This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Kirankatariya
Explorer
‎2024-05-12 10:24 AM

Checkpoint Simple Cluster installation via ansible is not working (R81.20)

I am unable to create Simple cluster object through Ansible despite ansible-playbook in checkmode dont have any error.

under api.elg log file i am getting below errors

2024-05-12 22:45:24,294 ERROR com.checkpoint.management.web_api_is.exceptions.WebApiGeneralException.log:50 [qtp1702513516-97] - Error message: [Requested object [GW1-2] not found]
"message" : "Requested object [GW1-2] not found"

 

My API Version is 1.9.1 & R81.20 Gaia version
 

===============================================================================================

mypc:/etc/ansible/checkpoint$ ansible-playbook addcluster.yml

PLAY [Add Checkpoint Gateway] ******************************************************************************************

TASK [Gathering Facts] *************************************************************************************************
ok: [10.1.1.250]

TASK [Add Cluster_XL Gateway] ******************************************************************************************
ok: [10.1.1.250]

PLAY RECAP *************************************************************************************************************
10.1.1.250 : ok=2 changed=0 unreachable=0 failed=0 skipped=0 rescued=0 ignored=0

 

=================================================================

My scripts

---
- name: "Add Checkpoint Gateway"
  hosts: mgmt
  connection: httpapi

  tasks:
  - name: "Add Cluster_XL Gateway"
    check_point.mgmt.cp_mgmt_simple_cluster:
      name: GW1-2
      state: absent
      cluster_mode: cluster-xl-ha
      cluster_version: R81.20
      color: "pink"
      ip_address: 10.1.1.83
      members:
        - name: GW-1
          one_time_password: "Admin@123"
          ip_address: 10.1.1.81
          interfaces:
            - name: eth0
              ip_address: 10.1.1.81
              network_mask: 255.255.255.0
            - name: eth1
              ip_address: 10.2.1.81
              network_mask: 255.255.255.0
            - name: eth2
              ip_address: 10.3.1.81
              network_mask: 255.255.255.0
            - name: eth3
              ip_address: 10.4.1.81
              network_mask: 255.255.255.0
        - name: GW-2
          one_time_password: "Admin@123"
          ip_address: 10.1.1.82
          interfaces:
            - name: eth0
              ip_address: 10.1.1.82
              network_mask: 255.255.255.0
            - name: eth1
              ip_address: 10.2.1.82
              network_mask: 255.255.255.0
            - name: eth2
              ip_address: 10.3.1.82
              network_mask: 255.255.255.0
            - name: eth3
              ip_address: 10.4.1.82
              network_mask: 255.255.255.0
      interfaces:
        - name: eth0
          interface_type: "cluster"
          ip_address: 10.1.1.83
          network_mask: 255.255.255.0
          anti_spoofing: true
          topology: internal
          topology_settings:
            ip_address_behind_this_interface: "network defined by the interface ip and net mask"
        - name: eth1
          interface_type: "cluster"
          ip_address: 10.2.1.83
          network_mask: 255.255.255.0
          anti_spoofing: true
          topology: internal
          topology_settings:
            ip_address_behind_this_interface: "network defined by the interface ip and net mask"
        - name: eth2
          interface_type: cluster
          ip_address: 10.3.1.83
          network_mask: 255.255.255.0
          topology: "external"
        - name: eth3
          interface_type: sync
          ip_address: 10.4.1.83
          network_mask: 255.255.255.0
          anti_spoofing: true
          topology: "internal"
          topology_settings:
            ip_address_behind_this_interface: "network defined by the interface ip and net mask"
      auto_publish_session: true
         
       


0 Kudos
2 Replies
PhoneBoy
Admin
Admin
‎2024-05-13 08:42 AM

@Eden_Brillant is the playbook missing anything?

0 Kudos
Hugo_vd_Kooij
Advisor
‎2024-05-14 01:36 AM

Looks like you are out to destroy an object:

      nameGW1-2
      stateabsent
 
In general if you set somthing as absent in Ansible you want it removed.
<< We make miracles happen while you wait. The impossible jobs take just a wee bit longer. >>
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events