/system

patch

https://switch-ip/rest/v10.13/system

Recent Requests

Time	Status	User Agent
Retrieving recent requests…

Loading…

Body Params

label_switches

string

bfd_min_echo_rx_interval

integer

0 to 1000

The shortest interval, in milliseconds, at which BFD sessions can receive BFD control messages. Remote endpoints may send messages at a slower rate. The value 0 means that the system does not want to receive BFD echo packets. The range from [1-49] is invalid.

event_trap_disable

boolean

Disable SNMP trap generation for event logs.

udp_bcast_forwarder_servers

string

ports

string

poe_notification_disable

boolean

Disable SNMP trap generation for Power-Over-Ethernet (POE) related events.

issu

string

snmp_trap_link_status_if_mib

boolean

When set to true, IF-MIB trap will be sent when interface link state changes.

snmp_community_acls

string

bfd_min_rx_interval

integer

100 to 20000

The shortest interval, in milliseconds, at which BFD sessions can receive BFD control messages. Remote endpoints may send messages at a slower rate.

dhcp_relays

string

tls_check_key_usage

boolean

enable the key usage check on a peer cert received during TLS handshake for client-auth or server-auth usage.

ntp_config_vrf

string

Reference Resource: VRF
VRF for NTP connections. If this is not set then 'default' VRF will be used.

syslog_remote_facility

string

enum

Facility to be used when forwarding to remote syslog servers.

logrotate_vrf

string

Reference Resource: VRF
VRF for logrotate remote host connections. If not set, then the 'default' VRF will be used. This column value can be empty.

static_ip_bindings

string

dhcpv6_server_external_storage

string

Reference Resource: External_Storage
External storage to be used for all DHCPv6 servers.

reset

boolean

Resets the system when set to true.

bgp_community_filters

string

external_storages

string

proxies

object

ntp_keys

string

policy_in_cfg

string

Reference Resource: Policy
Global Policy configuration for ingress direction.

rpvst_enabled_vlans

array of strings

length ≤ 1024

Reference Resource: VLAN
The VLANs on which RPVST is enabled.

rpvst_enabled_vlans

dhcpv4_snooping_option82_configuration

object

macsec_policies

string

tcp_synack_retries

integer

1 to 255

Number of times SYN-ACK packets are resent in response to a TCP SYN request.

http_proxy_location_vrf

string

Reference Resource: VRF
VRF for HTTP Proxy connections. If not set, then the 'default' VRF will be used.

vsf_force_auto_join

boolean

Force a VSF auto-join operation.

snmp_traps

string

q_profiles

string

resource_hw_ipv4_prefix_list_configuration

array of integers

length ≤ 6

Some AOS-CX systems include a feature to optimize route lookup for commonly used IPv4 address prefix lengths or subnet masks. These systems have six tables that are configurable for a specific prefix length, plus a seventh table for all others. To use this feature, configure six most commonly used lengths in this column. Exactly six lengths must be specified. If not, the system uses a set of default lengths that are suitable for many networks. The system must be rebooted to apply any change in this column.

resource_hw_ipv4_prefix_list_configuration

aaa

object

sflows

string

snmp_views

string

tls_certified_algorithms_only

boolean

Specifies whether TLS crypto algorithms should be restricted to only those algorithms certified to Common Criteria NDcPP requirements.

dhcpv6_snooping_external_storage

string

Reference Resource: External_Storage
External storage to back up IPv6 bindings learnt by DHCPv6 snooping.

logging_filters

string

bluetooth_mgmt_disable

boolean

Disables Bluetooth management. When disabled, Bluetooth adapters inserted into the USB port of the switch will not be detected and will not work. If the USB port is disabled via usb_disable, then this setting will have no effect.

rest_api

object

aaa_server_groups

string

dlog_destination

object

Filter the dlogs that are sent to each possible destination based on the severity specified. If a destination is not present, no dlog messages will be sent to that destination. If no destinations are present then dlogs of severity debug or greater will be sent to buffer. Example: {'file':'info'} info and above level dlogs will be send to file destination.

global_user_copp_policy

string

Reference Resource: CoPP_Policy
Specifies the user-configured top-level CoPP policy. When missing, the policy in the hw_default_copp_policy column will be used. If the user-configured top-level CoPP policy lacks entries for some classes, the corresponding entries from the hardware-default CoPP policy will be used.

poe_threshold

integer

1 to 100

Set the threshold in percent at which the system will send an excess power consumption notification trap.

db_observer_rules

string

pki_x509_certificates

string

dhcpv6_snooping_guard_policies

string

route_maps

string

logrotate_config

object

multicast_multipath_hash

object

Hashing algorithm to be used to decide the nexthop when multiple equal cost paths exist to reach a given source address. S-hash : This method uses only the source address to compute the hash to pick the nexthop. This is the default value S-G-hash : This method uses source and group address in the hash calculation. This is the global value applicable to all VRFs. This can be overridden per VRF.

ssh_passkeyauthentication_enable

boolean

Controls whether ssh password based authentication is enabled. This value will not be honored if two-factor authentication is enabled.

stp_config

object

This represents information regarding stp global configuration.

port_access_client_moves_disable

boolean

Disable MAC move between secure ports.

license_management_system_server

string

other_config

object

port_security_enable

boolean

Specifies whether the port security is enabled or not on the system. 'true': enables port security configuration globally. Though port security is enabled globally, the functionality is effective only if port security is also enabled on the port. 'false': disables port security configuration on the system.

vsf_config

object

cpu_trap_disable

boolean

Disable SNMP trap generation for the CPU utilization alert.

snmpv3_users

string

download_data_limit

integer

0 to 100

The file download data limit per hour in GB.

certificate_association

object

Names of the certificates to be used for supported applications. If the name is not valid or the certificate is corrupted / expired, a default self-signed certificate will be used instead.

ubt_client_vid

string

Reference Resource: VLAN
VLAN-ID assigned to clients whose traffic is being redirected to the UBT cluster. This is not set when the UBT mode is set to VLAN-extend.

mac_groups

string

configuration_change_trap_enable

boolean

Enable generating configuration change traps.

multicast_multifabric_identifier

object

To configure multicast fabric identifier(MFID) value that uniquely represents the fabric to which this leaf router belongs, in a multi-fabric topology.

hpe_rda_enable

boolean

Specify to true to enable Remote Device Access to the switch.

supportlog_rotate_vrf

string

Reference Resource: VRF
VRF over which the remote TFTP server (to transfer supportlogs) is to be reached. If not specified, default VRF is used. This column value can be empty.

console_baudrate

string

enum

Set the console serial port data transmission speed.

Allowed:

lacp_config

object

virtual_mac

string

length between 17 and 17

Global virtual MAC configuration. An example usage would be EVPN Symmetric IRB where EVPN advertises this MAC as the Router's MAC for all the EVPN Symmetric Routes.

configuration_lockout_config

object

Configure the system to be managed by a remote NMS. Every entry represents an owner and its corresponding configuration mode. This helps the external manager identify whether or not the device's configuration can be changed by anyone else.

users

string

mgmd_client_details_refresh_timer

integer

300 to 900

MGMD client details refresh timer in seconds. Once the timer expires, IGMP/MLD client details will be refreshed.

nd_snooping_general_configuration

object

ssh_ciphers

object

This option specifies the SSH ciphers to use in priority order. The key represents the priority and the value is the cipher to configure at that priority level. No configuration here means that the default ciphers and priorities will be configured: 1. [email protected] 2. aes128-ctr 3. aes192-ctr 4. aes256-ctr 5. [email protected] 6. [email protected]

user_groups

string

hostname

string

length between 1 and 32

Host name as configured by the user.

port_access_abps

string

snmp_unique_req_id_enable

boolean

When set to true, SNMP unique request-id check will be enabled.

ra_guard_policies

string

dhcpv6_snooping_external_storage_configuration

object

port_access_gbp_reflexive_enable

boolean

Enables the use of reflexive GBP policies in the system.

license

string

keychains

string

ubt_mode

string

enum

UBT VLAN mode configuration: vlan-extend: Clients are assigned to their UBT-role based VLAN in the hardware datapath. This mode allows for UBT to support VLAN-tagged clients like VOIP phones. local-vlan : Clients are assigned to a VLAN that is local to the switch and associated with their UBT-role based VLAN when client traffic reaches the controller. This mode allows for reducing the number of VLANs that need to be instantiated on the switch but can only support VLAN-untagged UBT clients. The 'ubt_client_vid' will be used to specify the local_vlan that UBT clients are assigned to.

Allowed:

ssh_server_allowlist_ips

array of strings

length ≤ 20

Custom ssh server allow-list containing configured IPv4s and IPv6s.

ssh_server_allowlist_ips

threshold_profiles

string

snmp_trap_link_status_rmon

boolean

When set to true, RMON trap will be sent when interface link state changes.

dhcp_server_external_storage_configuration

object

traffic_insight_monitors

string

mgmt_intf

object

This column is a map of string-string pairs Management interface column contains the attributes of management interface. The keys are name, mode, ip, subnet mask, default gateway, dns server IPv4 addresses. This column holds values that are configured by the user.

resource_utilization_poll_disable

boolean

When set to true system resource data polling is disabled.

mvrp_enable

boolean

Global knob to enable or disable MVRP. MVRP is enabled if the value is True.

dhcpv4_snooping_external_storage_configuration

object

dhcpv4_snooping_general_configuration

object

filter_unknown_mcast

object

Indicates the configuration requested to set the global unknown multicast packets behavior to filter. When set, the flooding of unknown mcast packets will be blocked.

icmp_unreachable_disable

boolean

Disable ICMPv4 and ICMPv6 unreachable messages.

port_access_gbps

string

interfaces

string

configured_profile

string

Profile that the system should use. If not set, the system boots with the default profile, as specified in the available_profiles. Note that for any change to take effect, the system must be restarted.

protected_nexthop_group_configs

string

ptps

string

logging_filter

string

Reference Resource: Logging_Filter
Currently active logging filter.This column value can be empty.

trunk_dynamic_vlan_include

boolean

Set to enable or disable a trunk port from automatically transmitting or receiving traffic for dynamic VLANs i.e., MVRP and PortAccess VLANs.

log_notification_threshold

object

Set the threshold percentage relative to the size of the log buffer. Once the utilization has reached this threshold, a log notification will be generated.

loop_protect_loop_detected_trap_enable

boolean

Enable generating loop-protect traps when a loop is detected.

mka_policies

string

mgmd_client_details_enable

boolean

Enable storing of IGMP/MLD client details. This will start logging the following details: clients_joined_count in MGMD_VGPS_DEBUG aggregate_reports_count in MGMD_VGPS_DEBUG aggregate_leaves_count in MGMD_VGPS_DEBUG client_details in MGMD_VGPS_DEBUG.

nae_cli_authorization

boolean

Determines whether NAE agent CLI command authorization is required.

port_access_cached_critical_role

object

multicast_pim_l3vni_source_ip

object

Overlay IP to be used as the primary IP of PIM's L3VNI interface. This will override PIM's auto-generated L3VNI address with the given one. PIM uses this address in the hello messages to form neighborship with other VTEPs. This is a global configuration applicable to all VRFs.

dfp_system_profile

string

length between 1 and 128

Name of DFP all-interfaces profile.

pki_est_profiles

string

portaccess_auto_vlan_enable

boolean

Enables automatic creation of a VLAN for portaccess clients if the VLAN is not already available in the system.

ssh_macs

object

This option specifies the SSH Message Authentication Codes (MACs) to use in priority order. The key represents the priority and the value is the MAC to be configured at that priority level. No configuration here means that the default MACs and priorities will be configured: 1. [email protected] 2. [email protected] 3. [email protected] 4. hmac-sha2-256 5. hmac-sha2-512 6. hmac-sha1

icmp_redirect_disable

boolean

Disable ICMPv4 and ICMPv6 redirect messages.

classifier_config

object

msrp_enable

boolean

Global knob to enable or disable MSRP. MSRP is enabled if the value is True.

captive_portal_profiles

string

ssh_hostkey_algorithms

object

This option specifies the SSH host key algorithms that are offered by SSH in priority order. The key represents the priority and the value is the host key algorithm to configure at that priority level. No configuration here means that the default host key algorithms and priorities will be configured: 1. ecdsa-sha2-nistp256 2. ecdsa-sha2-nistp384 3. ecdsa-sha2-nistp521 4. ssh-ed25519 5. rsa-sha2-256 6. rsa-sha2-512 7. ssh-rsa

snmp_trap_enable

object

static_pim_mroutes

string

radius_config_attributes

string

app_recognition

string

checkpoint_post_config

object

ssh_twofactorauthentication_enable

string

enum

This column can have one of the following settings: 'password': This means that authentication can only succeed with successful certificate and password authentication. 'radius-authorize-only': This setting means that authentication will be done with a certificate followed by an authorization request to a RADIUS server 'disabled': Neither of the above configurations are enabled.

Allowed:

ipfix_flow_monitors

string

port_access_cdp_groups

string

ipfix_flow_records

string

pki_ta_profiles

string

bfd_echo_disable

boolean

Specifies whether BFD echo packets are enabled or not on the system.

dhcp_client_options

object

ecmp_config

object

ssh_server_allowlist_enable

boolean

Controls whether the ssh server allow-list is enabled. When enabled, only configured hosts can connect to SSH servers of the switch.

enable_snmpv3_only

boolean

Enables only the SNMPv3 mode of operation and disallows SNMP v1 and v2c.

ntp_config

object

vrfs

string

port_security_trap_disable

boolean

Disable SNMP trap generation for port security violations.

mdns_sd_config

object

MDNS SD gateway related configuration.

snmp_alarm_disable

boolean

Disable all RMON alarms.

secure_mode

boolean

Will reboot, zeroize system, and set secure mode to enhanced when set to true

resource_utilization_poll_interval

int64

10 to 4294967295

Specifies the polling interval in seconds for system resource data polling

supportlog_rotate_config

object

virtual_network_ids

string

ipfix_flow_exporters

string

client_onboarding_insight

object

pim_clear_mroute_requests

string

jobs

string

ztp_force_provision

boolean

Force ZTP based provisioning to run, ignoring the status of any previous ZTP operation.

port_access_event_log_client_enable

boolean

Enable port-access event logs for client.

dhcpv4_snooping_external_storage

string

Reference Resource: External_Storage
External storage to back up IP bindings learnt by DHCPv4 snooping.

dsnoopv4_local_storage_configuration

object

snmp_community_attributes

string

dns_servers

array of strings

length ≤ 9223372036854776000

dns_servers

classes

string

unsupported_transceiver_config

object

router_id

object

memory_trap_disable

boolean

Disable SNMP trap generation for the memory utilization alert.

qos_config

object

cli_aliases

string

fib_optimization_evpn_exclude_nexthop

array of strings

length ≤ 8

List of EVPN next-hop address for which FIB optimization is disabled.

fib_optimization_evpn_exclude_nexthop

erps_rings

string

port_access_policy_reflexive_enable

boolean

Enables the use of reflexive port-access policies in the system.

syslog_remotes

array of strings

length ≤ 4

Reference Resource: Syslog_Remote
List of syslog servers to which syslog messages will be forwarded. Syslog_Remote

syslog_remotes

dhcpv4_snooping_guard_policies

string

http_proxy_location

string

User configured HTTP Proxy.

threshold_profile_default

string

Reference Resource: Threshold_Profile
Specifies the threshold-profile name for ports that do not specify their own profile (see Port threshold_profile column).

evpn

string

arp_config

object

device_profiles

string

entityd_trap_disable

boolean

Enable SNMP trap generation for Entity MIB related events.

prefix_lists

string

snmp_communities

array of strings

length ≤ 10

Community strings to be used by the system when communicating over SNMPv1/SNMPv2c.

snmp_communities

fault_monitor_profiles

string

mgmd_graceful_restart_interval

integer

260 to 1200

MGMD graceful restart timer in seconds. This is a common timer for all the active MGMD groups after daemon restart or redundancy failover.

bfd_echo_ipv4_source_address

string

length ≤ 15

Source IPv4 address for transmitted BFD echo packets. If no address is set, echo transmission is disabled globally.

counter_mon_poll_interval

integer

10 to 3600

Specifies the polling interval in seconds for ASIC error counter statistics polling

vsf_members

string

traffic_insights

string

hot_patches

string

flow_tracking

string

ssh_kex_algorithms

object

This option specifies the SSH key exchange algorithms to use in priority order. The key represents the priority and the value is the key exchange algorithm to configure at that priority level. No configuration here means that the default key exchange algorithms and priorities will be configured: 1. curve25519-sha256 2. [email protected] 3. ecdh-sha2-nistp256 4. ecdh-sha2-nistp384 5. ecdh-sha2-nistp521

usb_disable

boolean

Disable USB port. When disabled, devices inserted into the USB port of the switch will not be detected and will not work.

policies

string

schedules

string

q_profile_default

string

length between 1 and 64

Specifies the name of queue profile (see name) for ports that do not specify their own queue profile (see Port). When missing or when the name refers to an incomplete/invalid queue-profile, the factory-default profile will be used (i.e. the row in Q_Profile with hw_default set true). Check the value of the queue-profile key in qos_status to determine the currently operating queue-profile.

cdp_mode

string

enum

Sets CDP mode globally on the system: 'enable': Enables CDP globally 'disable': Disables CDP globally 'pass_through_enable': CDP packet will be forwarded through multicast forwarding

Allowed:

ipsla_sources

string

serviceos_password_prompt_enable

boolean

Specifies whether the ServiceOS password prompt is enabled or not in the system. This is only applicable for ServiceOS starting with version 01.03.0001, ignored otherwise.

http_session

object

HTTP session management global configurations.

mpls_egress_clear_stats_requested

int64

0 to 4294967295

Number of times a request was made to clear statistics for packets and octets/bytes transmitted with MPLS label(s).

logging_persistent_storage

object

ipv6_hop_limit

integer

1 to 255

Maximum number of hops, after which packets originating from the switch will be discarded.

port_access_policies

string

track_entities

string

mgmd_delayed_refresh_timer

integer

5 to 30

MGMD delayed refresh timer in seconds. Once the timer expires, IGMP/MLD last_reporter, debug counters and timer values will be refreshed.

fib_optimization

object

Enable the FIB Optimization feature for specified protocol and address family. When enabled, routes are programmed on-demand in the dataplane based on traffic destined to the said hosts.

ssh_pubkey_algorithms

object

This option specifies the SSH public key algorithms to use in priority order. The key represents the priority and the value is the public key algorithm to be configured at that priority level. No configuration here means that the default public key algorithms and priorities will be configured: 1. rsa-sha2-256 2. rsa-sha2-512 3. ssh-rsa 4. ecdsa-sha2-nistp256 5. ecdsa-sha2-nistp384 6. ecdsa-sha2-nistp521 7. ssh-ed25519 8. x509v3-rsa2048-sha256 9. x509v3-ssh-rsa 10. x509v3-sign-rsa 11. x509v3-ecdsa-sha2-nistp256 12. x509v3-ecdsa-sha2-nistp384 13. x509v3-ecdsa-sha2-nistp521

aaa_accounting_attributes

string

domain_name

string

Domain name as configured by the user.

aaa_server_group_prios

string

password_complexity

object

If password_complexity is 'enable'd, then minimal complexity rules would be enforced on all new passwords. Existing passwords are not affected.

vlan_client_presence_detect

boolean

If enabled, VNI mapped VLANs will be 'UP' only if there are authenticated clients on this VLAN or have some statically configured ports as members and those ports are 'UP'. When not set, VNI mapped VLANs will always be 'UP'.

bgp_aspath_filters

string

counter_mon_poll_enable

boolean

When set to true ASIC error counter statistics polling is enabled.

radius_dynamic_authorization

object

Global configuration for RADIUS dynamic authorization feature.

mpls_ingress_clear_stats_requested

int64

0 to 4294967295

Number of times a request was made to clear statistics for packets and octets/bytes received with MPLS label(s).

loop_protect_transmit_interval

integer

1 to 10

This specifies the time interval in seconds between successive transmissions of loop-protect packets. Default value is 5 seconds.

policy_in_cfg_version

int64

-9007199254740991 to 9007199254740991

The version of the 'policy_in_cfg'. This value is changed to a random value each time any management interface modifies the 'policy_in_cfg' value. An empty value means no ingress Policy has been configured globally.

bfd_min_tx_interval

integer

50 to 20000

The shortest interval, in milliseconds, at which BFD sessions can transmit BFD control messages. Messages will actually be transmitted at a slower rate if the remote endpoints cannot receive them as quickly as specified.

mdns_sd_service_groups

string

resource_hw_ipv6_prefix_list_configuration

array of integers

length ≤ 6

Some AOS-CX systems include a feature to optimize route lookup for commonly used IPv6 address prefix lengths. These systems have six tables that are configurable for a specific prefix length, plus a seventh table for all others. To use this feature, configure six most commonly used lengths in this column. Exactly six lengths must be specified. If not, the system uses a set of default lengths that are suitable for many networks. The system must be rebooted to apply any change in this column.

resource_hw_ipv6_prefix_list_configuration

mirror_endpoints

string

fib_optimization_ageout_time

integer

60 to 3600

Specifies the time in seconds that the switch waits before aging out a FIB entry from the data plane in the event of traffic inactivity

port_access_client_move_secure_enable

boolean

Enable an authenticated client to move to a new port only post a successful authentication on the new port.

mgmd_drop_unknown

object

MGMD Drop Unknown multicast traffic configuration. This feature can be enabled/disabled globally or per-VLAN for IGMP and MLD. If this field is set on-global, a single drop_unknown multicast filter is created to forward unknown multicast traffic for the Bridge. If this field is set as on-vlan, then one filter each will be created per-vlan to forward unknown multicast traffic on that VLAN. There could be cases where even if on-vlan is set, there are no more multicast filters available in the switch for a vlan and the vlan would fall back to a global filter. There could be cases where a global filter can't be supported in the given hardware platform. In those cases, though configuration is on-global, per-vlan filter would be created. There is a drop_unknown status in this same table which indicates the platform capability status. There is a drop_unknown status at VLAN level which indicates if for that VLAN, it falls back to global filter because of filter exhaustion. If the platform cannot support on-global and filters are exhausted then MGMD would flood the unknown multicast traffic on the VLAN.

bfd_enable

boolean

Specifies whether the BFD protocol is enabled or not on the system.

dsnoopv6_local_storage_configuration

object

smartlink_groups

string

syslog_audit_format_native

boolean

Enable sending audit log messages to the syslog server in Linux format. If it is not enabled, then it sends in ArubaOS-CX defined log format.

ipld_resource_extended_enable

boolean

Enable support for 8K IP lockdown entries.

port_access_lldp_groups

string

bfd_detect_multiplier

integer

1 to 5

The number of negotiated min_rx_intervals that can occur before a BFD session is considered to be down.

packet_captures

string

all_user_copp_policies

array of strings

length ≤ 9223372036854776000

Reference Resource: CoPP_Policy
List of all user-defined CoPP policies in the system. The existence of a policy in this list is not an indication that it has been applied.

all_user_copp_policies

macsec_selftest_enable

boolean

Enable MACsec selftest on this device.

port_access_roles

string

ssh_login_grace_time

integer

1 to 600

Specifies the SSH login grace time (in seconds) before a connection being authenticated is timed out and disconnected.

containers

string

port_access_vlan_groups

string

ufd_enable

boolean

Enable Uplink Failure Detection Feature.

module_trap_enable

boolean

Enable SNMP trap generation for Module MIB related events.

snmp_alarms

string

ssh_certificate_as_authkey_enable

boolean

When enabled, SSH will enforce that the authenticating username is present in the authenticating certificate's Common Name, or Subject Alternative Name User Principal Name.

avb

string

lacp_global_bond_mode

string

enum

The type of bonding used globally for all bonded ports. Bond mode controls the selection of a interface from a group of aggregate interfaces with which to transmit a frame. This selection is performed with a hash function using either source and destination mac addresses (l2), ip addresses (l3) or tcp/udp ports (l4) as parameters. This variable can be used to configure bond mode for the platform which does not support per port hash configuration.

Allowed:

client_ip_track_config

object

Client IP tracking configuration for the device.

ipv6_route_gc_interval

integer

30 to 600

Garbage collection interval timer in seconds. Once the timer expires, the invalid or old entries will be removed from kernel route cache.

loop_protect_disable_timer

integer

0 to 604800

This specifies the time in seconds for which the ports are to be disabled on detecting a loop. Default value is 0 i.e the port is disabled indefinitely.

dhcpv6_server_external_storage_configuration

object

dlogs

string

vlans

string

dhcp_config

object

dhcp_server_external_storage

string

Reference Resource: External_Storage
External storage to be used for all DHCPv4 servers.

rpvst_disabled_vlans

array of integers

length ≤ 4094

VLANs to be Disabled for RPVST spanning-tree.

rpvst_disabled_vlans

cli_session

object

CLI session management global configurations.

multicast_multifabric_border

object

Enables PIM router to function as a border router in VXLAN multi-fabric topology. This enables the router to forward multicast traffic across multiple fabrics attached to it.

GBP_enable

boolean

Enable Group Based Policy enforcement.

qos_default

string

length between 1 and 64

Specifies the schedule profile for ports that do not specify their own schedule profile (see Port qos column). When missing, the QoS row with hw_default true will be used.

icmp_throttle

integer

1 to 86400

ICMP throttle (in seconds) can be used to configure the packet interval to send ICMPv4/v6 error and redirect messages.

ssh_publickeyauthentication_enable

boolean

Controls whether ssh public key authentication is enabled. This value will not be honored if two-factor authentication is enabled.

timezone

string

User configured Timezone. Time zone of the device in case sensitive Posix format - "US/Pacific","Asia/Singapore", "Etc/GMT". Please refer to the full list of supported time zones at https://en.wikipedia.org/wiki/List_of_tz_database_time_zones.

q_threshold_entries

string

mgmd_delayed_refresh

boolean

Enable delayed refresh for IGMP/MLD last_reporter, debug counters and timer values. This will apply to the below attributes: last_reporter in MGMD_VGS mgmd_last_reporter in MGMD_PGS timers_absolute in MGMD_PGS timers_absolute in MGMD_VGPS clients_joined_count in MGMD_VGPS_DEBUG aggregate_reports_count in MGMD_VGPS_DEBUG aggregate_leaves_count in MGMD_VGPS_DEBUG client_details in MGMD_VGPS_DEBUG.

redistribute_active_routes_only

boolean

Enable redistributing the active routes that have been selected for forwarding into the target routing protocol.

dot1x_supplicant_policies

string

ipv6_destination_guard_policies

string

fastboot_disable

boolean

When fastboot is disabled, self test for line card, fabric card and line card interfaces will be executed

dhcpv6_snooping_general_configuration

object

ssh_server_port

integer

1 to 65535

Server port for all SSH servers on all VRFs where ssh server is enabled.

pbr_action_lists

string

nae_script_generates

string

qos

string

unicast_gr_disabled

boolean

The unicast_gr_disabled flag is used to indentify whether the Unicast GR feature enabled or not

mgmd_lookup

object

Multicast Group Membership Discovery(MGMD) forwarding lookup configuration for IGMP and MLD. A lookup mode of mac indicates that the flow entries would be programmed in L2 table in hardware and a lookup mode of ip indicates that the flow entries woudl be programmed in L3 table in hardware. If this field is left empty, lookup mode default is considered mac. For enabling IGMPv3 and MLDv2, the lookup mode must be set as ip.

gbp_role_name_id_maps

string

console_logging

object

console-logging related configuration.

mirrors

array of strings

length ≤ 9223372036854776000

Reference Resource: Mirror
Mirror references for sessions configured in this bridge.

mirrors

stp_instances

string

nae_scripts

string

acls

string

acl_object_groups

string

ufds

string

device_fingerprinting_profiles

string

smartlink_vlans

array of strings

length ≤ 24

Reference Resource: VLAN
Set of control VLANs on which smartlink control plane messages can be received.

smartlink_vlans

dot1x_supplicant_enable

boolean

Enable 802.1X supplicant on the system.

ssh_maximum_authentication_attempts

integer

1 to 10

Specifies the maximum number of SSH authentication attemps permitted per connection.

mdns_sd_profiles

string

Responses

204

No Content

400

Bad Request

401

Unauthorized

403

Forbidden

404

Not Found

415

Unsupported Media Type

500

Internal Server Error

501

Not Implemented

503

Service Unavailable

Language

Loading…

Response

Click Try It! to start a request and see the response here!