Skip to content

Instantly share code, notes, and snippets.

@mrlesmithjr

mrlesmithjr/aci_discovered.yml

Created May 8, 2018 21:34
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save mrlesmithjr/f5de085c57e4f1ed5ce82289834f9c32 to your computer and use it in GitHub Desktop.
Save mrlesmithjr/f5de085c57e4f1ed5ce82289834f9c32 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
aci_discovered.yml
---
aci_base_ntp_servers:
- 10.1.1.254
aci_base_timezone: p0_UTC
aci_tenants:
- name: BT-Tenant-1
app_profiles: []
bridge_domains: []
state: present
vrfs:
- name: VRF-2
description: []
policy_control_direction: ingress
policy_control_preference: unenforced
state: present
- name: VRF-1
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: common
app_profiles:
- name: POP-HEALTH
description: []
epgs:
- name: VLAN-101-EPG
bridge_domain: BD-VLAN-101
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: VLAN-100-EPG
bridge_domain: BD-VLAN-100
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
- name: default
description: []
epgs:
- name: test
bridge_domain: default
fwd_control: []
intra_epg_isolation: unenforced
priority: level1
state: present
state: present
bridge_domains:
- name: BD-VLAN-101
arp_flooding: yes
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: no
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets: []
- name: BD-VLAN-100
arp_flooding: yes
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: no
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets: []
- name: default1
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 10.0.0.0
description: []
enable_vip: no
gateway: 10.20.22.33
mask: 10
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- network: 10.3.8.0
description: []
enable_vip: no
gateway: 10.3.8.1
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- name: default
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 10.3.8.0
description: []
enable_vip: no
gateway: 10.3.8.1
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- network: 10.3.8.0
description: []
enable_vip: no
gateway: 10.3.8.1
mask: 25
preferred: no
scope: public,shared
state: present
subnet_control: []
subnet_name: []
contracts:
- name: external_access
description: Access to off-fabric destinations
dscp: unspecified
priority: unspecified
scope: global
state: present
subjects:
- name: default
consumer_match: AtleastOne
description: All-IP External Access
dscp: unspecified
priority: level1
provider_match: AtleastOne
reverse_filter: no
- name: power_up
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: app_ports
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: sql
description: []
dscp: unspecified
priority: unspecified
scope: application-profile
state: present
subjects:
- name: sql-server
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: sql-browser
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: web
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: https
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: http
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: default
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: default
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
filters:
- name: icmp
description: []
entries:
- name: icmp
arp_flag: unspecified
description: []
dst_to_port: unspecified
dst_from_port: unspecified
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: icmp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: est
description: []
entries:
- name: est
arp_flag: unspecified
description: []
dst_to_port: unspecified
dst_from_port: unspecified
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: arp
description: []
entries:
- name: arp
arp_flag: unspecified
description: []
dst_to_port: unspecified
dst_from_port: unspecified
ether_type: arp
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: unspecified
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: default
description: []
entries:
- name: default
arp_flag: unspecified
description: []
dst_to_port: unspecified
dst_from_port: unspecified
ether_type: unspecified
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: unspecified
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: http
description: []
entries:
- name: tcp-80
arp_flag: unspecified
description: []
dst_to_port: http
dst_from_port: http
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: power_up
description: []
entries:
- name: tcp_9001-9002
arp_flag: unspecified
description: []
dst_to_port: 9002
dst_from_port: 9001
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: tcp80
description: []
entries:
- name: tcp80
arp_flag: unspecified
description: []
dst_to_port: http
dst_from_port: http
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: all-ip
description: Match all IP traffic
entries:
- name: all-ip
arp_flag: unspecified
description: Match all IP traffic
dst_to_port: unspecified
dst_from_port: unspecified
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: unspecified
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: https
description: []
entries:
- name: tcp-443
arp_flag: unspecified
description: []
dst_to_port: https
dst_from_port: https
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: sql_browser
description: []
entries:
- name: udp-1434
arp_flag: unspecified
description: []
dst_to_port: 1434
dst_from_port: 1434
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: udp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: sql_server
description: []
entries:
- name: tcp-1433
arp_flag: unspecified
description: []
dst_to_port: 1433
dst_from_port: 1433
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
state: present
vrfs:
- name: SAM_External-vrf
description: VRF for common L3Out
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: default
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: dci-vrf
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: copy
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: ConfigTenant
app_profiles:
- name: ConfigAP
description: []
epgs:
- name: ConfigEPG
bridge_domain: ConfigBD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: ConfigBD
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 10.1.1.0
description: []
enable_vip: no
gateway: 10.1.1.254
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- network: 10.1.1.0
description: []
enable_vip: no
gateway: 10.1.1.253
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
state: present
vrfs:
- name: configvrf
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: CORVIT_Toolkit_Tenant
app_profiles: []
bridge_domains: []
state: present
vrfs: []
- name: DavidN
app_profiles:
- name: DavidN_AP
description: []
epgs:
- name: DavidN_Testing_App_EPG
bridge_domain: DavidN_App_Testing_BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: DavidN_DB_Test_EPG
bridge_domain: DavidN_DB_BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: DavidN_DB_EPG
bridge_domain: DavidN_DB_BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: DavidN_App_EPG
bridge_domain: DavidN_App_BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: DavidN_Web_EPG
bridge_domain: DavidN_Web_BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: DavidN_App_Testing_BD
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets: []
- name: DavidN_DB_BD
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 172.16.2.0
description: []
enable_vip: no
gateway: 172.16.2.1
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- name: DavidN_App_BD
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 172.16.1.0
description: []
enable_vip: no
gateway: 172.16.1.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: []
subnet_name: []
- name: DavidN_Web_BD
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 172.16.3.0
description: []
enable_vip: no
gateway: 172.16.3.1
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
state: present
vrfs:
- name: DavidN_L3out
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: DavidN_Testing_VRF
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: DavidN_VRF
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: default
app_profiles: []
bridge_domains:
- name: default
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets: []
state: present
vrfs:
- name: default
description: VRF for Tenant Created Using Ansible
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: demo123
app_profiles:
- name: AP-demo123
description: []
epgs:
- name: App-demo123
bridge_domain: BD-demo123
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: web-demo123
bridge_domain: BD-demo123
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: BD-demo123
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs:
- name: default
state: present
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 192.168.10.0
description: []
enable_vip: no
gateway: 192.168.10.1
mask: 24
preferred: no
scope: private,shared
state: present
subnet_control: []
subnet_name: []
state: present
vrfs:
- name: VRF-demo123
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: FIRAS
app_profiles:
- name: T1_AppProf
description: []
epgs:
- name: App_Servers
bridge_domain: App-BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: Web_Servers
bridge_domain: Web-BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: App-BD
arp_flooding: yes
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 201.1.1.0
description: []
enable_vip: no
gateway: 201.1.1.1
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- name: Web-BD
arp_flooding: yes
bd_type: ethernet
description: Web Bridge Domain
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 101.1.1.0
description: []
enable_vip: no
gateway: 101.1.1.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: []
subnet_name: []
contracts:
- name: Provided
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: App_Server
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: Allow
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
filters:
- name: FIRAS
description: []
entries:
- name: TCP
arp_flag: unspecified
description: []
dst_to_port: 8690
dst_from_port: 8688
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: yes
- name: SSH
arp_flag: unspecified
description: []
dst_to_port: 22
dst_from_port: 22
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: yes
state: present
state: present
vrfs:
- name: Prod_VRF
description: Production VRF
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: Fletchgard
app_profiles:
- name: Application_1
description: []
epgs:
- name: Web
bridge_domain: default
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: Server
bridge_domain: default
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains: []
contracts:
- name: DORPWBGT
description: Contract for the DORPWBGT access to servers in the Data Center.
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: DORPWBGT
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: DOR_Admins_Group
description: Contract for the DOR Users access to servers in the Data Center.
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: DOR_Admins_Group
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: DOR_Users
description: Contract for the DOR Users access to servers in the Data Center.
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: DOR_Users
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: Outbound_Access
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: Outbound_Access
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: no
filters:
- name: Outbound_Return
description: Allow return traffic to servers for access the Internet.
entries:
- name: Line_1
arp_flag: unspecified
description: []
dst_to_port: unspecified
dst_from_port: unspecified
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: unspecified
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: yes
state: present
- name: User_Protocols_Group
description: Defines all protocols used by DOR Users
entries:
- name: Line_9
arp_flag: unspecified
description: []
dst_to_port: 123
dst_from_port: 123
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: udp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_8
arp_flag: unspecified
description: []
dst_to_port: 445
dst_from_port: 445
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_7
arp_flag: unspecified
description: []
dst_to_port: 445
dst_from_port: 445
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: udp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_3
arp_flag: unspecified
description: []
dst_to_port: 88
dst_from_port: 88
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_5
arp_flag: unspecified
description: []
dst_to_port: 389
dst_from_port: 389
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: udp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_2
arp_flag: unspecified
description: []
dst_to_port: dns
dst_from_port: dns
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_10
arp_flag: unspecified
description: []
dst_to_port: 500
dst_from_port: 500
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: udp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_6
arp_flag: unspecified
description: []
dst_to_port: 389
dst_from_port: 389
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_4
arp_flag: unspecified
description: []
dst_to_port: 88
dst_from_port: 88
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: udp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_1
arp_flag: unspecified
description: []
dst_to_port: dns
dst_from_port: dns
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: udp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: Outbound_Access
description: Allow any server to access the Internet.
entries:
- name: Line_1
arp_flag: unspecified
description: []
dst_to_port: unspecified
dst_from_port: unspecified
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: unspecified
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: Admin_Protocols_Group
description: Defines all protocols used by DOR IT Admins
entries:
- name: Line_9
arp_flag: unspecified
description: []
dst_to_port: 123
dst_from_port: 123
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: udp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_8
arp_flag: unspecified
description: []
dst_to_port: 445
dst_from_port: 445
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_7
arp_flag: unspecified
description: []
dst_to_port: 445
dst_from_port: 445
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: udp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_3
arp_flag: unspecified
description: []
dst_to_port: 88
dst_from_port: 88
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_5
arp_flag: unspecified
description: []
dst_to_port: 389
dst_from_port: 389
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: udp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_2
arp_flag: unspecified
description: []
dst_to_port: dns
dst_from_port: dns
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_10
arp_flag: unspecified
description: []
dst_to_port: 500
dst_from_port: 500
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: udp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_6
arp_flag: unspecified
description: []
dst_to_port: 389
dst_from_port: 389
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_4
arp_flag: unspecified
description: []
dst_to_port: 88
dst_from_port: 88
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: udp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_1
arp_flag: unspecified
description: []
dst_to_port: dns
dst_from_port: dns
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: udp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: DORPWBGT_Protocols_Group
description: Defines all protocols used by the DORPWBGT group
entries:
- name: Line_3
arp_flag: unspecified
description: []
dst_to_port: 65535
dst_from_port: 49152
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: yes
- name: Line_2
arp_flag: unspecified
description: []
dst_to_port: 23
dst_from_port: 22
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: Line_1
arp_flag: unspecified
description: []
dst_to_port: 88
dst_from_port: 88
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: yes
state: present
state: present
vrfs: []
- name: Heroes
app_profiles:
- name: POWER_UP
description: []
epgs:
- name: DB
bridge_domain: Hero_Land
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: WEB
bridge_domain: Hero_Land
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
- name: Save_The_Network
description: []
epgs:
- name: EPG_372Verify_205
bridge_domain: Hero_Land
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: EPG_3.7.2Pro_204
bridge_domain: Hero_Land
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: web
bridge_domain: Hero_Land
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: db
bridge_domain: Hero_Land
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: app
bridge_domain: Hero_Land
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: Hero_Land
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 192.168.120.0
description: []
enable_vip: no
gateway: 192.168.120.1
mask: 22
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- network: 10.1.120.0
description: []
enable_vip: no
gateway: 10.1.120.1
mask: 22
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- network: 192.168.1.0
description: []
enable_vip: no
gateway: 192.168.1.1
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- network: 10.193.102.0
description: []
enable_vip: no
gateway: 10.193.102.1
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- name: Heroes
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets: []
contracts:
- name: sql
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: sql
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: CONTRACT_372Verify_SVC
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: CONTRACT_3.7.2Pro_SVC
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
filters:
- name: sql1
description: []
entries:
- name: oracle
arp_flag: unspecified
description: []
dst_to_port: 1439
dst_from_port: 1439
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
state: present
vrfs:
- name: Hereos
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: infra
app_profiles:
- name: access
description: []
epgs:
- name: default
bridge_domain: default
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: default
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets: []
state: present
vrfs:
- name: overlay-1
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: INITIALS_Example_Tenant
app_profiles:
- name: Example_App
description: []
epgs:
- name: Web
bridge_domain: Example_BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: Database
bridge_domain: Example_BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: Example_BD
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 10.10.10.0
description: []
enable_vip: no
gateway: 10.10.10.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: nd
subnet_name: Example_Subnet
contracts:
- name: web
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: http
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: database
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: sql
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
filters:
- name: http
description: []
entries:
- name: tcp-80
arp_flag: unspecified
description: []
dst_to_port: http
dst_from_port: http
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: sql
description: []
entries:
- name: tcp-1433
arp_flag: unspecified
description: []
dst_to_port: 1433
dst_from_port: 1433
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
state: present
vrfs:
- name: Example_VRF
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: L2_TENANT
app_profiles:
- name: ORPHAN_L2_APP_PROFILE
description: []
epgs:
- name: ORPHAN
bridge_domain: ORPHAN_BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: L2_vlan2001
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 60.1.1.0
description: []
enable_vip: no
gateway: 60.1.1.254
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- name: ORPHAN_BD
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 50.1.1.0
description: []
enable_vip: no
gateway: 50.1.1.254
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
contracts:
- name: WEB_ICMP
description: []
dscp: unspecified
priority: unspecified
scope: tenant
state: present
subjects:
- name: Subject
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
filters:
- name: WEB_ICMP_Filter
description: []
entries:
- name: HTTP
arp_flag: unspecified
description: []
dst_to_port: http
dst_from_port: http
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
- name: ICMP
arp_flag: unspecified
description: []
dst_to_port: unspecified
dst_from_port: unspecified
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: icmp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
state: present
vrfs:
- name: L2_VRF
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: meagan
app_profiles: []
bridge_domains:
- name: tony
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets: []
state: present
vrfs:
- name: meagan
description: VRF for Tenant Created Using Ansible
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: mgmt
app_profiles: []
bridge_domains:
- name: inb
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets: []
state: present
vrfs:
- name: oob
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: inb
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: NewNet
app_profiles:
- name: 2-TIER
description: []
state: present
bridge_domains:
- name: BD-WEB
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs:
- name: Lan-GW
state: present
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 10.10.100.0
description: []
enable_vip: no
gateway: 10.10.100.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: []
subnet_name: []
- name: BD-DB
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs:
- name: Lan-GW
state: present
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 10.10.200.0
description: []
enable_vip: no
gateway: 10.10.200.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: []
subnet_name: []
state: present
vrfs:
- name: Shared
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: pterwal-Tenant
app_profiles:
- name: pterwal-AP
description: []
epgs:
- name: pterwal-EPG
bridge_domain:
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: pterwal-BD
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 192.168.100.0
description: []
enable_vip: yes
gateway: 192.168.100.1
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
state: present
vrfs:
- name: pterwal-VRF
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: rh-test
app_profiles:
- name: rh-ap1
description: []
epgs:
- name: rh-epg1
bridge_domain: rh-bd
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: rh-bd
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets: []
contracts:
- name: rh-contract
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: rh-contract-subject
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
filters:
- name: rh-filter
description: []
entries:
state: present
state: present
vrfs:
- name: rh-vrf
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: Salah
app_profiles:
- name: T1_AppProf
description: []
epgs:
- name: web_server
bridge_domain: Web_Prod
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: App_Server
bridge_domain: App-BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: App-BD
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 201.1.1.0
description: []
enable_vip: no
gateway: 201.1.1.1
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- name: Web_Prod
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 101.1.1.0
description: []
enable_vip: no
gateway: 101.1.1.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: []
subnet_name: []
contracts:
- name: App_Contract
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: App_services
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: SSH
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: ICMP
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
filters:
- name: JBOSS
description: []
entries:
- name: TCP8688
arp_flag: unspecified
description: []
dst_to_port: 8690
dst_from_port: 8688
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: SSH
description: []
entries:
- name: 22
arp_flag: unspecified
description: []
dst_to_port: 22
dst_from_port: 22
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
state: present
vrfs:
- name: Prod_VRF
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: Tenant1
app_profiles:
- name: T1_AppProf
description: []
epgs:
- name: App_Servers
bridge_domain: App-BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: Web_Servers
bridge_domain: Web-BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: App-BD
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 201.1.1.0
description: []
enable_vip: no
gateway: 201.1.1.1
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- name: Web-BD
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 1.1.1.0
description: []
enable_vip: no
gateway: 1.1.1.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: []
subnet_name: []
- network: 101.1.1.0
description: []
enable_vip: no
gateway: 101.1.1.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: []
subnet_name: []
contracts:
- name: App_Contract
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: ICMP
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: App_Services
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: SSH
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
filters:
- name: JBoss
description: []
entries:
- name: TCP-8088
arp_flag: unspecified
description: []
dst_to_port: 8690
dst_from_port: 8688
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: SSH
description: []
entries:
- name: TCP-22
arp_flag: unspecified
description: []
dst_to_port: 22
dst_from_port: 22
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
state: present
vrfs:
- name: Prod_VRF
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: Tenant1m
app_profiles:
- name: T1_AppProfm
description: []
epgs:
- name: App_serversm
bridge_domain: App-BDm
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: Web_serversm
bridge_domain: Web-BDm
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: App-BDm
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 201.1.1.0
description: []
enable_vip: no
gateway: 201.1.1.1
mask: 24
preferred: no
scope: private
state: present
subnet_control: []
subnet_name: []
- name: Web-BDm
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 101.1.1.0
description: []
enable_vip: no
gateway: 101.1.1.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: []
subnet_name: []
contracts:
- name: App_Contract
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: App_Services
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: icmp
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: SSH
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
filters:
- name: JBossm
description: []
entries:
- name: TCP-8688
arp_flag: unspecified
description: []
dst_to_port: 8690
dst_from_port: 8688
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: SSHm
description: []
entries:
- name: TCP-22
arp_flag: unspecified
description: []
dst_to_port: 22
dst_from_port: 22
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
state: present
vrfs:
- name: Prod_VRFm
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: test
app_profiles: []
bridge_domains: []
state: present
vrfs:
- name: testvrf
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: TESTCORP-5
app_profiles:
- name: 3-TierApp
description: []
epgs:
- name: Client
bridge_domain: BD1
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: App
bridge_domain: BD1
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: Web
bridge_domain: BD1
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: DB
bridge_domain: BD1
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: BD1
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 20.0.0.0
description: []
enable_vip: no
gateway: 20.0.0.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: nd
subnet_name: []
- network: 30.0.0.0
description: []
enable_vip: no
gateway: 30.0.0.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: nd
subnet_name: []
- network: 40.0.0.0
description: []
enable_vip: no
gateway: 40.0.0.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: nd
subnet_name: []
- network: 10.0.0.0
description: []
enable_vip: no
gateway: 10.0.0.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: nd
subnet_name: []
contracts:
- name: WebCt
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: Web
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: AppCt
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: RMI
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: DbCt
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: SQL
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
filters:
- name: http
description: []
entries:
- name: DPort-80
arp_flag: unspecified
description: []
dst_to_port: http
dst_from_port: http
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: rmi
description: []
entries:
- name: DPort-1514
arp_flag: unspecified
description: []
dst_to_port: 1514
dst_from_port: 1514
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
- name: sql
description: []
entries:
- name: DPort-1433
arp_flag: unspecified
description: []
dst_to_port: 1433
dst_from_port: 1433
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
state: present
vrfs:
- name: TestCorp-Router
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: tony
app_profiles:
- name: default
description: []
state: present
bridge_domains:
- name: default
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 1.1.1.0
description: []
enable_vip: no
gateway: 1.1.1.1
mask: 24
preferred: no
scope: private
state: present
subnet_control: nd
subnet_name: []
- name: tony
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 1.1.1.0
description: []
enable_vip: no
gateway: 1.1.1.1
mask: 24
preferred: no
scope: private
state: present
subnet_control: nd
subnet_name: []
state: present
vrfs:
- name: default
description: VRF for Tenant Created Using Ansible
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: 5555
description: VRF for Tenant Created Using Ansible
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: bo
description: VRF for Tenant Created Using Ansible
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: cisco123
description: VRF for Tenant Created Using Ansible
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: Vtenant3
app_profiles:
- name: T3-AppProfile
description: []
epgs:
- name: App_Servers
bridge_domain: App-BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: Web_Servers
bridge_domain: Web-DB
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: App-BD
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 201.1.1.0
description: []
enable_vip: no
gateway: 201.1.1.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: []
subnet_name: []
- name: Web-DB
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 105.1.1.0
description: []
enable_vip: no
gateway: 105.1.1.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: []
subnet_name: []
contracts:
- name: App_Contract
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: ICMP
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: SSH
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
filters:
- name: SSH
description: []
entries:
- name: TCP-SSH
arp_flag: unspecified
description: []
dst_to_port: 22
dst_from_port: 22
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
state: present
vrfs:
- name: Prod-VRF
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: Vtenant4
app_profiles:
- name: T3-AppProfile
description: []
epgs:
- name: App_Servers
bridge_domain: App-BD
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
- name: Web_Servers
bridge_domain: Web-DB
fwd_control: []
intra_epg_isolation: unenforced
priority: unspecified
state: present
state: present
bridge_domains:
- name: App-BD
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 201.1.1.0
description: []
enable_vip: no
gateway: 201.1.1.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: []
subnet_name: []
- name: Web-DB
arp_flooding: no
bd_type: ethernet
description: []
enable_multicast: no
enable_routing: yes
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets:
- network: 105.1.1.0
description: []
enable_vip: no
gateway: 105.1.1.1
mask: 24
preferred: no
scope: public
state: present
subnet_control: []
subnet_name: []
contracts:
- name: App_Contract
description: []
dscp: unspecified
priority: unspecified
scope: context
state: present
subjects:
- name: ICMP
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
- name: SSH
consumer_match: AtleastOne
description: []
dscp: unspecified
priority: unspecified
provider_match: AtleastOne
reverse_filter: yes
filters:
- name: SSH
description: []
entries:
- name: TCP-SSH
arp_flag: unspecified
description: []
dst_to_port: 22
dst_from_port: 22
ether_type: ip
icmp_msg_type: unspecified
icmp6_msg_type: unspecified
ip_protocol: tcp
src_to_port: unspecified
src_from_port: unspecified
state: present
stateful: no
state: present
state: present
vrfs:
- name: Prod-VRF
description: []
policy_control_direction: ingress
policy_control_preference: enforced
state: present
- name: ysyceshi1212
app_profiles: []
bridge_domains:
- name: bridge111
arp_flooding: no
bd_type: fc
description: []
enable_multicast: no
enable_routing: no
endpoint_clear: no
endpoint_move_detect: []
ip_learning: yes
l2_unknown_unicast: proxy
l3_outs: []
l3_unknown_multicast: flood
limit_ip_learn: yes
multi_dest: bd-flood
state: present
subnets: []
state: present
vrfs: []
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment