-02 16:38:15.113436 | controller | "network-firewall:CreateRuleGroup"
2023-01-02 16:38:15.113441 | controller | ],
2023-01-02 16:38:15.113445 | controller | "rule_group": {
2023-01-02 16:38:15.113450 | controller | "rule_group": {
2023-01-02 16:38:15.113455 | controller | "rules_source": {
2023-01-02 16:38:15.113464 | controller | "stateful_rules": [
2023-01-02 16:38:15.113470 | controller | {
2023-01-02 16:38:15.113475 | controller | "action": "PASS",
2023-01-02 16:38:15.113479 | controller | "header": {
2023-01-02 16:38:15.113484 | controller | "destination": "198.51.100.0/24",
2023-01-02 16:38:15.113489 | controller | "destination_port": "22",
2023-01-02 16:38:15.113494 | controller | "direction": "FORWARD",
2023-01-02 16:38:15.113499 | controller | "protocol": "TCP",
2023-01-02 16:38:15.113507 | controller | "source": "192.0.2.74",
2023-01-02 16:38:15.113512 | controller | "source_port": "any"
2023-01-02 16:38:15.113517 | controller | },
2023-01-02 16:38:15.113521 | controller | "rule_options": [
2023-01-02 16:38:15.113526 | controller | {
2023-01-02 16:38:15.113531 | controller | "keyword": "sid",
2023-01-02 16:38:15.113536 | controller | "settings": [
2023-01-02 16:38:15.113541 | controller | "10001"
2023-01-02 16:38:15.113545 | controller | ]
2023-01-02 16:38:15.113550 | controller | }
2023-01-02 16:38:15.113555 | controller | ]
2023-01-02 16:38:15.113560 | controller | }
2023-01-02 16:38:15.113564 | controller | ]
2023-01-02 16:38:15.113569 | controller | }
2023-01-02 16:38:15.113574 | controller | },
2023-01-02 16:38:15.113579 | controller | "rule_group_metadata": {
2023-01-02 16:38:15.113584 | controller | "capacity": 50,
2023-01-02 16:38:15.113590 | controller | "rule_group_arn": "arn:aws:network-firewall:us-east-1:966509639900:stateful-rulegroup/AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:15.113596 | controller | "rule_group_id": "ba087c14-8450-4b85-b335-108755252f04",
2023-01-02 16:38:15.113601 | controller | "rule_group_name": "AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:15.113606 | controller | "rule_group_status": "ACTIVE",
2023-01-02 16:38:15.113611 | controller | "tags": {},
2023-01-02 16:38:15.113616 | controller | "type": "STATEFUL"
2023-01-02 16:38:15.113621 | controller | }
2023-01-02 16:38:15.113626 | controller | }
2023-01-02 16:38:15.113631 | controller | }
2023-01-02 16:38:15.113637 | controller |
2023-01-02 16:38:15.113642 | controller | TASK [networkfirewall_rule_group : assert] *************************************
2023-01-02 16:38:15.113647 | controller | task path: /home/zuul/.ansible/collections/ansible_collections/community/aws/tests/integration/targets/networkfirewall_rule_group/tasks/5-tuple.yml:120
2023-01-02 16:38:15.239865 | controller | ok: [testhost] => {
2023-01-02 16:38:15.239901 | controller | "changed": false,
2023-01-02 16:38:15.239907 | controller | "msg": "All assertions passed"
2023-01-02 16:38:15.239912 | controller | }
2023-01-02 16:38:15.239918 | controller |
2023-01-02 16:38:15.239923 | controller | TASK [networkfirewall_rule_group : Save RuleGroup ID/ARN for later] ************
2023-01-02 16:38:15.239928 | controller | task path: /home/zuul/.ansible/collections/ansible_collections/community/aws/tests/integration/targets/networkfirewall_rule_group/tasks/5-tuple.yml:138
2023-01-02 16:38:15.356582 | controller | ok: [testhost] => {
2023-01-02 16:38:15.356612 | controller | "ansible_facts": {
2023-01-02 16:38:15.356618 | controller | "minimal_rule_group_arn": "arn:aws:network-firewall:us-east-1:966509639900:stateful-rulegroup/AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:15.356622 | controller | "minimal_rule_group_id": "ba087c14-8450-4b85-b335-108755252f04"
2023-01-02 16:38:15.356626 | controller | },
2023-01-02 16:38:15.356630 | controller | "changed": false
2023-01-02 16:38:15.356633 | controller | }
2023-01-02 16:38:15.356637 | controller |
2023-01-02 16:38:15.356641 | controller | TASK [networkfirewall_rule_group : (CHECK) Create a 5-Tuple Rule Group (idempotency)] ***
2023-01-02 16:38:15.356645 | controller | task path: /home/zuul/.ansible/collections/ansible_collections/community/aws/tests/integration/targets/networkfirewall_rule_group/tasks/5-tuple.yml:143
2023-01-02 16:38:16.399095 | controller | Using module file /home/zuul/.ansible/collections/ansible_collections/community/aws/plugins/modules/networkfirewall_rule_group.py
2023-01-02 16:38:16.399139 | controller | Pipelining is enabled.
2023-01-02 16:38:16.399146 | controller | <testhost> ESTABLISH LOCAL CONNECTION FOR USER: zuul
2023-01-02 16:38:16.399152 | controller | <testhost> EXEC /bin/sh -c 'ANSIBLE_DEBUG_BOTOCORE_LOGS=True /home/zuul/venv/bin/python && sleep 0'
2023-01-02 16:38:16.399157 | controller | --- before
2023-01-02 16:38:16.399162 | controller | +++ after
2023-01-02 16:38:16.399167 | controller | @@ -14,10 +14,7 @@
2023-01-02 16:38:16.399172 | controller | },
2023-01-02 16:38:16.399181 | controller | "rule_options": [
2023-01-02 16:38:16.399186 | controller | {
2023-01-02 16:38:16.399191 | controller | - "keyword": "sid",
2023-01-02 16:38:16.399195 | controller | - "settings": [
2023-01-02 16:38:16.399200 | controller | - "10001"
2023-01-02 16:38:16.399205 | controller | - ]
2023-01-02 16:38:16.399210 | controller | + "keyword": "sid:10001"
2023-01-02 16:38:16.399214 | controller | }
2023-01-02 16:38:16.399222 | controller | ]
2023-01-02 16:38:16.399227 | controller | }
2023-01-02 16:38:16.399232 | controller |
2023-01-02 16:38:16.399237 | controller | changed: [testhost] => {
2023-01-02 16:38:16.399241 | controller | "changed": true,
2023-01-02 16:38:16.399246 | controller | "diff": {
2023-01-02 16:38:16.399250 | controller | "after": {
2023-01-02 16:38:16.399255 | controller | "rule_group": {
2023-01-02 16:38:16.399262 | controller | "rules_source": {
2023-01-02 16:38:16.399267 | controller | "stateful_rules": [
2023-01-02 16:38:16.399272 | controller | {
2023-01-02 16:38:16.399276 | controller | "action": "PASS",
2023-01-02 16:38:16.399281 | controller | "header": {
2023-01-02 16:38:16.399286 | controller | "destination": "198.51.100.0/24",
2023-01-02 16:38:16.399291 | controller | "destination_port": "22",
2023-01-02 16:38:16.399296 | controller | "direction": "FORWARD",
2023-01-02 16:38:16.399301 | controller | "protocol": "TCP",
2023-01-02 16:38:16.399305 | controller | "source": "192.0.2.74",
2023-01-02 16:38:16.399310 | controller | "source_port": "any"
2023-01-02 16:38:16.399314 | controller | },
2023-01-02 16:38:16.399319 | controller | "rule_options": [
2023-01-02 16:38:16.399323 | controller | {
2023-01-02 16:38:16.399328 | controller | "keyword": "sid:10001"
2023-01-02 16:38:16.399332 | controller | }
2023-01-02 16:38:16.399337 | controller | ]
2023-01-02 16:38:16.399342 | controller | }
2023-01-02 16:38:16.399346 | controller | ]
2023-01-02 16:38:16.399351 | controller | }
2023-01-02 16:38:16.399356 | controller | },
2023-01-02 16:38:16.399360 | controller | "rule_group_metadata": {
2023-01-02 16:38:16.399365 | controller | "capacity": 50,
2023-01-02 16:38:16.399370 | controller | "rule_group_arn": "arn:aws:network-firewall:us-east-1:966509639900:stateful-rulegroup/AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:16.399375 | controller | "rule_group_id": "ba087c14-8450-4b85-b335-108755252f04",
2023-01-02 16:38:16.399380 | controller | "rule_group_name": "AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:16.399384 | controller | "rule_group_status": "ACTIVE",
2023-01-02 16:38:16.399389 | controller | "tags": {},
2023-01-02 16:38:16.399394 | controller | "type": "STATEFUL"
2023-01-02 16:38:16.399398 | controller | }
2023-01-02 16:38:16.399414 | controller | },
2023-01-02 16:38:16.399419 | controller | "before": {
2023-01-02 16:38:16.399423 | controller | "rule_group": {
2023-01-02 16:38:16.399428 | controller | "rules_source": {
2023-01-02 16:38:16.399432 | controller | "stateful_rules": [
2023-01-02 16:38:16.399437 | controller | {
2023-01-02 16:38:16.399442 | controller | "action": "PASS",
2023-01-02 16:38:16.399446 | controller | "header": {
2023-01-02 16:38:16.399451 | controller | "destination": "198.51.100.0/24",
2023-01-02 16:38:16.399457 | controller | "destination_port": "22",
2023-01-02 16:38:16.399464 | controller | "direction": "FORWARD",
2023-01-02 16:38:16.399468 | controller | "protocol": "TCP",
2023-01-02 16:38:16.399472 | controller | "source": "192.0.2.74",
2023-01-02 16:38:16.399477 | controller | "source_port": "any"
2023-01-02 16:38:16.399481 | controller | },
2023-01-02 16:38:16.399485 | controller | "rule_options": [
2023-01-02 16:38:16.399490 | controller | {
2023-01-02 16:38:16.399494 | controller | "keyword": "sid",
2023-01-02 16:38:16.399499 | controller | "settings": [
2023-01-02 16:38:16.399503 | controller | "10001"
2023-01-02 16:38:16.399508 | controller | ]
2023-01-02 16:38:16.399513 | controller | }
2023-01-02 16:38:16.399517 | controller | ]
2023-01-02 16:38:16.399522 | controller | }
2023-01-02 16:38:16.399526 | controller | ]
2023-01-02 16:38:16.399531 | controller | }
2023-01-02 16:38:16.399535 | controller | },
2023-01-02 16:38:16.399539 | controller | "rule_group_metadata": {
2023-01-02 16:38:16.399544 | controller | "capacity": 50,
2023-01-02 16:38:16.399548 | controller | "rule_group_arn": "arn:aws:network-firewall:us-east-1:966509639900:stateful-rulegroup/AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:16.399552 | controller | "rule_group_id": "ba087c14-8450-4b85-b335-108755252f04",
2023-01-02 16:38:16.399557 | controller | "rule_group_name": "AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:16.399562 | controller | "rule_group_status": "ACTIVE",
2023-01-02 16:38:16.399566 | controller | "tags": {},
2023-01-02 16:38:16.399570 | controller | "type": "STATEFUL"
2023-01-02 16:38:16.399575 | controller | }
2023-01-02 16:38:16.399580 | controller | }
2023-01-02 16:38:16.399584 | controller | },
2023-01-02 16:38:16.399589 | controller | "invocation": {
2023-01-02 16:38:16.399593 | controller | "module_args": {
2023-01-02 16:38:16.399597 | controller | "access_key": "ASIA6CCDWXDOMXUMKTA6",
2023-01-02 16:38:16.399602 | controller | "arn": null,
2023-01-02 16:38:16.399606 | controller | "aws_access_key": "ASIA6CCDWXDOMXUMKTA6",
2023-01-02 16:38:16.399610 | controller | "aws_ca_bundle": null,
2023-01-02 16:38:16.399615 | controller | "aws_config": null,
2023-01-02 16:38:16.399619 | controller | "aws_secret_key": "VALUE_SPECIFIED_IN_NO_LOG_PARAMETER",
2023-01-02 16:38:16.399624 | controller | "capacity": 50,
2023-01-02 16:38:16.399629 | controller | "debug_botocore_endpoint_logs": true,
2023-01-02 16:38:16.399641 | controller | "description": null,
2023-01-02 16:38:16.399645 | controller | "domain_list": null,
2023-01-02 16:38:16.399650 | controller | "endpoint_url": null,
2023-01-02 16:38:16.399654 | controller | "ip_variables": null,
2023-01-02 16:38:16.399659 | controller | "name": "AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:16.399663 | controller | "port_variables": null,
2023-01-02 16:38:16.399667 | controller | "profile": null,
2023-01-02 16:38:16.399672 | controller | "purge_ip_variables": true,
2023-01-02 16:38:16.399676 | controller | "purge_port_variables": true,
2023-01-02 16:38:16.399681 | controller | "purge_tags": true,
2023-01-02 16:38:16.399686 | controller | "region": "us-east-1",
2023-01-02 16:38:16.399691 | controller | "rule_list": [
2023-01-02 16:38:16.399695 | controller | {
2023-01-02 16:38:16.399699 | controller | "action": "pass",
2023-01-02 16:38:16.399704 | controller | "destination": "198.51.100.0/24",
2023-01-02 16:38:16.399708 | controller | "destination_port": "22",
2023-01-02 16:38:16.399713 | controller | "direction": "forward",
2023-01-02 16:38:16.399717 | controller | "protocol": "TCP",
2023-01-02 16:38:16.399721 | controller | "rule_options": null,
2023-01-02 16:38:16.399726 | controller | "sid": 10001,
2023-01-02 16:38:16.399735 | controller | "source": "192.0.2.74",
2023-01-02 16:38:16.399740 | controller | "source_port": "any"
2023-01-02 16:38:16.399745 | controller | }
2023-01-02 16:38:16.399750 | controller | ],
2023-01-02 16:38:16.399754 | controller | "rule_order": null,
2023-01-02 16:38:16.399758 | controller | "rule_strings": null,
2023-01-02 16:38:16.399763 | controller | "rule_type": "stateful",
2023-01-02 16:38:16.399767 | controller | "secret_key": "VALUE_SPECIFIED_IN_NO_LOG_PARAMETER",
2023-01-02 16:38:16.399772 | controller | "security_token": "VALUE_SPECIFIED_IN_NO_LOG_PARAMETER",
2023-01-02 16:38:16.399776 | controller | "session_token": "VALUE_SPECIFIED_IN_NO_LOG_PARAMETER",
2023-01-02 16:38:16.399781 | controller | "state": "present",
2023-01-02 16:38:16.399785 | controller | "tags": null,
2023-01-02 16:38:16.399789 | controller | "type": "stateful",
2023-01-02 16:38:16.399794 | controller | "validate_certs": true,
2023-01-02 16:38:16.399798 | controller | "wait": true,
2023-01-02 16:38:16.399803 | controller | "wait_timeout": null
2023-01-02 16:38:16.399808 | controller | }
2023-01-02 16:38:16.399812 | controller | },
2023-01-02 16:38:16.399817 | controller | "resource_actions": [
2023-01-02 16:38:16.399821 | controller | "network-firewall:DescribeRuleGroup"
2023-01-02 16:38:16.399825 | controller | ],
2023-01-02 16:38:16.399830 | controller | "rule_group": {
2023-01-02 16:38:16.399834 | controller | "rule_group": {
2023-01-02 16:38:16.399839 | controller | "rules_source": {
2023-01-02 16:38:16.399843 | controller | "stateful_rules": [
2023-01-02 16:38:16.399848 | controller | {
2023-01-02 16:38:16.399852 | controller | "action": "PASS",
2023-01-02 16:38:16.399857 | controller | "header": {
2023-01-02 16:38:16.399861 | controller | "destination": "198.51.100.0/24",
2023-01-02 16:38:16.399866 | controller | "destination_port": "22",
2023-01-02 16:38:16.399871 | controller | "direction": "FORWARD",
2023-01-02 16:38:16.399875 | controller | "protocol": "TCP",
2023-01-02 16:38:16.399897 | controller | "source": "192.0.2.74",
2023-01-02 16:38:16.399902 | controller | "source_port": "any"
2023-01-02 16:38:16.399906 | controller | },
2023-01-02 16:38:16.399911 | controller | "rule_options": [
2023-01-02 16:38:16.399915 | controller | {
2023-01-02 16:38:16.399920 | controller | "keyword": "sid:10001"
2023-01-02 16:38:16.399925 | controller | }
2023-01-02 16:38:16.399931 | controller | ]
2023-01-02 16:38:16.399936 | controller | }
2023-01-02 16:38:16.399941 | controller | ]
2023-01-02 16:38:16.399946 | controller | }
2023-01-02 16:38:16.399951 | controller | },
2023-01-02 16:38:16.399955 | controller | "rule_group_metadata": {
2023-01-02 16:38:16.399975 | controller | "capacity": 50,
2023-01-02 16:38:16.399981 | controller | "rule_group_arn": "arn:aws:network-firewall:us-east-1:966509639900:stateful-rulegroup/AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:16.399986 | controller | "rule_group_id": "ba087c14-8450-4b85-b335-108755252f04",
2023-01-02 16:38:16.399991 | controller | "rule_group_name": "AnsibleTest-9983cf60ceb3-5TupleGroup",
2023-01-02 16:38:16.399996 | controller | "rule_group_status": "ACTIVE",
2023-01-02 16:38:16.400001 | controller | "tags": {},
2023-01-02 16:38:16.400005 | controller | "type": "STATEFUL"
2023-01-02 16:38:16.400010 | controller | }
2023-01-02 16:38:16.400015 | controller | }
2023-01-02 16:38:16.400020 | controller | }Code of Conduct
- I agree to follow the Ansible Code of Conduct