addExtendedAccessList - Firepower Threat Defense API v6.2 (FTD v7.2)

Description

The addExtendedAccessList operation handles configuration related to ExtendedAccessList model.
This API call is not allowed on the standby unit in an HA pair.

HTTP request

POST /api/fdm/v6/object/extendedaccesslists

Data Parameters

Parameter	Required	Type	Description
name	True	string	A string containing the name of the extended access list.
description	False	string	Field level constraints: length must be between 0 and 200 (inclusive). (Note: Additional constraints might exist)
entries	True	[object]	An object holding list of extended access entries. A minimum of 1 entry is required for each extended access list object. Field level constraints: cannot be null. (Note: Additional constraints might exist)
type	True	string	A UTF8 string, all letters lower-case, that represents the class-type. This corresponds to the class name.

Example

curl -X POST \
    --header "Accept: application/json" \
    --header "Authorization: Bearer ${ACCESS_TOKEN}" \
    --header "Content-Type: application/json" \
    -d '{
        "description": "string",
        "entries": [
            {
                "action": "PERMIT",
                "destinationNetworks": [],
                "destinationPorts": [],
                "logInterval": 0,
                "logLevel": "ALERT",
                "logging": "DEFAULT",
                "sourceNetworks": [],
                "sourcePorts": [],
                "type": "extendedaccessentry"
            }
        ],
        "id": "string",
        "name": "string",
        "type": "extendedaccesslist",
        "version": "string"
    }' \
    "https://${HOST}:${PORT}/api/fdm/v6/object/extendedaccesslists"

from bravado.requests_client import RequestsClient
from bravado.client import SwaggerClient


def get_client(host, token):
    http_client = RequestsClient()
    http_client.ssl_verify = False
    http_client.set_api_key(
        host,
        "Bearer {}".format(token),
        param_name="Authorization",
        param_in="header"
    )
    return SwaggerClient.from_url(
        "https://{}/apispec/ngfw.json".format(host),
        http_client=http_client,
        config={
            "validate_responses": False,
            "validate_swagger_spec": False
        }
    )


def add_extended_access_list(client, body):
    return client.ExtendedAccessList.addExtendedAccessList(
        body=body
    ).response().result


if __name__ == "__main__":
    host = "ftd.example.com"
    token = "access_token"
    client = get_client(host, token)

    body = {'description': 'string',
 'entries': [{'action': 'PERMIT',
              'destinationNetworks': [],
              'destinationPorts': [],
              'logInterval': 0,
              'logLevel': 'ALERT',
              'logging': 'DEFAULT',
              'sourceNetworks': [],
              'sourcePorts': [],
              'type': 'extendedaccessentry'}],
 'name': 'string',
 'type': 'extendedaccesslist'}

    add_extended_access_list(client, body)