This submodule contains a collection of YANG definitions for Cisco IOS-XR crypto-ssh package operational data. Copyright (c) 20...
Version: 2021-06-04
submodule Cisco-IOS-XR-crypto-ssh-oper-sub2 { yang-version 1; belongs-to Cisco-IOS-XR-crypto-ssh-oper { prefix Cisco-IOS-XR-crypto-ssh-oper; } import Cisco-IOS-XR-types { prefix xr; } import cisco-semver { prefix semver; } organization "Cisco Systems, Inc."; contact "Cisco Systems, Inc. Customer Service Postal: 170 West Tasman Drive San Jose, CA 95134 Tel: +1 800 553-NETS E-mail: cs-yang@cisco.com"; description "This submodule contains a collection of YANG definitions for Cisco IOS-XR crypto-ssh package operational data. Copyright (c) 2013-2021 by Cisco Systems, Inc. All rights reserved."; revision "2021-06-04" { description "Default option for authentication. 2021-05-10 RSA keys allowed in FIPS mode 2021-03-16 Max auth limit and certificate username option added for show ssh server. 2020-11-18 Port forwarding options in oper data. 2020-03-05 Modified show ssh CLI."; } revision "2020-01-21" { description "Yang support to import pubkey for user in config mode"; } revision "2019-07-08" { description "Introducing show ssh server CLI."; } revision "2019-04-05" { description "Establish semantic version baseline."; } revision "2017-08-25" { description "Introducing show ssh history CLI."; } revision "2017-05-01" { description "Fixing backward compatibility error in module."; } revision "2015-06-02" { description "IOS XR 5.3.2 revision."; } revision "2015-01-07" { description "IOS XR 5.3.1 revision."; } semver:module-version "2.0.0"; semver:module-version "1.1.0"; semver:module-version "1.0.1"; typedef Connection { type enumeration { enum "undefined" { value 0; description "connection type not yet known"; } enum "shell" { value 1; description "Interactive Shell"; } enum "exec" { value 2; description "Remote Command Execution"; } enum "scp" { value 3; description "Secure Copy"; } enum "sftp-subsystem" { value 4; description "Secure File Transfer"; } enum "netconf-subsystem" { value 5; description "Netconf Subsystem"; } enum "tl1-subsystem" { value 6; description "TL1 Subsystem"; } enum "netconf-xml-subsystem" { value 7; description "Netconf XML Subsystem"; } enum "port-forwarded-local" { value 8; description "Local Port Forwarded"; } } description "SSH channel connection types"; } typedef Authen { type enumeration { enum "undefined" { value -1; description "Authentication type unknown"; } enum "password" { value 0; description "Password"; } enum "rsa-public-key" { value 1; description "RSA public key encryption type"; } enum "keyboard-interactive" { value 2; description "Keyboard interactive"; } enum "x509-rsa-pubkey" { value 3; description "X509 RSA public key "; } enum "x509-dsa-pubkey" { value 4; description "X509 DSA public key"; } enum "x509-ecdsa521-pubkey" { value 5; description "X509 ECDSA 521 pubkey"; } enum "x509-ecdsa384-pubkey" { value 6; description "X509 ECDSA 384 pubkey"; } enum "x509-ecdsa256-pubkey" { value 7; description "X509 ECDSA 256 pubkey"; } } description "SSH session authentication types"; } typedef Version { type enumeration { enum "v2" { value 0; description "Version V2"; } enum "v1" { value 1; description "Version V1"; } } description "SSH state versions"; } typedef States { type enumeration { enum "open" { value 1; description "SSH Open"; } enum "version-ok" { value 2; description "SSH version OK"; } enum "key-exchange-initialize" { value 3; description "Key exchange(KEX) init message exchanged"; } enum "key-exchange-dh" { value 4; description "Diffie-Hellman(DH) secret is generated"; } enum "new-keys" { value 5; description "New keys are received"; } enum "authenticate-information" { value 6; description "Need more information to authenticate"; } enum "authenticated" { value 7; description "The client successfully authenticated"; } enum "channel-open" { value 8; description "Channel has been successfully opened"; } enum "pty-open" { value 9; description "Allocated PTY"; } enum "session-open" { value 10; description "Opened an exec shell"; } enum "rekey" { value 11; description "Received rekey request"; } enum "suspended" { value 12; description "Session is suspended"; } enum "session-closed" { value 13; description "Session has been closed"; } } description "SSH session states"; } typedef Mac { type enumeration { enum "mac-not-applicable" { value -1; description "unknown"; } enum "hmac-md5" { value 0; description "Hash-based Message Authentication Code(HMAC) MD5 algorithm"; } enum "hmac-sha1" { value 1; description "Hash-based Message Authentication Code(HMAC) SHA1 algorithm"; } enum "hmac-sha2-256" { value 2; description "Hash-based Message Authentication Code(HMAC) SHA2-256 algorithm"; } enum "hmac-sha2-512" { value 3; description "Hash-based Message Authentication Code(HMAC) SHA2-512 algorithm"; } enum "aes-gcm" { value 4; description "AES GCM based Authentication Tag as MAC algorithm"; } } description "Different Message Authentication Code(MAC) functions"; } typedef Cipher { type enumeration { enum "cipher-not-applicable" { value -1; description "unknown"; } enum "aes128-cbc" { value 0; description "Advanced Encryption Standard(AES) 128 bits cipher block chaining(CBC)"; } enum "aes192-cbc" { value 1; description "Advanced Encryption Standard(AES) 192 bits cipher block chaining(CBC)"; } enum "aes256-cbc" { value 2; description "Advanced Encryption Standard(AES) 256 bits cipher block chaining(CBC)"; } enum "triple-des-cbc" { value 3; description "Triple Data Encryption Standard(DES) cipher block chaining(CBC)"; } enum "aes128-ctr" { value 4; description "Advanced Encryption Standard(AES) 128 bits counter mode (CTR)"; } enum "aes192-ctr" { value 5; description "Advanced Encryption Standard(AES) 192 bits counter mode (CTR)"; } enum "aes256-ctr" { value 6; description "Advanced Encryption Standard(AES) 256 bits counter mode (CTR)"; } enum "aes128-gcm" { value 7; description "Advanced Encryption Standard(AES) 128 bits GCM mode (GCM)"; } enum "aes256-gcm" { value 8; description "Advanced Encryption Standard(AES) 256 bits GCM mode (GCM)"; } enum "chacha20-poly1305" { value 9; description "Chacha20 stream cipher with Poly1305-AES encryption"; } } description "SSH session in and out cipher standards"; } typedef Hostkey { type enumeration { enum "host-key-not-applicable" { value -1; description "unknown"; } enum "ssh-dss" { value 0; description "Algorithm type DSS"; } enum "ssh-rsa" { value 1; description "Algorithm type RSA"; } enum "ecdsa-sha2-nistp521" { value 2; description "Algorithm type ECDSA NISTP521"; } enum "ecdsa-sha2-nistp384" { value 3; description "Algorithm type ECDSA NISTP384"; } enum "ecdsa-sha2-nistp256" { value 4; description "Algorithm type ECDSA NISTP256"; } enum "ssh-ed25519" { value 5; description "Algorithm type ED25519"; } enum "ssh-x509v3-rsa" { value 6; description "Algorithm type X509V3 SSH RSA"; } enum "ssh-rsa-sha512" { value 7; description "Algorithm type RSA SHA512"; } enum "ssh-rsa-sha256" { value 8; description "Algorithm type RSA SHA256"; } } description "SSH session authentication types"; } typedef Kex-name { type enumeration { enum "kex-not-applicable" { value -1; description "unknown"; } enum "diffie-hellman-group1" { value 0; description "Diffie-Hellman group 1 key exchange algorithm"; } enum "diffie-hellman-group14" { value 1; description "Diffie-Hellman group 14 key exchange algorithm"; } enum "diffie-hellman-group15" { value 2; description "Diffie-Hellman group 15 key exchange algorithm"; } enum "diffie-hellman-group16" { value 3; description "Diffie-Hellman group 16 key exchange algorithm"; } enum "diffie-hellman-group17" { value 4; description "Diffie-Hellman group 17 key exchange algorithm"; } enum "diffie-hellman-group18" { value 5; description "Diffie-Hellman key group 18 exchange algorithm"; } enum "ecdh-nistp256" { value 6; description "Elliptical curve Diffie-Hellman prime 256 key exchange algorithm"; } enum "ecdh-nistp384" { value 7; description "Elliptical curve Diffie-Hellman prime 384 key exchange algorithm"; } enum "ecdh-nistp521" { value 8; description "Elliptical curve Diffie-Hellman prime 521 exchange algorithm"; } enum "curve25519" { value 9; description "Curve25519 based on Elliptical curve Diffie-Hellman"; } enum "diffie-hellman-group14-sha256" { value 10; description "Diffie-Hellman group 14 with SHA-256 key exchange algorithm"; } enum "diffie-hellman-group16-sha512" { value 11; description "Diffie-Hellman group 16 with SHA-512 key exchange algorithm"; } enum "curve25519-libssh" { value 12; description "Curve25519 based on Elliptical curve Diffie-Hellman"; } enum "password-authenticated" { value 13; description "Password authenticated key agreement algorithm"; } } description "Different key-exchange(kex) algorithms"; } grouping SESSION-HISTORY-INFO { description "Information for a particular session/channel"; list session-history-info { description "session history info"; leaf session-id { type uint32; description "Session ID"; } leaf node-name { type xr:Node-id; description "Node name"; } leaf user-id { type string; description "User ID"; } leaf host-address { type string; description "Host address"; } leaf version { type Version; description "SSH state version"; } leaf authentication-type { type Authen; description "Authentication method"; } list mc-info { description "List of channel info"; uses SSH-MCINFO; } // list mc-info } // list session-history-info } // grouping SESSION-HISTORY-INFO grouping SSH-SESSION-HISTORY { description "Incoming ssh session history information"; container incoming-sessions { description "List of incoming sessions"; uses SESSION-HISTORY-INFO; } // container incoming-sessions } // grouping SSH-SESSION-HISTORY grouping SSH-MCINFO { description " Channel info store in bag"; leaf channel-id { type uint32; description "Channel ID"; } leaf connection-type { type Connection; description "Channel Connection Type"; } leaf vty-line-number { type uint32; description "VTY line number"; } leaf vty-assigned { type boolean; description "Boolean indicating whether line VTY line number is valid"; } } // grouping SSH-MCINFO grouping SESSION-BRIEF-INFO { description "Information for a particular session/channel"; list session-brief-info { description "session brief info"; leaf session-id { type uint32; description "Session ID"; } leaf node-name { type xr:Node-id; description "Node name"; } leaf session-state { type States; description "SSH session state"; } leaf user-id { type string; description "User ID"; } leaf host-address { type string; description "Host address"; } leaf version { type Version; description "SSH state version"; } leaf authentication-type { type Authen; description "Authentication method"; } list mc-info { description "List of channel info"; uses SSH-MCINFO; } // list mc-info } // list session-brief-info } // grouping SESSION-BRIEF-INFO grouping SSH-SESSION-BRIEF { description "Incoming and outgoing session information"; container incoming-sessions { description "List of incoming sessions"; uses SESSION-BRIEF-INFO; } // container incoming-sessions container outgoing-sessions { description "List of outgoing sessions"; uses SESSION-BRIEF-INFO; } // container outgoing-sessions } // grouping SSH-SESSION-BRIEF grouping SESSION-REKEY-INFO { description "Session rekey info"; list session-rekey-info { description "session rekey info"; leaf session-id { type uint32; description "Session ID"; } leaf session-rekey-count { type uint32; description "Session Rekey Count"; } leaf time-to-rekey { type string; description "Time To Rekey"; } leaf volume-to-rekey { type string; description "Volume To Rekey"; } } // list session-rekey-info } // grouping SESSION-REKEY-INFO grouping SSH-SESSION-REKEY { description "Incoming and outgoing session rekey details"; container incoming-sessions { description "List of incoming sessions"; uses SESSION-REKEY-INFO; } // container incoming-sessions container outgoing-connections { description "List of outgoing connections"; uses SESSION-REKEY-INFO; } // container outgoing-connections } // grouping SSH-SESSION-REKEY grouping SESSION-DETAIL-INFO { description "Particular session details"; list session-detail-info { description "session detail info"; leaf session-id { type uint32; description "Session ID"; } leaf key-exchange { type Kex-name; description "Key exchange name"; } leaf public-key { type Hostkey; description "Host key algorithm"; } leaf in-cipher { type Cipher; description "In cipher algorithm"; } leaf out-cipher { type Cipher; description "Out cipher algorithm"; } leaf in-mac { type Mac; description "In MAC"; } leaf out-mac { type Mac; description "Out MAC"; } leaf start-time { type string; description "session start time"; } leaf end-time { type string; description "session end time"; } } // list session-detail-info } // grouping SESSION-DETAIL-INFO grouping SSH-SESSION-DETAIL { description "Incoming and outgoing session details"; container incoming-sessions { description "List of incoming sessions"; uses SESSION-DETAIL-INFO; } // container incoming-sessions container outgoing-connections { description "List of outgoing connections"; uses SESSION-DETAIL-INFO; } // container outgoing-connections } // grouping SSH-SESSION-DETAIL } // submodule Cisco-IOS-XR-crypto-ssh-oper-sub2
© 2023 YumaWorks, Inc. All rights reserved.