upsertPhysicalInterface
The upsertPhysicalInterface operation handles configuration related to PhysicalInterface model.
Description
This API call is not allowed on the standby unit in an HA pair.
Data Parameters
Parameter | Required | Type | Description | |||
---|---|---|---|---|---|---|
version | False | string | A unique string version assigned by the system when the object is created or modified. No assumption can be made on the format or content of this identifier. The identifier must be provided whenever attempting to modify/delete an existing object. As the version will change every time the object is modified, the value provided in this identifier must match exactly what is present in the system or the request will be rejected. | |||
name | False | string | An optional ASCII string, from 0 to 48 characters, representing the name of the interface. The string can only include lower case characters (a-z), numbers (0-9), underscore (_), dot (.), and plus/minus (+,-). The name can only start with an alpha numeric character. | |||
description | False | string | An optional UTF-8 sting, from 0 to 200 characters. The string cannot include HTML tags, semi-colons(;), or carriage returns. Field level constraints: length must be between 0 and 200 (inclusive), must match pattern ^((?!;).)*$. (Note: Additional constraints might exist) |
|||
hardwareName | False | string | A mandatory UTF-8 string for the PhysicalInterfaces and SubInterfaces, which normally specifies the type of Interface along with the Interface number. The string cannot contain HTML tags. Field level constraints: must match pattern ^((?!;).)*$. (Note: Additional constraints might exist) |
|||
monitorInterface | True | boolean | A mandatory boolean object which specifies if the Interface needs to be monitored or not. Field level constraints: cannot be null. (Note: Additional constraints might exist) |
|||
ipv4 | False | object | An optional IPv4 object assigned to an interface in Secure Firewall device manager. This object specifies Interface configuration for an IPv4 address. | |||
ipv6 | False | object | An optional IPv6 object assigned to an interface in Secure Firewall device manager. This object specifies Interface configuration for an IPv6 address. | |||
managementOnly | False | boolean | An optional Boolean value, TRUE or FALSE (default value). The TRUE value indicates that the interface is used for management only. FALSE indicates that interface is not used as a management purpose. | |||
managementInterface | False | boolean | An optional Boolean value, TRUE or FALSE (the default). The TRUE value indicates that the interface is a Management Interface. The value FALSE indicates that the interface is not a Management Interface. | |||
mode | True | string | An enum value that specifies the physical interface mode where ROUTED is default. Values can be one of the following. ROUTED - Routed mode interfaces subject traffic to all firewall functions, including maintaining flows, tracking flow states at both IP and TCP layers, IP defragmentation, and TCP normalization, and your firewall policies. PASSIVE - Passive interfaces monitor traffic flowing across a network using a switch SPAN or mirror port. The SPAN or mirror port allows for traffic to be copied from other ports on the switch. This function provides the system visibility within the network without being in the flow of network traffic. When configured in a passive deployment, the system cannot take certain actions such as blocking or shaping traffic. Passive interfaces receive all traffic unconditionally and no traffic received on these interfaces is retransmitted. Field level constraints: cannot be null. (Note: Additional constraints might exist) |
|||
linkState | False | string | This field is deprecated and will not be available in future releases. Instead, please use the linkState field in the /devices/default/operational/interfaces API. An enum value that specifies whether the Physical Interface link state is UP or DOWN (the default). Link state of an interface is the operational status/running status of the interface. The values can be one of the following. UP - Specifies whether the device is operationally UP. DOWN - Specifies whether the device is operationally DOWN. |
|||
mtu | True | integer | A mandatory Integer value, from 64 bytes to 9198 bytes, with a default value being set to 1500. Maximum Transfer Unit (MTU) is the size of the largest network layer protocol unit that can be communicated in a single network transaction. Field level constraints: cannot be null, must be between 64 and 9198 (inclusive). (Note: Additional constraints might exist) |
|||
enabled | True | boolean | A mandatory Boolean value, TRUE or FALSE (the default), specifies the administrative status of the Interface. The TRUE value enables the administrative status on the device. The value FALSE disables the administrative status on the device. Field level constraints: cannot be null. (Note: Additional constraints might exist) |
|||
macAddress | False | string | An optional String value, to specify a virtual MAC address. The MAC address must be in the format H.H.H where each H is a 16-bit hexadecimal number. For example, 000C.F142.4CDE Field level constraints: must match pattern ^((?!;).)*$. (Note: Additional constraints might exist) |
|||
standbyMacAddress | False | string | An optional String value, to specify a virtual Standby MAC address. The MAC address must be in the format H.H.H where each H is a 16-bit hexadecimal number. Field level constraints: must match pattern ^((?!;).)*$. (Note: Additional constraints might exist) |
|||
pppoe | False | object | An optional object containing necessary values for PPPoE configuration. Required only when ipv4 type is PPPoE. | |||
ctsEnabled | False | boolean | A boolean that indicates whether the propagation of Security Group Tag (SGT) is enabled on this interface or not. If this property is not included in the API call or is set to null, then it will default to false unless the interface has a valid name property. | |||
fecMode | False | string | An enum value that specifies the physical interface fec (Forward Error Correction) type where AUTO is default. Applicable to 25G interfaces on FXOS platforms | |||
speedType | False | string | An enum value that specifies the Interface Speed Type, where AUTO is the default .Values can be one of the following. AUTO - Enable auto-negotiation for this interface. TEN - Force 10 Mbps. HUNDRED - Force 100 Mbps. THOUSAND - Force 1 Gbps. TEN_THOUSAND - Force 10 Gbps. NO_NEGOTIATE - Do not negotiate speed. IGNORE - Do not configure Interface speed. |
|||
duplexType | False | string | An enum value that specifies the Interface Duplex Type, where AUTO is the default. Values can be one of the following . AUTO - Automatically selects either FULL or HALF duplex. HALF - Selects HALF duplex which enables only one way communication. FULL - Selects FULL duplex setting which enables both way communication at the same time. IGNORE - No duplex configuration needed. |
|||
switchPortConfig | False | object | An object that specifies switch port configuration for this interface. It can either be access switchport config or trunk switchport config. | |||
powerOverEthernet | False | object | ||||
autoNeg | False | boolean | A boolean value to configure auto-negotiation on a physical interface. Auto-negotiation values depend on your platform. Values on supported platforms are true/false, but unsupported platforms only use null. Null is equivalent to false. This config is used to enable/disable InBandAutoneg/CL37 for 1G/100fx modules and to enable/disable link-training and fec negotiation for 25G and above speed copper modules. |
|||
breakOutCapable | False | boolean | ||||
present | False | boolean | A boolean that indicates whether the interface is physically present. | |||
splitInterface | False | boolean | ||||
tenGigabitInterface | False | boolean | An optional Boolean value, TRUE or FALSE (the default). The TRUE value indicates that the interface is a Ten Gigabit Interface. The value FALSE indicates that the interface is not a Ten Gigabit Interface. | |||
gigabitInterface | False | boolean | An optional Boolean value, TRUE or FALSE (the default). The TRUE value indicates that the interface is a Gigabit Interface. The value FALSE indicates that the interface is not a Gigabit Interface. | |||
id | False | string | A unique string identifier assigned by the system when the object is created. No assumption can be made on the format or content of this identifier. The identifier must be provided whenever attempting to modify/delete (or reference) an existing object. Field level constraints: must match pattern ^((?!;).)*$. (Note: Additional constraints might exist) |
|||
type | True | string | A UTF8 string, all letters lower-case, that represents the class-type. This corresponds to the class name. |
Query Parameters
Parameter | Required | Type | Description | |||
---|---|---|---|---|---|---|
filter | False | string | The criteria used to filter the models you are requesting. It should have the following format: {key}{operator}{value}[;{key}{operator}{value}]. Supported operators are: "!"(not equals), ":"(equals), "~"(similar). Supported keys are: "name", "present", "fts". The "fts" filter cannot be used with other filters. Default filtering for Upsert operation is done by name. |
Example
- name: Execute 'upsertPhysicalInterface' operation
ftd_configuration:
operation: "upsertPhysicalInterface"
data:
version: "{{ version }}"
name: "{{ name }}"
description: "{{ description }}"
hardwareName: "{{ hardware_name }}"
monitorInterface: "{{ monitor_interface }}"
ipv4: "{{ ipv4 }}"
ipv6: "{{ ipv6 }}"
managementOnly: "{{ management_only }}"
managementInterface: "{{ management_interface }}"
mode: "{{ mode }}"
linkState: "{{ link_state }}"
mtu: "{{ mtu }}"
enabled: "{{ enabled }}"
macAddress: "{{ mac_address }}"
standbyMacAddress: "{{ standby_mac_address }}"
pppoe: "{{ pppoe }}"
ctsEnabled: "{{ cts_enabled }}"
fecMode: "{{ fec_mode }}"
speedType: "{{ speed_type }}"
duplexType: "{{ duplex_type }}"
switchPortConfig: "{{ switch_port_config }}"
powerOverEthernet: "{{ power_over_ethernet }}"
autoNeg: "{{ auto_neg }}"
breakOutCapable: "{{ break_out_capable }}"
present: "{{ present }}"
splitInterface: "{{ split_interface }}"
tenGigabitInterface: "{{ ten_gigabit_interface }}"
gigabitInterface: "{{ gigabit_interface }}"
id: "{{ id }}"
type: "{{ type }}"
query_params:
filter: "{{ filter }}"