Skip to content

Proof of Concept of Ansible integration with Intelliment Security Policy Automation

License

Notifications You must be signed in to change notification settings

intelliment/ansible-itlm-module

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
 
 
 
 
 
 
 
 

Repository files navigation

ansible-itlm-module

Proof of Concept of Ansible integration with Intelliment Security Policy Automation. This integration shows how to define network visibility requirements as code using Ansible as provisioning tool.

Who can use this integration?

DevOps and NetOps that:

  • Do an advanced configuration management with Ansible
  • Want to automate all aspects of IT management

Benefits:

  • Define network visibility requirements with each component of your applications
  • Provision - decomission automatically with each application or component change
  • No need for manual operation to get network visibility
  • Graphical visualization of network visibility changes

How to run

  • Edit intelliment.yml to define your network visibility needs, specifying source, destination, action and services. Source and destination could be defined as IP, name or tag inside Intelliment model.
---
- hosts: localhost
  gather_facts: false
  connection: local

  tasks:
    - name: Create visibility requirements on Intelliment
      intelliment: 
        scenario: 15
        policies:
          - source: "0.0.0.0/0"
            destination: "eu-banking-app"
            action: "allow"
            services: "tcp/80"
          - source: "i-034ee5dbfd85f6837"
            destination: "0.0.0.0/0"
            action: "allow"
            services: "tcp/75"
          - source: "0.0.0.0/0"
            destination: "subnet-79972720"
            action: "allow"
            services: "tcp/60-100"
          - source: "subnet-79972720"
            destination: "0.0.0.0/0"
            action: "allow"
            services: "tcp/200-300"          
          - source: "B_intranet"
            destination: "backend-1"
            action: "allow"
            services: "tcp/443"
      register: result
  • Launch playbook: ansible-playbook intelliment.yml

Demo

Following you can see a short video with a demo showing how to define network visibilities using Ansible and Intelliment and deploying them in a heterogeneous network infrastructure.

Intelliment and Ansible integration

If you want more info, please contact us at sales@intellimentsec.com

About

Proof of Concept of Ansible integration with Intelliment Security Policy Automation

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages