nxos_vrrp – Manages VRRP configuration on NX-OS switches¶
Parameters¶
| Parameter | Choices/Defaults | Comments | |
|---|---|---|---|
| admin_state 
                    -
                                                                 | 
 | Used to enable or disable the VRRP process. | |
| authentication 
                    -
                                                                 | Clear text authentication string or 'default' keyword | ||
| group 
                    -
                                             / required                     | VRRP group number. | ||
| interface 
                    -
                                             / required                     | Full name of interface that is being managed for VRRP. | ||
| interval 
                    -
                                                                 added in 2.6 | Default: 1 | Time interval between advertisement or 'default' keyword | |
| preempt 
                    boolean
                                                                 | 
 | Enable/Disable preempt. | |
| priority 
                    -
                                                                 | Default: 100 | VRRP priority or 'default' keyword | |
| provider 
                    dictionary
                                                                 | Deprecated Starting with Ansible 2.5 we recommend using  connection: network_cli.This option is only required if you are using NX-API. For more information please see the NXOS Platform Options guide. A dict object containing connection details. | ||
| auth_pass 
                    string
                                                                 added in 2.5.3 | Specifies the password to use if required to enter privileged mode on the remote device.  If authorize is false, then this argument does nothing. If the value is not specified in the task, the value of environment variable  ANSIBLE_NET_AUTH_PASSwill be used instead. | ||
| authorize 
                    boolean
                                                                 added in 2.5.3 | 
 | Instructs the module to enter privileged mode on the remote device before sending any commands.  If not specified, the device will attempt to execute all commands in non-privileged mode. If the value is not specified in the task, the value of environment variable  ANSIBLE_NET_AUTHORIZEwill be used instead. | |
| host 
                    string
                                             / required                     | Specifies the DNS host name or address for connecting to the remote device over the specified transport.  The value of host is used as the destination address for the transport. | ||
| password 
                    string
                                                                 | Specifies the password to use to authenticate the connection to the remote device.  This is a common argument used for either cli or nxapi transports. If the value is not specified in the task, the value of environment variable  ANSIBLE_NET_PASSWORDwill be used instead. | ||
| port 
                    integer
                                                                 | Default: "0 (use common port)" | Specifies the port to use when building the connection to the remote device.  This value applies to either cli or nxapi.  The port value will default to the appropriate transport common port if none is provided in the task.  (cli=22, http=80, https=443). | |
| ssh_keyfile 
                    string
                                                                 | Specifies the SSH key to use to authenticate the connection to the remote device.  This argument is only used for the cli transport. If the value is not specified in the task, the value of environment variable  ANSIBLE_NET_SSH_KEYFILEwill be used instead. | ||
| timeout 
                    integer
                                                                 | Default: 10 | Specifies the timeout in seconds for communicating with the network device for either connecting or sending commands.  If the timeout is exceeded before the operation is completed, the module will error. NX-API can be slow to return on long-running commands (sh mac, sh bgp, etc). | |
| transport 
                    string
                                             / required                     | 
 | Configures the transport connection to use when connecting to the remote device.  The transport argument supports connectivity to the device over cli (ssh) or nxapi. | |
| use_proxy 
                    boolean
                                                                 added in 2.5 | 
 | If  no, the environment variableshttp_proxyandhttps_proxywill be ignored. | |
| use_ssl 
                    boolean
                                                                 | 
 | Configures the transport to use SSL if set to  yesonly when thetransport=nxapi, otherwise this value is ignored. | |
| username 
                    string
                                                                 | Configures the username to use to authenticate the connection to the remote device.  This value is used to authenticate either the CLI login or the nxapi authentication depending on which transport is used. If the value is not specified in the task, the value of environment variable  ANSIBLE_NET_USERNAMEwill be used instead. | ||
| validate_certs 
                    boolean
                                                                 | 
 | If  no, SSL certificates will not be validated. This should only be used on personally controlled sites using self-signed certificates.  If the transport argument is not nxapi, this value is ignored. | |
| state 
                    -
                                                                 | 
 | Specify desired state of the resource. | |
| vip 
                    -
                                                                 | VRRP virtual IP address or 'default' keyword | ||
Notes¶
Note
- Tested against NXOSv 7.3.(0)D1(1) on VIRL
- VRRP feature needs to be enabled first on the system.
- SVIs must exist before using this module.
- Interface must be a L3 port before using this module.
- state=absentremoves the VRRP group if it exists on the device.
- VRRP cannot be configured on loopback interfaces.
- For information on using CLI and NX-API see the NXOS Platform Options guide
- For more information on using Ansible to manage network devices see the Ansible Network Guide
- For more information on using Ansible to manage Cisco devices see the Cisco integration page.
Examples¶
- name: Ensure vrrp group 100 and vip 10.1.100.1 is on vlan10
  nxos_vrrp:
    interface: vlan10
    group: 100
    vip: 10.1.100.1
- name: Ensure removal of the vrrp group config
  # vip is required to ensure the user knows what they are removing
  nxos_vrrp:
    interface: vlan10
    group: 100
    vip: 10.1.100.1
    state: absent
- name: Re-config with more params
  nxos_vrrp:
    interface: vlan10
    group: 100
    vip: 10.1.100.1
    preempt: false
    priority: 130
    authentication: AUTHKEY
Return Values¶
Common return values are documented here, the following are the fields unique to this module:
| Key | Returned | Description | 
|---|---|---|
| commands 
                  list
                                       | always | commands sent to the device Sample: ['interface vlan10', 'vrrp 150', 'address 10.1.15.1', 'authentication text testing', 'no shutdown'] | 
Status¶
- This module is not guaranteed to have a backwards compatible interface. [preview]
- This module is maintained by the Ansible Network Team. [network]
Red Hat Support¶
More information about Red Hat’s support of this module is available from this Red Hat Knowledge Base article.
Authors¶
- Jason Edelman (@jedelman8)
- Gabriele Gerbino (@GGabriele)
Hint
If you notice any issues in this documentation, you can edit this document to improve it.
