Existing Configuration
You can use existing object, already configured on FMC and define them in data/*.yaml folder, under existing key.
Every object defined under existing key, will be created as data.source and cannot be modified.
Note: The file is build using objects from
schema.
Diagram
Classes
existing
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| fmc | Class | [fmc] | No |
fmc (existing)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| domains | List | [domains] | No | |
| smart_license | String | max: 255 | No | |
| name | String | No |
domains (existing.fmc)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Yes | ||
| devices | Class | [devices] | No | |
| objects | Class | [objects] | No | |
| policies | Class | [policies] | No |
devices (existing.fmc.domains)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| devices | List | [devices] | No | |
| clusters | List | [clusters] | No |
objects (existing.fmc.domains)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| hosts | List | [hosts] | No | |
| networks | List | [networks] | No | |
| ranges | List | [ranges] | No | |
| network_groups | List | [network_groups] | No | |
| urls | List | [urls] | No | |
| ports | List | [ports] | No | |
| port_groups | List | [port_groups] | No | |
| dynamic_objects | List | [dynamic_objects] | No | |
| sgts | List | [sgts] | No | |
| security_zones | List | [security_zones] | No | |
| standard_access_lists | List | [standard_access_lists] | No | |
| extended_access_lists | List | [extended_access_lists] | No |
policies (existing.fmc.domains)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| access_policies | List | [access_policies] | No | |
| ftd_nat_policies | List | [ftd_nat_policies] | No | |
| ips_policies | List | [ips_policies] | No | |
| file_policies | List | [file_policies] | No | |
| prefilter_policies | List | [prefilter_policies] | No | |
| network_analysis_policies | List | [network_analysis_policies] | No |
devices (existing.fmc.domains.devices)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+ -]{1,64}$ | Yes | |
| physical_interfaces | List | [physical_interfaces] | No | |
| ipv4_static_routes | List | [ipv4_static_routes] | No | |
| vnis | List | [vnis] | No |
clusters (existing.fmc.domains.devices)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+ -]{1,64}$ | Yes |
hosts (existing.fmc.domains.objects)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | Yes |
networks (existing.fmc.domains.objects)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | Yes |
ranges (existing.fmc.domains.objects)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | Yes |
network_groups (existing.fmc.domains.objects)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | matches: ^[A-Za-z0-9-_\.]+$ | Yes |
urls (existing.fmc.domains.objects)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | Yes |
ports (existing.fmc.domains.objects)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | Yes |
port_groups (existing.fmc.domains.objects)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | Yes |
dynamic_objects (existing.fmc.domains.objects)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | Yes |
sgts (existing.fmc.domains.objects)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | Yes |
security_zones (existing.fmc.domains.objects)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | Yes |
standard_access_lists (existing.fmc.domains.objects)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | Yes |
extended_access_lists (existing.fmc.domains.objects)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | Yes |
access_policies (existing.fmc.domains.policies)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_ -]{1,64}$ | Yes |
ftd_nat_policies (existing.fmc.domains.policies)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_ -]{1,64}$ | Yes |
ips_policies (existing.fmc.domains.policies)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+ -]{1,64}$ | Yes |
file_policies (existing.fmc.domains.policies)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+ -]{1,64}$ | Yes |
prefilter_policies (existing.fmc.domains.policies)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+ -]{1,64}$ | Yes |
network_analysis_policies (existing.fmc.domains.policies)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+ -]{1,64}$ | Yes |
physical_interfaces (existing.fmc.domains.devices.devices)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | Yes | |
| subinterfaces | List | [subinterfaces] | No |
ipv4_static_routes (existing.fmc.domains.devices.devices)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | No |
vnis (existing.fmc.domains.devices.devices)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | No |
subinterfaces (existing.fmc.domains.devices.devices.physical_interfaces)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+-]{1,64}$ | Yes |
Example of the file:
existing:
fmc:
name: MyFMCName1
domains:
- name: Global
policies:
ips_policies:
- name: Balanced Security and Connectivity
objects:
networks:
- name: any-ipv4
ports:
- name: HTTP