mac-security

12 min

asternos yang model for macsecurity yang tree diagram yang tree diagram module asternos mac security augment /if\ interfaces/if\ interface + rw mac security + rw port security \| + rw enabled? boolean \| + rw sticky enabled? boolean \| + rw violation action? enumeration \| + rw maximum? uint16 \| + rw secure addresses \| + rw secure address \[vlan id mac address] \| + rw mac address yang\ mac address \| + rw vlan id uint16 + rw mac limit \| + rw maximum? uint32 + rw mac learning priority \| + rw priority? priority + rw mac learning group? uint8 rpcs + x show mac limit \| + w input \| | + w (filter) \| | + (port name) \| | | + w port name? cmn\ ethernet port name \| | + (portchannel name) \| | | + w portchannel name? cmn\ port channel name \| | + (vlan id) \| | | + w vlan id? cmn\ vlan id \| | + (all) \| | + w all? empty \| + ro output \| + ro data? \<anydata> + x show mac learning priority \| + w input \| | + w interface? union \| + ro output \| + ro data? \<anydata> + x show mac learning group \| + w input \| | + w interface? union \| + ro output \| + ro data? \<anydata> + x show port security \| + w input \| | + w interface? union \| + ro output \| + ro data? \<anydata> + x show port security address \| + w input \| | + w interface? union \| + ro output \| + ro data? \<anydata> + x clear port security address + w input \| + w interface? union \| + w fdb type? enumeration + ro output + ro data? \<anydata> resources resources resource list resource list path access /?/interfaces/interface/mac security read write /?/interfaces/interface/mac security/port security read write /?/interfaces/interface/mac security/port security/enabled read write /?/interfaces/interface/mac security/port security/sticky enabled read write /?/interfaces/interface/mac security/port security/violation action read write /?/interfaces/interface/mac security/port security/maximum read write /?/interfaces/interface/mac security/port security/secure addresses read write /?/interfaces/interface/mac security/port security/secure addresses/secure address read write /?/interfaces/interface/mac security/port security/secure addresses/secure address/mac address read write /?/interfaces/interface/mac security/port security/secure addresses/secure address/vlan id read write /?/interfaces/interface/mac security/mac limit read write /?/interfaces/interface/mac security/mac limit/maximum read write /?/interfaces/interface/mac security/mac learning priority read write /?/interfaces/interface/mac security/mac learning priority/priority read write /?/interfaces/interface/mac security/mac learning group read write detailed nodes detailed nodes /?/interfaces/interface/mac security /?/interfaces/interface/mac security path /?/interfaces/interface/mac security node type container access read write /?/interfaces/interface/mac security/port security /?/interfaces/interface/mac security/port security path /?/interfaces/interface/mac security/port security node type container description port security configurations for port access read write /?/interfaces/interface/mac security/port security/enabled /?/interfaces/interface/mac security/port security/enabled path /?/interfaces/interface/mac security/port security/enabled node type leaf description enable port security on this interface access read write data type \<yang type boolean> constraints valid in \[true, false] /?/interfaces/interface/mac security/port security/sticky enabled /?/interfaces/interface/mac security/port security/sticky enabled path /?/interfaces/interface/mac security/port security/sticky enabled node type leaf description enable sticky mac on this interface access read write data type \<yang type boolean> constraints valid in \[true, false] /?/interfaces/interface/mac security/port security/violation action /?/interfaces/interface/mac security/port security/violation action path /?/interfaces/interface/mac security/port security/violation action node type leaf description action to take when security violation occurs access read write data type \<yang type enumeration> constraints enumeration with options protect restrict shutdown /?/interfaces/interface/mac security/port security/maximum /?/interfaces/interface/mac security/port security/maximum path /?/interfaces/interface/mac security/port security/maximum node type leaf description maximum number of secure mac addresses allowed on this port access read write data type \<yang type uint16> /?/interfaces/interface/mac security/port security/secure addresses /?/interfaces/interface/mac security/port security/secure addresses path /?/interfaces/interface/mac security/port security/secure addresses node type container access read write /?/interfaces/interface/mac security/port security/secure addresses/secure address /?/interfaces/interface/mac security/port security/secure addresses/secure address path /?/interfaces/interface/mac security/port security/secure addresses/secure address node type list description statically configured secure mac addresses access read write /?/interfaces/interface/mac security/port security/secure addresses/secure address/mac address /?/interfaces/interface/mac security/port security/secure addresses/secure address/mac address path /?/interfaces/interface/mac security/port security/secure addresses/secure address/mac address node type leaf description static secure mac address access read write data type \<yang type mac address> constraints the mac address type represents an ieee 802 mac address the canonical representation uses lowercase characters in the value set and its semantics, this type is equivalent to the macaddress textual convention of the smiv2 /?/interfaces/interface/mac security/port security/secure addresses/secure address/vlan id /?/interfaces/interface/mac security/port security/secure addresses/secure address/vlan id path /?/interfaces/interface/mac security/port security/secure addresses/secure address/vlan id node type leaf access read write data type \<yang type uint16> constraints valid range 1 to 4094 /?/interfaces/interface/mac security/mac limit /?/interfaces/interface/mac security/mac limit path /?/interfaces/interface/mac security/mac limit node type container access read write /?/interfaces/interface/mac security/mac limit/maximum /?/interfaces/interface/mac security/mac limit/maximum path /?/interfaces/interface/mac security/mac limit/maximum node type leaf description set lag dynamic mac quantity limit access read write data type \<yang type uint32> constraints valid range 0 to 32000 /?/interfaces/interface/mac security/mac learning priority /?/interfaces/interface/mac security/mac learning priority path /?/interfaces/interface/mac security/mac learning priority node type container access read write /?/interfaces/interface/mac security/mac learning priority/priority /?/interfaces/interface/mac security/mac learning priority/priority path /?/interfaces/interface/mac security/mac learning priority/priority node type leaf description set interface mac learning priority access read write data type \<yang type priority> constraints enumeration with options low high /?/interfaces/interface/mac security/mac learning group /?/interfaces/interface/mac security/mac learning group path /?/interfaces/interface/mac security/mac learning group node type leaf description address movement between same priority interfaces is allowed only if both interfaces belong to the same learning group access read write data type \<yang type uint8> constraints valid range 0 to 15