add allowed_addresses option to na.ontap.na_ontap_service_policy module

[jgaines51]

Summary

I am writing ansible automation for the setup of an ONTAP device. I am using version 22.6.0 of the netapp.ontap Ansible Galaxy collection. According to the documentation for the na.ontap.na_ontap_service_policy module, REST does not support the "allowed_addresses" parameter in order to specify an address/subnet for the service to listen for/respond to and instead defaults to 0.0.0.0/0 for each service. Please add this parameter when REST support is added.

Component Name

na_ontap_service_policy

Additional Information

---

• name: Configure ONTAP service policies netapp.ontap.na_ontap_service_policy: name: "vserver1_policy" services: "{{ services }}" vserver: vserver1 ipspace: default allowed_addresses: '192.168.0.0/24' hostname: "192.168.0.10" username: admin password: "{{ my_password }}"

This feature would allow an ONTAP admin to make full use of the module to lock down service policies in an automated fashion. This would be a great help for automating the secure configuration of ONTAP devices.

[mohanrajb9]

As of ONTAP 9.13.1, service policy API - /network/ip/service-policies has no support for allowed_address option.

but you can request to add this option to the api using - https://devnet.netapp.com/restapi.php, look for Help/Queries section. also there is a support channel available for REST in discord channel - https://discord.gg/NetApp