Line

Line configuration manages device access control for both console (CON) and virtual terminal (VTY) connections, defining authentication methods, timeout values, transport protocols, and access restrictions. Console lines provide direct physical access to devices while VTY lines enable remote access via protocols such as SSH and Telnet, with configurable access control lists to restrict connections by source IP address or network range. Line configuration also controls session parameters including privilege levels, password authentication, exec timeouts, and logging settings to ensure secure and manageable device access.

Diagram

Classes

configuration (iosxe.devices)

Name	Type	Constraint	Mandatory	Default Value
line	Class	`[line]`	No

line (iosxe.devices.configuration)

Name	Type	Constraint	Mandatory
consoles	List	`[consoles]`	No
vtys	List	`[vtys]`	No
auxes	List	`[auxes]`	No

consoles (iosxe.devices.configuration.line)

Name	Type	Constraint	Mandatory
number	Integer	min: `0`, max: `17`	Yes
exec_timeout_minutes	Integer	min: `0`, max: `35791`	No
exec_timeout_seconds	Integer	min: `0`, max: `2147483`	No
login_local	Boolean	`true`, `false`	No
login_authentication	String		No
privilege_level	Integer	min: `0`, max: `15`	No
stopbits	Choice	`1`, `1.5`, `2`	No
password_level	Integer	min: `0`, max: `255`	No
password_type	Choice	`0`, `6`, `7`	No
password	String		No
session_timeout	Integer	min: `0`, max: `2147483647`	No
monitor	Boolean	`true`, `false`	No
escape_character	String		No
logging_synchronous	Boolean	`true`, `false`	No
transport_output	List	Choice[`all`, `acercon`, `lat`, `mop`, `nasi`, `none`, `pad`, `rlogin`, `ssh`, `telnet`, `udptn`]	No

vtys (iosxe.devices.configuration.line)

Name	Type	Constraint	Mandatory
number_from	Integer	min: `0`, max: `1869`	Yes
number_to	Integer	min: `1`, max: `1869`	No
access_classes	List	`[access_classes]`	No
exec_timeout_minutes	Integer	min: `0`, max: `35791`	No
exec_timeout_seconds	Integer	min: `0`, max: `2147483`	No
password_level	Integer	min: `0`, max: `255`	No
password_type	Choice	`0`, `6`, `7`	No
password	String		No
login_authentication	String		No
transport_preferred_protocol	Choice	`acercon`, `lat`, `mop`, `nasi`, `none`, `pad`, `rlogin`, `ssh`, `telnet`, `udptn`	No
authorization_exec	String		No
authorization_exec_default	Boolean	`true`, `false`	No
transport_input_all	Boolean	`true`, `false`	No
transport_input_none	Boolean	`true`, `false`	No
transport_input	List	String	No
session_timeout	Integer	min: `0`, max: `2147483647`	No
monitor	Boolean	`true`, `false`	No
escape_character	String		No
logging_synchronous	Boolean	`true`, `false`	No
transport_output	List	Choice[`all`, `acercon`, `lat`, `mop`, `nasi`, `none`, `pad`, `rlogin`, `ssh`, `telnet`, `udptn`]	No

auxes (iosxe.devices.configuration.line)

Name	Type	Constraint	Mandatory
number	Integer	min: `0`, max: `17`	Yes
exec_timeout_minutes	Integer	min: `0`, max: `35791`	No
exec_timeout_seconds	Integer	min: `0`, max: `2147483`	No
monitor	Boolean	`true`, `false`	No
escape_character	String		No
logging_synchronous	Boolean	`true`, `false`	No
transport_output	List	Choice[`none`]	No

access_classes (iosxe.devices.configuration.line.vtys)

Name	Type	Constraint	Mandatory
direction	Choice	`in`, `out`	Yes
access_list	String		No
vrf_also	Boolean	`true`, `false`	No

Examples

iosxe:
  devices:
    - name: Device1
      configuration:
        line:
          consoles:
            - number: 0
              exec_timeout_minutes: 0
              exec_timeout_seconds: 45
              login_local: true
              privilege_level: 15
              stopbits: '1'
              password_level: 100
              password_type: '0'
              password: testpasswd
              session_timeout: 3600
              monitor: true
              escape_character: BREAK
              logging_synchronous: true
              transport_output:
                - ssh
                - telnet
          vtys:
            - number_from: 0
              number_to: 4
              access_classes:
                - direction: in
                  access_list: MGMT-ACCESS
                  vrf_also: true
              exec_timeout_minutes: 30
              exec_timeout_seconds: 0
              password_type: '7'
              password: encryptedPassword123
              login_authentication: default
              transport_preferred_protocol: ssh
              transport_input:
                - ssh
              session_timeout: 1800
              monitor: false
              escape_character: '^^'
              logging_synchronous: true
              transport_output:
                - ssh
            - number_from: 5
              number_to: 15
              exec_timeout_minutes: 10
              exec_timeout_seconds: 0
              transport_input_all: false
              transport_input:
                - ssh
                - telnet
              transport_output:
                - all
          auxes:
            - number: 0
              exec_timeout_minutes: 15
              exec_timeout_seconds: 0
              monitor: false
              escape_character: BREAK
              logging_synchronous: false
              transport_output:
                - none