Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
SebastianB
Explorer

Creating cluster interface via ansible

Hello,

I am trying to create a cluster interface via ansible, i am currently using cp_mgmt_simple_cluster module. I am running following code for the cluster interface creation and member IP addresses.

 

  check_point.mgmt.cp_mgmt_simple_cluster:
    firewall: true
    state: present
    name: cluster-name
    ip_address: cluster-IP
    interfaces:
    - name: "test"
      anti_spoofing: true
      comments: "this interface is for testing purposes"
      interface_type: cluster
      ipv4_address: IP-address
      network_mask: net-mask
 
    members:
    - interfaces:
      - ip_address: member1 ip address on new interface
        name: "test"
        network_mask: 255.255.255.255
      ip_address: member1 IP address
      name: member1
    - interfaces:
      - ip_address: member2 ip address on new interface
        name: "test"
        network_mask: 255.255.255.255
      ip_address: member2 IP address
      name: member2
 
This code checks out and i get an OK but no changes are made, problem is i get changed:false and no changes have been made.
I have tried creating the interface only but i get the same changed:false.
Am i using correct module? Or am i using it the wrong way? How should it be created?
 
Any information helps.
0 Kudos
7 Replies
PhoneBoy
Admin
Admin

What version of Check Point management are you running?

0 Kudos
SebastianB
Explorer

R81.10 and latest version of the mgmt module 4.0.0

0 Kudos
PhoneBoy
Admin
Admin

What JHF is installed?
Looks like JHF 79 and above may be required as that is where the necessary API support was added.
See: https://sc1.checkpoint.com/documents/latest/APIs/index.html#api_versions~v1.8.1%20 

0 Kudos
SebastianB
Explorer

JHF 79 was released on 24 october when the 4.0.0 was released way earlier, and the module was released even before 4.0.0 right?

We have v1.8 right now, when i look in MGMT API it does not specify 1.8.1 as supported versions.

 

0 Kudos
Omer_Kleinstern
Employee
Employee

Hi @SebastianB ,

Can you share the output of the following commands?

  • mgmt_cli -r true show-api-versions
  • cpinfo -y all

Thanks,

Omer

0 Kudos
SebastianB
Explorer

mgmt_cli -r true show-api-versions:

"current-version" : "1.8",
"supported-versions" : [ "1", "1.1", "1.2", "1.3", "1.4", "1.5", "1.6", "1.6.1", "1.7", "1.7.1", "1.8" ]

cpinfo -y all:

This is Check Point CPinfo Build 914000227 for GAIA
[MGMT]
HOTFIX_R81_10_JUMBO_HF_MAIN Take: 66
[FW1]
HOTFIX_GOT_MGMT_AUTOUPDATE
HOTFIX_WEBCONSOLE_AUTOUPDATE
HOTFIX_GOT_TPCONF_MGMT_AUTOUPDATE
HOTFIX_PUBLIC_CLOUD_CA_BUNDLE_AUTOUPDATE
HOTFIX_NGM_DOCTOR_AUTOUPDATE
HOTFIX_R81_10_JUMBO_HF_MAIN Take: 66

I removed some of the results in cpinfo, if i removed something you want let me know

0 Kudos
Omer_Kleinstern
Employee
Employee

API version 1.8.1 was released in JHF take 79. Since you have JHF take 66 installed, the API version in that take is still 1.8. 

 

Regarding the original problem, looks like there is an issue with updating the interfaces of a cluster via ansible.

To support it will require changes in the Management code (not in the ansible collection). I suggest to open a TAC case.

0 Kudos
Upcoming Events

    CheckMates Events