addSecurityZone - Firepower Threat Defense API v6.2 (FTD v7.2)

Description

The addSecurityZone operation handles configuration related to SecurityZone model.
This API call is not allowed on the standby unit in an HA pair.

HTTP request

POST /api/fdm/v6/object/securityzones

Data Parameters

Parameter	Required	Type	Description
name	True	string	A string containing the name of the object, up to 48 characters in length
description	False	string	A string containing a description of the object, up to 200 characters in length Field level constraints: length must be between 0 and 200 (inclusive). (Note: Additional constraints might exist)
interfaces	False	[object]	A list of interfaces used inside this security zone Allowed types are: [EtherChannelInterface, PhysicalInterface, SubInterface, VirtualTunnelInterface, VlanInterface]
mode	True	string	An enum value that specifies the security zone mode which should correspond to mode of selected Physical Interface ROUTED - The zone can contain ROUTED mode interfaces only. PASSIVE - The zone can contain PASSIVE mode interfaces only. Field level constraints: cannot be null. (Note: Additional constraints might exist)
type	True	string	A UTF8 string, all letters lower-case, that represents the class-type. This corresponds to the class name.

Example

curl -X POST \
    --header "Accept: application/json" \
    --header "Authorization: Bearer ${ACCESS_TOKEN}" \
    --header "Content-Type: application/json" \
    -d '{
        "description": "string",
        "id": "string",
        "interfaces": [],
        "mode": "PASSIVE",
        "name": "string",
        "type": "securityzone",
        "version": "string"
    }' \
    "https://${HOST}:${PORT}/api/fdm/v6/object/securityzones"

from bravado.requests_client import RequestsClient
from bravado.client import SwaggerClient


def get_client(host, token):
    http_client = RequestsClient()
    http_client.ssl_verify = False
    http_client.set_api_key(
        host,
        "Bearer {}".format(token),
        param_name="Authorization",
        param_in="header"
    )
    return SwaggerClient.from_url(
        "https://{}/apispec/ngfw.json".format(host),
        http_client=http_client,
        config={
            "validate_responses": False,
            "validate_swagger_spec": False
        }
    )


def add_security_zone(client, body):
    return client.SecurityZone.addSecurityZone(
        body=body
    ).response().result


if __name__ == "__main__":
    host = "ftd.example.com"
    token = "access_token"
    client = get_client(host, token)

    body = {'description': 'string',
 'interfaces': [],
 'mode': 'PASSIVE',
 'name': 'string',
 'type': 'securityzone'}

    add_security_zone(client, body)