config firewall address
Configure IPv4 addresses.
config firewall address
Description: Configure IPv4 addresses.
edit <name>
set allow-routing [enable|disable]
set associated-interface {string}
set cache-ttl {integer}
set clearpass-spt [unknown|healthy|...]
set color {integer}
set comment {var-string}
set country {string}
set end-ip {ipv4-address-any}
set end-mac {mac-address}
set epg-name {string}
set fabric-object [enable|disable]
set filter {var-string}
set fqdn {string}
set fsso-group <name1>, <name2>, ...
set interface {string}
config list
Description: IP address list.
edit <ip>
next
end
set obj-id {var-string}
set obj-tag {string}
set obj-type [ip|mac]
set organization {string}
set policy-group {string}
set sdn {string}
set sdn-addr-type [private|public|...]
set sdn-tag {string}
set start-ip {ipv4-address-any}
set start-mac {mac-address}
set sub-type [sdn|clearpass-spt|...]
set subnet {ipv4-classnet-any}
set subnet-name {string}
config tagging
Description: Config object tagging.
edit <name>
set category {string}
set tags <name1>, <name2>, ...
next
end
set tenant {string}
set type [ipmask|iprange|...]
set uuid {uuid}
set wildcard {ipv4-classnet-any}
set wildcard-fqdn {string}
next
end
config firewall address
|
Parameter |
Description |
Type |
Size |
Default |
||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
allow-routing |
Enable/disable use of this address in the static route configuration. |
option |
- |
disable |
||||||||||||||||||
|
|
|
|||||||||||||||||||||
|
associated-interface |
Network interface associated with address. |
string |
Maximum length: 35 |
|
||||||||||||||||||
|
cache-ttl |
Defines the minimal TTL of individual IP addresses in FQDN cache measured in seconds. |
integer |
Minimum value: 0 Maximum value: 86400 |
0 |
||||||||||||||||||
|
clearpass-spt |
SPT (System Posture Token) value. |
option |
- |
unknown |
||||||||||||||||||
|
|
|
|||||||||||||||||||||
|
color |
Color of icon on the GUI. |
integer |
Minimum value: 0 Maximum value: 32 |
0 |
||||||||||||||||||
|
comment |
Comment. |
var-string |
Maximum length: 255 |
|
||||||||||||||||||
|
country |
IP addresses associated to a specific country. |
string |
Maximum length: 2 |
|
||||||||||||||||||
|
end-ip |
Final IP address (inclusive) in the range for the address. |
ipv4-address-any |
Not Specified |
0.0.0.0 |
||||||||||||||||||
|
end-mac |
Last MAC address in the range. |
mac-address |
Not Specified |
00:00:00:00:00:00 |
||||||||||||||||||
|
epg-name |
Endpoint group name. |
string |
Maximum length: 255 |
|
||||||||||||||||||
|
fabric-object |
Security Fabric global object setting. |
option |
- |
disable |
||||||||||||||||||
|
|
|
|||||||||||||||||||||
|
filter |
Match criteria filter. |
var-string |
Maximum length: 2047 |
|
||||||||||||||||||
|
fqdn |
Fully Qualified Domain Name address. |
string |
Maximum length: 255 |
|
||||||||||||||||||
|
fsso-group |
FSSO group(s). FSSO group name. |
string |
Maximum length: 511 |
|
||||||||||||||||||
|
interface |
Name of interface whose IP address is to be used. |
string |
Maximum length: 35 |
|
||||||||||||||||||
|
name |
Address name. |
string |
Maximum length: 79 |
|
||||||||||||||||||
|
obj-id |
Object ID for NSX. |
var-string |
Maximum length: 255 |
|
||||||||||||||||||
|
obj-tag |
Tag of dynamic address object. |
string |
Maximum length: 255 |
|
||||||||||||||||||
|
obj-type |
Object type. |
option |
- |
ip |
||||||||||||||||||
|
|
|
|||||||||||||||||||||
|
organization |
Organization domain name (Syntax: organization/domain). |
string |
Maximum length: 35 |
|
||||||||||||||||||
|
policy-group |
Policy group name. |
string |
Maximum length: 15 |
|
||||||||||||||||||
|
sdn |
SDN. |
string |
Maximum length: 35 |
|
||||||||||||||||||
|
sdn-addr-type |
Type of addresses to collect. |
option |
- |
private |
||||||||||||||||||
|
|
|
|||||||||||||||||||||
|
sdn-tag |
SDN Tag. |
string |
Maximum length: 15 |
|
||||||||||||||||||
|
start-ip |
First IP address (inclusive) in the range for the address. |
ipv4-address-any |
Not Specified |
0.0.0.0 |
||||||||||||||||||
|
start-mac |
First MAC address in the range. |
mac-address |
Not Specified |
00:00:00:00:00:00 |
||||||||||||||||||
|
sub-type |
Sub-type of address. |
option |
- |
sdn |
||||||||||||||||||
|
|
|
|||||||||||||||||||||
|
subnet |
IP address and subnet mask of address. |
ipv4-classnet-any |
Not Specified |
0.0.0.0 0.0.0.0 |
||||||||||||||||||
|
subnet-name |
Subnet name. |
string |
Maximum length: 255 |
|
||||||||||||||||||
|
tenant |
Tenant. |
string |
Maximum length: 35 |
|
||||||||||||||||||
|
type |
Type of address. |
option |
- |
ipmask |
||||||||||||||||||
|
|
|
|||||||||||||||||||||
|
uuid |
Universally Unique Identifier (UUID; automatically assigned but can be manually reset). |
uuid |
Not Specified |
00000000-0000-0000-0000-000000000000 |
||||||||||||||||||
|
wildcard |
IP address and wildcard netmask. |
ipv4-classnet-any |
Not Specified |
0.0.0.0 0.0.0.0 |
||||||||||||||||||
|
wildcard-fqdn |
Fully Qualified Domain Name with wildcard characters. |
string |
Maximum length: 255 |
|
||||||||||||||||||
config list
|
Parameter |
Description |
Type |
Size |
Default |
|---|---|---|---|---|
|
ip |
IP. |
string |
Maximum length: 35 |
|
config tagging
|
Parameter |
Description |
Type |
Size |
Default |
|---|---|---|---|---|
|
category |
Tag category. |
string |
Maximum length: 63 |
|
|
name |
Tagging entry name. |
string |
Maximum length: 63 |
|
|
tags |
Tags. Tag name. |
string |
Maximum length: 79 |
|