Closed amolari closed 4 years ago
we won't assign a default profile in ansible, you need to be explicit about what you want the module to do when creating or attaching to existing VS. Ansible modules are imperative not a declarative interface, so you need to do the work of specifying what you want.
All clear, needed to add
profiles:
- websecurity
ISSUE TYPE
COMPONENT NAME
bigip_virtual_server
PYTHON VERSION
BIGIP VERSION
CONFIGURATION
OS / ENVIRONMENT
N/A
SUMMARY
I create the LTM policy's default rule (condition ALL Traffic) and the action being enable the asm policy. When I create the VS with attached LTM policy, I get an error (VS not created). If I attach the LTM policy manually (GUI), it works. In the BIGIP audit logs, I see a difference: when I attach manually the LTM policy:
With the ansible module, I don't see the websecurity profile attached to the VS in the audit logs.
STEPS TO REPRODUCE
EXPECTED RESULTS
ASM policy attached to the VS
ACTUAL RESULTS