{ "id":"/axapi/v3/access-list/extended/{extd}", "type":"object", "node-type":"list", "title":"extended", "partition-visibility":"shared", "description":"Configure Extended Access List", "properties":{ "extd":{ "type":"number", "format":"number", "minimum":100, "maximum":199, "partition-visibility":"shared", "description":"IP extended access list", "optional":false }, "rules":{ "type":"array", "minItems":1, "items":{ "type":"object" }, "uniqueItems":true, "array":[ { "properties":{ "extd-seq-num":{ "type":"number", "format":"number", "minimum":1, "maximum":8192, "partition-visibility":"shared", "description":"Sequence number" }, "extd-remark":{ "type":"string", "format":"string-rlx", "minLength":1, "maxLength":63, "partition-visibility":"shared", "description":"Access list entry comment (Notes for this ACL)" }, "extd-action":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'deny': Deny; 'permit': Permit; 'l3-vlan-fwd-disable': Disable L3 forwarding between VLANs; ", "enum":[ "deny", "permit", "l3-vlan-fwd-disable" ] }, "icmp":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not-list":[ "tcp", "udp", "ip", "service-obj-group" ], "description":"Internet Control Message Protocol" }, "tcp":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not-list":[ "icmp", "udp", "ip", "service-obj-group" ], "description":"protocol TCP" }, "udp":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not-list":[ "icmp", "tcp", "ip", "service-obj-group" ], "description":"protocol UDP" }, "ip":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not-list":[ "icmp", "tcp", "udp", "service-obj-group" ], "description":"Any Internet Protocol" }, "service-obj-group":{ "type":"string", "format":"string", "minLength":1, "maxLength":63, "partition-visibility":"shared", "not-list":[ "icmp", "tcp", "udp", "ip" ], "description":"Service object group (Source object group name)" }, "icmp-type":{ "type":"number", "format":"number", "minimum":0, "maximum":254, "partition-visibility":"shared", "not-list":[ "any-type", "special-type" ], "description":"ICMP type number" }, "any-type":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not-list":[ "icmp-type", "special-type" ], "description":"Any ICMP type" }, "special-type":{ "type":"string", "format":"enum", "partition-visibility":"shared", "not-list":[ "icmp-type", "any-type" ], "description":"'echo-reply': Type 0, echo reply; 'echo-request': Type 8, echo request; 'info-reply': Type 16, information reply; 'info-request': Type 15, information request; 'mask-reply': Type 18, address mask reply; 'mask-request': Type 17, address mask request; 'parameter-problem': Type 12, parameter problem; 'redirect': Type 5, redirect message; 'source-quench': Type 4, source quench; 'time-exceeded': Type 11, time exceeded; 'timestamp': Type 13, timestamp; 'timestamp-reply': Type 14, timestamp reply; 'dest-unreachable': Type 3, destination unreachable; ", "enum":[ "echo-reply", "echo-request", "info-reply", "info-request", "mask-reply", "mask-request", "parameter-problem", "redirect", "source-quench", "time-exceeded", "timestamp", "timestamp-reply", "dest-unreachable" ] }, "any-code":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not-list":[ "icmp-code", "special-code" ], "description":"Any ICMP code" }, "icmp-code":{ "type":"number", "format":"number", "minimum":0, "maximum":254, "partition-visibility":"shared", "not-list":[ "any-code", "special-code" ], "description":"ICMP code number" }, "special-code":{ "type":"string", "format":"enum", "partition-visibility":"shared", "not-list":[ "any-code", "icmp-code" ], "description":"'frag-required': Code 4, fragmentation required; 'host-unreachable': Code 1, destination host unreachable; 'network-unreachable': Code 0, destination network unreachable; 'port-unreachable': Code 3, destination port unreachable; 'proto-unreachable': Code 2, destination protocol unreachable; 'route-failed': Code 5, source route failed; ", "enum":[ "frag-required", "host-unreachable", "network-unreachable", "port-unreachable", "proto-unreachable", "route-failed" ] }, "src-any":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not-list":[ "src-host", "src-subnet", "src-object-group" ], "description":"Any source host" }, "src-host":{ "type":"string", "format":"ipv4-address", "partition-visibility":"shared", "not-list":[ "src-any", "src-subnet", "src-object-group" ], "description":"A single source host (Host address)" }, "src-subnet":{ "type":"string", "format":"ipv4-address", "partition-visibility":"shared", "not-list":[ "src-any", "src-host", "src-object-group" ], "description":"Source Address" }, "src-mask":{ "type":"string", "format":"ipv4-rev-netmask", "partition-visibility":"shared", "description":"Source Mask 0=apply 255=ignore" }, "src-object-group":{ "type":"string", "format":"string", "minLength":1, "maxLength":63, "partition-visibility":"shared", "not-list":[ "src-any", "src-host", "src-subnet" ], "description":"Network object group (Source network object group name)" }, "src-eq":{ "type":"number", "format":"number", "minimum":1, "maximum":65535, "partition-visibility":"shared", "not-list":[ "src-gt", "src-lt", "src-range" ], "description":"Match only packets on a given source port (port number)" }, "src-gt":{ "type":"number", "format":"number", "minimum":1, "maximum":65534, "partition-visibility":"shared", "not-list":[ "src-eq", "src-lt", "src-range" ], "description":"Match only packets with a greater port number" }, "src-lt":{ "type":"number", "format":"number", "minimum":2, "maximum":65535, "partition-visibility":"shared", "not-list":[ "src-eq", "src-gt", "src-range" ], "description":"Match only packets with a lower port number" }, "src-range":{ "type":"number", "format":"number", "minimum":1, "maximum":65535, "partition-visibility":"shared", "not-list":[ "src-eq", "src-gt", "src-lt" ], "description":"match only packets in the range of port numbers (Starting Port Number)" }, "src-port-end":{ "type":"number", "format":"number", "minimum":1, "maximum":65535, "partition-visibility":"shared", "description":"Ending Port Number" }, "dst-any":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not-list":[ "dst-host", "dst-subnet", "dst-object-group" ], "description":"Any destination host" }, "dst-host":{ "type":"string", "format":"ipv4-address", "partition-visibility":"shared", "not-list":[ "dst-any", "dst-subnet", "dst-object-group" ], "description":"A single destination host (Host address)" }, "dst-subnet":{ "type":"string", "format":"ipv4-address", "partition-visibility":"shared", "not-list":[ "dst-any", "dst-host", "dst-object-group" ], "description":"Destination Address" }, "dst-mask":{ "type":"string", "format":"ipv4-rev-netmask", "partition-visibility":"shared", "description":"Destination Mask 0=apply 255=ignore" }, "dst-object-group":{ "type":"string", "format":"string", "minLength":1, "maxLength":63, "partition-visibility":"shared", "not-list":[ "dst-any", "dst-host", "dst-subnet" ], "description":"Destination network object group name" }, "dst-eq":{ "type":"number", "format":"number", "minimum":1, "maximum":65535, "partition-visibility":"shared", "not-list":[ "dst-gt", "dst-lt", "dst-range" ], "description":"Match only packets on a given destination port (port number)" }, "dst-gt":{ "type":"number", "format":"number", "minimum":1, "maximum":65534, "partition-visibility":"shared", "not-list":[ "dst-eq", "dst-lt", "dst-range" ], "description":"Match only packets with a greater port number" }, "dst-lt":{ "type":"number", "format":"number", "minimum":2, "maximum":65535, "partition-visibility":"shared", "not-list":[ "dst-eq", "dst-gt", "dst-range" ], "description":"Match only packets with a lesser port number" }, "dst-range":{ "type":"number", "format":"number", "minimum":1, "maximum":65535, "partition-visibility":"shared", "not-list":[ "dst-eq", "dst-gt", "dst-lt" ], "description":"Match only packets in the range of port numbers (Starting Destination Port Number)" }, "dst-port-end":{ "type":"number", "format":"number", "minimum":1, "maximum":65535, "partition-visibility":"shared", "description":"Edning Destination Port Number" }, "fragments":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"IP fragments" }, "vlan":{ "type":"number", "format":"number", "minimum":1, "maximum":4094, "partition-visibility":"shared", "description":"VLAN ID" }, "ethernet":{ "type":"number", "format":"interface", "partition-visibility":"shared", "description":"Ethernet interface (Port number)" }, "trunk":{ "type":"number", "format":"interface", "partition-visibility":"shared", "description":"Ethernet trunk (trunk number)" }, "dscp":{ "type":"number", "format":"number", "minimum":1, "maximum":63, "partition-visibility":"shared", "description":"DSCP" }, "established":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"TCP established" }, "acl-log":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Log matches against this entry" }, "transparent-session-only":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Only log transparent sessions" } } } ] }, "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object", "optional":true } }, "object-keys":[ "extd" ], "required":[ "extd" ] }