damex.incus.incus_instance module – Ensure Incus instance
Note
This module is part of the damex.incus collection (version 1.11.7).
It is not included in ansible-core.
To check whether it is installed, run ansible-galaxy collection list.
To install it, use: ansible-galaxy collection install damex.incus.
To use it in a playbook, specify: damex.incus.incus_instance.
Synopsis
Create, configure, and manage the lifecycle of Incus instances via the Incus REST API.
Instances are project-scoped resources.
The instance type and source are set on creation and cannot be changed afterwards.
Parameters
Parameter |
Comments |
|---|---|
Client certificate content for remote authentication. Requires |
|
Client certificate path for remote authentication. Requires |
|
Client key content for remote authentication. Requires |
|
Client key path for remote authentication. Requires |
|
Configuration key-value pairs. Boolean values are converted to lowercase strings. Dict values for Default: |
|
Use instance NIC names and MTU for default interfaces. Choices:
|
|
Auto-restart after crash. Choices:
|
|
Instance autostart on daemon startup. Choices:
|
|
Seconds to wait after the instance started. |
|
Instance startup priority (higher starts first). |
|
Action to take on host shutdown. |
|
Seconds to wait for instance to stop on host shutdown. |
|
Instance shutdown priority (higher stops first). |
|
Cloud-init network configuration. |
|
Bond interface configurations. |
|
IPv6 Router Advertisement acceptance. Choices:
|
|
Static addresses in CIDR notation. |
|
DHCPv4. Choices:
|
|
DHCPv6. Choices:
|
|
Default IPv4 gateway address. |
|
Default IPv6 gateway address. |
|
Member interfaces for the bond. |
|
Maximum transmission unit for the interface. |
|
Bond name. |
|
DNS server configuration. |
|
DNS server addresses. |
|
DNS search domains. |
|
Optional boot interface. Choices:
|
|
Bond parameters. |
|
MII monitoring interval in milliseconds. |
|
Bonding mode. |
|
Static routes for the bond. |
|
Route metric. |
|
Route scope. |
|
Routing table ID. |
|
Route destination in CIDR notation. |
|
Gateway address for the route. |
|
Rename the interface to this name. |
|
Bridge interface configurations. |
|
IPv6 Router Advertisement acceptance. Choices:
|
|
Static addresses in CIDR notation. |
|
DHCPv4. Choices:
|
|
DHCPv6. Choices:
|
|
Default IPv4 gateway address. |
|
Default IPv6 gateway address. |
|
Member interfaces for the bridge. |
|
Maximum transmission unit for the interface. |
|
Bridge name. |
|
DNS server configuration. |
|
DNS server addresses. |
|
DNS search domains. |
|
Optional boot interface. Choices:
|
|
Bridge parameters. |
|
Forwarding delay in seconds. |
|
Spanning Tree Protocol. Choices:
|
|
Static routes for the bridge. |
|
Route metric. |
|
Route scope. |
|
Routing table ID. |
|
Route destination in CIDR notation. |
|
Gateway address for the route. |
|
Rename the interface to this name. |
|
Ethernet interface configurations. |
|
IPv6 Router Advertisement acceptance. Choices:
|
|
Static addresses in CIDR notation. |
|
DHCPv4. Choices:
|
|
DHCPv6. Choices:
|
|
Default IPv4 gateway address. |
|
Default IPv6 gateway address. |
|
Match rules for the interface. |
|
Kernel driver name to match. |
|
MAC address to match. |
|
Interface name to match. |
|
Maximum transmission unit for the interface. |
|
Interface name. |
|
DNS server configuration. |
|
DNS server addresses. |
|
DNS search domains. |
|
Optional boot interface. Choices:
|
|
Static routes for the interface. |
|
Route metric. |
|
Route scope. |
|
Routing table ID. |
|
Route destination in CIDR notation. |
|
Gateway address for the route. |
|
Rename the interface to this name. |
|
Network renderer to use. |
|
Network config format version. |
|
VLAN interface configurations. |
|
IPv6 Router Advertisement acceptance. Choices:
|
|
Static addresses in CIDR notation. |
|
DHCPv4. Choices:
|
|
DHCPv6. Choices:
|
|
Default IPv4 gateway address. |
|
Default IPv6 gateway address. |
|
VLAN ID. |
|
Parent interface for the VLAN. |
|
Maximum transmission unit for the interface. |
|
VLAN interface name. |
|
DNS server configuration. |
|
DNS server addresses. |
|
DNS search domains. |
|
Optional boot interface. Choices:
|
|
Static routes for the VLAN. |
|
Route metric. |
|
Route scope. |
|
Routing table ID. |
|
Route destination in CIDR notation. |
|
Gateway address for the route. |
|
Rename the interface to this name. |
|
Cloud-init user data configuration. |
|
Public SSH key allowance. Choices:
|
|
APT package manager configuration. |
|
Regex for matching add-apt-repository entries. |
|
APT configuration to write. |
|
Debconf preseed selections. |
|
Selection set identifier. |
|
Debconf selection lines. |
|
APT suites to disable. |
|
FTP proxy URL for APT. |
|
HTTP proxy URL for APT. |
|
HTTPS proxy URL for APT. |
|
Existing sources.list preservation. Choices:
|
|
Primary mirror configuration. |
|
APT proxy URL. |
|
Security mirror configuration. |
|
Additional APT source definitions. |
|
Source file append mode. Choices:
|
|
Name of the source list file. |
|
Raw GPG key. |
|
GPG key ID to import. |
|
Alternate keyserver to pull key from. |
|
Source entry identifier and filename. |
|
Sources.list entry. |
|
Custom sources.list content. |
|
Commands to run early in the boot process. |
|
CA certificate configuration. |
|
Default CA certificate removal. Choices:
|
|
Trusted CA certificates in PEM format. |
|
Password change settings. |
|
Password expiry on first login. Choices:
|
|
User password entries. |
|
User name. |
|
Password for the user. |
|
Password type. Choices:
|
|
Root login. Choices:
|
|
SSH options applied when root login is disabled. |
|
Disk partitioning configuration. |
|
Partition layout specification. |
|
Device path. |
|
Existing partition table overwrite. Choices:
|
|
Partition table type. Choices:
|
|
Message to display when cloud-init completes. |
|
Fully qualified domain name. |
|
Filesystem creation configuration. |
|
Custom mkfs command. |
|
Device path. |
|
Extra options for mkfs. |
|
Filesystem type. |
|
Filesystem label. |
|
Existing filesystem overwrite. Choices:
|
|
Partition specification. |
|
Existing filesystem replacement. Choices:
|
|
Groups to create. |
|
Partition growing configuration. |
|
Devices to grow. |
|
Growroot disabled marker bypass. Choices:
|
|
Growpart mode. Choices:
|
|
System hostname. |
|
System locale. |
|
Locale configuration file path. |
|
/etc/hosts management. Choices:
|
|
/etc/resolv.conf management. Choices:
|
|
Default values for mount entries with fewer than six fields. |
|
Mount point definitions. |
|
NTP client configuration. |
|
Allowed NTP network ranges. |
|
NTP client-specific configuration. |
|
Executable name for the NTP client. |
|
NTP client configuration file path. |
|
Packages needed for the NTP client. |
|
Service name for the NTP client. |
|
Jinja template for NTP client configuration. |
|
NTP. Choices:
|
|
NTP client to use. |
|
NTP peer nodes. |
|
NTP pools. |
|
NTP servers. |
|
Post-upgrade reboot. Choices:
|
|
First-boot package list update. Choices:
|
|
First-boot package upgrade. Choices:
|
|
Packages to install on first boot. |
|
Password for the default user. |
|
Phone home configuration. |
|
Data fields to POST. |
|
Number of attempts. |
|
URL to POST instance data to. |
|
Power state change after cloud-init completes. |
|
Condition to check before power action. |
|
Delay before power action. |
|
Power state action to take. Choices:
|
|
Timeout in seconds for power action. |
|
FQDN preference over short hostname. Choices:
|
|
DNS resolver configuration. |
|
Default DNS domain. |
|
DNS server addresses. |
|
Resolver options for /etc/resolv.conf. |
|
Number of resolver query attempts. |
|
EDNS0 extensions. Choices:
|
|
IPv6 address preference. Choices:
|
|
Minimum dots in a name before absolute query. |
|
Name checking disabling. Choices:
|
|
Automatic config reload disabling. Choices:
|
|
Top-level domain query disabling. Choices:
|
|
Nameserver rotation. Choices:
|
|
Sequential A and AAAA queries. Choices:
|
|
Socket reopen for sequential queries. Choices:
|
|
Resolver query timeout in seconds. |
|
Resolver AD flag trust. Choices:
|
|
TCP DNS queries. Choices:
|
|
DNS search domains. |
|
DNS sort list. |
|
Commands to run after cloud-init completes. |
|
Snap package manager configuration. |
|
Snap commands to execute. |
|
SSH public keys to add to the default user. |
|
Default SSH host key deletion. Choices:
|
|
SSH key types to generate. |
|
Pre-generated SSH host keys. |
|
ECDSA host certificate. |
|
ECDSA private host key. |
|
ECDSA public host key. |
|
Ed25519 host certificate. |
|
Ed25519 private host key. |
|
Ed25519 public host key. |
|
RSA host certificate. |
|
RSA private host key. |
|
RSA public host key. |
|
SSH host key publishing configuration. |
|
Key types to exclude from publishing. |
|
Host key publishing. Choices:
|
|
SSH password authentication. Choices:
|
|
SSH key generation output suppression. Choices:
|
|
Swap configuration. |
|
Swap file path. |
|
Maximum swap size in bytes. |
|
Swap size in bytes or |
|
System timezone. |
|
Default user name. |
|
Users to create. |
|
User group creation. Choices:
|
|
Doas rules for the user. |
|
Account expiration date in YYYY-MM-DD format. |
|
GECOS field for the user. |
|
Groups to add the user to. |
|
Pre-hashed password for the user. |
|
Home directory path. |
|
Days after password expires until account is disabled. |
|
User password lock. Choices:
|
|
User name. |
|
Home directory creation skip. Choices:
|
|
User initialization log skip. Choices:
|
|
User group creation skip. Choices:
|
|
Hashed password for the user. |
|
Plain text password for the user. |
|
Primary group for the user. |
|
SELinux user for login mapping. |
|
Login shell for the user. |
|
Email for Snappy user creation. |
|
SSH public keys to add to the user. |
|
SSH IDs to import public keys from. |
|
SSH login redirection to default user. Choices:
|
|
Sudo rule for the user. |
|
System user. Choices:
|
|
Numeric user ID. |
|
Files to create on first boot. |
|
File append mode. Choices:
|
|
Content to write to the file. |
|
Deferred writing until final stage. Choices:
|
|
Content encoding. Choices:
|
|
Owner and group of the file. |
|
Absolute path of the file to create. |
|
File permissions in octal notation. |
|
URL source for file content. |
|
HTTP headers for the request. |
|
Header name. |
|
Header value. |
|
URL to fetch content from. |
|
Cloud-init vendor data configuration. |
|
Public SSH key allowance. Choices:
|
|
APT package manager configuration. |
|
Regex for matching add-apt-repository entries. |
|
APT configuration to write. |
|
Debconf preseed selections. |
|
Selection set identifier. |
|
Debconf selection lines. |
|
APT suites to disable. |
|
FTP proxy URL for APT. |
|
HTTP proxy URL for APT. |
|
HTTPS proxy URL for APT. |
|
Existing sources.list preservation. Choices:
|
|
Primary mirror configuration. |
|
APT proxy URL. |
|
Security mirror configuration. |
|
Additional APT source definitions. |
|
Source file append mode. Choices:
|
|
Name of the source list file. |
|
Raw GPG key. |
|
GPG key ID to import. |
|
Alternate keyserver to pull key from. |
|
Source entry identifier and filename. |
|
Sources.list entry. |
|
Custom sources.list content. |
|
Commands to run early in the boot process. |
|
CA certificate configuration. |
|
Default CA certificate removal. Choices:
|
|
Trusted CA certificates in PEM format. |
|
Password change settings. |
|
Password expiry on first login. Choices:
|
|
User password entries. |
|
User name. |
|
Password for the user. |
|
Password type. Choices:
|
|
Root login. Choices:
|
|
SSH options applied when root login is disabled. |
|
Disk partitioning configuration. |
|
Partition layout specification. |
|
Device path. |
|
Existing partition table overwrite. Choices:
|
|
Partition table type. Choices:
|
|
Message to display when cloud-init completes. |
|
Fully qualified domain name. |
|
Filesystem creation configuration. |
|
Custom mkfs command. |
|
Device path. |
|
Extra options for mkfs. |
|
Filesystem type. |
|
Filesystem label. |
|
Existing filesystem overwrite. Choices:
|
|
Partition specification. |
|
Existing filesystem replacement. Choices:
|
|
Groups to create. |
|
Partition growing configuration. |
|
Devices to grow. |
|
Growroot disabled marker bypass. Choices:
|
|
Growpart mode. Choices:
|
|
System hostname. |
|
System locale. |
|
Locale configuration file path. |
|
/etc/hosts management. Choices:
|
|
/etc/resolv.conf management. Choices:
|
|
Default values for mount entries with fewer than six fields. |
|
Mount point definitions. |
|
NTP client configuration. |
|
Allowed NTP network ranges. |
|
NTP client-specific configuration. |
|
Executable name for the NTP client. |
|
NTP client configuration file path. |
|
Packages needed for the NTP client. |
|
Service name for the NTP client. |
|
Jinja template for NTP client configuration. |
|
NTP. Choices:
|
|
NTP client to use. |
|
NTP peer nodes. |
|
NTP pools. |
|
NTP servers. |
|
Post-upgrade reboot. Choices:
|
|
First-boot package list update. Choices:
|
|
First-boot package upgrade. Choices:
|
|
Packages to install on first boot. |
|
Password for the default user. |
|
Phone home configuration. |
|
Data fields to POST. |
|
Number of attempts. |
|
URL to POST instance data to. |
|
Power state change after cloud-init completes. |
|
Condition to check before power action. |
|
Delay before power action. |
|
Power state action to take. Choices:
|
|
Timeout in seconds for power action. |
|
FQDN preference over short hostname. Choices:
|
|
DNS resolver configuration. |
|
Default DNS domain. |
|
DNS server addresses. |
|
Resolver options for /etc/resolv.conf. |
|
Number of resolver query attempts. |
|
EDNS0 extensions. Choices:
|
|
IPv6 address preference. Choices:
|
|
Minimum dots in a name before absolute query. |
|
Name checking disabling. Choices:
|
|
Automatic config reload disabling. Choices:
|
|
Top-level domain query disabling. Choices:
|
|
Nameserver rotation. Choices:
|
|
Sequential A and AAAA queries. Choices:
|
|
Socket reopen for sequential queries. Choices:
|
|
Resolver query timeout in seconds. |
|
Resolver AD flag trust. Choices:
|
|
TCP DNS queries. Choices:
|
|
DNS search domains. |
|
DNS sort list. |
|
Commands to run after cloud-init completes. |
|
Snap package manager configuration. |
|
Snap commands to execute. |
|
SSH public keys to add to the default user. |
|
Default SSH host key deletion. Choices:
|
|
SSH key types to generate. |
|
Pre-generated SSH host keys. |
|
ECDSA host certificate. |
|
ECDSA private host key. |
|
ECDSA public host key. |
|
Ed25519 host certificate. |
|
Ed25519 private host key. |
|
Ed25519 public host key. |
|
RSA host certificate. |
|
RSA private host key. |
|
RSA public host key. |
|
SSH host key publishing configuration. |
|
Key types to exclude from publishing. |
|
Host key publishing. Choices:
|
|
SSH password authentication. Choices:
|
|
SSH key generation output suppression. Choices:
|
|
Swap configuration. |
|
Swap file path. |
|
Maximum swap size in bytes. |
|
Swap size in bytes or |
|
System timezone. |
|
Default user name. |
|
Users to create. |
|
User group creation. Choices:
|
|
Doas rules for the user. |
|
Account expiration date in YYYY-MM-DD format. |
|
GECOS field for the user. |
|
Groups to add the user to. |
|
Pre-hashed password for the user. |
|
Home directory path. |
|
Days after password expires until account is disabled. |
|
User password lock. Choices:
|
|
User name. |
|
Home directory creation skip. Choices:
|
|
User initialization log skip. Choices:
|
|
User group creation skip. Choices:
|
|
Hashed password for the user. |
|
Plain text password for the user. |
|
Primary group for the user. |
|
SELinux user for login mapping. |
|
Login shell for the user. |
|
Email for Snappy user creation. |
|
SSH public keys to add to the user. |
|
SSH IDs to import public keys from. |
|
SSH login redirection to default user. Choices:
|
|
Sudo rule for the user. |
|
System user. Choices:
|
|
Numeric user ID. |
|
Files to create on first boot. |
|
File append mode. Choices:
|
|
Content to write to the file. |
|
Deferred writing until final stage. Choices:
|
|
Content encoding. Choices:
|
|
Owner and group of the file. |
|
Absolute path of the file to create. |
|
File permissions in octal notation. |
|
URL source for file content. |
|
HTTP headers for the request. |
|
Header name. |
|
Header value. |
|
URL to fetch content from. |
|
Evacuation behavior during cluster evacuation. Choices:
|
|
Environment variables to set in the instance. Each entry is flattened to an |
|
Environment variable name. |
|
Environment variable value. |
|
Number or range of CPUs to expose. |
|
CPU time allowance as a percentage or fixed duration. |
|
NUMA nodes to restrict the instance to. |
|
CPU scheduling priority compared to other instances. |
|
I/O request priority when under load (0-10). |
|
Limit for 1GB huge pages. |
|
Limit for 1MB huge pages. |
|
Limit for 2MB huge pages. |
|
Limit for 64KB huge pages. |
|
Percentage of host memory or fixed value in bytes. |
|
Memory limit enforcement mode. |
|
Memory hotplug. |
|
Huge page memory backing. Choices:
|
|
OOM killer priority for the instance. |
|
Swap encouragement or discouragement. |
|
Swap priority compared to other instances. |
|
Network I/O priority compared to other instances. |
|
Maximum number of processes in the instance. |
|
Comma-separated kernel modules to load. |
|
Incremental memory transfer. Choices:
|
|
Target percentage of dirty memory for completion. |
|
Maximum number of memory transfer iterations. |
|
Allow stateful stop/start and snapshots. Choices:
|
|
NVIDIA driver capabilities to expose. |
|
Required CUDA version. |
|
Required NVIDIA driver version. |
|
Pass NVIDIA runtime libraries into the container. Choices:
|
|
Working directory for the OCI container. |
|
Entrypoint for the OCI container. |
|
GID to run the OCI container as. |
|
UID to run the OCI container as. |
|
Raw AppArmor profile entries. |
|
Raw ID map configuration. |
|
Raw LXC configuration to append. |
|
Raw QEMU command-line arguments. |
|
Raw QEMU configuration overrides. |
|
Raw QMP commands before instance start. |
|
Raw QMP commands after instance start. |
|
Raw QMP commands just before instance start. |
|
Raw QEMU scriptlet. |
|
Raw Seccomp configuration. |
|
Incus-agent metrics exposure. Choices:
|
|
Delegated BPF attach types. |
|
Delegated BPF commands. |
|
Delegated BPF map types. |
|
Delegated BPF program types. |
|
BPFFS mount path in the instance. |
|
Compatibility Support Module. Choices:
|
|
Guest API. Choices:
|
|
Guest API image access. Choices:
|
|
Base host UID/GID for the ID map. |
|
Unique ID map isolation. Choices:
|
|
Size of the ID map range. |
|
IOMMU. Choices:
|
|
Incus nesting support. Choices:
|
|
Privileged mode. Choices:
|
|
Deletion protection. Choices:
|
|
UID/GID shift protection. Choices:
|
|
UEFI Secure Boot. Choices:
|
|
AMD SEV encryption. Choices:
|
|
SEV-ES. Choices:
|
|
SEV session data blob. |
|
SEV Diffie-Hellman key. |
|
Allowed syscalls whitelist. |
|
Denied syscalls blacklist. |
|
Compat syscall blocking on amd64. Choices:
|
|
Default syscall deny list. Choices:
|
|
BPF syscall interception. Choices:
|
|
Device-type BPF program allowance. Choices:
|
|
Mknod syscall interception. Choices:
|
|
Mount syscall interception. Choices:
|
|
Filesystems allowed for intercepted mounts. |
|
FUSE mounts to redirect intercepted mounts to. |
|
ID-mapped mount shifting for intercepted mounts. Choices:
|
|
Sched_setscheduler syscall interception. Choices:
|
|
Setxattr syscall interception. Choices:
|
|
Sysinfo syscall interception. Choices:
|
|
Automatic expiry time for snapshots. |
|
Expiry time for manually created snapshots. |
|
Pongo2 template for snapshot names. |
|
Cron expression for automatic snapshots. |
|
Stopped instance snapshots. Choices:
|
|
Instance description. Default: |
|
Devices as a list. Each item must include a Boolean values are converted to lowercase strings. Default: |
|
Enable hardware offloading (none/sriov/vdpa) (nic, OVN only). |
|
PCI address of the device (pci only, VMs only). |
|
Attached or ejected state (disk, nic). Choices:
|
|
Which side to bind on, |
|
Boot priority for VMs (disk, nic). |
|
Bus number the USB device is connected to (usb only). |
|
Ceph cluster name (disk only). |
|
Ceph user name (disk only). |
|
Address and port to connect to (proxy only). |
|
Host network connection state (nic only). Choices:
|
|
Instance dependent disk (disk only). Choices:
|
|
Device number of the USB device (usb only). |
|
Device option ROM exposure (pci only). Choices:
|
|
GID of the device owner in the instance (unix-char, unix-block, unix-hotplug). |
|
GPU type (gpu only). Choices:
|
|
Register VLAN using GARP VLAN Registration Protocol (nic only). Choices:
|
|
Name of the interface on the host (nic only). |
|
MAC address of the new interface (nic, infiniband). |
|
DRM card ID of the GPU device (gpu only). |
|
Override bus for the device, e.g. |
|
Caching mode for the disk device (disk only). |
|
IPv4 address to assign via DHCP or static allocation (nic only). |
|
Select specific external IPv4 address (nic, OVN only). |
|
Default IPv4 gateway, e.g. |
|
IPv4 address on the host-side veth interface (nic, routed only). |
|
Custom policy routing table ID for IPv4 (nic, deprecated in favor of |
|
Comma-separated routing table IDs for IPv4 routes (nic, routed only). |
|
Parent network IP availability probe (nic, routed only). Choices:
|
|
Comma-delimited IPv4 static routes to add on the host (nic only). |
|
Comma-delimited IPv4 routes to publish via BGP (nic only). |
|
IPv6 address to assign via DHCP or static allocation (nic only). |
|
Select specific external IPv6 address (nic, OVN only). |
|
Default IPv6 gateway, e.g. |
|
IPv6 address on the host-side veth interface (nic, routed only). |
|
Custom policy routing table ID for IPv6 (nic, deprecated in favor of |
|
Comma-separated routing table IDs for IPv6 routes (nic, routed only). |
|
Parent network IP availability probe (nic, routed only). Choices:
|
|
Comma-delimited IPv6 static routes to add on the host (nic only). |
|
Comma-delimited IPv6 routes to publish via BGP (nic only). |
|
Outgoing traffic I/O limit in bit/s (nic only). |
|
Incoming traffic I/O limit in bit/s (nic only). |
|
I/O limit in byte/s or IOPS for both read and write (disk), or combined traffic limit in bit/s (nic). |
|
Outgoing traffic priority for queuing (nic only). |
|
I/O limit in byte/s or IOPS for read operations (disk only). |
|
I/O limit in byte/s or IOPS for write operations (disk only). |
|
Address and port to bind and listen on (proxy only). |
|
Device major number (unix-char, unix-block). |
|
Mediated device profile to use (gpu mdev only, VMs only). |
|
Existing MIG compute instance ID (gpu mig only, containers only). |
|
Existing MIG GPU instance ID (gpu mig only, containers only). |
|
Existing MIG device UUID (gpu mig only, containers only). |
|
Device minor number (unix-char, unix-block). |
|
NIC mode, e.g. |
|
Maximum transmission unit of the new interface (nic, infiniband). |
|
Device name used as the key in the Incus API. |
|
NAT-based proxying (proxy only). Choices:
|
|
Parent NIC name to nest this OVN NIC under (nic, OVN only). |
|
Managed Incus network to attach the NIC to (nic only). |
|
NIC type when not using a managed network (nic, infiniband). |
|
Parent host device name (nic, infiniband). |
|
Path inside the instance (disk, tpm, unix-char, unix-block). |
|
Resource manager path inside the instance, e.g. |
|
PCI address of the parent host device (nic SR-IOV, unix-hotplug). |
|
Incus storage pool backing the disk device (disk only). |
|
Product ID of the parent host device (nic SR-IOV, unix-hotplug). |
|
Controls how a bind-mount is shared between instance and host (disk only). |
|
HAProxy PROXY protocol for sender information (proxy only). Choices:
|
|
Transmit queue length for the NIC (nic only). |
|
File system specific mount options (disk only). |
|
Read-only mount (disk only). Choices:
|
|
Recursive source mount (disk only). Choices:
|
|
Source existence requirement (disk, unix-char, unix-block, unix-hotplug). Choices:
|
|
Comma-separated list of network ACLs to apply (nic only). |
|
Default action for egress traffic not matching any ACL rule (nic only). |
|
Unmatched egress traffic logging (nic only). Choices:
|
|
Default action for ingress traffic not matching any ACL rule (nic only). |
|
Unmatched ingress traffic logging (nic only). Choices:
|
|
GID to drop privilege to (proxy only). |
|
IPv4 address spoofing prevention (nic, bridged only). Choices:
|
|
IPv6 address spoofing prevention (nic, bridged only). Choices:
|
|
MAC address spoofing prevention (nic only). Choices:
|
|
NIC port isolation (nic, bridged only). Choices:
|
|
Promiscuous mode for unknown traffic (nic, OVN only). Choices:
|
|
Trusted NIC configuration (nic, SR-IOV only). Choices:
|
|
UID to drop privilege to (proxy only). |
|
Serial number of the USB device (usb only). |
|
UID/GID shifting overlay (disk, containers only). Choices:
|
|
Disk size limit, e.g. |
|
Size for the VM runtime state file system (disk, VMs only). |
|
Source of a file system, block device, or host device path (disk, unix-char, unix-block). |
|
Device type. Choices:
|
|
UID of the device owner in the instance (unix-char, unix-block, unix-hotplug). |
|
Vendor ID of the parent host device (nic SR-IOV, unix-hotplug). |
|
VLAN ID to attach to (nic only). |
|
Comma-separated VLAN IDs or ranges for tagged traffic (nic only). |
|
VRF name on the host for the host-side interface and routes (nic, routed only). |
|
World Wide Name assignment (disk, VMs only). Choices:
|
|
Whether the instance is ephemeral (deleted on stop). Set on creation only — cannot be changed afterwards. Choices:
|
|
Name of the instance. |
|
List of profiles to apply to the instance. Default: |
|
Incus project to query. Default: |
|
Server certificate content for remote verification. Requires |
|
Server certificate path for remote verification. Requires |
|
Incus Unix socket path for local connections. Default: |
|
Image reference to copy from, e.g.
|
|
URL of the image server to pull from, e.g. Takes precedence over auto-resolved remotes when |
|
Desired state of the instance.
Choices:
|
|
Cluster member to place the instance on. Only used during creation — ignored for existing instances. |
|
Token for remote authentication. Requires |
|
Instance type. Set on creation only — cannot be changed afterwards. Choices:
|
|
Remote Incus server URL (e.g. https://host:8443). If specified, connects via HTTPS instead of Unix socket. |
|
Server TLS certificate validation. Choices:
|
|
Async operation completion wait. Set to Choices:
|
Examples
- name: Ensure container is started
damex.incus.incus_instance:
name: mycontainer
source: ubuntu/22.04
profiles:
- default
config:
limits.cpu: "2"
limits.memory: 2GiB
- name: Ensure instance is stopped
damex.incus.incus_instance:
name: mycontainer
state: stopped
- name: Ensure instance on specific cluster member
damex.incus.incus_instance:
name: mycontainer
source: ubuntu/22.04
target: node1
profiles:
- default
- name: Ensure instance is absent
damex.incus.incus_instance:
name: mycontainer
state: absent
Return Values
Common return values are documented here, the following are the fields unique to this module:
Key |
Description |
|---|---|
Resource state change indicator. Returned: always |
|
Configuration keys that changed. Returned: always |
|
Before and after state for diff mode. Returned: changed |
|
State after the change. Returned: success |
|
State before the change. Returned: success |