Cisco Cisco ASA 5555-X Adaptive Security Appliance 技术手册

This XML example sets up a network object group with a group name and group objects. 

object-group network Cisco-Network-Object-GroupA

 description Cisco inside network

 network-object host 192.168.1.51

<polUni>

    <fvTenant name="tenant1">

        <vnsAbsGraph name = "WebGraph">

            <vnsAbsNode name = "FW1">

                <vnsAbsDevCfg>

                    <vnsAbsFolder key="NetworkObjectGroup" name="Cisco-Network-Object-GroupA">

                        <vnsAbsParam key="description" name="description" value="Cisco inside network"/>

                        <vnsAbsParam key="host_ip_address" name="host_ip_address" value="192.168.1.51"/>

                    </vnsAbsFolder>

               </vnsAbsDevCfg>

            </vnsAbsNode>

        </vnsAbsGraph>

    </fvTenant>

</polUni>

This XML example enables failover and specifies the failover interface and IP addresses. 

failover

failover lan unit primary

failover lan interface fover GigabitEthernet0/0

failover interface ip fover 192.168.17.1 255.255.255.0 standby 192.168.17.2

<polUni>                

    <fvTenant name="tenant1">

        <vnsLDevVip name="Firewall">

         <vnsLIf name="failover_lan">

           <vnsRsMetaIf

tDn="uni/infra/mDev-CISCO-ASA-{dp_version}/mIfLbl-failover_lan"/>

           <vnsRsCIfAtt

tDn="uni/tn-tenant1/lDevVip-Firewall/cDev-ASAP/cIf-[Gig0/0]"/>

          </vnsLIf>

           <vnsCDev name="ASAP">

                <vnsDevFolder key="FailoverConfig" name="failover_config">