Classes
algosec::agent: This resource manages theresource_api::agentand the algosec-sdk gem on an agent.algosec::server: This resource manages theresource_api::serveron the server.
Resource types
algosec_application: This type provides Puppet with the capabilities to manage Applications on AlgoSec BusinessFlow. Currently the management capabilities of thisalgosec_apply_draft: When evaluated, this resource apply all outstanding application drafts in the managed AlgoSec server.algosec_flow: This type provides Puppet with the capabilities to manage "Application Flows" on AlgoSec BusinessFlow. The usage of this resources is depende
Tasks
apply_drafts: Apply application drafts for all managed applications.
This resource manages the resource_api::agent and the algosec-sdk gem on an agent.
include algosec::agentThis resource manages the resource_api::server on the server.
include algosec::serverThis type provides Puppet with the capabilities to manage Applications on AlgoSec BusinessFlow. Currently the management capabilities of this resource are limited until proper update API methods are implemented in AlgoSec BusinessFlow.
The following properties are available in the algosec_application type.
Data type: Enum[present, absent]
Whether this application should be present or absent on the target AlgoSec BusinessFlow.
Default value: present
The following parameters are available in the algosec_application type.
namevar
Data type: String[2]
The name of the AlgoSec BusinessFlow application.
When evaluated, this resource apply all outstanding application drafts in the managed AlgoSec server.
- Note If managed applications are defined in the device config, only their drafts will be applied.
The following properties are available in the algosec_apply_draft type.
Data type: Boolean
Whether an apply application draftshould happen
The following parameters are available in the algosec_apply_draft type.
namevar
Data type: Enum["apply"]
The name of the resource you want to manage. Can only be "apply".
This type provides Puppet with the capabilities to manage "Application Flows" on AlgoSec BusinessFlow. The usage of this resources is dependent upon the resource deceleration of AlgoSec BusinessFlow Application. Please see how-to-use examples and the algosec_application resource.
The following properties are available in the algosec_flow type.
Data type: Array[String[1],1]
List of IPs or ABF network objects of traffic sources for the application flow.
Data type: Array[String[1],1]
List of IPs or ABF network objects of traffic destinations for the application flow.
Data type: Array[String[1],1]
List of traffic services to allow in the flow. Services can be as defined on AlgoSec BusinessFlow or in a proto/port format (only UDP and TCP are supported as proto. e.g. tcp/50)
Data type: Optional[Array[String[1]]]
List of users which the application flow is relevant to.
Data type: Optional[Array[String[1]]]
List of network application names which the application flow is relevant to.
Data type: Optional[String]
Optional comment to attach to the flow.
Data type: Enum[present, absent]
Whether this resource should be present or absent on the target system.
Default value: present
The following parameters are available in the algosec_flow type.
namevar
Data type: String
The name of the application flow.
namevar
Data type: String
The name of the application that the flow belongs to.
Apply application drafts for all managed applications.
Supports noop? false
Data type: String
The filename of the credentials file (as referenced in device.conf)