NSX-T Data Center REST API

It returns the exclusion IP list present in the default malicious group

Querying the API on GM with a valid enforcement point path, the API will return the list of exclusion IPs
from the default malicious IP group of the site represented by the enforcement point path.
In the absence of an enforcement point path, the API returns the exclusion IPs present in the global default
malicious IP group of GM.
Querying the API on LM, the api will return a list of exclusion IP addresses present in the local default malicious
ip group.
The API will not consider the IP addresses present in the user created malicious group.
This API is only available when using VMware NSX.

Request:

Method:

GET

URI Path(s):

/policy/api/v1/infra/ip-reputation-exclusion-list

Request Headers:

n/a

Query Parameters:

RealizationListRequestParameters+

Name	Description	Type	Notes
cursor	Opaque cursor to be used for getting next page of records (supplied by current result page)	string
enforcement_point_path	String Path of the enforcement point The path of the enforcement point from which the list of members needs to be fetched. Forward slashes must be escaped using %2F.	string
include_mark_for_delete_objects	Include objects that are marked for deletion in results If true, resources that are marked for deletion will be included in the results. By default, these resources are not included.	boolean	Default: "False"
included_fields	Comma separated list of fields that should be included in query result Note - this parameter currently only works when used with the search APIs /policy/api/v1/search/query and /policy/api/v1/search/dsl. It is ignored for other list APIs.	string
page_size	Maximum number of results to return in this page (server may return fewer)	integer	Minimum: 0 Maximum: 1000 Default: "1000"
sort_ascending		boolean
sort_by	Field by which records are sorted	string

Request Body:

n/a

Example Request:

GET https://<policy-mgr>/policy/api/v1/global-infra/ip-reputation-exclusion-list?enforcement_point_path=/global-infra/sites/pune/enforcement-points/default

Successful Response:

Response Code:

200 OK

Response Headers:

Content-type: application/json

Response Body:

IPReputationExclusionList+

Name	Description	Type	Notes
exclusion_list	Array of IP addresses The list returns the IPs present in the exclusion list of default malicious IP reputation group present on a specific site. This array can consist of a single IP address, IP address range or a subnet. Its type can be of either IPv4 or IPv6.	array of IPElement	Readonly

Example Response:

{ "exclusion_list": ["10.112.32.54", "125.36.12.54" ] }

Required Permissions:

read

Feature:

policy_security_settings