Cisco Cisco ASA 5580 Adaptive Security Appliance 技术手册
6
XML Examples for the Cisco Application Centric Infrastructure Security Device Package
Interfaces
Port Channel Interfaces
This XML example creates the following port channel members and port channel interfaces (supported
only on physical ASAs at this time).
only on physical ASAs at this time).
ASA Configuration
interface GigabitEthernet0/0
channel-group 2 mode active
no nameif
no security-level
no ip address
interface GigabitEthernet0/1
channel-group 1 mode active
no nameif
no security-level
no ip address'''
interface Port-channel1.100
vlan 100
nameif externalIf
security-level 50
ip address 10.10.10.10 255.255.255.0
interface Port-channel2.200
vlan 200
nameif internalIf
security-level 100
ip address 10.10.10.10 255.255.255.0
XML Example
Define the port channel members, graph, then attach them to the tenant.
<polUni>
<fvTenant
dn="uni/tn-tenant1"
name="tenant1">
<vnsLDevVip name="Firewall">
<vnsCDev name="ASA">
<vnsCIf name="port-channel1">
<vnsRsCIfPathAtt tDn="topology/pod-1/paths-101/pathep-[eth1/20]"/>
</vnsCIf>
<vnsCIf name="port-channel2">
<vnsRsCIfPathAtt tDn="topology/pod-1/paths-101/pathep-[eth1/21]"/>
</vnsCIf>
<vnsCMgmt name="devMgmt" host="10.122.202.34" port="443" />
<vnsCCred name="username" value="management-user" />
<vnsCCredSecret name="password" value="cisco" />
<vnsDevFolder key="PortChannelMember" name="PC1a">
<vnsDevParam key="port_channel_id" name="PC1a" value="1"/>
<vnsDevParam key="interface" name="PC1a" value="Gig0/1"/>
</vnsDevFolder>
<vnsDevFolder key="PortChannelMember" name="PC2a">
<vnsDevParam key="port_channel_id" name="PC2a" value="2"/>
<vnsDevParam key="interface" name="PC2a" value="Gig0/0"/>