Line

Line configuration manages device access control for both console (CON) and virtual terminal (VTY) connections, defining authentication methods, timeout values, transport protocols, and access restrictions. Console lines provide direct physical access to devices while VTY lines enable remote access via protocols such as SSH and Telnet, with configurable access control lists to restrict connections by source IP address or network range. Line configuration also controls session parameters including privilege levels, password authentication, exec timeouts, and logging settings to ensure secure and manageable device access.

Diagram

Classes

configuration (iosxe.devices)

Name	Type	Constraint	Mandatory	Default Value
line	Class	`[line]`	No

line (iosxe.devices.configuration)

Name	Type	Constraint	Mandatory	Default Value
consoles	List	`[consoles]`	No
vtys	List	`[vtys]`	No

consoles (iosxe.devices.configuration.line)

Name	Type	Constraint	Mandatory
exec_timeout_minutes	Integer	min: `0`, max: `35791`	No
exec_timeout_seconds	Integer	min: `0`, max: `2147483`	No
login_local	Boolean	`true`, `false`	No
login_authentication	String		No
privilege_level	Integer	min: `0`, max: `15`	No
stopbits	Choice	`1`, `1.5`, `2`	No
password_level	Integer	min: `0`, max: `255`	No
password_type	Choice	`0`, `6`, `7`	No
password	String		No

vtys (iosxe.devices.configuration.line)

Name	Type	Constraint	Mandatory
number_from	Integer	min: `0`, max: `1869`	Yes
number_to	Integer	min: `1`, max: `1869`	No
access_classes	List	`[access_classes]`	No
exec_timeout_minutes	Integer	min: `0`, max: `35791`	No
exec_timeout_seconds	Integer	min: `0`, max: `2147483`	No
password_level	Integer	min: `0`, max: `255`	No
password_type	Choice	`0`, `6`, `7`	No
password	String		No
login_authentication	String		No
transport_preferred_protocol	Choice	`acercon`, `lat`, `mop`, `nasi`, `none`, `pad`, `rlogin`, `ssh`, `telnet`, `udptn`	No
escape_character	Integer		No
authorization_exec	String		No
authorization_exec_default	Boolean	`true`, `false`	No
transport_input_all	Boolean	`true`, `false`	No
transport_input_none	Boolean	`true`, `false`	No
transport_input	List	String	No

access_classes (iosxe.devices.configuration.line.vtys)

Name	Type	Constraint	Mandatory
direction	Choice	`in`, `out`	Yes
access_list	String		No
vrf_also	Boolean	`true`, `false`	No

Examples

iosxe:
  devices:
    - name: Device1
      configuration:
        line:
          consoles:
            - exec_timeout_minutes: 0
              exec_timeout_seconds: 45
              login_local: true
              privilege_level: 15
              stopbits: '1'
              password_level: 100
              password_type: '0'
              password: testpasswd
          vtys:
            - number_from: 0
              number_to: 4
              access_classes:
                - direction: in
                  access_list: MGMT-ACCESS
                  vrf_also: true
              exec_timeout_minutes: 30
              exec_timeout_seconds: 0
              password_type: '7'
              password: encryptedPassword123
              login_authentication: default
              transport_preferred_protocol: ssh
              transport_input:
                - ssh
            - number_from: 5
              number_to: 15
              exec_timeout_minutes: 10
              exec_timeout_seconds: 0
              transport_input_all: false
              transport_input:
                - ssh
                - telnet