{ "id":"/axapi/v3/vpn", "type":"object", "node-type":"scalar", "title":"vpn", "partition-visibility":"shared", "auto-created-object":1, "description":"VPN Commands", "properties":{ "asymmetric-flow-support":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Support asymmetric flows pass through IPsec tunnel", "optional":true }, "stateful-mode":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"VPN module will work in stateful mode and create sessions", "optional":true }, "fragment-after-encap":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not":"jumbo-fragment", "description":"Fragment after adding IPsec headers", "optional":true }, "nat-traversal-flow-affinity":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Choose IPsec UDP source port based on port of inner flow (only for A10 to A10)", "optional":true }, "tcp-mss-adjust-disable":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Disable TCP MSS adjustment in SYN packet", "optional":true }, "jumbo-fragment":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not":"fragment-after-encap", "description":"Support IKE jumbo fragment packet", "optional":true }, "ike-sa-timeout":{ "type":"number", "format":"number", "minimum":300, "maximum":86400, "default":600, "partition-visibility":"shared", "description":"Timeout IKE-SA in connecting state in seconds (default 600s)", "optional":true }, "ike-acc-enable":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Enable IKE Acceleration by Cavium Nitrox card", "optional":true }, "ike-logging-enable":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Enable IKE negotiation logging", "optional":true }, "ipsec-error-dump":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Support record the error ipsec cavium information in dump file", "optional":true }, "ipsec-mgmt-default-policy-drop":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Drop MGMT traffic that is not match ipsec tunnel, share partition only", "optional":true }, "extended-matching":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Enable session extended matching for packet comes from IPsec tunnel", "optional":true }, "enable-vpn-metrics":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Enable exporting vpn statstics to Harmony", "optional":true }, "ipsec-cipher-check":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Enable cipher check, IPsec SA cipher must weaker than IKE gateway cipher, and DES/3DES/MD5/null will not work.", "optional":true }, "signature-authentication":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Enable use of different hash algorithms for signature authentication in IKEv2", "optional":true }, "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object", "optional":true }, "sampling-enable":{ "type":"array", "minItems":1, "items":{ "type":"object" }, "uniqueItems":true, "array":[ { "properties":{ "counters1":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'all': all; 'passthrough': passthrough; 'ha-standby-drop': ha-standby-drop; ", "enum":[ "all", "passthrough", "ha-standby-drop" ] } } } ] }, "error":{ "type":"object", "$ref":"/axapi/v3/vpn/error", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "errordump":{ "type":"object", "$ref":"/axapi/v3/vpn/errordump", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "default":{ "type":"object", "$ref":"/axapi/v3/vpn/default", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "log":{ "type":"object", "$ref":"/axapi/v3/vpn/log", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "ike-stats-global":{ "type":"object", "$ref":"/axapi/v3/vpn/ike-stats-global", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" }, "sampling-enable":{ "type":"array", "minItems":1, "items":{ "type":"object" }, "uniqueItems":true, "array":[ { "properties":{ "counters1":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'all': all; 'v2-init-rekey': Initiate Rekey; 'v2-rsp-rekey': Respond Rekey; 'v2-child-sa-rekey': Child SA Rekey; 'v2-in-invalid': Incoming Invalid; 'v2-in-invalid-spi': Incoming Invalid SPI; 'v2-in-init-req': Incoming Init Request; 'v2-in-init-rsp': Incoming Init Response; 'v2-out-init-req': Outgoing Init Request; 'v2-out-init-rsp': Outgoing Init Response; 'v2-in-auth-req': Incoming Auth Request; 'v2-in-auth-rsp': Incoming Auth Response; 'v2-out-auth-req': Outgoing Auth Request; 'v2-out-auth-rsp': Outgoing Auth Response; 'v2-in-create-child-req': Incoming Create Child Request; 'v2-in-create-child-rsp': Incoming Create Child Response; 'v2-out-create-child-req': Outgoing Create Child Request; 'v2-out-create-child-rsp': Outgoing Create Child Response; 'v2-in-info-req': Incoming Info Request; 'v2-in-info-rsp': Incoming Info Response; 'v2-out-info-req': Outgoing Info Request; 'v2-out-info-rsp': Outgoing Info Response; 'v1-in-id-prot-req': Incoming ID Protection Request; 'v1-in-id-prot-rsp': Incoming ID Protection Response; 'v1-out-id-prot-req': Outgoing ID Protection Request; 'v1-out-id-prot-rsp': Outgoing ID Protection Response; 'v1-in-auth-only-req': Incoming Auth Only Request; 'v1-in-auth-only-rsp': Incoming Auth Only Response; 'v1-out-auth-only-req': Outgoing Auth Only Request; 'v1-out-auth-only-rsp': Outgoing Auth Only Response; 'v1-in-aggressive-req': Incoming Aggressive Request; 'v1-in-aggressive-rsp': Incoming Aggressive Response; 'v1-out-aggressive-req': Outgoing Aggressive Request; 'v1-out-aggressive-rsp': Outgoing Aggressive Response; 'v1-in-info-v1-req': Incoming Info Request; 'v1-in-info-v1-rsp': Incoming Info Response; 'v1-out-info-v1-req': Outgoing Info Request; 'v1-out-info-v1-rsp': Outgoing Info Response; 'v1-in-transaction-req': Incoming Transaction Request; 'v1-in-transaction-rsp': Incoming Transaction Response; 'v1-out-transaction-req': Outgoing Transaction Request; 'v1-out-transaction-rsp': Outgoing Transaction Response; 'v1-in-quick-mode-req': Incoming Quick Mode Request; 'v1-in-quick-mode-rsp': Incoming Quick Mode Response; 'v1-out-quick-mode-req': Outgoing Quick Mode Request; 'v1-out-quick-mode-rsp': Outgoing Quick Mode Response; 'v1-in-new-group-mode-req': Incoming New Group Mode Request; 'v1-in-new-group-mode-rsp': Incoming New Group Mode Response; 'v1-out-new-group-mode-req': Outgoing New Group Mode Request; 'v1-out-new-group-mode-rsp': Outgoing New Group Mode Response; ", "enum":[ "all", "v2-init-rekey", "v2-rsp-rekey", "v2-child-sa-rekey", "v2-in-invalid", "v2-in-invalid-spi", "v2-in-init-req", "v2-in-init-rsp", "v2-out-init-req", "v2-out-init-rsp", "v2-in-auth-req", "v2-in-auth-rsp", "v2-out-auth-req", "v2-out-auth-rsp", "v2-in-create-child-req", "v2-in-create-child-rsp", "v2-out-create-child-req", "v2-out-create-child-rsp", "v2-in-info-req", "v2-in-info-rsp", "v2-out-info-req", "v2-out-info-rsp", "v1-in-id-prot-req", "v1-in-id-prot-rsp", "v1-out-id-prot-req", "v1-out-id-prot-rsp", "v1-in-auth-only-req", "v1-in-auth-only-rsp", "v1-out-auth-only-req", "v1-out-auth-only-rsp", "v1-in-aggressive-req", "v1-in-aggressive-rsp", "v1-out-aggressive-req", "v1-out-aggressive-rsp", "v1-in-info-v1-req", "v1-in-info-v1-rsp", "v1-out-info-v1-req", "v1-out-info-v1-rsp", "v1-in-transaction-req", "v1-in-transaction-rsp", "v1-out-transaction-req", "v1-out-transaction-rsp", "v1-in-quick-mode-req", "v1-in-quick-mode-rsp", "v1-out-quick-mode-req", "v1-out-quick-mode-rsp", "v1-in-new-group-mode-req", "v1-in-new-group-mode-rsp", "v1-out-new-group-mode-req", "v1-out-new-group-mode-rsp" ] } } } ] } } }, "ike-gateway-list":{ "type":"array", "minItems":1, "items":{ "type":"ike-gateway" }, "uniqueItems":true, "$ref":"/axapi/v3/vpn/ike-gateway/{name}", "array":[ { "properties":{ "name":{ "type":"string", "format":"string", "minLength":1, "maxLength":31, "partition-visibility":"shared", "description":"IKE-gateway name", "optional":false }, "ike-version":{ "type":"string", "format":"enum", "default":"v2", "partition-visibility":"shared", "description":"'v1': IKEv1 key exchange; 'v2': IKEv2 key exchange; ", "enum":[ "v1", "v2" ], "optional":true }, "mode":{ "type":"string", "format":"enum", "default":"main", "partition-visibility":"shared", "description":"'main': Negotiate Main mode (Default); 'aggressive': Negotiate Aggressive mode; ", "enum":[ "main", "aggressive" ], "optional":true }, "auth-method":{ "type":"string", "format":"enum", "default":"preshare-key", "partition-visibility":"shared", "description":"'preshare-key': Authenticate the remote gateway using a pre-shared key (Default); 'rsa-signature': Authenticate the remote gateway using an RSA certificate; 'ecdsa-signature': Authenticate the remote gateway using an ECDSA certificate; 'eap-radius': Authenticate the remote gateway using an EAP Radius server; 'eap-tls': Authenticate the remote gateway using EAP TLS; ", "enum":[ "preshare-key", "rsa-signature", "ecdsa-signature", "eap-radius", "eap-tls" ], "optional":true }, "preshare-key-value":{ "type":"string", "format":"password", "minLength":1, "maxLength":127, "partition-visibility":"shared", "description":"pre-shared key", "optional":true }, "preshare-key-encrypted":{ "type":"encrypted", "format":"encrypted", "partition-visibility":"shared", "description":"Do NOT use this option manually. (This is an A10 reserved keyword.) (The ENCRYPTED pre-shared key string)", "optional":true }, "hash":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'sha256': Secure Hash Algorithm 256; 'sha384': Secure Hash Algorithm 384; 'sha512': Secure Hash Algorithm 512; ", "enum":[ "sha256", "sha384", "sha512" ], "optional":true }, "interface-management":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"only handle traffic on management interface, share partition only", "optional":true }, "key":{ "type":"string", "format":"string", "minLength":1, "maxLength":255, "partition-visibility":"shared", "description":"Private Key", "optional":true }, "key-passphrase":{ "type":"string", "format":"password", "minLength":1, "maxLength":127, "partition-visibility":"shared", "description":"Private Key Pass Phrase", "optional":true }, "key-passphrase-encrypted":{ "type":"encrypted", "format":"encrypted", "partition-visibility":"shared", "description":"Do NOT use this option manually. (This is an A10 reserved keyword.) (The ENCRYPTED key string)", "optional":true }, "vrid":{ "type":"object", "properties":{ "default":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not":"vrid-num", "description":"Default VRRP-A vrid" }, "vrid-num":{ "type":"number", "format":"number", "minimum":0, "maximum":31, "partition-visibility":"shared", "not":"default", "description":"Specify ha VRRP-A vrid" } } }, "local-cert":{ "type":"object", "properties":{ "local-cert-name":{ "type":"string", "format":"string", "minLength":1, "maxLength":255, "partition-visibility":"shared", "description":"Certificate File Name" } } }, "remote-ca-cert":{ "type":"object", "properties":{ "remote-cert-name":{ "type":"string", "format":"string-rlx", "minLength":1, "maxLength":127, "partition-visibility":"shared", "description":"Remote CA certificate DN (C=, ST=, L=, O=, CN=) without emailAddress" } } }, "local-id":{ "type":"string", "format":"string-rlx", "minLength":1, "maxLength":255, "partition-visibility":"shared", "description":"Local Gateway Identity", "optional":true }, "remote-id":{ "type":"string", "format":"string-rlx", "minLength":1, "maxLength":255, "partition-visibility":"shared", "description":"Remote Gateway Identity", "optional":true }, "enc-cfg":{ "type":"array", "minItems":1, "items":{ "type":"object" }, "uniqueItems":true, "array":[ { "properties":{ "encryption":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'des': Data Encryption Standard algorithm; '3des': Triple Data Encryption Standard algorithm; 'aes-128': Advanced Encryption Standard algorithm CBC Mode(key size: 128 bits); 'aes-192': Advanced Encryption Standard algorithm CBC Mode(key size: 192 bits); 'aes-256': Advanced Encryption Standard algorithm CBC Mode(key size: 256 bits); 'aes-gcm-128': Advanced Encryption Standard algorithm Galois/Counter Mode(key size: 128 bits, ICV size: 16 bytes), only for IKEv2; 'aes-gcm-192': Advanced Encryption Standard algorithm Galois/Counter Mode(key size: 192 bits, ICV size: 16 bytes), only for IKEv2; 'aes-gcm-256': Advanced Encryption Standard algorithm Galois/Counter Mode(key size: 256 bits, ICV size: 16 bytes), only for IKEv2; 'null': No encryption algorithm, only for IKEv2; ", "enum":[ "des", "3des", "aes-128", "aes-192", "aes-256", "aes-gcm-128", "aes-gcm-192", "aes-gcm-256", "null" ] }, "hash":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'md5': MD5 Dessage-Digest Algorithm; 'sha1': Secure Hash Algorithm 1; 'sha256': Secure Hash Algorithm 256; 'sha384': Secure Hash Algorithm 384; 'sha512': Secure Hash Algorithm 512; ", "enum":[ "md5", "sha1", "sha256", "sha384", "sha512" ] }, "prf":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'md5': MD5 Dessage-Digest Algorithm; 'sha1': Secure Hash Algorithm 1; 'sha256': Secure Hash Algorithm 256; 'sha384': Secure Hash Algorithm 384; 'sha512': Secure Hash Algorithm 512; ", "enum":[ "md5", "sha1", "sha256", "sha384", "sha512" ] }, "priority":{ "type":"number", "format":"number", "minimum":1, "maximum":10, "default":5, "partition-visibility":"shared", "description":"Prioritizes (1-10) security protocol, least value has highest priority" }, "gcm_priority":{ "type":"number", "format":"number", "minimum":1, "maximum":10, "default":5, "partition-visibility":"shared", "description":"Prioritizes (1-10) security protocol, least value has highest priority" } } } ] }, "dh-group":{ "type":"string", "format":"enum", "default":"1", "partition-visibility":"shared", "description":"'1': Diffie-Hellman group 1 - 768-bit(Default); '2': Diffie-Hellman group 2 - 1024-bit; '5': Diffie-Hellman group 5 - 1536-bit; '14': Diffie-Hellman group 14 - 2048-bit; '15': Diffie-Hellman group 15 - 3072-bit; '16': Diffie-Hellman group 16 - 4096-bit; '18': Diffie-Hellman group 18 - 8192-bit; '19': Diffie-Hellman group 19 - 256-bit Elliptic Curve; '20': Diffie-Hellman group 20 - 384-bit Elliptic Curve; ", "enum":[ "1", "2", "5", "14", "15", "16", "18", "19", "20" ], "optional":true }, "local-address":{ "type":"object", "properties":{ "local-ip":{ "type":"string", "format":"ipv4-address", "partition-visibility":"shared", "not":"local-ipv6", "description":"Ipv4 address" }, "local-ipv6":{ "type":"string", "format":"ipv6-address", "partition-visibility":"shared", "not":"local-ip", "description":"Ipv6 address" } } }, "remote-address":{ "type":"object", "properties":{ "remote-ip":{ "type":"string", "format":"ipv4-address", "partition-visibility":"shared", "not-list":[ "dns", "remote-ipv6" ], "description":"Ipv4 address" }, "dns":{ "type":"string", "format":"string", "minLength":1, "maxLength":128, "partition-visibility":"shared", "not-list":[ "remote-ip", "remote-ipv6" ], "description":"Remote IP based on Domain name" }, "remote-ipv6":{ "type":"string", "format":"ipv6-address", "partition-visibility":"shared", "not-list":[ "remote-ip", "dns" ], "description":"Ipv6 address" } } }, "lifetime":{ "type":"number", "format":"number", "minimum":300, "maximum":86400, "default":86400, "partition-visibility":"shared", "description":"IKE SA age in seconds", "optional":true }, "fragment-size":{ "type":"number", "format":"number", "minimum":576, "maximum":1280, "partition-visibility":"shared", "description":"Enable IKE message fragment and set fragment size", "optional":true }, "nat-traversal":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "optional":true }, "dpd":{ "type":"object", "properties":{ "interval":{ "type":"number", "format":"number", "minimum":1, "maximum":3600, "partition-visibility":"shared", "description":"Interval time in seconds" }, "retry":{ "type":"number", "format":"number", "minimum":1, "maximum":10, "partition-visibility":"shared", "description":"Retry times" } } }, "disable-rekey":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Disable initiating rekey", "optional":true }, "configuration-payload":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'dhcp': Enable DHCP configuration-payload; 'radius': Enable RADIUS configuration-payload; ", "enum":[ "dhcp", "radius" ], "optional":true }, "dhcp-server":{ "type":"object", "properties":{ "pri":{ "type":"object", "properties":{ "dhcp-pri-ipv4":{ "type":"string", "format":"ipv4-address", "partition-visibility":"shared", "description":"Primary DHCP Server IP Address" } } }, "sec":{ "type":"object", "properties":{ "dhcp-sec-ipv4":{ "type":"string", "format":"ipv4-address", "partition-visibility":"shared", "description":"Secondary DHCP Server IP Address" } } } } }, "radius-server":{ "type":"object", "properties":{ "radius-pri":{ "type":"string", "format":"string", "minLength":1, "maxLength":63, "partition-visibility":"shared", "$ref":"/axapi/v3/aam/authentication/server/radius/instance", "description":"Primary RADIUS Authentication Server" }, "radius-sec":{ "type":"string", "format":"string", "minLength":1, "maxLength":63, "partition-visibility":"shared", "$ref":"/axapi/v3/aam/authentication/server/radius/instance", "description":"Secondary RADIUS Authentication Server" } } }, "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object", "optional":true }, "user-tag":{ "type":"string", "format":"string-rlx", "minLength":1, "maxLength":127, "partition-visibility":"shared", "description":"Customized tag", "optional":true }, "sampling-enable":{ "type":"array", "minItems":1, "items":{ "type":"object" }, "uniqueItems":true, "array":[ { "properties":{ "counters1":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'all': all; 'v2-init-rekey': Initiate Rekey; 'v2-rsp-rekey': Respond Rekey; 'v2-child-sa-rekey': Child SA Rekey; 'v2-in-invalid': Incoming Invalid; 'v2-in-invalid-spi': Incoming Invalid SPI; 'v2-in-init-req': Incoming Init Request; 'v2-in-init-rsp': Incoming Init Response; 'v2-out-init-req': Outgoing Init Request; 'v2-out-init-rsp': Outgoing Init Response; 'v2-in-auth-req': Incoming Auth Request; 'v2-in-auth-rsp': Incoming Auth Response; 'v2-out-auth-req': Outgoing Auth Request; 'v2-out-auth-rsp': Outgoing Auth Response; 'v2-in-create-child-req': Incoming Create Child Request; 'v2-in-create-child-rsp': Incoming Create Child Response; 'v2-out-create-child-req': Outgoing Create Child Request; 'v2-out-create-child-rsp': Outgoing Create Child Response; 'v2-in-info-req': Incoming Info Request; 'v2-in-info-rsp': Incoming Info Response; 'v2-out-info-req': Outgoing Info Request; 'v2-out-info-rsp': Outgoing Info Response; 'v1-in-id-prot-req': Incoming ID Protection Request; 'v1-in-id-prot-rsp': Incoming ID Protection Response; 'v1-out-id-prot-req': Outgoing ID Protection Request; 'v1-out-id-prot-rsp': Outgoing ID Protection Response; 'v1-in-auth-only-req': Incoming Auth Only Request; 'v1-in-auth-only-rsp': Incoming Auth Only Response; 'v1-out-auth-only-req': Outgoing Auth Only Request; 'v1-out-auth-only-rsp': Outgoing Auth Only Response; 'v1-in-aggressive-req': Incoming Aggressive Request; 'v1-in-aggressive-rsp': Incoming Aggressive Response; 'v1-out-aggressive-req': Outgoing Aggressive Request; 'v1-out-aggressive-rsp': Outgoing Aggressive Response; 'v1-in-info-v1-req': Incoming Info Request; 'v1-in-info-v1-rsp': Incoming Info Response; 'v1-out-info-v1-req': Outgoing Info Request; 'v1-out-info-v1-rsp': Outgoing Info Response; 'v1-in-transaction-req': Incoming Transaction Request; 'v1-in-transaction-rsp': Incoming Transaction Response; 'v1-out-transaction-req': Outgoing Transaction Request; 'v1-out-transaction-rsp': Outgoing Transaction Response; 'v1-in-quick-mode-req': Incoming Quick Mode Request; 'v1-in-quick-mode-rsp': Incoming Quick Mode Response; 'v1-out-quick-mode-req': Outgoing Quick Mode Request; 'v1-out-quick-mode-rsp': Outgoing Quick Mode Response; 'v1-in-new-group-mode-req': Incoming New Group Mode Request; 'v1-in-new-group-mode-rsp': Incoming New Group Mode Response; 'v1-out-new-group-mode-req': Outgoing New Group Mode Request; 'v1-out-new-group-mode-rsp': Outgoing New Group Mode Response; 'v1-child-sa-invalid-spi': Invalid SPI for Child SAs; 'v2-child-sa-invalid-spi': Invalid SPI for Child SAs; 'ike-current-version': IKE version; ", "enum":[ "all", "v2-init-rekey", "v2-rsp-rekey", "v2-child-sa-rekey", "v2-in-invalid", "v2-in-invalid-spi", "v2-in-init-req", "v2-in-init-rsp", "v2-out-init-req", "v2-out-init-rsp", "v2-in-auth-req", "v2-in-auth-rsp", "v2-out-auth-req", "v2-out-auth-rsp", "v2-in-create-child-req", "v2-in-create-child-rsp", "v2-out-create-child-req", "v2-out-create-child-rsp", "v2-in-info-req", "v2-in-info-rsp", "v2-out-info-req", "v2-out-info-rsp", "v1-in-id-prot-req", "v1-in-id-prot-rsp", "v1-out-id-prot-req", "v1-out-id-prot-rsp", "v1-in-auth-only-req", "v1-in-auth-only-rsp", "v1-out-auth-only-req", "v1-out-auth-only-rsp", "v1-in-aggressive-req", "v1-in-aggressive-rsp", "v1-out-aggressive-req", "v1-out-aggressive-rsp", "v1-in-info-v1-req", "v1-in-info-v1-rsp", "v1-out-info-v1-req", "v1-out-info-v1-rsp", "v1-in-transaction-req", "v1-in-transaction-rsp", "v1-out-transaction-req", "v1-out-transaction-rsp", "v1-in-quick-mode-req", "v1-in-quick-mode-rsp", "v1-out-quick-mode-req", "v1-out-quick-mode-rsp", "v1-in-new-group-mode-req", "v1-in-new-group-mode-rsp", "v1-out-new-group-mode-req", "v1-out-new-group-mode-rsp", "v1-child-sa-invalid-spi", "v2-child-sa-invalid-spi", "ike-current-version" ] } } } ] } }, "required":[ "name" ] } ] }, "ipsec-list":{ "type":"array", "minItems":1, "items":{ "type":"ipsec" }, "uniqueItems":true, "$ref":"/axapi/v3/vpn/ipsec/{name}", "array":[ { "properties":{ "name":{ "type":"string", "format":"string", "minLength":1, "maxLength":31, "partition-visibility":"shared", "description":"IPsec name", "optional":false }, "mode":{ "type":"string", "format":"enum", "default":"tunnel", "partition-visibility":"shared", "description":"'tunnel': Encapsulating the packet in IPsec tunnel mode (Default); ", "enum":[ "tunnel" ], "optional":true }, "dscp":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'default': Default dscp (000000); 'af11': AF11 (001010); 'af12': AF12 (001100); 'af13': AF13 (001110); 'af21': AF21 (010010); 'af22': AF22 (010100); 'af23': AF23 (010110); 'af31': AF31 (011010); 'af32': AF32 (011100); 'af33': AF33 (011110); 'af41': AF41 (100010); 'af42': AF42 (100100); 'af43': AF43 (100110); 'cs1': CS1 (001000); 'cs2': CS2 (010000); 'cs3': CS3 (011000); 'cs4': CS4 (100000); 'cs5': CS5 (101000); 'cs6': CS6 (110000); 'cs7': CS7 (111000); 'ef': EF (101110); '0': 000000; '1': 000001; '2': 000010; '3': 000011; '4': 000100; '5': 000101; '6': 000110; '7': 000111; '8': 001000; '9': 001001; '10': 001010; '11': 001011; '12': 001100; '13': 001101; '14': 001110; '15': 001111; '16': 010000; '17': 010001; '18': 010010; '19': 010011; '20': 010100; '21': 010101; '22': 010110; '23': 010111; '24': 011000; '25': 011001; '26': 011010; '27': 011011; '28': 011100; '29': 011101; '30': 011110; '31': 011111; '32': 100000; '33': 100001; '34': 100010; '35': 100011; '36': 100100; '37': 100101; '38': 100110; '39': 100111; '40': 101000; '41': 101001; '42': 101010; '43': 101011; '44': 101100; '45': 101101; '46': 101110; '47': 101111; '48': 110000; '49': 110001; '50': 110010; '51': 110011; '52': 110100; '53': 110101; '54': 110110; '55': 110111; '56': 111000; '57': 111001; '58': 111010; '59': 111011; '60': 111100; '61': 111101; '62': 111110; '63': 111111; ", "enum":[ "default", "af11", "af12", "af13", "af21", "af22", "af23", "af31", "af32", "af33", "af41", "af42", "af43", "cs1", "cs2", "cs3", "cs4", "cs5", "cs6", "cs7", "ef", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9", "10", "11", "12", "13", "14", "15", "16", "17", "18", "19", "20", "21", "22", "23", "24", "25", "26", "27", "28", "29", "30", "31", "32", "33", "34", "35", "36", "37", "38", "39", "40", "41", "42", "43", "44", "45", "46", "47", "48", "49", "50", "51", "52", "53", "54", "55", "56", "57", "58", "59", "60", "61", "62", "63" ], "optional":true }, "proto":{ "type":"string", "format":"enum", "default":"esp", "partition-visibility":"shared", "description":"'esp': Encapsulating security protocol (Default); ", "enum":[ "esp" ], "optional":true }, "dh-group":{ "type":"string", "format":"enum", "default":"0", "partition-visibility":"shared", "description":"'0': Diffie-Hellman group 0 (Default); '1': Diffie-Hellman group 1 - 768-bits; '2': Diffie-Hellman group 2 - 1024-bits; '5': Diffie-Hellman group 5 - 1536-bits; '14': Diffie-Hellman group 14 - 2048-bits; '15': Diffie-Hellman group 15 - 3072-bits; '16': Diffie-Hellman group 16 - 4096-bits; '18': Diffie-Hellman group 18 - 8192-bits; '19': Diffie-Hellman group 19 - 256-bit Elliptic Curve; '20': Diffie-Hellman group 20 - 384-bit Elliptic Curve; ", "enum":[ "0", "1", "2", "5", "14", "15", "16", "18", "19", "20" ], "optional":true }, "enc-cfg":{ "type":"array", "minItems":1, "items":{ "type":"object" }, "uniqueItems":true, "array":[ { "properties":{ "encryption":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'des': Data Encryption Standard algorithm; '3des': Triple Data Encryption Standard algorithm; 'aes-128': Advanced Encryption Standard algorithm CBC Mode(key size: 128 bits); 'aes-192': Advanced Encryption Standard algorithm CBC Mode(key size: 192 bits); 'aes-256': Advanced Encryption Standard algorithm CBC Mode(key size: 256 bits); 'aes-gcm-128': Advanced Encryption Standard algorithm Galois/Counter Mode(key size: 128 bits, ICV size: 16 bytes); 'aes-gcm-192': Advanced Encryption Standard algorithm Galois/Counter Mode(key size: 192 bits, ICV size: 16 bytes); 'aes-gcm-256': Advanced Encryption Standard algorithm Galois/Counter Mode(key size: 256 bits, ICV size: 16 bytes); 'null': No encryption algorithm; ", "enum":[ "des", "3des", "aes-128", "aes-192", "aes-256", "aes-gcm-128", "aes-gcm-192", "aes-gcm-256", "null" ] }, "hash":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'md5': MD5 Dessage-Digest Algorithm; 'sha1': Secure Hash Algorithm 1; 'sha256': Secure Hash Algorithm 256; 'sha384': Secure Hash Algorithm 384; 'sha512': Secure Hash Algorithm 512; 'null': No hash algorithm; ", "enum":[ "md5", "sha1", "sha256", "sha384", "sha512", "null" ] }, "priority":{ "type":"number", "format":"number", "minimum":1, "maximum":10, "default":5, "partition-visibility":"shared", "description":"Prioritizes (1-10) security protocol, least value has highest priority" }, "gcm_priority":{ "type":"number", "format":"number", "minimum":1, "maximum":10, "default":5, "partition-visibility":"shared", "description":"Prioritizes (1-10) security protocol, least value has highest priority" } } } ] }, "lifetime":{ "type":"number", "format":"number", "minimum":300, "maximum":28800, "default":28800, "partition-visibility":"shared", "description":"IPsec SA age in seconds", "optional":true }, "lifebytes":{ "type":"number", "format":"number", "minimum":0, "maximum":8000000, "default":0, "partition-visibility":"shared", "description":"IPsec SA age in megabytes (0 indicates unlimited bytes)", "optional":true }, "anti-replay-window":{ "type":"string", "format":"enum", "default":"0", "partition-visibility":"shared", "description":"'0': Disable Anti-Replay Window Check; '32': Window size of 32; '64': Window size of 64; '128': Window size of 128; '256': Window size of 256; '512': Window size of 512; '1024': Window size of 1024; '2048': Window size of 2048; '3072': Window size of 3072; '4096': Window size of 4096; '8192': Window size of 8192; ", "enum":[ "0", "32", "64", "128", "256", "512", "1024", "2048", "3072", "4096", "8192" ], "optional":true }, "up":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Initiates SA negotiation to bring the IPsec connection up", "optional":true }, "sequence-number-disable":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Do not use incremental sequence number in the ESP header", "optional":true }, "traffic-selector":{ "type":"object", "properties":{ "ipv4":{ "type":"object", "properties":{ "local":{ "type":"string", "format":"ipv4-address", "partition-visibility":"shared", "not":"localv6", "description":"Local Traffic Selector" }, "local_netmask":{ "type":"string", "format":"ipv4-netmask", "partition-visibility":"shared", "description":"IPv4 Address Network Mask" }, "local_port":{ "type":"number", "format":"number", "minimum":0, "maximum":65535, "partition-visibility":"shared", "description":"Port Number" }, "remote-ipv4-assigned":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not":"remote-ip", "description":"Remote IP address assigned" }, "remote-ip":{ "type":"string", "format":"ipv4-address", "partition-visibility":"shared", "not":"remote-ipv4-assigned", "description":"IPv4 Address" }, "remote_netmask":{ "type":"string", "format":"ipv4-netmask", "partition-visibility":"shared", "description":"IPv4 Address Network Mask" }, "remote_port":{ "type":"number", "format":"number", "minimum":0, "maximum":65535, "partition-visibility":"shared", "description":"Port Number" }, "protocol":{ "type":"number", "format":"number", "minimum":0, "maximum":255, "partition-visibility":"shared", "description":"IP Protocol Number (0-255)" } } }, "ipv6":{ "type":"object", "properties":{ "localv6":{ "type":"string", "format":"ipv6-address-plen", "partition-visibility":"shared", "not":"local", "description":"Local Traffic Selector" }, "local_portv6":{ "type":"number", "format":"number", "minimum":0, "maximum":65535, "partition-visibility":"shared", "description":"Port Number" }, "remote-ipv6-assigned":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not":"remote-ipv6", "description":"Remote IPv6 address assigned" }, "remote-ipv6":{ "type":"string", "format":"ipv6-address-plen", "partition-visibility":"shared", "not":"remote-ipv6-assigned", "description":"IPv6 Address" }, "remote_portv6":{ "type":"number", "format":"number", "minimum":0, "maximum":65535, "partition-visibility":"shared", "description":"Port Number" }, "protocolv6":{ "type":"number", "format":"number", "minimum":0, "maximum":255, "partition-visibility":"shared", "description":"IP Protocol Number (0-255)" } } } } }, "enforce-traffic-selector":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Enforce Traffic Selector", "optional":true }, "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object", "optional":true }, "user-tag":{ "type":"string", "format":"string-rlx", "minLength":1, "maxLength":127, "partition-visibility":"shared", "description":"Customized tag", "optional":true }, "sampling-enable":{ "type":"array", "minItems":1, "items":{ "type":"object" }, "uniqueItems":true, "array":[ { "properties":{ "counters1":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'all': all; 'packets-encrypted': Encrypted Packets; 'packets-decrypted': Decrypted Packets; 'anti-replay-num': Anti-Replay Failure; 'rekey-num': Rekey Times; 'packets-err-inactive': Inactive Error; 'packets-err-encryption': Encryption Error; 'packets-err-pad-check': Pad Check Error; 'packets-err-pkt-sanity': Packets Sanity Error; 'packets-err-icv-check': ICV Check Error; 'packets-err-lifetime-lifebytes': Lifetime Lifebytes Error; 'bytes-encrypted': Encrypted Bytes; 'bytes-decrypted': Decrypted Bytes; 'prefrag-success': Pre-frag Success; 'prefrag-error': Pre-frag Error; 'cavium-bytes-encrypted': CAVIUM Encrypted Bytes; 'cavium-bytes-decrypted': CAVIUM Decrypted Bytes; 'cavium-packets-encrypted': CAVIUM Encrypted Packets; 'cavium-packets-decrypted': CAVIUM Decrypted Packets; 'qat-bytes-encrypted': QAT Encrypted Bytes; 'qat-bytes-decrypted': QAT Decrypted Bytes; 'qat-packets-encrypted': QAT Encrypted Packets; 'qat-packets-decrypted': QAT Decrypted Packets; 'tunnel-intf-down': Packet dropped: Tunnel Interface Down; 'pkt-fail-prep-to-send': Packet dropped: Failed in prepare to send; 'no-next-hop': Packet dropped: No next hop; 'invalid-tunnel-id': Packet dropped: Invalid tunnel ID; 'no-tunnel-found': Packet dropped: No tunnel found; 'pkt-fail-to-send': Packet dropped: Failed to send; 'frag-after-encap-frag-packets': Frag-after-encap Fragment Generated; 'frag-received': Fragment Received; 'sequence-num': Sequence Number; 'sequence-num-rollover': Sequence Number Rollover; 'packets-err-nh-check': Next Header Check Error; ", "enum":[ "all", "packets-encrypted", "packets-decrypted", "anti-replay-num", "rekey-num", "packets-err-inactive", "packets-err-encryption", "packets-err-pad-check", "packets-err-pkt-sanity", "packets-err-icv-check", "packets-err-lifetime-lifebytes", "bytes-encrypted", "bytes-decrypted", "prefrag-success", "prefrag-error", "cavium-bytes-encrypted", "cavium-bytes-decrypted", "cavium-packets-encrypted", "cavium-packets-decrypted", "qat-bytes-encrypted", "qat-bytes-decrypted", "qat-packets-encrypted", "qat-packets-decrypted", "tunnel-intf-down", "pkt-fail-prep-to-send", "no-next-hop", "invalid-tunnel-id", "no-tunnel-found", "pkt-fail-to-send", "frag-after-encap-frag-packets", "frag-received", "sequence-num", "sequence-num-rollover", "packets-err-nh-check" ] } } } ] }, "bind-tunnel":{ "type":"object", "$ref":"/axapi/v3/vpn/ipsec/{name}/bind-tunnel", "properties":{ "tunnel":{ "type":"number", "format":"number", "minimum":1, "maximum":128, "partition-visibility":"shared", "$ref":"/axapi/v3/interface/tunnel", "description":"Tunnel interface index" }, "next-hop":{ "type":"string", "format":"ipv4-address", "partition-visibility":"shared", "not":"next-hop-v6", "description":"IPsec Next Hop IP Address" }, "next-hop-v6":{ "type":"string", "format":"ipv6-address", "partition-visibility":"shared", "not":"next-hop", "description":"IPsec Next Hop IPv6 Address" }, "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "ipsec-gateway":{ "type":"object", "$ref":"/axapi/v3/vpn/ipsec/{name}/ipsec-gateway", "properties":{ "ike-gateway":{ "type":"string", "format":"string", "minLength":1, "maxLength":31, "partition-visibility":"shared", "$ref":"/axapi/v3/vpn/ike-gateway", "description":"Gateway to use for IPsec SA" }, "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } } }, "required":[ "name" ] } ] }, "ipsec-group-list":{ "type":"array", "minItems":1, "items":{ "type":"ipsec-group" }, "uniqueItems":true, "$ref":"/axapi/v3/vpn/ipsec-group/{name}", "array":[ { "properties":{ "name":{ "type":"string", "format":"string", "minLength":1, "maxLength":31, "partition-visibility":"shared", "description":"Group name", "optional":false }, "ipsecgroup-cfg":{ "type":"array", "minItems":1, "items":{ "type":"object" }, "uniqueItems":true, "array":[ { "properties":{ "ipsec":{ "type":"string", "format":"string", "minLength":1, "maxLength":31, "partition-visibility":"shared", "$ref":"/axapi/v3/vpn/ipsec", "description":"specify a name to group active/backup tunnels" }, "priority":{ "type":"number", "format":"number", "minimum":1, "maximum":10, "partition-visibility":"shared", "description":"Highest priority value is the active tunnel" } } } ] }, "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object", "optional":true }, "user-tag":{ "type":"string", "format":"string-rlx", "minLength":1, "maxLength":127, "partition-visibility":"shared", "description":"Customized tag", "optional":true } }, "required":[ "name" ] } ] }, "group-list":{ "type":"object", "$ref":"/axapi/v3/vpn/group-list", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "ipsec-sa-stats-list":{ "type":"array", "minItems":1, "items":{ "type":"ipsec-sa-stats" }, "uniqueItems":true, "$ref":"/axapi/v3/vpn/ipsec-sa-stats/{sampling-enable}", "array":[ { "properties":{ "sampling-enable":{ "type":"array", "minItems":1, "items":{ "type":"object" }, "uniqueItems":true, "array":[ { "properties":{ "counters1":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'all': all; 'packets-encrypted': Encrypted Packets; 'packets-decrypted': Decrypted Packets; 'anti-replay-num': Anti-Replay Failure; 'rekey-num': Rekey Times; 'packets-err-inactive': Inactive Error; 'packets-err-encryption': Encryption Error; 'packets-err-pad-check': Pad Check Error; 'packets-err-pkt-sanity': Packets Sanity Error; 'packets-err-icv-check': ICV Check Error; 'packets-err-lifetime-lifebytes': Lifetime Lifebytes Error; 'bytes-encrypted': Encrypted Bytes; 'bytes-decrypted': Decrypted Bytes; 'prefrag-success': Pre-frag Success; 'prefrag-error': Pre-frag Error; 'cavium-bytes-encrypted': CAVIUM Encrypted Bytes; 'cavium-bytes-decrypted': CAVIUM Decrypted Bytes; 'cavium-packets-encrypted': CAVIUM Encrypted Packets; 'cavium-packets-decrypted': CAVIUM Decrypted Packets; 'qat-bytes-encrypted': QAT Encrypted Bytes; 'qat-bytes-decrypted': QAT Decrypted Bytes; 'qat-packets-encrypted': QAT Encrypted Packets; 'qat-packets-decrypted': QAT Decrypted Packets; 'tunnel-intf-down': Packet dropped: Tunnel Interface Down; 'pkt-fail-prep-to-send': Packet dropped: Failed in prepare to send; 'no-next-hop': Packet dropped: No next hop; 'invalid-tunnel-id': Packet dropped: Invalid tunnel ID; 'no-tunnel-found': Packet dropped: No tunnel found; 'pkt-fail-to-send': Packet dropped: Failed to send; 'frag-after-encap-frag-packets': Frag-after-encap Fragment Generated; 'frag-received': Fragment Received; 'sequence-num': Sequence Number; 'sequence-num-rollover': Sequence Number Rollover; 'packets-err-nh-check': Next Header Check Error; ", "enum":[ "all", "packets-encrypted", "packets-decrypted", "anti-replay-num", "rekey-num", "packets-err-inactive", "packets-err-encryption", "packets-err-pad-check", "packets-err-pkt-sanity", "packets-err-icv-check", "packets-err-lifetime-lifebytes", "bytes-encrypted", "bytes-decrypted", "prefrag-success", "prefrag-error", "cavium-bytes-encrypted", "cavium-bytes-decrypted", "cavium-packets-encrypted", "cavium-packets-decrypted", "qat-bytes-encrypted", "qat-bytes-decrypted", "qat-packets-encrypted", "qat-packets-decrypted", "tunnel-intf-down", "pkt-fail-prep-to-send", "no-next-hop", "invalid-tunnel-id", "no-tunnel-found", "pkt-fail-to-send", "frag-after-encap-frag-packets", "frag-received", "sequence-num", "sequence-num-rollover", "packets-err-nh-check" ] } } } ] } }, "required":[ "sampling-enable" ] } ] }, "revocation-list":{ "type":"array", "minItems":1, "items":{ "type":"revocation" }, "uniqueItems":true, "$ref":"/axapi/v3/vpn/revocation/{name}", "array":[ { "properties":{ "name":{ "type":"string", "format":"string", "minLength":1, "maxLength":31, "partition-visibility":"shared", "description":"Revocation name", "optional":false }, "ca":{ "type":"string", "format":"string", "minLength":1, "maxLength":255, "partition-visibility":"shared", "description":"Certificate Authority file name", "optional":true }, "crl":{ "type":"object", "properties":{ "crl-pri":{ "type":"string", "format":"string-rlx", "minLength":1, "maxLength":255, "partition-visibility":"shared", "description":"Primary CRL URL (http://www.example.com/ocsp) (only .der filetypes)" }, "crl-sec":{ "type":"string", "format":"string-rlx", "minLength":1, "maxLength":255, "partition-visibility":"shared", "description":"Secondary CRL URL (http://www.example.com/ocsp) (only .der filetypes)" } } }, "ocsp":{ "type":"object", "properties":{ "ocsp-pri":{ "type":"string", "format":"string", "minLength":1, "maxLength":63, "partition-visibility":"shared", "$ref":"/axapi/v3/aam/authentication/server/ocsp/instance", "description":"Primary OCSP Authentication Server" }, "ocsp-sec":{ "type":"string", "format":"string", "minLength":1, "maxLength":63, "partition-visibility":"shared", "$ref":"/axapi/v3/aam/authentication/server/ocsp/instance", "description":"Secondary OCSP Authentication Server" } } }, "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object", "optional":true }, "user-tag":{ "type":"string", "format":"string-rlx", "minLength":1, "maxLength":127, "partition-visibility":"shared", "description":"Customized tag", "optional":true } }, "required":[ "name" ] } ] }, "crl":{ "type":"object", "$ref":"/axapi/v3/vpn/crl", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "ocsp":{ "type":"object", "$ref":"/axapi/v3/vpn/ocsp", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "ipsec-sa-by-gw":{ "type":"object", "$ref":"/axapi/v3/vpn/ipsec-sa-by-gw", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "ike-sa":{ "type":"object", "$ref":"/axapi/v3/vpn/ike-sa", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "ipsec-sa":{ "type":"object", "$ref":"/axapi/v3/vpn/ipsec-sa", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "ike-sa-brief":{ "type":"object", "$ref":"/axapi/v3/vpn/ike-sa-brief", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "ike-sa-clients":{ "type":"object", "$ref":"/axapi/v3/vpn/ike-sa-clients", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "ipsec-sa-clients":{ "type":"object", "$ref":"/axapi/v3/vpn/ipsec-sa-clients", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } }, "ike-stats-by-gw":{ "type":"object", "$ref":"/axapi/v3/vpn/ike-stats-by-gw", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object" } } } } }