Skip to content
Network as Code

Chassis Logical Device

Location in GUI: Devices » Device Management » Chassis » Instances

Diagram

Section titled “Diagram”
Diagram

Classes

Section titled “Classes”

chassis (fmc.domains.devices)

Section titled “chassis (fmc.domains.devices)”
NameTypeConstraintMandatoryDefault Value
logical_devicesList[logical_devices]No

logical_devices (fmc.domains.devices.chassis)

Section titled “logical_devices (fmc.domains.devices.chassis)”
NameTypeConstraintMandatoryDefault Value
nameStringRegex: ^[a-zA-Z0-9-]{1,64}$Yes
ftd_versionStringYes
ipv4_addressIPNo
ipv4_netmaskIPNo
ipv4_gatewayIPNo
ipv6_addressStringNo
ipv6_prefixStringNo
ipv6_gatewayStringNo
search_domainStringNo
fqdnStringNo
firewall_modeChoiceROUTED, TRANSPARENTYes
dns_serversListIPNo
device_passwordStringYes
admin_stateChoiceENABLED, DISABLEDNoENABLED
permit_expert_modeBooleantrue, falseNo
resource_profileStringYes
assigned_interfacesListStringYes
access_control_policyStringYes
platform_settingsStringNo
licensesListChoice[MALWARE, URLFilter, CARRIER, PROTECT, THREAT]Yes

Examples

Section titled “Examples”

Prerequisites:

fmc:
  domains:
    - name: Global


      policies:
        access_control_policies:
          - name: MyAccessPolicyName2
            default_action: BLOCK


      objects:
        resource_profiles:
          - name: MyResourceProfileName1
            description: Resource profile with 8 CPUs
            number_of_cpus: 8


      devices:
        chassis:
          - name: MyChassisName1
            registration_key: cisco123
            host: 10.20.10.1
            physical_interfaces:
              - name: Ethernet1/1
                speed: ONE_GBPS
                port_type: DATA
                admin_state: ENABLED
                auto_negotiation: true
              - name: Ethernet1/2
                speed: ONE_GBPS
                port_type: DATA
                admin_state: ENABLED
                auto_negotiation: true
              - name: Ethernet1/3
                speed: ONE_GBPS
                port_type: DATA
                admin_state: ENABLED
                auto_negotiation: true
              - name: Ethernet1/4
                speed: ONE_GBPS
                port_type: DATA
                admin_state: ENABLED
                auto_negotiation: true
              - name: Ethernet1/10
                speed: ONE_GBPS
                port_type: DATA
                admin_state: ENABLED
                auto_negotiation: true
            etherchannel_interfaces:
              - name: Port-channel10
                port_type: DATA
                speed: ONE_GBPS
                duplex: FULL
                lacp_mode: ACTIVE
                lacp_rate: FAST
                selected_interfaces:
                  - Ethernet1/1
                  - Ethernet1/2
              - name: Port-channel20
                port_type: DATA
                speed: ONE_GBPS
                duplex: FULL
                lacp_mode: ACTIVE
                lacp_rate: FAST
                selected_interfaces:
                  - Ethernet1/3
            sub_interfaces:
              - name: Port-channel10.10
                port_type: DATA
                vlan: 10
              - name: Port-channel10.20
                port_type: DATA
                vlan: 20
              - name: Ethernet1/4.30
                port_type: DATA
                vlan: 30

Logical Device:

fmc:
  domains:
    - name: Global
      devices:
        chassis:
          - name: MyChassisName1
            logical_devices:
              - name: MyContainerFtdName1
                ftd_version: 7.4.2.172
                ipv4_address: 10.90.1.2
                ipv4_netmask: 255.255.255.0
                ipv4_gateway: 10.90.1.1
                search_domain: example.com
                fqdn: ftd1.example.com
                firewall_mode: ROUTED
                dns_servers:
                  - 10.20.10.1
                  - 10.30.10.2
                device_password: my_password722!
                permit_expert_mode: true
                resource_profile: MyResourceProfileName1
                assigned_interfaces:
                  - Port-channel10.10
                  - Port-channel10.20
                  - Port-channel20
                  - Ethernet1/4.30
                  - Ethernet1/10
                access_control_policy: MyAccessPolicyName2
                licenses:
                  - MALWARE

Logical Device Configuration:

fmc:
  domains:
    - name: Global
      devices:
        devices:
          - name: MyContainerFtdName1
            vrfs:
              - name: Global
                physical_interfaces:
                  - name: Ethernet1/10
                    mode: NONE
                    logical_name: OUTSIDE
                    ipv4_static_address: 10.20.10.1
                    ipv4_static_netmask: 25
                sub_interfaces:
                  - name: Port-channel10.10
                    vlan: 10
                    mode: NONE
                    logical_name: INSIDE
                    ipv4_static_address: 10.60.1.1
                    ipv4_static_netmask: 24
                  - name: Ethernet1/4.30
                    vlan: 30
                    mode: NONE
                    logical_name: DMZ
                    ipv4_static_address: 10.80.1.1
                    ipv4_static_netmask: 24
                etherchannel_interfaces:
                  - name: Port-channel20
                    mode: NONE
                    logical_name: SOMEZONE
                    ipv4_static_address: 10.98.21.2
                    ipv4_static_netmask: 24
              - name: VRF-A
                sub_interfaces:
                  - name: Port-channel10.20
                    vlan: 20
                    mode: NONE
                    logical_name: INSIDE-VRF-A
                    ipv4_static_address: 10.70.1.1
                    ipv4_static_netmask: 24