search

ansible-collections / cisco.ios

Ansible Network Collection for Cisco IOS
GNU General Public License v3.0
261 stars 162 forks source link

Sequence Number missing during gathered(ios_acls) #1041

Closed JeromeH27 closed 1 month ago

JeromeH27 commented 2 months ago
SUMMARY

Sequence Number missing during gathered(ios_acls)

ISSUE TYPE
COMPONENT NAME

cisco.ios

ANSIBLE VERSION
ansible 2.10.14
  config file = /etc/ansible/ansible.cfg
  configured module search path = ['/var/lib/awx/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules']
  ansible python module location = /usr/local/lib/python3.6/site-packages/ansible
  executable location = /usr/local/bin/ansible
  python version = 3.6.8 (default, Mar 19 2021, 05:13:41) [GCC 8.4.1 20200928 (Red Hat 8.4.1-1)]
COLLECTION VERSION
cisco.ios.ios: 6.1.3
CONFIGURATION
Nothing
OS / ENVIRONMENT
STEPS TO REPRODUCE

Executing this task:


Executing this task:
 - name: Collect ACL
  cisco.ios.ios_acls:
    config:
    state: gathered

we got this return without sequence number by aces.
 ...
{'name': 'SNMP-ACCESS', 'acl_type': 'standard', 
   'aces': [
     {'grant': 'permit', 'source': {'host': '10.2.9.1'}}, 
     {'grant': 'permit', 'source': {'host': '10.18.9.25'}},
     {'grant': 'permit', 'source': {'host': '10.2.9.44'}},
...
EXPECTED RESULTS
ACTUAL RESULTS
KB-perByte commented 1 month ago

Hey @JeromeH27, can you please help us with the appliance version and the output of this command show running-config | section access-list For us to understand the issue in a better way. Regards.

JeromeH27 commented 1 month ago

Hey KB-perByte,

the appliance version is 15.2(7)E7(switch model WS-C2960X-48TD-L). in fact the sequence number isn't displayed with the command: show running-config | section access-list

here the output I got for the switch:

show running-config | section access-list

...
ip access-list standard SNMP-ACCESS
  permit 10.2.9.1
  permit 10.18.9.25
...

To get sequence number, on this switch I should use the command: show access-lists

show access-lists

...
Standard IP access list SNMP-ACCESS
  10 permit 10.2.9.1
  100 permit 10.18.9.25
...

On a newer switch(model: C9300-48P, version: 16.12.02), we got the sequence number:

show running-config | section access-list

...
ip access-list standard SNMP-ACCESS
  10 permit 10.2.9.1
   100 permit 10.18.9.25
...
KB-perByte commented 1 month ago

Apologies, the module does not support IOS version 15.x, the latest support for the module/ collection is IOSXE 17.x Please note, we do not support appliances which has been marked EOL from Cisco. Regards.

JeromeH27 commented 1 month ago

Even if the 2960X are EOL, its are still in End Of Support period. I think a lot of users have still severals 2960X switches to manage. With this limitation you disable the fact to be able to manage all equipments with the same way. For instance, in my company, we have 3000 switches and 50% are 2960X models