source:	fortios_system_npu.py
orphan:

fortios_system_npu -- Configure NPU attributes in Fortinet's FortiOS and FortiGate.

.. versionadded:: 2.0.0

Synopsis
Requirements
FortiOS Version Compatibility
Parameters
Notes
Examples
Return Values
Status
Authors

Synopsis

This module is able to configure a FortiGate or FortiOS (FOS) device by allowing the user to set and modify system feature and npu category. Examples include all parameters and values need to be adjusted to datasources before usage. Tested with FOS v6.0.0

Requirements

The below requirements are needed on the host that executes this module.

ansible>=2.9

FortiOS Version Compatibility

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

fortios_system_npu yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

Parameters

access_token - Token-based authentication. Generated from GUI of Fortigate. type: str required: false
enable_log - Enable/Disable logging for task. type: bool required: false default: False
vdom - Virtual domain, among those defined previously. A vdom is a virtual instance of the FortiGate that can be configured and used as a different unit. type: str default: root
member_path - Member attribute path to operate on. type: str
member_state - Add or delete a member under specified attribute path. type: str choices: present, absent

system_npu - Configure NPU attributes. type: dict more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

system_npu yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

capwap_offload - Enable/disable offloading managed FortiAP and FortiLink CAPWAP sessions. type: str choices: enable, disable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

capwap_offload yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[enable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[disable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

dedicated_management_affinity - Affinity setting for management deamons (hexadecimal value up to 256 bits in the format of xxxxxxxxxxxxxxxx). type: str more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

dedicated_management_affinity no no no no no no no no no no no yes yes yes yes yes yes

dedicated_management_cpu - Enable to dedicate one CPU for GUI and CLI connections when NPs are busy. type: str choices: enable, disable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

dedicated_management_cpu yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[enable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[disable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

fastpath - Enable/disable NP6 offloading (also called fast path). type: str choices: disable, enable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

fastpath yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[disable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[enable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

gtp_enhanced_cpu_range - GTP enhanced CPU range option. type: str choices: 0, 1, 2 more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

gtp_enhanced_cpu_range yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[0] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[1] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[2] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

gtp_enhanced_mode - Enable/disable GTP enhanced mode. type: str choices: enable, disable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

gtp_enhanced_mode yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[enable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[disable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

intf_shaping_offload - Enable/disable NPU offload when doing interface-based traffic shaping according to the egress-shaping-profile. type: str choices: enable, disable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

intf_shaping_offload no no no no no no no yes yes yes yes yes yes yes yes yes yes

[enable] n/a n/a n/a n/a n/a n/a n/a yes yes yes yes yes yes yes yes yes yes

[disable] n/a n/a n/a n/a n/a n/a n/a yes yes yes yes yes yes yes yes yes yes

ipsec_dec_subengine_mask - IPsec decryption subengine mask (0x1 - 0xff). type: str more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

ipsec_dec_subengine_mask yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

ipsec_enc_subengine_mask - IPsec encryption subengine mask (0x1 - 0xff). type: str more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

ipsec_enc_subengine_mask yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

ipsec_inbound_cache - Enable/disable IPsec inbound cache for anti-replay. type: str choices: enable, disable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

ipsec_inbound_cache no no no yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[enable] n/a n/a n/a yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[disable] n/a n/a n/a yes yes yes yes yes yes yes yes yes yes yes yes yes yes

ipsec_mtu_override - Enable/disable NP6 IPsec MTU override. type: str choices: disable, enable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

ipsec_mtu_override no no no yes no no yes no no yes yes yes yes yes yes yes yes

[disable] n/a n/a n/a yes n/a n/a yes n/a n/a yes yes yes yes yes yes yes yes

[enable] n/a n/a n/a yes n/a n/a yes n/a n/a yes yes yes yes yes yes yes yes

ipsec_over_vlink - Enable/disable IPSEC over vlink. type: str choices: enable, disable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

ipsec_over_vlink yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[enable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[disable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

isf_np_queues - Configure queues of switch port connected to NP6 XAUI on ingress path. type: dict more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

isf_np_queues no no no no no no no yes no no no no no no no no yes

cos0 - CoS profile name for CoS 0. Source system.isf-queue-profile.name. type: str more...

v6.4.0 v7.2.0

cos0 yes yes
cos1 - CoS profile name for CoS 1. Source system.isf-queue-profile.name. type: str more...

v6.4.0 v7.2.0

cos1 yes yes
cos2 - CoS profile name for CoS 2. Source system.isf-queue-profile.name. type: str more...

v6.4.0 v7.2.0

cos2 yes yes
cos3 - CoS profile name for CoS 3. Source system.isf-queue-profile.name. type: str more...

v6.4.0 v7.2.0

cos3 yes yes
cos4 - CoS profile name for CoS 4. Source system.isf-queue-profile.name. type: str more...

v6.4.0 v7.2.0

cos4 yes yes
cos5 - CoS profile name for CoS 5. Source system.isf-queue-profile.name. type: str more...

v6.4.0 v7.2.0

cos5 yes yes
cos6 - CoS profile name for CoS 6. Source system.isf-queue-profile.name. type: str more...

v6.4.0 v7.2.0

cos6 yes yes
cos7 - CoS profile name for CoS 7. Source system.isf-queue-profile.name. type: str more...

v6.4.0 v7.2.0

cos7 yes yes

lag_out_port_select - Enable/disable LAG outgoing port selection based on incoming traffic port. type: str choices: disable, enable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

lag_out_port_select no no no yes yes yes yes no yes yes yes yes yes yes yes yes yes

[disable] n/a n/a n/a yes yes yes yes n/a yes yes yes yes yes yes yes yes yes

[enable] n/a n/a n/a yes yes yes yes n/a yes yes yes yes yes yes yes yes yes

mcast_session_accounting - Enable/disable traffic accounting for each multicast session through TAE counter. type: str choices: tpe-based, session-based, disable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

mcast_session_accounting yes no yes yes no yes yes no no yes yes yes yes yes yes yes yes

[tpe-based] yes n/a yes yes n/a yes yes n/a n/a yes yes yes yes yes yes yes yes

[session-based] yes n/a yes yes n/a yes yes n/a n/a yes yes yes yes yes yes yes yes

[disable] yes n/a yes yes n/a yes yes n/a n/a yes yes yes yes yes yes yes yes

port_cpu_map - Configure NPU interface to CPU core mapping. type: list more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

port_cpu_map no no no no no no no yes no no no no no no no no yes

cpu_core - The CPU core to map to an interface. type: str more...

v6.4.0 v7.2.0

cpu_core yes yes
interface - The interface to map to a CPU core. type: str more...

v6.4.0 v7.2.0

interface yes yes

port_npu_map - Configure port to NPU group mapping. type: list more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5

port_npu_map yes yes yes yes yes yes yes no yes yes yes yes yes yes yes yes

interface - Set npu interface port to NPU group map. type: str more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5

interface yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

npu_group_index - Mapping NPU group index. type: int more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5

npu_group_index yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

priority_protocol - Configure NPU priority protocol. type: str more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

priority_protocol yes no yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

qos_mode - QoS mode on switch and NP. type: str choices: disable, priority, round-robin more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

qos_mode no no no no no no no yes no no no no no no no no yes

[disable] n/a n/a n/a n/a n/a n/a n/a yes n/a n/a n/a n/a n/a n/a n/a n/a yes

[priority] n/a n/a n/a n/a n/a n/a n/a yes n/a n/a n/a n/a n/a n/a n/a n/a yes

[round-robin] n/a n/a n/a n/a n/a n/a n/a yes n/a n/a n/a n/a n/a n/a n/a n/a yes

rdp_offload - Enable/disable rdp offload. type: str choices: enable, disable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

rdp_offload yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[enable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[disable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

session_denied_offload - Enable/disable offloading of denied sessions. Requires ses-denied-traffic to be set. type: str choices: disable, enable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

session_denied_offload no no no no no no no no no no yes yes yes yes yes yes yes

[disable] n/a n/a n/a n/a n/a n/a n/a n/a n/a n/a yes yes yes yes yes yes yes

[enable] n/a n/a n/a n/a n/a n/a n/a n/a n/a n/a yes yes yes yes yes yes yes

sse_backpressure - Enable/disable sse backpressure. type: str choices: enable, disable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

sse_backpressure yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[enable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[disable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

strip_clear_text_padding - Enable/disable stripping clear text padding. type: str choices: enable, disable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

strip_clear_text_padding yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[enable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[disable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

strip_esp_padding - Enable/disable stripping ESP padding. type: str choices: enable, disable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

strip_esp_padding yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[enable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[disable] yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes

sw_eh_hash - Configure switch enhanced hashing. type: dict more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

sw_eh_hash no no no no no no no no no no no no no no no no yes

computation - Set hashing computation. type: str choices: xor16, xor8, xor4, crc16 more...

v7.2.0

computation yes

[xor16] yes

[xor8] yes

[xor4] yes

[crc16] yes
destination_ip_lower_16 - Include/exclude destination IP address lower 16 bits. type: str choices: include, exclude more...

v7.2.0

destination_ip_lower_16 yes

[include] yes

[exclude] yes
destination_ip_upper_16 - Include/exclude destination IP address upper 16 bits. type: str choices: include, exclude more...

v7.2.0

destination_ip_upper_16 yes

[include] yes

[exclude] yes
destination_port - Include/exclude destination port if TCP/UDP. type: str choices: include, exclude more...

v7.2.0

destination_port yes

[include] yes

[exclude] yes
ip_protocol - Include/exclude IP protocol. type: str choices: include, exclude more...

v7.2.0

ip_protocol yes

[include] yes

[exclude] yes
netmask_length - Network mask length. type: int more...

v7.2.0

netmask_length yes
source_ip_lower_16 - Include/exclude source IP address lower 16 bits. type: str choices: include, exclude more...

v7.2.0

source_ip_lower_16 yes

[include] yes

[exclude] yes
source_ip_upper_16 - Include/exclude source IP address upper 16 bits. type: str choices: include, exclude more...

v7.2.0

source_ip_upper_16 yes

[include] yes

[exclude] yes
source_port - Include/exclude source port if TCP/UDP. type: str choices: include, exclude more...

v7.2.0

source_port yes

[include] yes

[exclude] yes

sw_np_bandwidth - Bandwidth from switch to NP. type: str choices: 0G, 2G, 4G, 5G, 6G more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

sw_np_bandwidth no no no yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[0G] n/a n/a n/a yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[2G] n/a n/a n/a yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[4G] n/a n/a n/a yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[5G] n/a n/a n/a yes yes yes yes yes yes yes yes yes yes yes yes yes yes

[6G] n/a n/a n/a yes yes yes yes yes yes yes yes yes yes yes yes yes yes

uesp_offload - Enable/disable UDP-encapsulated ESP offload . type: str choices: enable, disable more...

v6.0.0 v6.0.5 v6.0.11 v6.2.0 v6.2.3 v6.2.5 v6.2.7 v6.4.0 v6.4.1 v6.4.4 v7.0.0 v7.0.1 v7.0.2 v7.0.3 v7.0.4 v7.0.5 v7.2.0

uesp_offload no no no no no no no no no no yes yes yes yes yes yes yes

[enable] n/a n/a n/a n/a n/a n/a n/a n/a n/a n/a yes yes yes yes yes yes yes

[disable] n/a n/a n/a n/a n/a n/a n/a n/a n/a n/a yes yes yes yes yes yes yes

Notes

Note

Legacy fortiosapi has been deprecated, httpapi is the preferred way to run playbooks

Examples

- hosts: fortigates
  collections:
    - fortinet.fortios
  connection: httpapi
  vars:
   vdom: "root"
   ansible_httpapi_use_ssl: yes
   ansible_httpapi_validate_certs: no
   ansible_httpapi_port: 443
  tasks:
  - name: Configure NPU attributes.
    fortios_system_npu:
      vdom:  "{{ vdom }}"
      system_npu:
        capwap_offload: "enable"
        dedicated_management_affinity: "<your_own_value>"
        dedicated_management_cpu: "enable"
        fastpath: "disable"
        gtp_enhanced_cpu_range: "0"
        gtp_enhanced_mode: "enable"
        intf_shaping_offload: "enable"
        ipsec_dec_subengine_mask: "<your_own_value>"
        ipsec_enc_subengine_mask: "<your_own_value>"
        ipsec_inbound_cache: "enable"
        ipsec_mtu_override: "disable"
        ipsec_over_vlink: "enable"
        isf_np_queues:
            cos0: "<your_own_value> (source system.isf-queue-profile.name)"
            cos1: "<your_own_value> (source system.isf-queue-profile.name)"
            cos2: "<your_own_value> (source system.isf-queue-profile.name)"
            cos3: "<your_own_value> (source system.isf-queue-profile.name)"
            cos4: "<your_own_value> (source system.isf-queue-profile.name)"
            cos5: "<your_own_value> (source system.isf-queue-profile.name)"
            cos6: "<your_own_value> (source system.isf-queue-profile.name)"
            cos7: "<your_own_value> (source system.isf-queue-profile.name)"
        lag_out_port_select: "disable"
        mcast_session_accounting: "tpe-based"
        port_cpu_map:
         -
            cpu_core: "<your_own_value>"
            interface: "<your_own_value>"
        port_npu_map:
         -
            interface: "<your_own_value>"
            npu_group_index: "0"
        priority_protocol:
            bfd: "enable"
            bgp: "enable"
            slbc: "enable"
        qos_mode: "disable"
        rdp_offload: "enable"
        session_denied_offload: "disable"
        sse_backpressure: "enable"
        strip_clear_text_padding: "enable"
        strip_esp_padding: "enable"
        sw_eh_hash:
            computation: "xor16"
            destination_ip_lower_16: "include"
            destination_ip_upper_16: "include"
            destination_port: "include"
            ip_protocol: "include"
            netmask_length: "32"
            source_ip_lower_16: "include"
            source_ip_upper_16: "include"
            source_port: "include"
        sw_np_bandwidth: "0G"
        uesp_offload: "enable"

Return Values

Common return values are documented: https://docs.ansible.com/ansible/latest/reference_appendices/common_return_values.html#common-return-values, the following are the fields unique to this module:

build - Build number of the fortigate image returned: always type: str sample: 1547
http_method - Last method used to provision the content into FortiGate returned: always type: str sample: PUT
http_status - Last result given by FortiGate on last operation applied returned: always type: str sample: 200
mkey - Master key (id) used in the last call to FortiGate returned: success type: str sample: id
name - Name of the table used to fulfill the request returned: always type: str sample: urlfilter
path - Path of the table used to fulfill the request returned: always type: str sample: webfilter
revision - Internal revision number returned: always type: str sample: 17.0.2.10658
serial - Serial number of the unit returned: always type: str sample: FGVMEVYYQT3AB5352
status - Indication of the operation's result returned: always type: str sample: success
vdom - Virtual domain used returned: always type: str sample: root
version - Version of the FortiGate returned: always type: str sample: v5.6.3

Status

This module is not guaranteed to have a backwards compatible interface.

Authors

Link Zheng (@chillancezen)
Jie Xue (@JieX19)
Hongbin Lu (@fgtdev-hblu)
Frank Shen (@frankshen01)
Miguel Angel Munoz (@mamunozgonzalez)
Nicolas Thomas (@thomnico)

Hint

If you notice any issues in this documentation, you can create a pull request to improve it.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fortios_system_npu.rst

fortios_system_npu.rst

fortios_system_npu -- Configure NPU attributes in Fortinet's FortiOS and FortiGate.

Synopsis

Requirements

FortiOS Version Compatibility

Parameters

Notes

Examples

Return Values

Status

Authors

	`v7.2.0`
computation	yes
[xor16]	yes
[xor8]	yes
[xor4]	yes
[crc16]	yes

Files

fortios_system_npu.rst

Latest commit

History

fortios_system_npu.rst

File metadata and controls

fortios_system_npu -- Configure NPU attributes in Fortinet's FortiOS and FortiGate.