NSX-T Data Center Global Manager REST API
Associated URIs:
| API Description | API Path |
|---|---|
IP Reputation feed configuration.API to retrieve the current IP Reputation feed configuration. |
GET /global-manager/api/v1/global-infra/firewall-ip-reputation-feed
|
IP reputation feed actions.This API can be used to activate or deactivate auto-download of IP reputation feed, it can also be used to trigger download of IP reputation feed when required. Once auto-download is activated, IP reputation feed will be downloaded at regular intervals of 720 mins(12 hrs). Auto-download of IP reputation feed can be activated using the action 'enable_auto_download', to deactivate use action 'disable_auto_download' and to trigger a download use action 'download'. For Global Manager, the only action that is supported is action=download. The enforcement_point_path of the site where the feed is to be downloaded should be provided along with the action |
POST /global-manager/api/v1/global-infra/firewall-ip-reputation-feed
|
API return the last feed download status on LM from NTICS.NSX downloads the IP reputation feed from NTICS periodically and in realtime on user request. The API return the status of last feed download from NTICS on a given site. |
GET /global-manager/api/v1/global-infra/firewall-ip-reputation-feed/download/status
|
It returns the exclusion IP list present in the default malicious groupQuerying the API on GM with a valid enforcement point path, the API will return the list of exclusion IPs from the default malicious IP group of the site represented by the enforcement point path. In the absence of an enforcement point path, the API returns the exclusion IPs present in the global default malicious IP group of GM. Querying the API on LM, the api will return a list of exclusion IP addresses present in the local default malicious ip group. The API will not consider the IP addresses present in the user created malicious group. |
GET /global-manager/api/v1/global-infra/ip-reputation-exclusion-list
|
List IP reputation site mapping for all sites.List IP reputation site mapping details. |
GET /global-manager/api/v1/global-infra/ip-reputation-site-mappings
|
Delete IP Reputation site mapping on GMDelete IP Reputation site mapping from GM. On deletion of the site mapping for a given site, site specific local default malicious security policies/rules will be enabled and the global ip reputation default security policies will be removed from the site. |
DELETE /global-manager/api/v1/global-infra/ip-reputation-site-mappings/{mapping-id}
|
Read IP reputation site mapping on GM.Read IP reputation site mapping details for a given site. |
GET /global-manager/api/v1/global-infra/ip-reputation-site-mappings/{mapping-id}
|
Patch IP Reputation site mapping on GMCreate IP reputation site mapping for a specific site. IP reputation site mapping provides a way for the user to control the management of IP reputation based security policies from GM. Creation of site mapping for a site results in disabling IP reputation default security policies on sites. Post creation of the site mapping the global default security policies from GM gets pushed to the site. |
PATCH /global-manager/api/v1/global-infra/ip-reputation-site-mappings/{mapping-id}
|
Create or update IP Reputation site mapping on GMCreate IP reputation site mapping for a specific site. IP reputation site mapping provides a way for the user to control the management of IP reputation based security policies from GM. Creation of site mapping for a site results in disabling IP reputation default security policies on sites. Post creation of the site mapping the global default security policies from GM gets pushed to the site. |
PUT /global-manager/api/v1/global-infra/ip-reputation-site-mappings/{mapping-id}
|