mac-security

47 min

module description asternos yang model for macsecurity yang tree diagram module asternos mac security augment /if\ interfaces/if\ interface + rw mac security + rw port security \| + rw enabled? boolean \| + rw sticky enabled? boolean \| + rw violation action? enumeration \| + rw maximum? uint16 \| + rw secure addresses \| + rw secure address \[vlan id mac address] \| + rw mac address yang\ mac address \| + rw vlan id uint16 + rw mac limit \| + rw maximum? uint32 + rw mac learning priority \| + rw priority? priority + rw mac learning group? uint8 rpcs + x show mac limit \| + w input \| | + w (filter) \| | + (port name) \| | | + w port name? cmn\ ethernet port name \| | + (portchannel name) \| | | + w portchannel name? cmn\ port channel name \| | + (vlan id) \| | | + w vlan id? cmn\ vlan id \| | + (all) \| | + w all? empty \| + ro output \| + ro data? \<anydata> + x show mac learning priority \| + w input \| | + w interface? union \| + ro output \| + ro data? \<anydata> + x show mac learning group \| + w input \| | + w interface? union \| + ro output \| + ro data? \<anydata> + x show port security \| + w input \| | + w interface? union \| + ro output \| + ro data? \<anydata> + x show port security address \| + w input \| | + w interface? union \| + ro output \| + ro data? \<anydata> + x clear port security address + w input \| + w interface? union \| + w fdb type? enumeration + ro output + ro data? \<anydata> resources resource list path access /?/interfaces/interface/mac security read write /?/interfaces/interface/mac security/port security read write /?/interfaces/interface/mac security/port security/enabled read write /?/interfaces/interface/mac security/port security/sticky enabled read write /?/interfaces/interface/mac security/port security/violation action read write /?/interfaces/interface/mac security/port security/maximum read write /?/interfaces/interface/mac security/port security/secure addresses read write /?/interfaces/interface/mac security/port security/secure addresses/secure address read write /?/interfaces/interface/mac security/port security/secure addresses/secure address/mac address read write /?/interfaces/interface/mac security/port security/secure addresses/secure address/vlan id read write /?/interfaces/interface/mac security/mac limit read write /?/interfaces/interface/mac security/mac limit/maximum read write /?/interfaces/interface/mac security/mac learning priority read write /?/interfaces/interface/mac security/mac learning priority/priority read write /?/interfaces/interface/mac security/mac learning group read write detailed nodes /?/interfaces/interface/mac security path /?/interfaces/interface/mac security node type container description no description available access read write /?/interfaces/interface/mac security/port security path /?/interfaces/interface/mac security/port security node type container description port security configurations for port access read write /?/interfaces/interface/mac security/port security/enabled path /?/interfaces/interface/mac security/port security/enabled node type leaf description enable port security on this interface access read write data type constraints valid in \[true, false] /?/interfaces/interface/mac security/port security/sticky enabled path /?/interfaces/interface/mac security/port security/sticky enabled node type leaf description enable sticky mac on this interface access read write data type constraints valid in \[true, false] /?/interfaces/interface/mac security/port security/violation action path /?/interfaces/interface/mac security/port security/violation action node type leaf description action to take when security violation occurs access read write data type constraints enumeration with options protect restrict shutdown /?/interfaces/interface/mac security/port security/maximum path /?/interfaces/interface/mac security/port security/maximum node type leaf description maximum number of secure mac addresses allowed on this port access read write data type constraints valid range /?/interfaces/interface/mac security/port security/secure addresses path /?/interfaces/interface/mac security/port security/secure addresses node type container description no description available access read write /?/interfaces/interface/mac security/port security/secure addresses/secure address path /?/interfaces/interface/mac security/port security/secure addresses/secure address node type list description statically configured secure mac addresses access read write /?/interfaces/interface/mac security/port security/secure addresses/secure address/mac address path /?/interfaces/interface/mac security/port security/secure addresses/secure address/mac address node type leaf description static secure mac address access read write data type constraints the mac address type represents an ieee 802 mac address the canonical representation uses lowercase characters in the value set and its semantics, this type is equivalent to the macaddress textual convention of the smiv2 /?/interfaces/interface/mac security/port security/secure addresses/secure address/vlan id path /?/interfaces/interface/mac security/port security/secure addresses/secure address/vlan id node type leaf description no description available access read write data type constraints valid range 1 to 4094 /?/interfaces/interface/mac security/mac limit path /?/interfaces/interface/mac security/mac limit node type container description no description available access read write /?/interfaces/interface/mac security/mac limit/maximum path /?/interfaces/interface/mac security/mac limit/maximum node type leaf description set lag dynamic mac quantity limit access read write data type constraints valid range 0 to 32000 /?/interfaces/interface/mac security/mac learning priority path /?/interfaces/interface/mac security/mac learning priority node type container description no description available access read write /?/interfaces/interface/mac security/mac learning priority/priority path /?/interfaces/interface/mac security/mac learning priority/priority node type leaf description set interface mac learning priority access read write data type constraints enumeration with options low high /?/interfaces/interface/mac security/mac learning group path /?/interfaces/interface/mac security/mac learning group node type leaf description address movement between same priority interfaces is allowed only if both interfaces belong to the same learning group access read write data type constraints valid range 0 to 15 rpcs show mac limit path access /show mac limit/input read write /show mac limit/input/filter read write /show mac limit/input/filter/port name read write /show mac limit/input/filter/port name/port name read write /show mac limit/input/filter/portchannel name read write /show mac limit/input/filter/portchannel name/portchannel name read write /show mac limit/input/filter/vlan id read write /show mac limit/input/filter/vlan id/vlan id read write /show mac limit/input/filter/all read write /show mac limit/input/filter/all/all read write /show mac limit/output read write /show mac limit/output/data read write /show mac limit/input path /show mac limit/input node type container description no description available access read write /show mac limit/input/filter path /show mac limit/input/filter node type choice description specify the port or vlan to show mac limit access read write mandatory yes /show mac limit/input/filter/port name path /show mac limit/input/filter/port name node type choice case description no description available access read write /show mac limit/input/filter/port name/port name path /show mac limit/input/filter/port name/port name node type leaf description name of the ethernet interface access read write data type /show mac limit/input/filter/portchannel name path /show mac limit/input/filter/portchannel name node type choice case description no description available access read write /show mac limit/input/filter/portchannel name/portchannel name path /show mac limit/input/filter/portchannel name/portchannel name node type leaf description name of the portchannel interface access read write data type /show mac limit/input/filter/vlan id path /show mac limit/input/filter/vlan id node type choice case description no description available access read write /show mac limit/input/filter/vlan id/vlan id path /show mac limit/input/filter/vlan id/vlan id node type leaf description vlan id access read write data type constraints valid range 1 to 4094 /show mac limit/input/filter/all path /show mac limit/input/filter/all node type choice case description no description available access read write /show mac limit/input/filter/all/all path /show mac limit/input/filter/all/all node type leaf description show all mac limit access read write data type constraints empty type /show mac limit/output path /show mac limit/output node type container description no description available access read write /show mac limit/output/data path /show mac limit/output/data node type anydata description a table that shows mac address learning limit information access read write show mac learning priority path access /show mac learning priority/input read write /show mac learning priority/input/interface read write /show mac learning priority/output read write /show mac learning priority/output/data read write /show mac learning priority/input path /show mac learning priority/input node type container access read write /show mac learning priority/input/interface path /show mac learning priority/input/interface node type leaf description name of the ethernet or portchannel (empty for all interfaces) access read write data type /show mac learning priority/output path /show mac learning priority/output node type container description no description available access read write /show mac learning priority/output/data path /show mac learning priority/output/data node type anydata description show port mac learning priority configurations access read write show mac learning group path access /show mac learning group/input read write /show mac learning group/input/interface read write /show mac learning group/output read write /show mac learning group/output/data read write /show mac learning group/input path /show mac learning group/input node type container description no description available access read write /show mac learning group/input/interface path /show mac learning group/input/interface node type leaf description name of the ethernet or portchannel (empty for all interfaces) access read write data type /show mac learning group/output path /show mac learning group/output node type container description no description available access read write /show mac learning group/output/data path /show mac learning group/output/data node type anydata description show port mac learning group id configurations access read write show port security path access /show port security/input read write /show port security/input/interface read write /show port security/output read write /show port security/output/data read write /show port security/input path /show port security/input node type container description no description available access read write /show port security/input/interface path /show port security/input/interface node type leaf description name of the ethernet or portchannel (empty for all interfaces) access read write data type /show port security/output path /show port security/output node type container description no description available access read write /show port security/output/data path /show port security/output/data node type anydata description show port security configurations access read write show port security address path access /show port security address/input read write /show port security address/input/interface read write /show port security address/output read write /show port security address/output/data read write /show port security address/input path /show port security address/input node type container description no description available access read write /show port security address/input/interface path /show port security address/input/interface node type leaf description name of the ethernet or portchannel (empty for all interfaces) access read write data type /show port security address/output path /show port security address/output node type container description no description available access read write /show port security address/output/data path /show port security address/output/data node type anydata description show secure mac addresses access read write clear port security address path access /clear port security address/input read write /clear port security address/input/interface read write /clear port security address/input/fdb type read write /clear port security address/output read write /clear port security address/output/data read write /clear port security address/input path /clear port security address/input node type container description no description available access read write /clear port security address/input/interface path /clear port security address/input/interface node type leaf description name of the ethernet or portchannel (empty for all interfaces) access read write data type /clear port security address/input/fdb type path /clear port security address/input/fdb type node type leaf description the type of fdb to clear (empty for all types) access read write data type constraints enumeration with options static dynamic sticky all /clear port security address/output path /clear port security address/output node type container description no description available access read write /clear port security address/output/data path /clear port security address/output/data node type anydata description the string indicates success or failure of this operation access read write