Login
| Title | Size | Downloads |
|---|---|---|
| H3C VCF Controller Operation Log Messages Reference-E25xx-5W514-book.pdf | 1.76 MB |
- Table of Contents
- Related Documents
-
|
|
|
H3C VCF Controller |
|
Operation Log Messages Reference |
|
|
|
|
|
New H3C Technologies Co., Ltd. http://www.h3c.com
Document version: 5W514-20220219 |
Copyright © 2022, New H3C Technologies Co., Ltd. and its licensors
All rights reserved
No part of this manual may be reproduced or transmitted in any form or by any means without prior written consent of New H3C Technologies Co., Ltd.
Trademarks
Except for the trademarks of New H3C Technologies Co., Ltd., any trademarks that may be mentioned in this document are the property of their respective owners.
Notice
The information in this document is subject to change without notice. All contents in this document, including statements, information, and recommendations, are believed to be accurate, but they are presented without warranty of any kind, express or implied. H3C shall not be liable for technical or editorial errors or omissions contained herein.
Contents
Viewing operation log messages
Create mapping table of access network
Update mapping table of access network
Delete mapping table of access network
Bound working port to mapping table
Unbound working port to mapping table
Create mapping table of service network
Update mapping table of service network
Delete mapping table of service network
Updated binding relationship between mapping table and device
Delete bindings between mapping table and all devices
Update binding relationship between port and mapping table
Deleted bindings between mapping table and all ports
Add an API authentication-free IP
Delete an API authentication-free IP
Add an IP address to white list
Delete an IP address from white list
Update the quantity of requested licenses
Change thresholds for all CPUs
Clear periodic radar detection tasks
Devices change to fail-safe mode
Assign an IP address to the loopback interface
Delete the IP address of the loopback interface
Modify alert log remote transmission mode
Modify audit log transmission mode
Upload IPS signature library from local device
Upload virus library from local device
Upload application library from local device
Create VLAN-VXLAN mapping table
Update VLAN-VXLAN mapping table
Delete VLAN-VXLAN mapping table
Create QinQ-VXLAN mapping table
Update QinQ-VXLAN mapping table
Delete QinQ-VXLAN mapping table
Update VLAN-VXLAN mapping table binding
Delete VLAN-VXLAN mapping table binding
Bind ports to VLAN-VXLAN mapping table
Update bindings between ports and VLAN-VXLAN mapping table
Delete bindings between ports and VLAN-VXLAN mapping table
Bind ports to QinQ-VXLAN mapping table
Update bindings between ports and QinQ-VXLAN mapping table
Delete bindings between ports and QinQ-VXLAN mapping table
Start migration on physical gateway
Complete migration on physical gateway
Start data synchronization on physical NE
Start configuration auditing on physical NE
Start data synchronization on virtual NE
Start configuration auditing on virtual NE
Create aggregation group member
Update aggregation group member
Delete aggregation group member
Create global aggregation group configuration
Update global aggregation group configuration
Delete global aggregation group configuration
Start data synchronization on device
Start configuration audit on device
Create third-party service device
Update third-party service device
Delete third-party service device
Create IPsec site connection peer CIDR
Delete IPsec site connection peer CIDR
Configure batch vSwitch deployment parameters
Create vRouter interconnection
Update vRouter interconnection
Delete vRouter interconnection
Create Layer 2 DC interconnection
Update Layer 2 DC interconnection
Delete Layer 2 DC interconnection
Create Layer 3 DC interconnection
Update Layer 3 DC interconnection
Delete Layer 3 DC interconnection
Add subnet to Layer 3 DC interconnection
Delete Layer 3 DC interconnection subnet
Upload DHCP configuration file
Upload device configuration file
Upload device configuration file
Upload device configuration file
Introduction
Operation logs record system operations and configuration modifications, such as application operations (installing, starting, stopping, or uninstalling an application) and team configuration. Operation log messages include operation description, result, and failure reasons, and provide reference for system analysis and maintenance.
This document assumes that the readers are familiar with data communications technologies and H3C VCF controller products.
Viewing operation log messages
Select Monitor > Log > Operation Log to enter operation log view. The generated operation log messages are displayed on pages as shown in Figure 1.
Figure 1 Operation log messages
Table 1 Operation log message elements
|
Element |
Description |
|
Date/Time |
Date and time when the log message was generated. |
|
User |
Name of the user that triggered the log generation. |
|
IP |
IP address of the terminal where the user performed the operation. |
|
Origin |
Name of the service module that produced the message. |
|
Description |
Text string that contains detailed information about the operation. |
|
Result |
Operation result: Success or Failure. |
|
Failure reason |
Possible reasons for an operation failure. |
Syslog message format
VCF controllers can send operation logs to syslog servers through the syslog protocol. To set the IP address and port number of a syslog server, select Controller > System > Configurations on the top navigation bar, and then select Operation Log.
By default, controllers send operation logs in the following format:
<PRI>TIMESTAMP Hostname Origin/severity/Keywords CONTENT
Table 2 Syslog message elements
|
Element |
Description |
|
<PRI> |
Priority identifier. It is calculated by using the following formula: Priority identifier=facilityx8+severity Where: · Facility represents the programming module defined by syslog. In the current software version, the facility is user-level and its value is 1. · Severity represents the syslog message severity level. For more information, see Table 4. |
|
TIMESTAMP |
Date and time when the event occurred. |
|
Hostname |
Name or IP address of the server or virtual machine where the controller that produced the message resides. |
|
Origin |
Name of the service module that produced the message. |
|
severity |
Severity level of the message. For more information, see Table 5. For more information about the mappings between operation log message severity levels and syslog message severity levels, see Table 6. |
|
Keywords |
Keywords of the message that facilitate searching or memorizing. |
|
CONTENT |
Text string that contains detailed information about the operation, in the following format: User=username IP=user IP Description=description Result=result Cause=operation failure causes |
Table 3 lists all service modules that might produce operation log messages.
|
Service module name |
Description |
|
CON_APP |
Application management module. |
|
CON_AUTH |
Authentication management module. |
|
CON_LICENSE |
License management module. |
|
CON_LISTENER |
Listener module. |
|
CON_NetworkMonitor |
Network monitoring module. |
|
CON_OAM |
OAM module. |
|
CON_OPENFLOW |
OpenFlow module. |
|
CON_REGION |
Region module. |
|
CON_ROUTERCONFIGS |
Route configuration module. |
|
CON_SNMP |
SNMP module. |
|
CON_SYSTEM |
System management module. |
|
CON_TEAM |
Team module. |
|
CON_TOPOLOGY |
Topology management module. |
|
CON_USER |
User management module. |
|
FWaaS |
Firewall service module. |
|
LBaaS |
Load balancing module. |
|
NEM |
Carrier network module. |
|
NEYANGM |
NEYANG manager module. |
|
NGFWM |
NGFW manager module. |
|
ResourceAccessTemplate |
Resource access template module. |
|
ServiceChain |
Service chain module. |
|
SSLVPNaaS |
SSL VPN service module. |
|
Tenant |
Tenant module. |
|
TPaaS |
Third-party service module. |
|
TPFW |
Third-party firewall module. |
|
VPNaaS |
IPsec VPN service module. |
|
VSM |
Virtual network module. |
|
ZTP |
Zero touch provisioning module. |
Syslog messages are classified into eight severity levels from 0 to 7. The lower the number, the higher the severity, as shown in Table 4.
Table 4 Syslog message severity levels
|
Level |
Severity |
Description |
|
0 |
Emergency |
The system is unusable. |
|
1 |
Alert |
Action must be taken immediately. |
|
2 |
Critical |
Critical condition. |
|
3 |
Error |
Error condition. |
|
4 |
Warning |
Warning condition. |
|
5 |
Notice |
Normal but significant condition. |
|
6 |
Informational |
Informational message. |
|
7 |
Debug |
Debugging message. |
Operation log messages are classified into two severity levels, as shown in Table 5.
Table 5 Operation log message severity levels
|
Level |
Severity |
Description |
|
0 |
Info |
Information message. It indicates that the operation succeeded. |
|
1 |
Warning |
Warning condition. It indicates that the operation failed. |
Table 6 shows the mappings between operation log message severity levels and syslog message severity levels.
Table 6 Severity level mappings
|
Operation log message severity level |
Syslog message severity level |
|
0 |
6 |
|
1 |
4 |
Using this document
This document categories operation log messages by service module. This document explains messages in tables. Table 7 describes information provided in these tables.
Table 7 Message explanation table contents
|
Item |
Content |
Example |
|
Keyword |
Summary of the message that facilitates searching or memorizing. |
UPLOAD_APP_OP |
|
Message text |
Presents the message description. |
Uploaded application: $1. |
|
Variable fields |
Briefly describes the variable fields in the order that they appear in the message text. The variable fields are numbered in the "$Number" form to help you identify their location in the message text. |
$1: Name of the application installation package. |
|
Example |
Provides a real message example. |
Uploaded application: arp-2156.zip. |
|
Explanation |
Explains the message. |
An application installation package was uploaded. |
|
Possible failure causes |
Provides possible causes of an operation failure. |
· The application already exists. |
BSM
This section contains bare metal management module messages.
Create mapping table of access network
|
Keyword |
CREATE_BSM_ACCESS_NETWORK_OP |
|
Message text |
Created a VLAN-VXLAN mapping table for the access network: $1. |
|
Variable fields |
$1: VLAN-VXLAN mapping table configuration information. |
|
Example |
Created a VLAN-VXLAN mapping table for the access network: Type: [VXLAN] Network: [INSPECTION] Default_PVID: [null] Domain: [ Name: [aaa] ID: [29577831-31d1-46e7-a33a-40f6ae6f4179] VLAN: [10] VXLAN: [100] ]. |
|
Explanation |
A VLAN-VXLAN mapping table was created for the access network. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · Invalid mapping table name. · The VLAN ID is invalid or out of range. · The VXLAN ID is invalid or out of range. |
Update mapping table of access network
|
Keyword |
UPDATE_BSM_ACCESS_NETWORK_OP |
|
Updated a VLAN-VXLAN mapping table of the access network: $1. |
|
|
Variable fields |
$1: VLAN-VXLAN mapping table configuration information. |
|
Example |
Updated a VLAN-VXLAN mapping table of the access network: Type: [VXLAN] Network: [WORKING] Default_PVID: [null] Domain: [ Name: [new_name] ID: [3a24b5b8-8fd1-492d-b867-88976c198d17] VLAN: [30] VXLAN: [300] ]. |
|
Explanation |
A VLAN-VXLAN mapping table of the access network was modified. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · The mapping table does not exist. · Invalid mapping table name. · The VLAN ID is invalid or out of range. · The VXLAN ID is invalid or out of range. · The reserved VLAN ID conflicts with a VLAN ID of a VLAN-VXLAN mapping. |
Delete mapping table of access network
|
Keyword |
DELETE_BSM_ACCESS_NETWORK_OP |
|
Message text |
Deleted a VLAN-VXLAN mapping table from the access network: $1. |
|
Variable fields |
$1: ID of the VLAN-VXLAN mapping table. |
|
Example |
Deleted a VLAN-VXLAN mapping table from the access network: 3a24b5b8-8fd1-492d-b867-88976c198d17. |
|
Explanation |
A VLAN-VXLAN mapping table was deleted from the access network. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · The mapping table does not exist. · The mapping table has been bound to devices. · The mapping table has been bound to interfaces. |
Modify inspection port status
|
Keyword |
MODIFY_BSM_INSPECT_STATUS_OP |
|
Message text |
Modified states of inspection network interfaces: $1. |
|
Variable fields |
$1: Inspection network interface status. |
|
Example |
Modified states of inspection network interfaces: Port_status: [INACTIVE] Port_list: [ Device_type: [DEVICE_NAME], device_value: [TOR1], port_name: [GigabitEthernet1/0/1] ]. |
|
Explanation |
The states of the inspection network interfaces were modified. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · Invalid interface list. · Invalid interface names exist. · Nonexistent devices are specified. · Invalid device MAC addresses exist. · Invalid device names exist. · Non-VTEP interfaces exist. · Interfaces not bound to the inspection network exist. · Interfaces bound to non-inspection networks exist. |
Bound working port to mapping table
|
Keyword |
CREATE_BSM_WORK_PORTBIND_OP |
|
Bound working network interfaces to a VLAN-VXLAN mapping table: $1. |
|
|
Variable fields |
$1: Working network interface binding information. |
|
Example |
Bound working network interfaces to a VLAN-VXLAN mapping table: VLAN: [100] VXLAN: [1000] Domain_ID: [49df9c11-b06d-4910-bc54-5992a4459959] Domain_name: [working_100_1000] Port_list: [ Bond_mode: [4], info: [ Device_type: [DEVICE_NAME], device_value: [TOR1], port_name: [GigabitEthernet1/0/2] Device_type: [DEVICE_NAME], device_value: [TOR1], port_name: [GigabitEthernet1/0/3] ] Bond_mode: [4], info: [ Device_type: [DEVICE_NAME], device_value: [TOR2], port_name: [GigabitEthernet1/0/2] Device_type: [DEVICE_NAME], device_value: [TOR2], port_name: [GigabitEthernet1/0/3] ] ]. |
|
Explanation |
Bound working network interfaces to a VLAN-VXLAN mapping table. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · The VLAN ID is invalid or out of range. · The VXLAN ID is invalid or out of range. · Invalid interface list. · Invalid interface names exist. · Nonexistent devices are specified. · Invalid device MAC addresses exist. · Invalid device names exist. · The default access VLAN does not exist. · Invalid interface list. · Non-VTEP interfaces exist. · Interfaces bound to other VLAN-VXLAN mapping tables exist. · Duplicate interfaces exist. · Interfaces already bound to the VLAN-VXLAN mapping table exist. · Interfaces bound to the inspection network exist. |
Unbound working port to mapping table
|
Keyword |
DELETE_BSM_WORK_PORTBIND_OP |
|
Message text |
Unbound working network interfaces from a VLAN-VXLAN mapping table: $1. |
|
Variable fields |
$1: Working network interface binding information. |
|
Example |
Unbound working network interfaces from a VLAN-VXLAN mapping table: VLAN: [100] VXLAN: [1000] Domain_ID: [null] Domain_name: [null] Port_list: [ Bond_mode: [4], info: [ Device_type: [DEVICE_NAME], device_value: [TOR1], port_name: [GigabitEthernet1/0/2] Device_type: [DEVICE_NAME], device_value: [TOR1], port_name: [GigabitEthernet1/0/3] ] Bond_mode: [4], Info: [ Device_type: [DEVICE_NAME], device_value: [TOR2], Port_name: [GigabitEthernet1/0/2] Device_type: [DEVICE_NAME], device_value: [TOR2], port_name: [GigabitEthernet1/0/3] ] ]. |
|
Explanation |
Unbound working network interfaces from a VLAN-VXLAN mapping table. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · The VLAN ID is invalid or out of range. · The VXLAN ID is invalid or out of range. · Invalid interface list. · Invalid interface names exist. · Nonexistent devices are specified. · Invalid device MAC addresses exist. · Invalid device names exist. · The default access VLAN does not exist. · Invalid interface list. · Duplicate interfaces exist. · The mapping table does not exist. · Interfaces not bound to the working network exist. · Interfaces not bound to the VLAN-VXLAN mapping table exist. · Non-VTEP interfaces exist. · Duplicate interfaces exist. · The mapping table has been bound to devices. · The mapping table has been bound to interfaces. |
Add default access VLAN
|
Keyword |
CREATE_BSM_WORKING_VLAN_OP |
|
Message text |
Added a default access VLAN for the working network: $1. |
|
Variable fields |
$1: Default access VLAN. |
|
Example |
Added a default access VLAN for the working network: VLAN: [100]. |
|
Explanation |
A default access VLAN was added to the working network. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · The VLAN ID is invalid or out of range. · The working network has been configured with a default access VLAN. |
Delete default access VLAN
|
Keyword |
DELETE_BSM_WORKING_VLAN_OP |
|
Message text |
Deleted the default access VLAN from the working network. |
|
Variable fields |
N/A |
|
Example |
Deleted the default access VLAN from the working network. |
|
Explanation |
The default access VLAN was deleted from the working network. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · The default access VLAN does not exist. · The default access VLAN is being used. |
Create mapping table of service network
|
Keyword |
CREATE_BSM_VLAN_DOMAIN_OP |
|
Message text |
Created a VLAN-VXLAN mapping table for the service network: $1. |
|
Variable fields |
$1: VLAN-VXLAN mapping table configuration information. |
|
Example |
Created a VLAN-VXLAN mapping table for the service network: Domain_name: [domain1] ID: [5473e36e-5b34-4e9d-9d20-206310d1d478] Mappings: [ Start_VLAN: [50], end_VLAN: [60], start_VXLAN: [310], end_VXLAN: [310], access_mode: [ETHERNET] ]. |
|
Explanation |
A VLAN-VXLAN mapping table was created for the service network. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · Invalid mapping table name. · The VLAN ID is invalid or out of range. · The VXLAN ID is invalid or out of range. · Overlapping mappings exist. · The mapping table already exists. |
Update mapping table of service network
|
Keyword |
UPDATE_BSM_VLAN_DOMAIN_OP |
|
Message text |
Updated a VLAN-VXLAN mapping table of the service network: $1. |
|
Variable fields |
$1: VLAN-VXLAN mapping table configuration information. |
|
Example |
Updated a VLAN-VXLAN mapping table of the service network: Domain_name: [domain2] ID: [5473e36e-5b34-4e9d-9d20-206310d1d478] Mappings: [ Start_VLAN: [50], end_VLAN: [60], start_VXLAN: [320], end_VXLAN: [320], access_mode: [ETHERNET] ]. |
|
Explanation |
A VLAN-VXLAN mapping table of the service network was modified. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · The mapping table does not exist. · Invalid mapping table name. · The VLAN ID is invalid or out of range. · The VXLAN ID is invalid or out of range. · Overlapping mappings exist. · The reserved VLAN ID conflicts with a VLAN ID of a VLAN-VXLAN mapping. |
Delete mapping table of service network
|
Keyword |
DELETE_BSM_VLAN_DOMAIN_OP |
|
Message text |
Deleted a VLAN-VXLAN mapping table from the service network: $1. |
|
Variable fields |
$1: ID of the VLAN-VXLAN mapping table. |
|
Example |
Deleted a VLAN-VXLAN mapping table from the service network: 5473e36e-5b34-4e9d-9d20-206310d1d478. |
|
Explanation |
A VLAN-VXLAN mapping table was deleted from the service network. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · The mapping table does not exist. · The mapping table has been bound to devices. · The mapping table has been bound to interfaces. |
Bound mapping table to device
|
Keyword |
CREATE_BSM_VLAN_DOMAIN_BIND_OP |
|
Message text |
Bound devices to a VLAN-VXLAN mapping table: $1. |
|
Variable fields |
$1: VLAN-VXLAN mapping table binding information. |
|
Example |
Bound devices to a VLAN-VXLAN mapping table: Domain_ID: [29577831-31d1-46e7-a33a-40f6ae6f4179] Name: [aaa] Device_list: [ Device_ID: [ffd1efeb-5582-40af-b378-910d8e68bd6d], device_name: [TOR2] Device_ID: [bc96fa18-0888-474e-979d-9cf18f0433dd], device_name: [TOR1] ]. |
|
Explanation |
Bound devices to a VLAN-VXLAN mapping table. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · Devices already bound to the mapping table exist. · Nonexistent devices are specified. · Duplicate devices exist. · Devices bound to other mapping tables exist. · The mapping table does not exist. · The port on the specified device has been bound to a QinQ-VXLAN mapping table. · The reserved VLAN ID conflicts with a VLAN ID of a VLAN-VXLAN mapping. |
Updated binding relationship between mapping table and device
|
Keyword |
UPDATE_BSM_VLAN_DOMAIN_BIND_OP |
|
Message text |
Updated binding relationships between a VLAN-VXLAN mapping table and devices: $1. |
|
Variable fields |
$1: VLAN-VXLAN mapping table binding information. |
|
Example |
Updated binding relationships between a VLAN-VXLAN mapping table and devices: Domain_ID: [29577831-31d1-46e7-a33a-40f6ae6f4179] Name: [aaa] Device_list: [ Device_ID: [ffd1efeb-5582-40af-b378-910d8e68bd6d], device_name: [TOR2] Device_ID: [bc96fa18-0888-474e-979d-9cf18f0433dd], device_name: [TOR1] ]. |
|
Explanation |
Updated binding relationships between a VLAN-VXLAN mapping table and devices. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · Devices not bound to the mapping table exist. · Nonexistent devices are specified. · Duplicate devices exist. · Devices bound to other mapping tables exist. · The mapping table does not exist. · The port on the specified device has been bound to a QinQ-VXLAN mapping table. · The reserved VLAN ID conflicts with a VLAN ID of a VLAN-VXLAN mapping. |
Delete bindings between mapping table and all devices
|
Keyword |
DELETE_BSM_VLAN_DOMAIN_BIND_OP |
|
Message text |
Deleted binding relationships between a VLAN-VXLAN mapping table and all devices: $1. |
|
Variable fields |
$1: ID of the VLAN-VXLAN mapping table. |
|
Example |
Deleted binding relationships between a VLAN-VXLAN mapping table and all devices: 29577831-31d1-46e7-a33a-40f6ae6f4179. |
|
Explanation |
Deleted binding relationships between a VLAN-VXLAN mapping table and all devices. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · Devices already unbound from the mapping table exist. · The mapping table does not exist. |
Bound port to mapping table
|
Keyword |
CREATE_BSM_PORT_VLAN_DOMAIN_BIND_OP |
|
Message text |
Bound interfaces to a VLAN-VXLAN mapping table: $1. |
|
Variable fields |
$1: VLAN-VXLAN mapping table binding information. |
|
Example |
Bound interfaces to a VLAN-VXLAN mapping table: Domain_ID: [29577831-31d1-46e7-a33a-40f6ae6f4179] Name: [aaa] Bind_port_list: [ Device_ID: [bc96fa18-0888-474e-979d-9cf18f0433dd], device_name: [TOR1], port_name: [GigabitEthernet1/0/1], PVID: [30], port_status: [ACTIVE] ]. |
|
Explanation |
Bound interfaces to a VLAN-VXLAN mapping table. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · Invalid interface list. · Invalid interface names exist. · Nonexistent devices are specified. · Invalid device MAC addresses exist. · Invalid device names exist. · The VLAN ID is invalid or out of range. · Interfaces already bound to the mapping table exist. · Duplicate interfaces exist. · Non-VTEP interfaces exist. · Interfaces bound to the inspection network exist. · Interfaces bound to other mapping tables exist. · The mapping table does not exist. · The reserved VLAN ID conflicts with a VLAN ID of a VLAN-VXLAN mapping. |
Update binding relationship between port and mapping table
|
Keyword |
UPDATE_BSM_PORT_VLAN_DOMAIN_BIND_OP |
|
Message text |
Updated binding relationships between interfaces and a VLAN-VXLAN mapping table: $1. |
|
Variable fields |
$1: VLAN-VXLAN mapping table binding information. |
|
Example |
Updated binding relationships between interfaces and a VLAN-VXLAN mapping table: Domain_ID: [29577831-31d1-46e7-a33a-40f6ae6f4179] Name: [aaa] Bind_port_list: [ Device_ID: [bc96fa18-0888-474e-979d-9cf18f0433dd], device_name: [TOR1], port_name: [GigabitEthernet1/0/1], PVID: [30], port_status: [ACTIVE] ]. |
|
Explanation |
Updated binding relationships between interfaces and a VLAN-VXLAN mapping table. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · Invalid interface list. · Invalid interface names exist. · Nonexistent devices are specified. · Invalid device MAC addresses exist. · Invalid device names exist. · The VLAN ID is invalid or out of range. · Interfaces not bound to the mapping table exist. · Duplicate interfaces exist. · Non-VTEP interfaces exist. · Interfaces bound to the inspection network exist. · Interfaces bound to other mapping tables exist. · The mapping table does not exist. · The reserved VLAN ID conflicts with a VLAN ID of a VLAN-VXLAN mapping. |
Deleted bindings between mapping table and all ports
|
Keyword |
DELETE_BSM_PORT_VLAN_DOMAIN_BIND_OP |
|
Message text |
Deleted binding relationships between a VLAN-VXLAN mapping table and all interfaces: $1. |
|
Variable fields |
$1: ID of the VLAN-VXLAN mapping table. |
|
Example |
Deleted binding relationships between a VLAN-VXLAN mapping table and all interfaces: 29577831-31d1-46e7-a33a-40f6ae6f4179. |
|
Explanation |
Deleted binding relationships between a VLAN-VXLAN mapping table and all interfaces. |
|
Possible failure causes |
· Invalid JSON format. · Internal server error. · Please perform the operation on the active leader. · Configuration recovery is in progress. · Interfaces already unbound from the mapping table exist. · The mapping table does not exist. |
CON_APP
This section contains CON_APP messages.
Install application
|
Keyword |
INSTALL_APP_OP |
|
Message text |
$1 had been installed. |
|
Variable fields |
$1: Application name. |
|
Example |
H3C VCFC ARP had been installed. |
|
Explanation |
An application was installed. |
|
Possible failure causes |
N/A |
Start application
|
Keyword |
START_APP_OP |
|
Message text |
$1 had been started. |
|
Variable fields |
$1: Application name. |
|
Example |
H3C VCFC ARP had been started. |
|
Explanation |
An application was started. |
|
Possible failure causes |
N/A |
Stop application
|
Keyword |
STOP_APP_OP |
|
Message text |
$1 had been stopped. |
|
Variable fields |
$1: Application name. |
|
Example |
H3C VCFC ARP had been stopped. |
|
Explanation |
An application was stopped. |
|
Possible failure causes |
N/A |
Uninstall application
|
Keyword |
REMOVE_APP_OP |
|
Message text |
$1 had been removed. |
|
Variable fields |
$1: Application name. |
|
Example |
H3C VCFC ARP had been removed. |
|
Explanation |
An application was uninstalled. |
|
Possible failure causes |
N/A |
Upload application
|
Keyword |
UPLOAD_APP_OP |
|
Message text |
Uploaded application: $1. |
|
Variable fields |
$1: Name of the application installation package. |
|
Example |
Uploaded application: arp-2156.zip. |
|
Explanation |
An application installation package was uploaded. |
|
Possible failure causes |
· Bad application package. · The number of applications exceeded the license limit. · The application already exists. · An unknown error occurs during the application package uploading process. |
CON_AUTH
This section contains CON_AUTH messages.
Add an API authentication-free IP
|
Keyword |
ADD_API_AUTH_FREEIP_OP |
|
Message text |
Added an API authentication-free IP: $1 |
|
Variable fields |
$1: IP address of the API authentication-free user. |
|
Example |
Added an API authentication-free IP: 192.168.56.13 |
|
Explanation |
An API authentication-free user was added. |
|
Possible failure causes |
· Invalid IP address. · The IP address already exists. · The controller is not the active leader. · Unknown error. · Invalid role. · Invalid type · Invalid description. |
Delete an API authentication-free IP
|
Keyword |
DELETE_API_AUTH_FREEIP_OP |
|
Message text |
Deleted an API authentication-free IP: $1 |
|
Variable fields |
$1: IP address of the API authentication-free user. |
|
Example |
Deleted an API authentication-free IP: 192.168.56.13 |
|
Explanation |
An API authentication-free user was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Unknown error. · Invalid IP address. · Invalid type · The IP address does not exist. |
Add an IP address to white list
|
Keyword |
ADD_IP_TO_WHITELIST_OP |
|
Message text |
Added IP address $1 to the white list. |
|
Variable fields |
$1: IP address added to the white list. |
|
Example |
Added IP address 192.168.56.13 to the white list. |
|
Explanation |
A user was added to the white list. |
|
Possible failure causes |
· Invalid IP address. · The IP address already exists. · The controller is not the active leader. · Unknown error. · Invalid type. · Invalid description. |
Delete an IP address from white list
|
Keyword |
DELETE_IP_FROM_WHITELIST_OP |
|
Message text |
Deleted IP address $1 from the white list. |
|
Variable fields |
$1: IP address removed from the white list. |
|
Example |
Deleted IP address 192.168.56.13 from the white list. |
|
Explanation |
A user was removed from the white list. |
|
Possible failure causes |
· Invalid IP address. · The controller is not the active leader. · The IP address does not exist. · Unknown error. · Invalid type. |
CON_LICENSE
This section contains CON_LICENSE messages.
Connect the license server
|
Keyword |
CONNECT_LICS_OP |
|
Message text |
Connected the license server: $1 |
|
Variable fields |
$1: License server configuration information. |
|
Example |
Connected the license server: License server IP: 192.168.40.40 Port: 5555 Username: sdn Password: ****** |
|
Explanation |
The user connected the controller to the license server. |
|
Possible failure causes |
· Incorrect license server IP address or port number. · Incorrect username or password. |
Disconnect the license server
|
Keyword |
DISCONNECT_LICS_OP |
|
Message text |
Disconnected the license server: $1 |
|
Variable fields |
$1: License server IP address. |
|
Example |
Disconnected the license server: 192.168.1.1 |
|
Explanation |
The user disconnected the controller from the license server. |
|
Possible failure causes |
N/A |
Upload license file
|
Keyword |
UPLOAD_LICENSE_FILE_OP |
|
Message text |
Uploaded license file |
|
Variable fields |
N/A |
|
Example |
Uploaded license file |
|
Explanation |
A license file was uploaded. |
|
Possible failure causes |
License file error. |
Update the quantity of requested licenses
|
Keyword |
UPDATE_REQUESTED_LICENSES_OP |
|
Message text |
Updated the quantity of requested licenses: $1. |
|
Variable fields |
$1: Information about the quantity of requested licenses. |
|
Example |
Updated the quantity of requested licenses: APP license: 1 MaxNodeNum license: 1 VirtualServiceNode license: 1 vSwitch license: 0 ZTP license: true API license: true Overlay license: true OverlayHardwareEntity license: 1 ServiceChain license: true Base license: 1. |
|
Explanation |
The quantity of requested licenses was changed. |
|
Possible failure causes |
Failed to save the configuration. |
CON_LISTENER
This section contains CON_LISTENER messages.
Register alert topic
|
Keyword |
REGISTER_ LISTENER_OP |
|
Message text |
Registered alert topic listener: $1 |
|
Variable fields |
$1: Alert topic listener configuration. |
|
Example |
Registered alert topic listener: { "alert": { "url": "http://192.168.16.2/vnetcontroller/alter", "level": "warn", "subject": ["tunnel", "session"], "app_name": "vnetcontroller", "push_history": true } } |
|
Explanation |
An alert topic listener was registered. |
|
Possible failure causes |
A listener with the same app_name has already been registered. |
Update alert topic
|
Keyword |
UPDATE_LISTENER_OP |
|
Message text |
Updated alert topic listener: $1 |
|
Variable fields |
$1: Alert topic listener configuration. |
|
Example |
Updated alert topic listener: { "alert": { "app_name": "vnetcontroller", "level": "warn", "subject": ["tunnel", "session"] } } |
|
Explanation |
An alert topic listener was modified. |
|
Possible failure causes |
N/A. |
Remove alert topic
|
Keyword |
REMOVE_LISTENER_OP |
|
Message text |
Removed alert topic listener: $1 |
|
Variable fields |
$1: Name of the alert topic listener. |
|
Example |
Removed alert topic listener: vnetcontroller |
|
Explanation |
An alert topic listener was removed. |
|
Possible failure causes |
N/A. |
CON_NetworkMonitor
This section contains CON_NetworkMonitor messages.
Change thresholds for a CPU
|
Keyword |
CHANGE_THRESHOLDS_OP |
|
Message text |
Changed network monitor thresholds for CPU $1 in slot $2 of chassis $3 on device $4: $5 |
|
Variable fields |
$1: CPU ID. $2: Slot number. $3: Chassis number. $4: IP address of the device. $5: Resource usage alarm thresholds. |
|
Example |
Changed network monitor thresholds for CPU 1 in slot 1 of chassis 1 on device 192.168.150.21: { cpuRecoveryThreshold: 10 cpuMinorThreshold: 20 cpuWarningThreshold: 40 memorySecureThreshold: 10 memoryEarlyWarningThreshold: 20 memoryNormalThreshold: 30 memoryMinorThreshold: 30 memorySevereThreshold: 40 memoryCriticalThreshold: 50 aclMinorThreshold: 50 aclSevereThreshold: 60 acMinorThreshold: 20 acSevereThreshold: 40 vsiMinorThreshold: 20 vsiSevereThreshold: 40 vlanMinorThreshold: 20 vlanSevereThreshold: 40 } |
|
Explanation |
The resource usage alarm thresholds were modified for a specific CPU. |
|
Possible failure causes |
· The controller is not the active leader. · The device is not a physical device. · The device is offline. · The device does not exist. · The device does not support configuring CPU usage threshold. · The device does not support configuring memory usage threshold. · The device does not support configuring ACL resource usage threshold. · The device does not support configuring AC resource usage threshold. · The device does not support configuring VSI interface resource usage threshold. · The device does not support configuring VLAN interface resource usage threshold. |
Change thresholds for all CPUs
|
Keyword |
CHANGE_THRESHOLDS_ALL_OP |
|
Message text |
Changed network monitor thresholds for all CPUs on device $1: $2 |
|
Variable fields |
$1: IP address of the device. $2: Resource usage thresholds. |
|
Example |
Changed network monitor thresholds for all CPUs on device 192.168.150.21: { cpuRecoveryThreshold: 10 cpuMinorThreshold: 20 cpuWarningThreshold: 40 memorySecureThreshold: 10 memoryEarlyWarningThreshold: 20 memoryNormalThreshold: 30 memoryMinorThreshold: 30 memorySevereThreshold: 40 memoryCriticalThreshold: 50 aclMinorThreshold: 50 aclSevereThreshold: 60 acMinorThreshold: 20 acSevereThreshold: 40 vsiMinorThreshold: 20 vsiSevereThreshold: 40 vlanMinorThreshold: 20 vlanSevereThreshold: 40 } |
|
Explanation |
The resource usage thresholds were modified for all CPUs. |
|
Possible failure causes |
· The controller is not the active leader. · The device is not a physical device. · The device is offline. · The device does not exist. · The device does not support configuring CPU usage threshold. · The device does not support configuring memory usage threshold. · The device does not support configuring ACL resource usage threshold. · The device does not support configuring AC resource usage threshold. · The device does not support configuring VSI interface resource usage threshold. · The device does not support configuring VLAN interface resource usage threshold. |
CON_OAM
This section contains CON_OAM messages.
Create radar detection task
|
Keyword |
CREATE_RADAR_DETECTION_OP |
|
Message text |
Created radar detection task: $1 |
|
Variable fields |
$1: Parameters for the radar detection task. |
|
Example |
Created radar detection task: Username: sdn Task type: multiple Task info: Path type: single Network type: vxlan Segment ID: 2 Protocol: TCP Source IP: 70.68.68.68 Source port: 10000 Start device IP: 192.168.70.68 Start device ingress port: 0x1 Destination IP: 168.168.1.2 Destination port: 50000 End device IP: null DSCP: 62 Interval: 0 Packet count: 1 Timeout: 10 Period: 1440 Frequency: 600 |
|
Explanation |
A radar detection task was created. |
|
Possible failure causes |
· The start device IP address doesn't exist. · Task already exists. Please try again later. · The controller hasn't obtained start device port information. · The start device ingress port doesn't exist. · The destination IP address doesn't exist. · The gateway device that source device belongs to doesn't exist. · The controller is not the active leader. · Can't find the vPort with the source IP address. · The number of periodic detection tasks has reached the maximum. · Radar detection is disabled. · The number of periodic radar detection tasks has reached the upper limit. |
Delete radar detection task
|
Keyword |
Delete_RADAR_DETECTION_OP |
|
Message text |
Deleted radar detection task: $1 |
|
Variable fields |
$1: UUID of the radar detection task. |
|
Example |
Deleted radar detection task: 218b5f2f-e435-4365-a1ab-0eaa03b7fa19 |
|
Explanation |
A radar detection task was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Radar detection is disabled. · The periodic scanning task ID doesn’t match the username of the task creator. |
Clear periodic radar detection tasks
|
Keyword |
CLEAR_RADAR_DETECTION_OP |
|
Message text |
Clear all periodic radar detection tasks for user $1. |
|
Variable fields |
$1: Username. |
|
Example |
Clear all periodic radar detection tasks for user sdn. |
|
Explanation |
All periodic radar detection tasks created by the user were cleared. |
|
Possible failure causes |
· The controller is not the active leader. · Radar detection is disabled. |
CON_OPENFLOW
This section contains CON_OPENFLOW messages.
Create flow table entry
|
Keyword |
CREATE_FLOWTABLE_OP |
|
Message text |
A flow table entry was added. |
|
Variable fields |
N/A |
|
Example |
A flow table entry was added. |
|
Explanation |
A flow table entry was added. |
|
Possible failure causes |
N/A |
Modify flow table entry
|
Keyword |
MODIFY_FLOWTABLE_OP |
|
Message text |
A flow table entry was modified. |
|
Variable fields |
N/A |
|
Example |
A flow table entry was modified. |
|
Explanation |
A flow table entry was modified. |
|
Possible failure causes |
N/A |
Delete flow table entry
|
Keyword |
DELETE_FLOWTABLE_OP |
|
Message text |
A flow table entry was deleted. |
|
Variable fields |
N/A |
|
Example |
A flow table entry was deleted. |
|
Explanation |
A flow table entry was deleted. |
|
Possible failure causes |
No such device: Datapath ID: OpenFlow network device has been disconnected. |
Devices change to fail-safe mode
|
Keyword |
CHANGE_DEVICE_FAILSAFE_OP |
|
Message text |
Devices changed to fail-safe mode. All controllers in the team are disallowed to accept OpenFlow connection requests. |
|
Variable fields |
N/A |
|
Example |
Devices changed to fail-safe mode. All controllers in the team are disallowed to accept OpenFlow connection requests. |
|
Explanation |
The fail-safe mode was set. |
|
Possible failure causes |
Abnormal connections between the active leader and other controllers in the team. |
Devices change to normal mode
|
Keyword |
CHANGE_DEVICE_NORMAL_OP |
|
Message text |
Devices changed to normal mode. All controllers in the team are allowed to accept OpenFlow connection requests. |
|
Variable fields |
N/A |
|
Example |
Devices changed to normal mode. All controllers in the team are allowed to accept OpenFlow connection requests. |
|
Explanation |
The normal mode was set. |
|
Possible failure causes |
Abnormal connections between the active leader and other controllers in the team. |
CON_REGION
This section contains CON_REGION messages.
Create region
|
Keyword |
CREATE_REGION_ OP |
|
Message text |
Created region: $1 |
|
Variable fields |
$1: Region information. |
|
Example |
Created region: Name:region1 Region ID:fdd9f2d3-d2b2-4afe-942f-e6943b54e259 DenyvSwitch:false Master:192.168.56.153 Subordinate: 192.168.56.154 ManagedNodeSubnets: 192.168.38.25/24 192.168.39.25/24 |
|
Explanation |
A region was created. |
|
Possible failure causes |
· The team doesn't exist. · Incorrect controller IP address. · The region name is already used. · The controller was already in a region. · The controller is not the active leader. · Incorrect JSON format. · The request can't be null. · Incorrect controller name. · The master IP address must be different from the subordinate IP address. · Incorrect IP address or mask format for the managed node subnets. |
Delete region
|
Keyword |
DELETE_REGION_OP |
|
Message text |
Deleted region:$1 |
|
Variable fields |
$1: Region information. |
|
Example |
Deleted region: Name: region1 Region ID: fdd9f2d3-d2b2-4afe-942f-e6943b54e259 DenyvSwitch:false Master:192.168.56.153 Subordinate: 192.168.56.154 ManagedNodeSubnets: 192.168.38.25/24 192.168.39.25/24 |
|
Explanation |
A region was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Incorrect JSON format. · The region does not exist. |
Update region
|
Keyword |
UPDATE_REGION_OP |
|
Message text |
Updated region:$1 |
|
Variable fields |
$1: Region information. |
|
Example |
Updated region: Name: region1 Region ID: fdd9f2d3-d2b2-4afe-942f-e6943b54e259 DenyvSwitch:false Master:192.168.56.153 Subordinate: 192.168.56.154 ManagedNodeSubnets: 192.168.38.25/24 192.168.39.25/24 |
|
Explanation |
A region was updated. |
|
Possible failure causes |
· The region does not exist. · The controller is not the active leader. · Incorrect JSON format. · The request can't be null. · The input region information was incorrect. · Incorrect IP address or mask format for the managed node subnets. |
CON_ROUTERCONFIGS
This section contains CON_ROUTERCONFIGS messages.
Assign an IP address to the loopback interface
|
Keyword |
ADD_LOOPBACK_OP |
|
Message text |
Assigned an IP address to the loopback interface: IP: $1 |
|
Variable fields |
$1: IP address of the loopback interface. |
|
Example |
Assigned an IP address to the loopback interface: IP: 2.3.3.3 |
|
Explanation |
An IP address is assigned to the loopback interface. |
|
Possible failure causes |
· The loopback interface already has an IP address. · Failed to deploy the address configuration of the loopback interface. |
Delete the IP address of the loopback interface
|
Keyword |
DELETE_LOOPBACK_OP |
|
Message text |
Deleted the IP address of the loopback interface: IP: $1 |
|
Variable fields |
$1: IP address of the loopback interface. |
|
Example |
Deleted the IP address of the loopback interface: IP: 2.3.3.3 |
|
Explanation |
The IP address of the loopback interface was removed. |
|
Possible failure causes |
· The IP address doesn't exist. · Failed to deploy the request for deleting the IP address. |
Add BGP instance
|
Keyword |
ADD_BGPINSTANCE_OP |
|
Message text |
Added BGP instance: Router ID: $1 Local AS number: $2 |
|
Variable fields |
$1: Router ID of the BGP instance. $2: Local AS number of the BGP instance. |
|
Example |
Added BGP instance: Router ID: 10.10.10.10 Local AS number: 1000 |
|
Explanation |
A BGP instance was added. |
|
Possible failure causes |
· The local AS number already exists. · Failed to connect to bgpd. Check whether Quagga is correctly installed or the BGP daemon is enabled. · Failed to deploy the BGP instance configuration. · Failed to deploy the BGP router ID configuration. · Operation failed because the controller is deploying routing configuration. Please try again later. |
Clear BGP configuration
|
Keyword |
CLEAR_BGP_CONF_OP |
|
Message text |
Cleared BGP configuration. |
|
Variable fields |
N/A |
|
Example |
Cleared BGP configuration. |
|
Explanation |
The BGP configuration was cleared. |
|
Possible failure causes |
· Failed to deploy the request for deleting BGP instance. · Failed to connect to bgpd. Check whether Quagga is correctly installed or the BGP daemon is enabled. · The BGP instance doesn't exist. · Operation failed because the controller is deploying routing configuration. Please try again later. |
Add BGP network
|
Keyword |
ADD_BGPNETWORK_OP |
|
Message text |
Added BGP network: IP: $1 |
|
Variable fields |
$1: Local network address. |
|
Example |
Added BGP network: IP: 10.10.10.10/32 |
|
Explanation |
A local network was injected to the BGP routing table. |
|
Possible failure causes |
· The BGP instance doesn't exist. · The network already exists. · Failed to deploy the network configuration. · Failed to connect to bgpd. Check whether Quagga is correctly installed or the BGP daemon is enabled. · The number of networks reaches the upper limit. · Operation failed because the controller is deploying routing configuration. Please try again later. |
Delete BGP network
|
Keyword |
DELETE_BGPNETWORK_OP |
|
Message text |
Deleted BGP network: IP: $1 |
|
Variable fields |
$1: Local network address. |
|
Example |
Deleted BGP network: IP: 10.10.10.10/32 |
|
Explanation |
The specified local network was removed from the BGP routing table. |
|
Possible failure causes |
· The BGP instance doesn't exist. · The network doesn’t exist. · Failed to deploy the request for deleting network. · Failed to connect to bgpd. Check whether Quagga is correctly installed or the BGP daemon is enabled. · Operation failed because the controller is deploying routing configuration. Please try again later. |
Add BGP neighbor
|
Keyword |
ADD_BGPNEIGHBOR_OP |
|
Message text |
Added BGP neighbor: IP: $1 Remote AS number: $2 Filtering policy: $3 |
|
Variable fields |
$1: IP address of the BGP neighbor. $2: AS number of the BGP neighbor. $3: Filtering policy. |
|
Example |
Added BGP neighbor: IP: 10.10.10.11 Remote AS number: 1000 Filtering policy: in |
|
Explanation |
A BGP neighbor was added. |
|
Possible failure causes |
· The BGP instance doesn't exist. · The neighbor already exists. · Failed to deploy the neighbor configuration. · Failed to connect to bgpd. Check whether Quagga is correctly installed or the BGP daemon is enabled. · The number of BGP neighbors reaches the upper limit. · Operation failed because the controller is deploying routing configuration. Please try again later. |
Delete BGP neighbor
|
Keyword |
DELETE_BGPNEIGHBOR_OP |
|
Message text |
Deleted BGP neighbor: IP: $1 Remote AS number: $2 Filtering policy: $3 |
|
Variable fields |
$1: IP address of the BGP neighbor. $2: AS number of the BGP neighbor. $3: Filtering policy. |
|
Example |
Deleted BGP neighbor: IP: 10.10.10.11 Remote AS number: 1000 Filtering policy: in |
|
Explanation |
The specified BGP neighbor was deleted. |
|
Possible failure causes |
· The BGP instance doesn't exist. · The neighbor doesn't exist. · Failed to deploy the request for deleting neighbor. · Failed to connect to bgpd. Check whether Quagga is correctly installed or the BGP daemon is enabled. · Operation failed because the controller is deploying routing configuration. Please try again later. |
Add timer
|
Keyword |
ADD_BGPTIMER_OP |
|
Message text |
Added timer: Keepalive interval: $1 Hold time: $2 |
|
Variable fields |
$1: Keepalive interval of BGP sessions, in seconds. $2: Hold time of BGP sessions, in seconds. |
|
Example |
Added timer: Keepalive interval: 600 Hold time: 1800 |
|
Explanation |
The BGP keepalive interval and hold time were set. |
|
Possible failure causes |
· Failed to deploy the keepalive interval and hold time configuration. · Failed to connect to bgpd. Check whether Quagga is correctly installed or the BGP daemon is enabled. · The BGP instance doesn't exist. · Operation failed because the controller is deploying routing configuration. Please try again later. |
Add OSPF router ID
|
Keyword |
ADD_OSPFROUTERID_OP |
|
Message text |
Added OSPF router ID: IP: $1 |
|
Variable fields |
$1: OSPF router ID |
|
Example |
Added OSPF router ID: IP: 10.10.10.10 |
|
Explanation |
An OSPF router ID was added. |
|
Possible failure causes |
· The router ID already exists. · Failed to deploy the router ID configuration. · Failed to connect to ospfd. Check whether Quagga is correctly installed or the OSPF daemon is enabled. · Operation failed because the controller is deploying routing configuration. Please try again later. |
Add OSPF network
|
Keyword |
ADD_OSPFNETWORK_OP |
|
Message text |
Added OSPF network: IP: $1 Area ID: $2 |
|
Variable fields |
$1: Network address. $2: Area ID. |
|
Example |
Added OSPF network: IP: 10.10.10.10/32 Area ID: 0 |
|
Explanation |
An OSPF network route was added. |
|
Possible failure causes |
· The network already exists. · Failed to deploy the network configuration. · Failed to connect to ospfd. Check whether Quagga is correctly installed or the OSPF daemon is enabled. · The number of networks reaches the upper limit. · Operation failed because the controller is deploying routing configuration. Please try again later. |
Delete OSPF network
|
Keyword |
DELETE_OSPFNETWORK_OP |
|
Message text |
Deleted OSPF network: IP: $1 Area ID: $2 |
|
Variable fields |
$1: Network address. $2: Area ID. |
|
Example |
Deleted OSPF network: IP: 10.10.10.10 Area ID: 0 |
|
Explanation |
An OSPF network route was deleted. |
|
Possible failure causes |
· The network doesn't exist. · Failed to deploy the request for deleting network. · Failed to connect to ospfd. Check whether Quagga is correctly installed or the OSPF daemon is enabled. · Operation failed because the controller is deploying routing configuration. Please try again later. |
Clear OSPF configuration
|
Keyword |
CLEAR_OSPF_CONF_OP |
|
Message text |
Cleared OSPF configuration. |
|
Variable fields |
N/A |
|
Example |
Cleared OSPF configuration. |
|
Explanation |
The OSPF configuration was cleared. |
|
Possible failure causes |
· Failed to deploy the request for deleting OSPF configuration. · Failed to connect to ospfd. Check whether Quagga is correctly installed or the OSPF daemon is enabled. · Operation failed because the controller is deploying routing configuration. Please try again later. |
Add OSPF area
|
Keyword |
ADD_OSPFAREA_OP |
|
Message text |
Added OSPF area: Area ID: $1 NSSA: $2 Authentication: $3 |
|
Variable fields |
$1: Area ID. $2: NSSA area attribute. $3: Authentication mode. |
|
Example |
Added OSPF area: Area ID: 1.2.3.6 NSSA: translate-candidate Authentication: message-digest |
|
Explanation |
An OSPF area was added. |
|
Possible failure causes |
· The area already exists. · Failed to deploy the area configuration. · Failed to connect to ospfd. Check whether Quagga is correctly installed or the OSPF daemon is enabled. · Operation failed because the controller is deploying routing configuration. Please try again later. |
Delete OSPF area
|
Keyword |
DELETE_OSPFAREA_OP |
|
Message text |
Deleted OSPF area: Area ID: $1 |
|
Variable fields |
$1: Area ID. |
|
Example |
Deleted OSPF area: Area ID: 0.0.0.0 |
|
Explanation |
The specified OSPF area was deleted. |
|
Possible failure causes |
· The area doesn't exist. · Failed to deploy the request for deleting area. · Failed to connect to ospfd. Check whether Quagga is correctly installed or the OSPF daemon is enabled. · Operation failed because the controller is deploying routing configuration. Please try again later. |
CON_SNMP
This section contains CON_SNMP messages.
Create traditional NE
|
Keyword |
CREATE_TRADITIONAL_NE_OP |
|
Message text |
Created traditional NE: $1 |
|
Variable fields |
$1: Traditional NE configuration information. |
|
Example |
Created traditional NE: IP: 192.168.9.198 MAC: 74:25:8a:c4:e2:de Read community: public Write community: private Controller IP: 192.168.89.155 Access attribute: access Status: Inactive |
|
Explanation |
The user added a traditional NE. |
|
Possible failure causes |
· The controller is not the active leader. · Invalid network element IP address. · The traditional network element at X.X.X.X already exists. · Invalid controller IP address. · The controller IP address doesn't exist in the team. · The IP address for a controller in standalone mode must be 127.0.0.1. · Invalid access attribute. · The traditional network element has been added to the controller by using X.X.X.X. |
Update traditional NE
|
Keyword |
UPDATE_TRADITIONAL_NE_OP |
|
Message text |
Updated traditional NE: $1 |
|
Variable fields |
$1: Traditional NE configuration information. |
|
Example |
Updated traditional NE: IP: 192.168.9.198 MAC: 74:25:8a:c4:e2:de Read community: public Write community: private Controller IP: 192.168.89.155 Access attribute: access Status: Inactive |
|
Explanation |
The user modified the traditional NE. |
|
Possible failure causes |
· The controller is not the active leader. · Invalid network element IP address. · The network element IP address doesn't exist. · Invalid controller IP address. · The controller IP address doesn't exist in the team. · The IP address for a controller in standalone mode must be 127.0.0.1. · Invalid access attribute. · Unknown error. |
Delete traditional NE
|
Keyword |
DELETE_TRADITIONAL_NE_OP |
|
Message text |
Deleted traditional NE: $1 |
|
Variable fields |
$1: IP address of the traditional NE. |
|
Example |
Deleted traditional NE: 192.168.9.198 |
|
Explanation |
The user deleted the traditional NE. |
|
Possible failure causes |
· The controller is not the active leader. · Invalid network element IP address. · The network element IP address doesn't exist. |
Start scanning traditional NE
|
Keyword |
START_SCAN_TRADITIONAL_NE_OP |
|
Message text |
Started scanning traditional NEs: $1 |
|
Variable fields |
$1: Settings for auto traditional NE scanning. |
|
Example |
Started scanning traditional NEs: Start IP: 192.168.125.0 End IP: 192.168.125.255 SNMP read community: public SNMP write community: private |
|
Explanation |
The user started auto traditional NE scanning. |
|
Possible failure causes |
N/A |
Stop scanning traditional NE
|
Keyword |
STOP_SCAN_TRADITIONAL_NE_OP |
|
Message text |
Stopped scanning traditional NEs |
|
Variable fields |
N/A |
|
Example |
Stopped scanning traditional NEs |
|
Explanation |
The user stopped auto traditional NE scanning. |
|
Possible failure causes |
N/A |
CON_SYSTEM
This section contains CON_SYSTEM messages.
Back up configuration
|
Keyword |
BACKUP_OP |
|
Message text |
Backed up the configuration. |
|
Variable fields |
$1: Session name. |
|
Example |
Backed up the configuration. |
|
Explanation |
A backup session was completed. |
|
Possible failure causes |
· The operation requires the administrator privilege. · Failed to create the backup file. · The system is recovering the configuration. · The team to which the controller belongs has no active leader. |
Upload backup file
|
Keyword |
UPLOAD_BACKUPFILE_OP |
|
Message text |
Uploaded the backup file. |
|
Variable fields |
N/A |
|
Example |
Uploaded the backup file. |
|
Explanation |
A backup file was uploaded. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · Invalid backup file format. · Invalid backup file content. · The active leader can't send the backup file to other controllers due to network errors. · The system is recovering the configuration. · The team to which the controller belongs has no active leader. · Can’t upload the backup file because some controllers are down: $1, $2, $3. |
Start recovery
|
Keyword |
RESTORE_OP |
|
Message text |
Restored the configuration. |
|
Variable fields |
N/A |
|
Example |
Restored the configuration. |
|
Explanation |
A recovery was started. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · The backup file doesn't exist. · The backup file doesn't include the required files. · The controller's IP address is not included in the team settings of the backup file. · The active leader can't restore the configuration of other controllers due to network errors. · The system is recovering the configuration. · The team to which the controller belongs has no active leader. · Can’t perform configuration recovery because some controllers are down. |
Download backup file
|
Keyword |
DOWNLOAD_BACKUPFILE_OP |
|
Message text |
Downloaded the backup file. |
|
Variable fields |
N/A |
|
Example |
Downloaded the backup file. |
|
Explanation |
The backup file had been successfully downloaded. |
|
Possible failure causes |
· The backup file doesn't exist. · The system is recovering the configuration. · The team to which the controller belongs has no active leader. |
Modify backup settings
|
Keyword |
MODIFY_BACKUPSET_OP |
|
Message text |
Modified settings for configuration backup. |
|
Variable fields |
N/A |
|
Example |
Modified settings for configuration backup. |
|
Explanation |
The settings for configuration backup were modified. |
|
Possible failure causes |
· Illegal backup settings. · The operation requires the administrator privilege. · The controller is not the active leader. · Not permitted to access the backup path. · Failed to save the settings. · The system is recovering the configuration. · The team to which the controller belongs has no active leader. |
Modify configuration
|
Keyword |
MODIFY_CONFIG_OP |
|
Message text |
Modified configuration: $1. |
|
Variable fields |
$1: Component name and configuration items. |
|
Example |
Modified configuration: Authentication Manager { ConnPoolMaxActive=4 AuthenticationProtocol=PAP SharedKey=****** AuthMode=local AAAServerIP=192.168.56.19 ConnPoolMaxIdle=1 CachedTokenIdle=900 }. |
|
Explanation |
The values for the configuration items of the specified component were modified. If a password or key is included in the component, it is displayed with asterisks (******). |
|
Possible failure causes |
· Failed to update the configuration file. · The existing team token must be deleted before you configure a new one. · Invalid value for parameter $1. · Failed to encrypt the password or key. |
Restore configuration
|
Keyword |
RESTORE_CONFIG_OP |
|
Message text |
Restored configuration: $1. |
|
Variable fields |
$1: Component name and configuration items. If the values for all configuration items are restored, only the component name is displayed. |
|
Example |
Restored configuration: Authentication Manager { ConnPoolMaxActive=4 AuthenticationProtocol=PAP SharedKey=****** AuthMode=local AAAServerIP=192.168.56.19 ConnPoolMaxIdle=1 CachedTokenIdle=900 }. |
|
Explanation |
The values for the configuration items of the specified component were restored to the default. If a password or key is included in the component, it is displayed with asterisks (******). |
|
Possible failure causes |
· Can't delete the team token in team mode. · Failed to update the configuration file. |
Prepare for upgrade
|
Keyword |
UPGRADE_PREPARE_OP |
|
Message text |
Prepared for upgrade: $1 |
|
Variable fields |
$1: IP address of the controller that prepares for upgrade. |
|
Example |
Prepared for upgrade |
|
Explanation |
Upgrade preparation was performed. |
|
Possible failure causes |
Invalid request. |
Modify alert log remote transmission mode
|
Keyword |
MODIFY_ALERTLOG_TRANSMISSION_OP |
|
Message text |
The alert log remote transmission mode was set to sending logs to the syslog server. |
|
Variable fields |
N/A |
|
Example |
The alert log remote transmission mode was set to sending logs to the syslog server. |
|
Explanation |
The user changed the system log settings by enabling the syslog server feature. System logs will be sent to the specified syslog server. |
|
Possible failure causes |
N/A |
Modify audit log transmission mode
|
Keyword |
MODIFY_AUDITLOG_TRANSMISSION_OP |
|
Message text |
The audit log remote transmission mode was set to sending logs to the syslog server. |
|
Variable fields |
N/A |
|
Example |
The audit log remote transmission mode was set to sending logs to the syslog server. |
|
Explanation |
The user changed the operation log settings by enabling the syslog server feature. Operation logs will be sent to the specified syslog server. |
|
Possible failure causes |
N/A |
Enter upgrade mode
|
Keyword |
ENTER_UPGRADE_MODE_OP |
|
Message text |
Enter upgrade mode. |
|
Variable fields |
N/A |
|
Example |
Enter upgrade mode. |
|
Explanation |
The operation for entering the upgrade mode was performed. |
|
Possible failure causes |
N/A |
Quit upgrade mode
|
Keyword |
QUIT_UPGRADE_MODE_OP |
|
Message text |
Quit upgrade mode. |
|
Variable fields |
N/A |
|
Example |
Quit upgrade mode. |
|
Explanation |
The operation for quitting the upgrade mode was performed. |
|
Possible failure causes |
N/A |
CON_TEAM
This section contains CON_TEAM messages.
Create team
|
Keyword |
CREATE_TEAM_OP |
|
Message text |
Created team: $1 |
|
Variable fields |
$1: Configuration of the team. |
|
Example |
Created team: Name: TestCluster1 IP: 192.168.40.40 Mask: 255.255.255.0 Mode:1 Version: 1404159495844 Team ID: f892866f-0ec9-4ef0-a0a8-6df783ef7b19 Leaders: [ {Name: leader1, IP: 192.168.56.147, Priority: 200, Network_device: eth0, Server ID: 1}, {Name: leader2, IP: 192.168.56.148, Priority: 100, Network_device: eth1, Server ID: 2} ] Members: [ {Name: member, IP: 192.168.40.146, Priority: 1016, Network_device: , Server ID: 5} ] |
|
Explanation |
A team was created. |
|
Possible failure causes |
· The team contained only one leader. · The controller was not a leader. · Team IP address and member IP address must be different. · Member IP addresses must be different. · Member names must be different. · Leader priorities must be different. · The number of controllers exceeded the upper limit (32). · Server processing error. · The versions of the controllers are inconsistent. · The team token is not configured for the controller. |
Delete team
|
Keyword |
DELETE_TEAM_OP |
|
Message text |
Deleted team: $1 |
|
Variable fields |
$1: Configuration of the team. |
|
Example |
Deleted team: Name: TestCluster1 IP: 192.168.40.40 |
|
Explanation |
A team was deleted. |
|
Possible failure causes |
· The controller was not the active leader. · Server processing error. |
Modify team
|
Keyword |
MODIFY_TEAM_OP |
|
Message text |
Modified team: $1 |
|
Variable fields |
$1: Configuration modification of the team. |
|
Example |
Modified team: Name:TestCluster1->TestCluster2 IP:192.168.35.11->192.168.35.12 Mask:255.255.255.0->255.255.0.0 |
|
Explanation |
A team was modified. |
|
Possible failure causes |
· The controller was not the active leader. · The team didn't exist. · Server processing error. · The team name is invalid. |
Add member
|
Keyword |
ADD_MEMBER_OP |
|
Message text |
Added member: $1 |
|
Variable fields |
$1: Member information. |
|
Example |
Added member: Name:leader1 IP:192.168.56.147 |
|
Explanation |
A member was added. |
|
Possible failure causes |
· The controller was not the active leader. · The member IP address must be different from the team IP address. · The member IP address was already used. · The member name was already used. · Server processing error. · The version of the selected controller is different than the team. |
Delete member
|
Keyword |
DELETE_MEMBER_OP |
|
Message text |
Deleted member: $1 |
|
Variable fields |
$1: Member information. |
|
Example |
Deleted member: Name:leader1 IP:192.168.56.147 |
|
Explanation |
A member was deleted. |
|
Possible failure causes |
· The controller was not the active leader or the member to be deleted. · The member didn't exist. · A leader can't be deleted. · The member was in a region. · Server processing error. |
Modify member
|
Keyword |
MODIFY_MEMBER_OP |
|
Message text |
Modified member: $1 |
|
Variable fields |
$1: Member modification information. |
|
Example |
Modified member: Name:member1->member2 IP:192.168.35.11 Network_device:eth0->eth1 |
|
Explanation |
A member was modified. |
|
Possible failure causes |
· The controller was not the active leader. · NIC for the member can't be changed. · Server processing error. · The controller name is invalid. · The member name was already used. |
CON_TOPOLOGY
This section contains CON_TOPOLOGY messages.
Update device
|
Keyword |
UPDATE_DEVICE_INFO_OP |
|
Message text |
Updated device: $1 |
|
Variable fields |
$1: Device information. |
|
Example |
Updated device: IP address: 192.168.9.198 Datapath ID: 00:00:74:25:8a:c4:e2:de Asset number: 201605181600 Device description: H3C Comware Platform Software, Software Version 7.1.070, ESS 2505P01 Location: A13-A13 Function: core Remarks: description Device name: 201-98 Status: Inactive |
|
Explanation |
The user modified the device information on the device statistics page. |
|
Possible failure causes |
The device doesn't exist. |
Update device layer
|
Keyword |
UPDATE_DEVICE_LAYER_OP |
|
Message text |
Updated the layer for device (IP address $1 and datapath ID $2): $3. |
|
Variable fields |
$1: IP address of the device. $2: Datapath ID of the device. $3: Layer of the device. Options are access, convergence, and core. |
|
Example |
Updated the layer for device (IP address 192.168.9.198 and datapath ID 00:00:74:25:8a:c4:e2:de): core. |
|
Explanation |
The user modified the layer for the device specified on the physical topology page. |
|
Possible failure causes |
The device doesn't exist. |
Delete inactive link
|
Keyword |
DELETE_INACTIVE_LINK_OP |
|
Message text |
Deleted an inactive link. Link information: $1 |
|
Variable fields |
$1: Inactive link information. |
|
Example |
Deleted an inactive link. Link information: From: Port GigabitEthernet1/0/3 on device (IP address 192.168.150.44 and datapath ID 00:00:68 b:10 a:04:00). To: Port GigabitEthernet1/0/5 on device (IP address 192.168.150.42 and datapath ID 00:00:94:e2:4e:53:02:00). |
|
Explanation |
The user deleted the inactive link for the device. |
|
Possible failure causes |
N/A |
Update port thresholds
|
Keyword |
UPDATE_PORT_THRESHOLD_OP |
|
Message text |
Updated port thresholds: $1 |
|
Variable fields |
$1: Port thresholds. |
|
Example |
Updated port monitor thresholds: Inbound bandwidth usage: 12% Outbound bandwidth usage: 32% Inbound error packet rate: 43% Outbound error packet rate: 43% Inbound packet loss rate: 54% Outbound packet loss rate: 65% |
|
Explanation |
The user modified the port thresholds. |
|
Possible failure causes |
N/A |
Clear events on a device
|
Keyword |
CLEAR_DEVICE_EVENTS_OP |
|
Message text |
Clear events on device: $1. |
|
Variable fields |
$1: IP address of the device. |
|
Example |
Clear events on device: 192.168.5.3. |
|
Explanation |
The user cleared the events on a device. |
|
Possible failure causes |
The device doesn't exist. |
Clear events on all devices
|
Keyword |
CLEAR_ALL_DEVICES_EVENTS_OP |
|
Message text |
Clear events on all devices. |
|
Variable fields |
N/A |
|
Example |
Clear events on all devices. |
|
Explanation |
The user cleared the events on all devices. |
|
Possible failure causes |
N/A |
CON_USER
This section contains CON_USER messages.
Add a user
|
Keyword |
ADD_USER_OP |
|
Message text |
Added a user:$1. |
|
Variable fields |
$1: User name. |
|
Example |
Added a user:11. |
|
Explanation |
A user was added. |
|
Possible failure causes |
· Invalid username. · The username already exists. · The password length is out of range or the password contains only letters, digits, or special characters. · Invalid role. · The controller is not the active leader. · Incorrect format. · Failed to add the user. |
Delete a user
|
Keyword |
DELETE_USER_OP |
|
Message text |
Deleted a user: $1. |
|
Variable fields |
$1: User name. |
|
Example |
Deleted a user: 11. |
|
Explanation |
A user was deleted. |
|
Possible failure causes |
· Invalid username. · No permission to delete itself. · The controller is not the active leader. · Can't delete an online user. · Token aged. |
Change user password
|
Keyword |
CHANGE_PASSWORD_OP |
|
Message text |
Changed user $1's password. |
|
Variable fields |
$1: Username. |
|
Example |
Changed user 11's password. |
|
Explanation |
A user's password was changed. |
|
Possible failure causes |
· Invalid username. · Invalid old password. · The password length is out of range or the password contains only letters, digits, or special characters. · Can't modify another user's password due to permission limit. · The controller is not the active leader. · Token aged. · The user doesn’t exist. · Failed to update the user’s password. |
Update user config
|
Keyword |
UPDATE_USER_OP |
|
Message text |
Updated user configuration: $1 |
|
Variable fields |
$1: User configuration information. |
|
Example |
Updated user configuration: Username: sdn Password: ****** Role: sdn-admin Service logs to display: ARP, CON, NEM, VSM Lock state: unlock |
|
Explanation |
The user configuration was changed. |
|
Possible failure causes |
· The user does not exist. · Invalid parameter for locking the user. · Invalid user role. · Invalid old password. · Invalid username. · Incorrect format. · The controller is not the active leader. · Can't modify another user's configuration due to permission limit. · Can't lock the current user. · Can't modify the role of the current user. · Can't change the types of service logs to display due to permission limit. · The password length is out of range or the password contains only letters, digits, or special characters. · Token aged. · Failed to update the user. · Can't modify the configuration of other online users. |
Add a role
|
Keyword |
ADD_ROLE_OP |
|
Message text |
Added a role: $1. |
|
Variable fields |
$1: Role name. |
|
Example |
Added a role: role1. |
|
Explanation |
A role was added. |
|
Possible failure causes |
· Invalid role name. · Invalid role rule. · Invalid description. · The role already exists. · You have no privilege to perform the operation. · The controller is not the active leader. · Incorrect format. · Failed to add the role. |
Update a role
|
Keyword |
UPDATE_ROLE_OP |
|
Message text |
Updated role configuration: $1 |
|
Variable fields |
$1: Role configuration. |
|
Example |
Updated role configuration: Rolename: test2, Description:, RoleRules: { "rolerules": { "/lb/v2.0": { "details": [ { "access": "POST", "controlled": "/loadbalancers" } ], "module": "LBaaS v2.0", "type": "REST" }, "c-NetworkService": { "details": [ { "access": "R", "controlled": "n-LoadBalance" } ], "type": "UI" } } } |
|
Explanation |
A role was modified. |
|
Possible failure causes |
· You have no privilege to perform the operation. · Incorrect format. · The controller is not the active leader. · Invalid role name. · Invalid role rule · Invalid description. · Can't modify default roles. · The role doesn’t exist. · Failed to update the role. |
Delete a role
|
Keyword |
DELETE_ROLE_OP |
|
Message text |
Deleted a role: $1. |
|
Variable fields |
$1: Role name. |
|
Example |
Deleted a role: 11. |
|
Explanation |
A role was deleted. |
|
Possible failure causes |
· Invalid role name. · The controller is not the active leader. · Can't delete system default roles. · Can’t delete the role because it is already assigned to users. |
FWaaS
This section contains messages from the firewall service module.
Create time range
|
Keyword |
CREATE_TIMERANGE_OP |
|
Message text |
Created time range $1. |
|
Variable fields |
$1: Information about the time range. |
|
Example |
Created time range ID: 9a83d713-8e79-4ca8-a2e9-8df29daf5fd6 Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: tr Description: time range Shared: false In use: false Periodic range list: Position: 1 Start time: 00:00 End time: 24:00 Days of week: [MON, TUE, WED, THU, FRI, SAT] Absolute range list: Position: 1 Start time: 00:00 Start date: 2014-08-02 End time: 24:00 End date: 2100-12-31. |
|
Explanation |
A time range was created. |
|
Possible failure causes |
· The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The number of configuration items exceeded the limit. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. · The inused field should be read only. |
Update time range
|
Keyword |
UPDATE_TIMERANGE_OP |
|
Message text |
Updated time range $1. |
|
Variable fields |
$1: Information about the time range. |
|
Example |
Updated time range ID: 9a83d713-8e79-4ca8-a2e9-8df29daf5fd6 Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: tr Description: time range Shared: false In use: false Periodic range list: Position: 1 Start time: 00:00 End time: 20:00 Days of week: [MON, TUE, WED, THU, FRI, SAT] Absolute range list: Position: 1 Start time: 00:00 Start date: 2014-08-02 End time: 24:00 End date: 2100-12-30. |
|
Explanation |
A time range was modified. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. · The configuration item doesn't exist. |
Delete time range
|
Keyword |
DELETE_TIMERANGE_OP |
|
|
Message text |
Deleted time range $1. |
|
|
Variable fields |
$1: Name of the time range. |
|
|
Example |
Deleted time range tr. |
|
|
Explanation |
A time range was deleted. |
|
|
Possible failure causes |
· The configuration item is in use. · The configuration item doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. |
|
Create firewall object group
|
Keyword |
CREATE_FWOBJECTGROUP_OP |
|
Message text |
Created firewall object group $1. |
|
Variable fields |
$1: Information about the firewall object group. |
|
Example |
Created firewall object group ID: b52fff79-7bcf-4bff-9340-68c5f6c1c495 Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: fw_objectgroup Description: firewall object group Type: IPv4. |
|
Explanation |
A firewall object group was created. |
|
Possible failure causes |
· Invalid json format. · The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · No tenant ID is specified. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. · No object group type is specified. · The tenant name is read only. · The rules field is read only. · The objects field is read only. · The policies field is read only. · Unknown error. |
Update firewall object group
|
Keyword |
UPDATE_FWOBJECTGROUP_OP |
|
Message text |
Updated firewall object group $1. |
|
Variable fields |
$1: Information about the firewall object group. |
|
Example |
Updated firewall object group ID: b52fff79-7bcf-4bff-9340-68c5f6c1c495 Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: fw_objectgroup Description: firewall object group Type: IPv4 Audited: true. |
|
Explanation |
A firewall object group was modified. |
|
Possible failure causes |
· Invalid json format. · The tenant ID is read only. · The object group type is read only. · The tenant name is read only. · The ID is read only. · The object group name is read only. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. · The configuration item doesn't exist. · The rules field is read only. · The objects field is read only. · The policies field is read only. · Unknown error. |
Delete firewall object group
|
Keyword |
DELETE_FWOBJECTGROUP_OP |
|
Message text |
Deleted firewall object group $1. |
|
Variable fields |
$1: Name of the firewall object group. |
|
Example |
Deleted firewall object group fw_objectgroup. |
|
Explanation |
A firewall object group was deleted. |
|
Possible failure causes |
· Invalid UUID string: asd-+. · The configuration item is in use. · The configuration item doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. · Invalid json format. |
Create firewall object
|
Keyword |
CREATE_FWOBJECT_OP |
|
Message text |
Created firewall object $1. |
|
Variable fields |
$1: Information about the firewall object. |
|
Example |
Created firewall object ID: b52fff79-7bcf-4bff-9340-68c5f6c1c495 Name: fw_object Sequence: 0 Protocol: TCP Source port: 100:200 Destination port: 300:400 Object group ID: 9a83d713-8e79-4ca8-a2e9-8df29daf5fd6. |
|
Explanation |
A firewall object was created. |
|
Possible failure causes |
· Invalid json format. · No object group ID is specified. · The object group specified for the configuration item doesn't exist. · The configuration item already exists. · The IPv4 address is available only when the object group type is IPv4. · The source port, destination port, and protocol are available only when the object group type is service. · The name is required. · The IPv4 address is required. · The number of configuration items exceeded the limit. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. · The sequence number is read only. · Invalid protocol. · Unknown error. |
Update firewall object
|
Keyword |
UPDATE_FWOBJECT_OP |
|
Message text |
Updated firewall object $1. |
|
Variable fields |
$1: Information about the firewall object. |
|
Example |
Updated firewall object ID: b52fff79-7bcf-4bff-9340-68c5f6c1c495 Name: fw_object Sequence: 0 Protocol: TCP Source port: 100:200 Destination port: 300:400 Object group ID: 9a83d713-8e79-4ca8-a2e9-8df29daf5fd6. |
|
Explanation |
A firewall object was modified. |
|
Possible failure causes |
· Invalid json format. · The ID is read only. · The object name is read only. · The sequence number is read only. · The object group ID is read only. · The IPv4 address is available only when the object group type is IPv4. · The source port, destination port, and protocol are available only when the object group type is service. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. · The configuration item doesn't exist. · Unknown error. · The number of configuration items exceeded the limit. |
Delete firewall object
|
Keyword |
DELETE_FWOBJECT_OP |
|
Message text |
Deleted firewall object $1. |
|
Variable fields |
$1: Name of the firewall object. |
|
Example |
Deleted firewall object fw_object. |
|
Explanation |
A firewall object was deleted. |
|
Possible failure causes |
· The configuration item doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. · Invalid json format. |
Create firewall rule
|
Keyword |
CREATE_FWRULE_OP |
|
Message text |
Created firewall rule $1. |
|
Variable fields |
$1: Information about the firewall rule. |
|
Example |
Created firewall rule ID: b52fff79-7bcf-4bff-9340-68c5f6c1c495 Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: fw_rule Description: firewall rule Shared: true Protocol: null IP version: IPv4 Source IP address: 22.2.2.2 Destination IP address: 11.1.1.1 Source port: 100:200 Destination port: 300:400 Position: null Action: INSPECT Enabled: true Time range ID: 9a83d713-8e79-4ca8-a2e9-8df29daf5fd6 App profile ID: 62214486-42a8-455a-ae6c-90853038fd0a IPS policy ID: 00000000-0000-0000-0000-000000000000 URL filter policy ID: 230f47be-63f4-4ae0-a488-b72a8d841b1f AV policy ID: 00000000-0000-0000-0000-000000000000 Logging: true Counting: true Object group-based matching: true Source IP object group ID: b52fff79-7bcf-4bff-9340-68c5f6cfffff Destination IP object group ID: b52fff79-7bcf-4bff-9340-68c5f6ceeeee Service object group ID: b52fff79-7bcf-4bff-9340-68c5f6crrrrr |
|
Explanation |
A firewall rule was created. |
|
Possible failure causes |
· The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The tenant IDs for the configuration items are different. · The time range specified for the rule doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. · The match rules for virtual firewalls do not support the reject action. · Failed to add the configuration item. · If the action is DPI, you must specify an IPS policy, AV policy, or URL filtering policy by its ID. · The source IP object group name is read only. · The destination IP object group name is read only. · The service object group name is read only. · The policy ID is read only. · The policy name is read only. |
Update firewall rule
|
Keyword |
UPDATE_FWRULE_OP |
|
Message text |
Updated firewall rule $1. |
|
Variable fields |
$1: Information about the firewall rule. |
|
Example |
Updated firewall rule ID: b52fff79-7bcf-4bff-9340-68c5f6c1c495 Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: fw_rule Description: firewall rule Shared: true Protocol: TCP IP version: IPv4 Source IP address: 22.2.2.2 Destination IP address: 11.1.1.1 Source port: 1222:1222 Destination port: 1333:1333 Position: null Action: INSPECT Enabled: true Time range ID: 9a83d713-8e79-4ca8-a2e9-8df29daf5fd6 Time range ID: 9a83d713-8e79-4ca8-a2e9-8df29daf5fd6 App profile ID: 62214486-42a8-455a-ae6c-90853038fd0a IPS policy ID: 00000000-0000-0000-0000-000000000000 URL filter policy ID: 230f47be-63f4-4ae0-a488-b72a8d841b1f AV policy ID: 00000000-0000-0000-0000-000000000000 Logging: true Counting: true Object group match: true Source IP object group ID: b52fff79-7bcf-4bff-9340-68c5f6cfffff Destination IP object group ID: b52fff79-7bcf-4bff-9340-68c5f6ceeeee Service object group ID: b52fff79-7bcf-4bff-9340-68c5f6crrrrr |
|
Explanation |
A firewall rule was modified. |
|
Possible failure causes |
· The time range specified for the rule doesn't exist. · The tenant IDs for the configuration items are different. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. · The configuration item doesn't exist. · The match rules for virtual firewalls do not support the reject action. · If the action is DPI, you must specify an IPS policy, AV policy, or URL filtering policy by its ID. · The source IP object group name is read only. · The destination IP object group name is read only. · The service object group name is read only. · The ID is read only. · The tenant ID is read only. · The policy ID is read only. · The policy name is read only. |
Delete firewall rule
|
Keyword |
DELETE_FWRULE_OP |
|
Message text |
Deleted firewall rule $1. |
|
Variable fields |
$1: Name of the firewall rule. |
|
Example |
Deleted firewall rule fw_rule. |
|
Explanation |
A firewall rule was deleted. |
|
Possible failure causes |
· The configuration item is in use. · The configuration item doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. |
Create firewall policy
|
Keyword |
CREATE_FWPOLICY_OP |
|
Message text |
Created firewall policy $1. |
|
Variable fields |
$1: Information about the firewall policy. |
|
Example |
Created firewall policy ID: 70dc3186-ac5b-4ba1-ac7f-7a27ef566efb Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: fw_policy Description: firewall policy Shared: false Rule list: [1510d574-ac17-4078-9a60-719ac7740f84] Audited: true. |
|
Explanation |
A firewall policy was created. |
|
Possible failure causes |
· The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The tenant IDs for the configuration items are different. · The rule specified for the policy doesn't exist. · The rule is already used by another policy. · The number of rules specified for the policy exceeded the limit. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. |
Update firewall policy
|
Keyword |
UPDATE_FWPOLICY_OP |
|
Message text |
Updated firewall policy $1. |
|
Variable fields |
$1: Information about the firewall policy. |
|
Example |
Updated firewall policy ID: 70dc3186-ac5b-4ba1-ac7f-7a27ef566efb Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: fw_policy Description: firewall policy Shared: false Rule list: [1510d574-ac17-4078-9a60-719ac7740f84] Audited: false. |
|
Explanation |
A firewall policy was modified. |
|
Possible failure causes |
· The tenant IDs for the configuration items are different. · The rule specified for the policy doesn't exist. · The rule is already used by another policy. · The number of rules specified for the policy exceeded the limit. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. · The configuration item doesn't exist. |
Delete firewall policy
|
Keyword |
DELETE_FWPOLICY_OP |
|
Message text |
Deleted firewall policy $1. |
|
Variable fields |
$1: Name of the firewall policy. |
|
Example |
Deleted firewall policy fw_policy. |
|
Explanation |
A firewall policy was deleted. |
|
Possible failure causes |
· The configuration item is in use. · The configuration item doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. |
Create firewall
|
Keyword |
CREATE_FW_OP |
|
Message text |
Created firewall $1. |
|
Variable fields |
$1: Information about the firewall. |
|
Example |
Created firewall ID: 6835896c-5152-4bed-a2ab-092c9980e2b8 Tenant ID : ffffffff-0000-0000-0000-000000000001 Name: fw Description: firewall Status: DOWN Shared: true Forward firewall policy ID: d233005f-22bd-4e2b-8ac0-bdef810f533a Backward firewall policy ID: c133005f-23bd-5a6b-7bb0-dbef710f524c Forward attack defense policy ID: d233005f-22bd-4e2b-8ac0-bdef810f533e Backward attack defense policy ID: d233005f-22bd-4e2b-8ac0-bdef810f533f Router ID: 78dce1d6-8ba5-4bb4-b909-0d83659c40b2. |
|
Explanation |
A firewall was created. |
|
Possible failure causes |
· The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The tenant IDs for the firewall and the specified forward firewall policy are different. · The tenant IDs for the firewall and the specified backward firewall policy are different. · The tenant IDs for the firewall and the specified vRouter are different. · The tenant IDs for the firewall and the specified network resource are different. · The forward firewall policy specified for the firewall doesn't exist. · The backward firewall policy specified for the firewall doesn't exist. · The forward firewall policy is already used by another firewall. · The backward firewall policy is already used by another firewall. · The forward attack defense policy is already used by another firewall. · The backward attack defense policy is already used by another firewall. · The vRouter specified for the firewall doesn't exist. · The vRouter is already used by another firewall. · The type of the network resource specified for the firewall is not vFW. · The network resource specified for the firewall doesn't exist. · The number of firewalls bound to the resource exceeded the limit. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The firewall service has not been found. · The specified resource is not associated with any resource access template or the associated resource access template is unavailable. |
Update firewall
|
Keyword |
UPDATE_FW_OP |
|
Message text |
Updated firewall $1. |
|
Variable fields |
$1: Information about the firewall. |
|
Example |
Updated firewall ID: 6835896c-5152-4bed-a2ab-092c9980e2b8 Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: fw Description: firewall Status: ACTIVE Shared: true Forward firewall policy ID: 572744ad-6bda-4617-aef2-78b58a068f93 Backward firewall policy ID: c133005f-23bd-5a6b-7bb0-dbef710f524c Forward attack defense policy ID: d233005f-22bd-4e2b-8ac0-bdef810f533e Backward attack defense policy ID: d233005f-22bd-4e2b-8ac0-bdef810f533f Mode: GATEWAY Router ID: 2bdbafbf-f899-42af-b2ce-e21122ad1d1b. |
|
Explanation |
A firewall was modified. |
|
Possible failure causes |
· The tenant IDs for the firewall and the specified forward firewall policy are different. · The tenant IDs for the firewall and the specified backward firewall policy are different. · The tenant IDs for the firewall and the specified vRouter are different. · The tenant IDs for the firewall and the specified network resource are different. · The forward firewall policy specified for the firewall doesn't exist. · The backward firewall policy specified for the firewall doesn't exist. · The forward firewall policy is already used by another firewall. · The backward firewall policy is already used by another firewall. · The forward attack defense policy is already used by another firewall. · The backward attack defense policy is already used by another firewall. · The vRouter specified for the firewall doesn't exist. · The vRouter is already used by another firewall. · The type of the network resource specified for the firewall is not vFW. · The network resource specified for the firewall doesn't exist. · The number of firewalls bound to the resource exceeded the limit. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration deletion is in progress. · Configuration recovery is in progress. · The firewall service has not been found. · The configuration item doesn't exist. · The specified resource is not associated with any resource access template or the associated resource access template is unavailable. |
Delete firewall
|
Keyword |
DELETE_FW_OP |
|
Message text |
Deleted firewall $1. |
|
Variable fields |
$1: Name of the firewall. |
|
Example |
Deleted firewall fw. |
|
Explanation |
A firewall was deleted. |
|
Possible failure causes |
· The configuration item is in use. · The configuration item doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration deletion is in progress. · Configuration recovery is in progress. · The firewall service has not been found. |
Create IPS policy
|
Keyword |
CREATE_IPSPOLICY_OP |
|
Message text |
Created IPS policy $1. |
|
Variable fields |
$1: Information about the IPS policy. |
|
Example |
Created IPS policy ID: 70dc3186-ac5b-4ba1-ac7f-7a27ef566efb Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: IPS Description: ips policy. |
|
Explanation |
An IPS policy was created. |
|
Possible failure causes |
· No signature library is uploaded. · The tenant name is read only. · Invalid JSON format. · No tenant ID is specified. · The tenant specified for the configuration item doesn't exist. · The configuration item already exists. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. |
Update IPS policy
|
Keyword |
UPDATE_IPSPOLICY_OP |
|
Message text |
Updated IPS policy $1. |
|
Variable fields |
$1: Information about the IPS policy. |
|
Example |
Updated IPS policy ID: 70dc3186-ac5b-4ba1-ac7f-7a27ef566efb Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: IPS Description: ips policy. |
|
Explanation |
An IPS policy was modified. |
|
Possible failure causes |
· The IPS policy ID can't be modified. · The tenant ID is read only. · The tenant name is read only. · Invalid JSON format. · The configuration item doesn't exist. · The predefined IPS policy can't be modified. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. |
Delete IPS policy
|
Keyword |
DELETE_IPSPOLICY_OP |
|
Message text |
Deleted IPS policy $1. |
|
Variable fields |
$1: IPS policy name. |
|
Example |
Deleted IPS policy IPS. |
|
Explanation |
An IPS policy was deleted. |
|
Possible failure causes |
· The configuration item doesn't exist. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. |
Create IPS template
|
Keyword |
CREATE_IPSTEMPLATE_OP |
|
Message text |
Created IPS template $1. |
|
Variable fields |
$1: Information about the IPS template. |
|
Example |
Created IPS template ID: 70dc3186-ac5b-4ba1-ac7f-7a27ef566efb Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: IPS Description: ips template. |
|
Explanation |
An IPS template was created. |
|
Possible failure causes |
· No signature library is uploaded. · The tenant name is read only. · The template type is read only. · Invalid JSON format. · No tenant ID is specified. · The tenant specified for the configuration item doesn't exist. · The configuration item already exists. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. |
Update IPS template
|
Keyword |
UPDATE_IPSTEMPLATE_OP |
|
Message text |
Updated IPS template $1. |
|
Variable fields |
$1: Information about the IPS template. |
|
Example |
Updated IPS template ID: 70dc3186-ac5b-4ba1-ac7f-7a27ef566efb Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: IPS Description: ips template. |
|
Explanation |
An IPS template was modified. |
|
Possible failure causes |
· The IPS template ID can't be modified. · The tenant ID is read only. · The tenant name is read only. · The template type is read only. · Invalid JSON format. · The configuration item doesn't exist. · The predefined IPS template can't be modified. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. |
Delete IPS template
|
Keyword |
DELETE_IPSTEMPLATE_OP |
|
Message text |
Deleted IPS template $1. |
|
Variable fields |
$1: IPS template name. |
|
Example |
Deleted IPS template IPS. |
|
Explanation |
An IPS template was deleted. |
|
Possible failure causes |
· The configuration item doesn't exist. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. |
Upload IPS signature library from local device
|
Keyword |
UPLOAD_IPSSIGNATURE_OP |
|
Message text |
Uploaded IPS signature library $1 from local device. |
|
Variable fields |
$1: Name of the IPS signature library file. |
|
Example |
Uploaded IPS signature library V7-IPS-1.0.15.dat from local device. |
|
Explanation |
An IPS signature library file was uploaded from the local device to the SDN controller. |
|
Possible failure causes |
· The IPS signature library file is invalid or it can’t be parsed. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · Uploading aborted because of abnormal firewall service. · The signature library service has not been found. |
Create AV policy
|
Keyword |
CREATE_AVPOLICY_OP |
|
Message text |
Created AV policy $1. |
|
Variable fields |
$1: Information about the AV policy. |
|
Example |
Created AV policy ID: 70dc3186-ac5b-4ba1-ac7f-7a27ef566efb Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: AV Description: av policy. |
|
Explanation |
An AV policy was created. |
|
Possible failure causes |
· No virus library is uploaded. · The tenant name is read only. · Invalid JSON format. · No tenant ID is specified. · The tenant specified for the configuration item doesn't exist. · The configuration item already exists. · The application library must be uploaded before the application exceptions are added. · The virus library must be uploaded before the virus exceptions are added. · The application exception is not included in the application library. · The virus exception is not included in the virus library. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. |
Update AV policy
|
Keyword |
UPDATE_AVPOLICY_OP |
|
Message text |
Updated AV policy $1. |
|
Variable fields |
$1: Information about the AV policy. |
|
Example |
Updated AV policy ID: 70dc3186-ac5b-4ba1-ac7f-7a27ef566efb Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: AV Description: av policy. |
|
Explanation |
An AV policy was modified. |
|
Possible failure causes |
· The antivirus policy ID can't be modified. · The tenant ID is read only. · The tenant name is read only. · Invalid JSON format. · The configuration item doesn't exist. · The predefined antivirus policy can't be modified. · The application library must be uploaded before the application exceptions are added. · The virus library must be uploaded before the virus exceptions are added. · The application exception is not included in the application library. · The virus exception is not included in the virus library. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · Invalid virus exceptions exist. · Invalid application exceptions exist. |
Delete AV policy
|
Keyword |
DELETE_AVPOLICY_OP |
|
Message text |
Deleted AV policy $1. |
|
Variable fields |
$1: Name of the AV policy. |
|
Example |
Deleted AV policy AV. |
|
Explanation |
An AV policy was deleted. |
|
Possible failure causes |
· The configuration item doesn't exist. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. |
Create AV template
|
Keyword |
CREATE_AVTEMPLATE_OP |
|
Message text |
Created AV template $1. |
|
Variable fields |
$1: Information about the AV template. |
|
Example |
Created AV template ID: 70dc3186-ac5b-4ba1-ac7f-7a27ef566efb Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: AV Description: av template. |
|
Explanation |
An AV template was created. |
|
Possible failure causes |
· No virus library is uploaded. · The tenant name is read only. · The antivirus template type is read only. · Invalid JSON format. · No tenant ID is specified. · The tenant specified for the configuration item doesn't exist. · The configuration item already exists. · The application library must be uploaded before the application exceptions are added. · The virus library must be uploaded before the virus exceptions are added. · The application exception is not included in the application library. · The virus exception is not included in the virus library. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. |
Update AV template
|
Keyword |
UPDATE_AVTEMPLATE_OP |
|
Message text |
Updated AV template $1. |
|
Variable fields |
$1: Information about the AV template. |
|
Example |
Updated AV template ID: 70dc3186-ac5b-4ba1-ac7f-7a27ef566efb Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: AV Description: av template. |
|
Explanation |
An AV template was modified. |
|
Possible failure causes |
· The antivirus template ID can't be modified. · The tenant ID is read only. · The tenant name is read only. · The antivirus template type is read only. · Invalid JSON format. · The configuration item doesn't exist. · The predefined antivirus template can't be modified. · The application library must be uploaded before the application exceptions are added. · The virus library must be uploaded before the virus exceptions are added. · The application exception is not included in the application library. · The virus exception is not included in the virus library. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · Invalid virus exceptions exist. · Invalid application exceptions exist. |
Delete AV template
|
Keyword |
DELETE_AVTEMPLATE_OP |
|
Message text |
Deleted AV template $1. |
|
Variable fields |
$1: Name of the AV template. |
|
Example |
Deleted AV template AV. |
|
Explanation |
An AV template was deleted. |
|
Possible failure causes |
· The configuration item doesn't exist. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. |
Upload virus library from local device
|
Keyword |
UPLOAD_VIRUSLIBRARY_OP |
|
Message text |
Uploaded virus library $1 from local device. |
|
Variable fields |
$1: Name of the virus library file. |
|
Example |
Uploaded virus library V7-AV-1.0.15.dat from local device. |
|
Explanation |
A virus library file was uploaded from the local device to the SDN controller. |
|
Possible failure causes |
· The virus library file is invalid or it can’t be parsed. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · Uploading aborted because of abnormal firewall service. · The signature library service has not been found. |
Upload application library from local device
|
Keyword |
UPLOAD_APPLIBRARY_OP |
|
Message text |
Uploaded application library $1 from local device. |
|
Variable fields |
$1: Name of the application library file. |
|
Example |
Uploaded application library V7-APP-1.0.41.dat from local device. |
|
Explanation |
An application library file was uploaded from the local device to the SDN controller. |
|
Possible failure causes |
· The application library file is invalid or it can’t be parsed. · The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · Uploading aborted because of abnormal firewall service. · The signature library service has not been found. |
Create attack defense policy
|
Keyword |
CREATE_ATKDEFPOLICY_OP |
|
Message text |
Created attack defense policy $1. |
|
Variable fields |
$1: Information about the attack defense policy. |
|
Example |
Created attack defense policy ID: 70dc3186-ac5b-4ba1-ac7f-7a27ef566efb Name: fw_policy Tenant ID: ffffffff-0000-0000-0000-000000000001 Description: policy |
|
Explanation |
An attack defense policy was created. |
|
Possible failure causes |
· No tenant ID is specified. · No policy name is specified. · Invalid JSON format. · The value of the threshold must be an integer in the range of 1 to 1000000. · The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The controller is not the active leader. · The large ICMP packet length is an integer in the range of 28 to 65534. |
Update attack defense policy
|
Keyword |
UPDATE_ATKDEFPOLICY_OP |
|
Message text |
Updated attack defense policy $1. |
|
Variable fields |
$1: Information about the attack defense policy. |
|
Example |
Updated attack defense policy ID: 5f206f6d-e400-4f25-896f-791678132664 Name: policy Tenant ID: ffffffff-0000-0000-0000-000000000001 Description: ABCDEFG. |
|
Explanation |
An attack defense policy was modified. |
|
Possible failure causes |
· Invalid JSON format. · The value of the threshold must be an integer in the range of 1 to 1000000. · The controller is not the active leader. · The configuration item doesn't exist. · The large ICMP packet length is an integer in the range of 28 to 65534. |
Delete attack defense policy
|
Keyword |
DELETE_ATKDEFPOLICY_OP |
|
Message text |
Deleted attack defense policy $1. |
|
Variable fields |
$1: Name of the attack defense policy |
|
Example |
Deleted attack defense policy atk_policy. |
|
Explanation |
An attack defense policy was deleted. |
|
Possible failure causes |
· The configuration item is in use. · The configuration item doesn’t exist. · The controller is not the active leader. |
Create URL filter category
|
Keyword |
CREATE_URL_CATEGORY_OP |
|
Message text |
Created URL filter category $1. |
|
Variable fields |
$1: Information about the URL filter category. |
|
Example |
Created URL filter category ID: 0ad7e32e-f163-4fb9-b272-f9e2977d40be Name: category1 Tenant ID: ffffffff-0000-0000-0000-000000000001 Tenant name: default Severity: 1000 Description: category1 URL filter rules: []. |
|
Explanation |
A URL filter category was created. |
|
Possible failure causes |
· The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The controller is not the active leader. · Invalid JSON format. · The URL filter categories created for the sane tenant must have different severity levels. |
Update URL filter category
|
Keyword |
UPDATE_URL_CATEGORY_OP |
|
Message text |
Updated URL filter category $1. |
|
Variable fields |
$1: Information about the URL filter category. |
|
Example |
Updated URL filter category ID: 0ad7e32e-f163-4fb9-b272-f9e2977d40be Name: category1 Tenant ID: ffffffff-0000-0000-0000-000000000001 Tenant name: default Severity: 1000 Description: category1 URL filter rules: []. |
|
Explanation |
A URL filter category was modified. |
|
Possible failure causes |
· The controller is not the active leader. · The configuration item doesn’t exist. · Invalid JSON format. · The URL filter categories created for the sane tenant must have different severity levels. |
Delete URL filter category
|
Keyword |
DELETE_URL_CATEGORY_OP |
|
Message text |
Deleted URL filter category $1. |
|
Variable fields |
$1: Name of the URL filter category. |
|
Example |
Deleted URL filter category category1. |
|
Explanation |
A URL filter category was deleted. |
|
Possible failure causes |
· The configuration item is in use. · The configuration item doesn’t exist. · The controller is not the active leader. |
Create URL filter rule
|
Keyword |
CREATE_URL_RULE_OP |
|
Message text |
Created URL filter rule $1. |
|
Variable fields |
$1: Information about the URL filter rule. |
|
Example |
Created URL filter rule ID: 954a1680-fd27-4cc1-b5ec-8f530c81f57a Category ID: f600c3fc-3c53-4b31-bc30-bfdd7177660b Rule ID: 1 Host filter type: TEXT Host name: 1234 URI filter type: REGEX URI: 12345 |
|
Explanation |
A URL filter rule was created. |
|
Possible failure causes |
· The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The controller is not the active leader. · Invalid JSON format. |
Update URL filter rule
|
Keyword |
UPDATE_URL_RULE_OP |
|
Message text |
Updated URL filter rule $1. |
|
Variable fields |
$1: Information about the URL filter rule. |
|
Example |
Updated URL filter rule ID: 954a1680-fd27-4cc1-b5ec-8f530c81f57a Category ID: f600c3fc-3c53-4b31-bc30-bfdd7177660b Rule ID: 1 Host filter type: TEXT Host name: 1234 URI filter type: REGEX URI: 12345.. |
|
Explanation |
A URL filter rule was modified. |
|
Possible failure causes |
· The controller is not the active leader. · The configuration item doesn’t exist. · Invalid JSON format. |
Delete URL filter rule
|
Keyword |
DELETE_URL_RULE_OP |
|
Message text |
Deleted URL filter rule $1. |
|
Variable fields |
$1: ID of the URL filter rule. |
|
Example |
Deleted URL filter rule 954a1680-fd27-4cc1-b5ec-8f530c81f57a. |
|
Explanation |
A URL filter rule was deleted. |
|
Possible failure causes |
· The configuration item is in use. · The configuration item doesn’t exist. · The controller is not the active leader. |
Create URL filter policy
|
Keyword |
CREATE_URL_POLICY_OP |
|
Message text |
Created URL filter policy $1. |
|
Variable fields |
$1: Information about the URL filter policy. |
|
Example |
Created URL filter policy ID: e9c2d8b7-1a6f-49db-b36a-b86ed8ca3a04 Name: policy1 Tenant ID: 28a270bd-fd71-455d-b337-6281f9175bd9 Tenant name: ht Description: null |
|
Explanation |
A URL filter policy was created. |
|
Possible failure causes |
· The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The selected URL filter categories contain invalid categories. · The controller is not the active leader. · Invalid JSON format. |
Update URL filter policy
|
Keyword |
UPDATE_URL_POLICY_OP |
|
Message text |
Updated URL filter policy $1. |
|
Variable fields |
$1: Information about the URL filter policy. |
|
Example |
Updated URL filter policy ID: e9c2d8b7-1a6f-49db-b36a-b86ed8ca3a04 Name: policy1 Tenant ID: 28a270bd-fd71-455d-b337-6281f9175bd9 Tenant name: ht Description: null |
|
Explanation |
A URL filter policy was modified. |
|
Possible failure causes |
· The controller is not the active leader. · The configuration item doesn’t exist. · The selected URL filter categories contain invalid categories. · Invalid JSON format. |
Delete URL filter policy
|
Keyword |
DELETE_URL_POLICY_OP |
|
Message text |
Deleted URL filter policy $1. |
|
Variable fields |
$1: Name of the URL filter policy. |
|
Example |
Deleted URL filter policy policy1. |
|
Explanation |
A URL filter policy was deleted. |
|
Possible failure causes |
· The configuration item is in use. · The configuration item doesn’t exist. · The controller is not the active leader. |
LBaaS
This section contains load balancing messages.
Create load balancer
|
Keyword |
CREATE_LB_OP |
|
Message text |
Created load balancer $1. |
|
Variable fields |
$1: Load balancer information. |
|
Example |
Created load balancer ID: 41e38478-da02-49e3-986e-6356ddd304f8 Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: 9 Description: Type: SERVER Mode: GATEWAY Router ID: 5f96684a-5368-433c-bd26-158d351affd4 Status: DOWN Listener IDs: [ 4914ac1e-4acf-4966-b7de-c5c495751da9 ] Version: LB_V2. |
|
Explanation |
A load balancer was created. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The load balancer mode can only be GATEWAY, CGSR, or SERVICE_CHAIN. · The resource specified for the load balancer doesn't exist. · The pool specified for the load balancer doesn't exist. · The pool is already used by another the load balancer. · The tenant IDs for the load balancer and the specified pool are different. · The VIP address must belong to the subnet of the pool. · The load balancers in the same VIP must have the same mode. · The subnets for the VIP and member are different. · Only the SERVICE_CHAIN type load balancers support server pool list configuration. · The VIP corresponding to the specified pool is enabled with SNAT and cannot be used by the SERVICE_CHAIN type load balancers. · The listener used by the specified pool is already enabled with SNAT. The pool cannot be applied to a SERVICE_CHAIN type load balancer. · The listener specified for the load balancer doesn't exist. · The listener is already used by another the load balancer. · The tenant IDs for the load balancer and the specified listener are different. · Only the SERVICE_CHAIN type load balancers support listener list configuration. · The listeners using the same VIP can be used only by the load balancers of the same mode. · The specified listener is already enabled with SNAT. The pool cannot be applied to a SERVICE_CHAIN type load balancer. · The tenant ID must be specified. · The status is read only. · The tenant name is read only. · The resource name is read only. · The pool name is read only. · Failed to add the configuration item. · The resource ID can not be specified in gateway mode. · The load balancer in service chain mode supports only network resources of the LB type. · The router ID is read only. · The router name is read only. · Only SERVER type load balancer supported. · The specified pool is not referenced by any listener. · The load balancer can not have pools and listeners at one time. |
Update load balancer
|
Keyword |
UPDATE_LB_OP |
|
Message text |
Updated load balancer $1. |
|
Variable fields |
$1: Load balancer information. |
|
Example |
Updated load balancer ID: 41e38478-da02-49e3-986e-6356ddd304f8 Tenant ID: ffffffff-0000-0000-0000-000000000001 Name: 9 Description: Type: SERVER Mode: GATEWAY Router ID: 5f96684a-5368-433c-bd26-158d351affd4 Status: DOWN Listener IDs: [ 4914ac1e-4acf-4966-b7de-c5c495751da9 ] Version: LB_V2. |
|
Explanation |
A load balancer was modified. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · The resource specified for the load balancer doesn't exist. · The pool specified for the load balancer doesn't exist. · The pool is already used by another the load balancer. · The tenant IDs for the load balancer and the specified pool are different. · The VIP address must belong to the subnet of the pool. · The subnet for the VIP and member are different. · Only the SERVICE_CHAIN type load balancers support server pool list configuration. · The VIP corresponding to the specified pool is enabled with SNAT and cannot be used by the SERVICE_CHAIN type load balancers. · The listener specified for the load balancer doesn't exist. · The listener is already used by another the load balancer. · The tenant IDs for the load balancer and the specified listener are different. · Only the SERVICE_CHAIN type load balancers support listener list configuration. · The specified listener is already enabled with SNAT. The pool cannot be applied to a SERVICE_CHAIN type load balancer. · The listeners using the same VIP can be used only by the load balancers of the same mode. · The status is read only. · The tenant name is read only. · The resource name is read only. · The pool name is read only. · The ID can not be modified. · The mode can not be modified. · The tenant ID can not be modified. · Failed to modify the configuration item. · The resource ID can not be specified in gateway mode. · The load balancer in service chain mode supports only network resources of the LB type. · The router ID is read only. · The router name is read only. · The specified pool is not referenced by any listener. · The load balancer can not have pools and listeners at one time. |
Delete load balancer
|
Keyword |
DELETE_LB_OP |
|
|
Message text |
Deleted load balancer $1. |
|
|
Variable fields |
$1: Load balancer name. |
|
|
Example |
Deleted load balancer lb70. |
|
|
Explanation |
A load balancer was deleted. |
|
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · The configuration item is in use. · Failed to delete the configuration item. |
|
Create VIP
|
Keyword |
CREATE_VIRTUALIP_OP |
|
Message text |
Created VIP $1. |
|
Variable fields |
$1: Virtual server information. |
|
Example |
Created VIP ID: 6db0736e-4557-4062-b17e-820dfccc54d4 Name: virly Description: Tenant ID: ffffffff-0000-0000-0000-000000000001 Subnet ID: 97e33f9d-da04-4caa-808d-e48a82718b2f IP address: 10.10.10.10 Admin state up: true Status: DOWN |
|
Explanation |
A virtual server was created for load balancing v2. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · Invalid json format. · The service has not been found. · The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The IP address already exists. · The IP address doesn't belong to the subnet. · The subnet specified for the VIP doesn’t exist. · The tenant IDs for the VIP and the specified subnet are different. · The specified VIP address conflicts with the IP address of a vPort or gateway. · The tenant ID must be specified. |
Update VIP
|
Keyword |
UPDATE_VIRTUALIP_OP |
|
Message text |
Updated VIP $1. |
|
Variable fields |
$1: Virtual server information. |
|
Example |
Updated VIP ID: 6db0736e-4557-4062-b17e-820dfccc54d4 Name: virly Description: Tenant ID: ffffffff-0000-0000-0000-000000000001 Subnet ID: 97e33f9d-da04-4caa-808d-e48a82718b2f IP address: 10.10.10.10 Admin state up: true Status: DOWN. |
|
Explanation |
A virtual server was modified for load balancing v2. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · The IP address already exists. · The VIP ID is read-only. · The VIP name is read-only. · The subnet ID is read-only. · The virtual port ID is read-only. · The IP address doesn't belong to the subnet. · The tenant IDs for the VIP and the specified subnet are different. |
Delete VIP
|
Keyword |
DELETE_VIRTUALIP_OP |
|
|
Message text |
Deleted VIP $1. |
|
|
Variable fields |
$1: Virtual server name. |
|
|
Example |
Deleted VIP virtualip60. |
|
|
Explanation |
A virtual server was deleted for load balancing v2. |
|
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · The configuration item is in use. · Failed to delete the configuration item. |
|
Create listener
|
Keyword |
CREATE_LISTENER_OP |
|
Message text |
Created listener $1. |
|
Variable fields |
$1: Listener information. |
|
Example |
Created listener ID: ab8121f1-65b6-4709-8153-43695b83a187 Name: listener60 Description: Tenant ID: 00000000-0000-0000-0000-000000000000 Default pool ID: 5ba4d32a-8373-423c-b1e9-78de52f0733d Protocol: HTTP Protocol port: 6 Admin state up: true Connection limit: 0 VIP ID: ab8121f1-65b6-4709-8153-43695b83a121 Enable SNAT: false Status: DOWN. |
|
Explanation |
A listener was created. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item already exists. · The configuration item doesn't exist. · The tenant specified for the configuration item doesn't exist. · The tenant IDs for the listener and the specified VIP are different. · The port number is used by another listener using the same VIP. · The tenant IDs for the listener and the specified default pool are different. · The VIP for the specified default pool is different from the VIP used by the listener. · The vRouters for the default pool and the VIP are different for the listener. · The tenant name is read only. · The pool name is read only. · The tenant ID must be specified. · The protocol must be specified. · The protocol port must be specified. · The connection limit must be specified. · Failed to add the configuration item. · The virtual IP specified for the configuration item doesn't exist. · The defaultPoolId specified for the configuration item doesn't exist. · The virtualIp ID must be specified. · The policy can be bound only to the listener whose protocol type is HTTP or HTTPS. · A TCP-type listener doesn't support enabling XFF. · Only HTTPS-type listeners support SSL certificate and SSL key configuration. · The SSL certificate and SSL key must be both specified or both left unspecified. · To enable XFF for a listener whose protocol is HTTPS, you must specify SSL settings first. · Invalid SSL certificate. · Invalid SSL key. |
Update listener
|
Keyword |
UPDATE_LISTENER_OP |
|
Message text |
Updated listener $1. |
|
Variable fields |
$1: Listener information. |
|
Example |
Updated listener ID: ab8121f1-65b6-4709-8153-43695b83a187 Name: listener60 Description: Tenant ID: 00000000-0000-0000-0000-000000000000 Default pool ID: 5ba4d32a-8373-423c-b1e9-78de52f0733d Protocol: HTTP Protocol port: 6 Admin state up: true Connection limit: 0 VIP ID: ab8121f1-65b6-4709-8153-43695b83a121 Enable SNAT: false Status: DOWN. |
|
Explanation |
A listener was modified. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · The tenant IDs for the VIP and the specified listener are different. · The pool that is using the listener is already applied to a SERVICE_CHAIN type load balancer. You cannot enable SNAT on the listener. · The tenant IDs for the listener and the specified default pool are different. · The VIP for the specified default pool is different from the VIP used by the listener. · The vRouters for the default pool and the VIP are different for the listener. · The virtualIp specified for the configuration item doesn't exist. · The defaultPoolId specified for the configuration item doesn't exist. · The virtualIp ID must be specified. · The default pool name can not be modified. · The virtualip ID can not be modified. · A TCP-type listener doesn't support enabling XFF. · Only HTTPS-type listeners support SSL certificate and SSL key configuration. · The SSL certificate and SSL key must be both specified or both left unspecified. · To enable XFF for a listener whose protocol is HTTPS, you must specify SSL settings first. · Invalid SSL certificate. · Invalid SSL key. · SSL-related configuration can’t be deleted if the listener of the HTTPS protocol type has been bound with a policy. |
Delete listener
|
Keyword |
DELETE_LISTENER_OP |
|
|
Message text |
Deleted listener $1. |
|
|
Variable fields |
$1: Listener name. |
|
|
Example |
Deleted listener listener60. |
|
|
Explanation |
A listener was deleted. |
|
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · The configuration item is in use. · Failed to delete the configuration item. |
|
Create policy
|
Keyword |
CREATE_LBPOLICY_OP |
|
|
Message text |
Created policy $1. |
|
|
Variable fields |
$1: Policy configuration information. |
|
|
Example |
Created policy ID: 0f4777cb-724d-4298-b2dd-1700f4183399 Name: l7test Description: Tenant ID: ffffffff-0000-0000-0000-000000000001 Listener ID: eeed4b2e-f42c-4f03-b9f0-acfe2cfea565 Priority: 1 Actions: { Type: Redirect to URL Redirect URL: aaa } Admin state up: true. |
|
|
Explanation |
A policy was created. |
|
|
Possible failure causes |
· The controller is not the active leader. · Invalid json format. · The configuration item already exists. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · The tenant ID must be specified. · The actions is required. · The listener ID is required. · The tenant specified for the configuration item doesn't exist. · Invalid URL. · The listener specified for the policy doesn't exist. · The tenant IDs for the specified listener and the specified pool are different. · A listener can be bound to a maximum of 5000 policies. · The VIP for the specified pool is different from the VIP used by the listener bound with the policy. · The vRouters for the pool and the listener are different for the policy. · The policy can be bound only to the listener whose protocol type is HTTP or HTTPS. · A policy can contain only one action. · The tenant IDs for the specified pool and the policy are different. · The action type is required. · When the action type is REDIRECT_TO_POOL, you must specify the pool ID. · When the action type is REDIRECT_TO_URL, you must specify the URL. · The specified pool doesn't exist. · No VIP is specified for the listener. · The tenant IDs for the specified listener and the policy are different. · The policy is required. · Failed to add the configuration item. |
|
Update policy
|
Keyword |
UPDATE_LBPOLICY_OP |
|
|
Message text |
Updated policy $1. |
|
|
Variable fields |
$1: Policy configuration information. |
|
|
Example |
Updated policy ID: 0f4777cb-724d-4298-b2dd-1700f4183399 Name: l7test Description: Admin state up: true Tenant ID: ffffffff-0000-0000-0000-000000000001 Listener ID: eeed4b2e-f42c-4f03-b9f0-acfe2cfea565 Priority: 1 Actions: { Type: Redirect to URL Redirect URL: aaa }. |
|
|
Explanation |
A policy was modified. |
|
|
Possible failure causes |
· The controller is not the active leader. · Invalid json format. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · The ID can not be modified. · The tenant ID can not be modified. · The listener ID can not be modified. · The pool specified for the configuration item doesn't exist. · Failed to modify the configuration item. · Invalid URL. · The tenant IDs for the specified listener and the specified pool are different. · The VIP for the specified pool is different from the VIP used by the listener bound with the policy. · The vRouters for the pool and the listener are different for the policy. · The actions is required. · The policy name is read only. · A policy can contain only one action. · The tenant IDs for the specified pool and the policy are different. · The action type is required. · When the action type is REDIRECT_TO_POOL, you must specify the pool ID. · When the action type is REDIRECT_TO_URL, you must specify the URL. · No VIP is specified for the listener. · Failed to modify the configuration item. |
|
Delete policy
|
Keyword |
DELETE_LBPOLICY_OP |
|
|
Message text |
Deleted policy $1. |
|
|
Variable fields |
$1: Policy name. |
|
|
Example |
Deleted policy L7test. |
|
|
Explanation |
A policy was deleted. |
|
|
Possible failure causes |
· The controller is not the active leader. · The configuration item doesn't exist. · The service has not been found. · Failed to delete the configuration item. · Configuration recovery is in progress. |
|
Create rule
|
Keyword |
CREATE_LBRULE_OP |
|
|
Message text |
Created rule $1. |
|
|
Variable fields |
$1: Rule configuration information. |
|
|
Example |
Created rule ID: 3390118d-b9b7-4a3b-8f7c-d9d240bbf881 Type: HTTP cookie Invert: false Match item: aabb Match type: Equal to Match value: html Policy ID: 3ecfaa2e-9086-4c1c-ac8f-0c8d08e66fcc. |
|
|
Explanation |
A rule was created. |
|
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · Invalid json format. · The configuration item already exists. · The policy ID is required. · The type is required. · The key is required. · The value is required. · The compare_type is required. · The policy doesn't exist. · When the type is FILE_TYPE, the match type only can be EQUAL_TO. · Invalid value. · Invalid key. · The key is not required when the type is FILE_TYPE, HOST_NAME, or PATH. · A policy can contain a maximum of 256 rules. · Invalid compare_type. · Invalid type. |
|
Update rule
|
Keyword |
UPDATE_LBRULE_OP |
|
|
Message text |
Updated rule $1. |
|
|
Variable fields |
$1: Rule configuration information. |
|
|
Example |
Updated rule ID: 3390118d-b9b7-4a3b-8f7c-d9d240bbf881 Type: HTTP cookie Invert: False Match item: aabb Match type: Equal to Match value: html Policy ID: 3ecfaa2e-9086-4c1c-ac8f-0c8d08e66fcc. |
|
|
Explanation |
A rule was modified. |
|
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · Invalid json format. · The ID can not be modified. · The configuration item doesn't exist. · When the type is FILE_TYPE, the match type only can be EQUAL_TO. · Invalid value. · Invalid key. · The key is not required when the type is FILE_TYPE, HOST_NAME, or PATH. · Failed to modify the configuration item. · The policy ID is read only. · The key is required. |
|
Delete rule
|
Keyword |
DELETE_LBRULE_OP |
|
|
Message text |
Deleted rule $1. |
|
|
Variable fields |
$1: Rule ID. |
|
|
Example |
Deleted rule 3390118d-b9b7-4a3b-8f7c-d9d240bbf881. |
|
|
Explanation |
A rule was deleted. |
|
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. |
|
Create pool
|
Keyword |
CREATE_POOL_OP |
|
Message text |
Created pool $1. |
|
Variable fields |
$1: Pool information. |
|
Example |
Created pool ID: 5ba4d32a-8373-423c-b1e9-78de52f0733d Tenant ID: 00000000-0000-0000-0000-000000000000 Name: pool70 Description: pool 70 LB method: ROUND_ROBIN Session persistence type: SOURCE_IP Admin state up: true Session persistence cookie name: Status: DOWN Version: LB_V2. |
|
Explanation |
A pool was created. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The tenant IDs for the pool and the specified listener are different. · The listener ID must be specified. · The protocol types of the pool and the specified listener are different. · All listeners bound with the pool must specify the same VIP. · The vRouters for the specified listeners and the pool are different. · Invalid listener IDs exist in the listener list. · The status is read only. · The tenant name is read only. · The subnet name is read only. · The health monitor name is read only. · The member ID is read only. · The tenant ID must be specified. · The tenant specified for the configuration item doesn't exist. · The specified subnet doesn't exist. · The tenant IDs for the pool and the specified subnet are different. · The health monitor specified for the pool doesn't exist. · The tenant IDs for the pool and the specified health monitor are different. · Failed to add the configuration item. · The subnet id is read only. · The members of pool are read only. · The member ip is read only. · The method of pool must be specified. |
Update pool
|
Keyword |
UPDATE_POOL_OP |
|
Message text |
Updated pool $1. |
|
Variable fields |
$1: Pool information. |
|
Example |
Updated pool ID: 5ba4d32a-8373-423c-b1e9-78de52f0733d Tenant ID: 00000000-0000-0000-0000-000000000000 Name: pool70 Description: pool 70 LB method: ROUND_ROBIN Session persistence type: SOURCE_IP Session persistence cookie name Admin state up: true Status: DOWN Version: LB_V2. |
|
Explanation |
A pool was modified. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · All listeners bound with the pool must specify the same VIP. · The VIP for the specified pool is different from the VIP used by the listeners. · The vRouters for the specified listeners and the pool are different. · The tenant IDs for the pool and the specified listener are different. · Invalid listener IDs exist in the listener list. · The status is read only. · The members of pool are read only. · The tenant name is read only. · The subnet name is read only. · The health monitor name is read only. · The member ID is read only. · The ID can not be modified. · The tenant ID can not be modified. · The listener id can not be modified. · The health monitor specified for the pool doesn't exist. · The tenant IDs for the pool and the specified health monitor are different. · Failed to modify the configuration item. · The subnet id can not be modified. · The specified subnet doesn't exist. · The tenant IDs for the pool and the specified subnet are different. · The member ip is read only. · The members of pool are read only. · The subnet id is read only. |
Delete pool
|
Keyword |
DELETE_POOL_OP |
|
|
Message text |
Deleted pool $1. |
|
|
Variable fields |
$1: Pool name. |
|
|
Example |
Deleted pool pool70. |
|
|
Explanation |
A pool was deleted. |
|
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · The configuration item is in use. · Failed to delete the configuration item. |
|
Create VIP
|
Keyword |
CREATE_VIP_OP |
|
Message text |
Created VIP $1. |
|
Variable fields |
$1: Virtual server information. |
|
Example |
Created VIP ID: ab8121f1-65b6-4709-8153-43695b83a187 Tenant ID: 00000000-0000-0000-0000-000000000000 Name: vip60 Description: Protocol: HTTPS Pool ID: e5c2996e-36d6-4e80-aa2b-deedac360468 Port ID: 09296b20-1f8d-4b17-9862-b920884e34dc Address: 60.0.0.90 Protocol port: 6 Connection limit: 0 Session persistence type: SOURCE_IP Session persistence cookie name: Admin state up: true Status: DOWN. |
|
Explanation |
A virtual server was created for load balancing v1. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The protocol types of the VIP and the pool are different. · The pool is already used by another VIP. · The tenant IDs for the VIP and the specified pool are different. · The specified subnet doesn't exist. · The VIP address conflicts with the IP address of a vPort or the subnets of the VIP address and member IP addresses belong to different virtual link layer networks. · The pool specified for the VIP doesn't exist. · The IP address is already used by another VIP. · The VIP address must belong to the subnet of the pool. · The IP address doesn't belong to the subnet. · The pool used by the VIP is used by the SERVICE_CHAIN type load balancers and cannot be enabled with SNAT. · The tenant ID must be specified. · A virtual server of the TCP type or bound with a TCP-type server farm doesn't support enabling XFF. · Only virtual servers of the TCP type or bound with a TCP-type server farm support SSL certificate and SSL key configuration. · To enable XFF for a virtual server whose protocol is HTTPS, you must specify SSL settings first. · The SSL certificate and SSL key must be both specified or both left unspecified. · Invalid SSL certificate. · Invalid SSL key. |
Update VIP
|
Keyword |
UPDATE_VIP_OP |
|
Message text |
Updated VIP $1. |
|
Variable fields |
$1: Virtual server information. |
|
Example |
Updated VIP ID: ab8121f1-65b6-4709-8153-43695b83a187 Tenant ID: 00000000-0000-0000-0000-000000000000 Name: vip60 Description: Protocol: HTTPS Pool ID: e5c2996e-36d6-4e80-aa2b-deedac360468 Port ID: 09296b20-1f8d-4b17-9862-b920884e34dc Address: 60.0.0.90 Protocol port: 6 Connection limit: 0 Session persistence type: SOURCE_IP Session persistence cookie name: Admin state up: true Status: DOWN. |
|
Explanation |
A virtual server was modified for load balancing v1. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · The protocol types of the VIP and the pool are different. · The pool is already used by another VIP. · The tenant IDs for the VIP and the specified pool are different. · The pool specified for the VIP doesn't exist. · The IP address is already used by another VIP. · The pool used by the VIP is used by the SERVICE_CHAIN type load balancers and cannot be enabled with SNAT. · A virtual server of the TCP type or bound with a TCP-type server farm doesn't support enabling XFF. · Only virtual servers of the TCP type or bound with a TCP-type server farm support SSL certificate and SSL key configuration. · To enable XFF for a virtual server whose protocol is HTTPS, you must specify SSL settings first. · The SSL certificate and SSL key must be both specified or both left unspecified. · Invalid SSL certificate. · Invalid SSL key. |
Delete VIP
|
Keyword |
DELETE_VIP_OP |
|
|
Message text |
Deleted VIP $1. |
|
|
Variable fields |
$1: Virtual server name. |
|
|
Example |
Deleted VIP vip60. |
|
|
Explanation |
A virtual server was deleted for load balancing v1. |
|
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. |
|
Create member
|
Keyword |
CREATE_MEMBER_OP |
|
Message text |
Created member $1. |
|
Variable fields |
$1: Real server information. |
|
Example |
Created member ID: 9f421f95-5772-4127-b8e4-47dfe5a7d43e Tenant ID: 00000000-0000-0000-0000-000000000000 Name: 9f421f95-5772-4127-b8e4-47dfe5a7d43e Pool ID: f8472b01-3aa2-4a6c-a292-80e7872ceca3 Subnet ID: f8472b01-3aa2-4a6c-a292-80e7872cec11 Address: 60.0.0.11 Protocol port: 2 Weight: 1 Admin state up: true Status: DOWN. |
|
Explanation |
A real server was created. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The pool specified for the member doesn't exist. · The tenant IDs for the member and the specified pool are different. · The VIP address must belong to the subnet of the pool. · The IP address is already used by another VIP. · The vRouters for the member and the VIP are different. · The subnet for the VIP and member are different. · The specified subnet doesn't exist. · The tenant IDs for the member and the specified subnet are different. · The vRouters for the pool and the subnet are different for the member. · The status is read only. · The tenant name is read only. · The pool name is read only. · The tenant ID must be specified. · The pool ID must be specified. · The address must be specified. · The IP address doesn't belong to the subnet. · Failed to add the configuration item. · The subnet ID is required if no listeners are bound to the pool. |
Update member
|
Keyword |
UPDATE_MEMBER_OP |
|
Message text |
Updated member $1. |
|
Variable fields |
$1: Real server information. |
|
Example |
Updated member ID: 9f421f95-5772-4127-b8e4-47dfe5a7d43e Tenant ID: 00000000-0000-0000-0000-000000000000 Name: 9f421f95-5772-4127-b8e4-47dfe5a7d43e Pool ID: f8472b01-3aa2-4a6c-a292-80e7872ceca3 Subnet ID: f8472b01-3aa2-4a6c-a292-80e7872cec11 Address: 60.0.0.11 Protocol port: 2 Weight: 1 Admin state up: true Status: DOWN. |
|
Explanation |
A real server was modified. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · The pool specified for the member doesn't exist. · The tenant IDs for the member and the specified pool are different. · The VIP address must belong to the subnet of the pool. · The pool ID is read only. · The subnet for the VIP and member are different. · The specified subnet doesn't exist. · The member and the subnet belong to different tenants. · The vRouters for the pool and the subnet are different for the member. · Invalid json format. · The status is read only. · The tenant name is read only. · The pool name is read only. · The ID can not be modified. · The tenant ID can not be modified. · The address can not be modified. · The subnet id can not be modified. · The protocol port can not be modified. · The subnet for the VIP and member are different. |
Delete member
|
Keyword |
DELETE_MEMBER_OP |
|
|
Message text |
Deleted member $1. |
|
|
Variable fields |
$1: Real server configuration information. |
|
|
Example |
Deleted member IP address: 204.1.1.11 Protocol port: 223 Pool ID: f8472b01-3aa2-4a6c-a292-80e7872ceca3. |
|
|
Explanation |
A real server was deleted. |
|
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · Failed to delete the configuration item. |
|
Create health monitor
|
Keyword |
CREATE_HEALTH_MONITOR_OP |
|
Message text |
Created health monitor $1. |
|
Variable fields |
$1: Health monitoring method information. |
|
Example |
Created health monitor ID: 0711c857-2729-41f2-b213-dc4e715bf9bd Tenant ID: 00000000-0000-0000-0000-000000000000 Pool ID: 00000000-0000-0000-0000-000000000010 Name: hm Type: HTTPS Timeout: 11 Delay: 10 Max retries: 12 HTTP method: GET URL path: / Expected codes: 233 Status: DOWN. |
|
Explanation |
A health monitoring method was created. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item already exists. · The tenant specified for the configuration item doesn't exist. · The tenant IDs for the health monitor and the specified pool are different. · The expected_data_type, expected_data and expected_offset parameters are available only when the monitor type is HTTP or HTTPS. · Invalid json format. · The status is read only. · The tenant name is read only. · The tenant ID must be specified. · The type must be specified. · The delay must be specified. · The timeout must be specified. · The max retries must be specified. · The method can not be specified when type is not http or https. · The url path can not be specified when type is not http or https. · The monitor port parameter is available only when the monitor type is TCP. |
Update health monitor
|
Keyword |
UPDATE_HEALTH_MONITOR_OP |
|
Message text |
Updated health monitor $1. |
|
Variable fields |
$1: Health monitoring method information. |
|
Example |
Updated health monitor ID: 0711c857-2729-41f2-b213-dc4e715bf9bd Tenant ID: 00000000-0000-0000-0000-000000000000 Pool ID: 00000000-0000-0000-0000-000000000010 Name: hm Type: HTTPS Timeout: 11 Delay: 10 Max retries: 12 HTTP method: GET URL path: / Expected codes: 233 Status: DOWN. |
|
Explanation |
A health monitoring method was modified. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · The expected_data_type, expected_data and expected_offset parameters are available only when the monitor type is HTTP or HTTPS. · Invalid json format. · The status is read only. · The tenant name is read only. · The ID can not be modified. · The tenant ID can not be modified. · The type can not be modified. · The method can not be specified when type is not http or https. · The url path can not be specified when type is not http or https. · The monitor port parameter is available only when the monitor type is TCP. · The monitor port exceed limit. · The timeout exceed limit. |
Delete health monitor
|
Keyword |
DELETE_HEALTH_MONITOR_OP |
|
|
Message text |
Deleted health monitor $1. |
|
|
Variable fields |
$1: Health monitoring method name. |
|
|
Example |
Deleted health monitor hm. |
|
|
Explanation |
A health monitoring method was deleted. |
|
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The service has not been found. · The configuration item doesn't exist. · The configuration item is in use. · Failed to delete the configuration item. |
|
Bind health monitor
|
Keyword |
BIND_HEALTH_MONITOR_OP |
|
Message text |
Bound health monitor: $1. |
|
Variable fields |
$1: UUID of the health monitoring method. |
|
Example |
Bound health monitor: ID: [380e1f64-4722-4039-8aec-af1643d10be6] |
|
Explanation |
A health monitoring method was bound to a server farm. |
|
Possible failure causes |
· Invalid license. · Invalid json format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · The configuration item doesn't exist. · The health monitor specified for the pool doesn't exist. · The tenant IDs for the pool and the specified health monitor are different. |
Unbind health monitor
|
Keyword |
UNBIND_HEALTH_MONITOR_OP |
|
Message text |
Unbound health monitor: $1. |
|
Variable fields |
$1: UUID of the health monitoring method. |
|
Example |
Unbound health monitor: ID: [380e1f64-4722-4039-8aec-af1643d10be6] |
|
Explanation |
A health monitoring method was unbound from a server farm. |
|
Possible failure causes |
· Invalid license. · Invalid json format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · The configuration item doesn't exist. · The health monitor specified for the pool doesn't exist. |
NEM
This section contains carrier network messages.
Create VLAN-VXLAN mapping table
|
Keyword |
CREATE_VLAN-VXLAN_OP |
|
Message text |
Created VLAN-VXLAN mapping table: $1 |
|
Variable fields |
$1: VLAN-VXLAN mapping table information. |
|
Example |
Created VLAN-VXLAN mapping table: ID: [218b5f2f-e435-4365-a1ab-0eaa03b7fa19] Name: [table] VLAN-VXLAN mappings: [ VLAN: [2--13], VXLAN: [4--4], Assignment only: [false], Access mode: [VLAN] ] |
|
Explanation |
A VLAN-VXLAN mapping table was created. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · The VLAN ID is invalid or out of range. · Invalid VXLAN ID. · The mapping table already exists. · No name is specified. · Two same mappings exist in the mapping table. · Overlapped mappings exist in the mapping table. · All mappings in the same mapping table must be the same type. · Inconsistent mapping table type and mapping type. · vlanif mapping tables do not support the start_cvlan, end_cvlan, and rewrite_rules parameters. · Unknown internal server error. · The value of the mapping table type field can only be vxlan. · The reserved VLAN ID conflicts with a VLAN ID of a VLAN-VXLAN mapping. |
Update VLAN-VXLAN mapping table
|
Keyword |
UPDATE_VLAN-VXLAN_OP |
|
Message text |
Updated VLAN-VXLAN mapping table: $1 |
|
Variable fields |
$1: VLAN-VXLAN mapping table information. |
|
Example |
Updated VLAN-VXLAN mapping table: ID: [218b5f2f-e435-4365-a1ab-0eaa03b7fa19] Name: [table] VLAN-VXLAN mappings: [ VLAN: [2--13], VXLAN: [4--4], Assignment only: [false], Access mode: [VLAN] ] |
|
Explanation |
A VLAN-VXLAN mapping table was modified. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · The VLAN ID is invalid or out of range. · Invalid VXLAN ID. · No name is specified. · Two same mappings exist in the mapping table. · Overlapped mappings exist in the mapping table. · The mapping table doesn't exist. · All mappings in the same mapping table must be the same type. · Inconsistent mapping table type and mapping type. · The mapping table is created through the bare metal module and cannot be modified. · The mapping table is created through the resource access template module and cannot be modified. · Unknown internal server error. · The mapping table type is read only. · The reserved VLAN ID conflicts with a VLAN ID of a VLAN-VXLAN mapping. |
Delete VLAN-VXLAN mapping table
|
Keyword |
DELETE_VLAN-VXLAN_OP |
|
Message text |
Deleted VLAN-VXLAN mapping table: $1 |
|
Variable fields |
$1: VLAN-VXLAN mapping table ID. |
|
Example |
Deleted VLAN-VXLAN mapping table: 218b5f2f-e435-4365-a1ab-0eaa03b7fa19 |
|
Explanation |
A VLAN-VXLAN mapping table was deleted. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · The mapping table is already bound to ports. · The mapping table is already bound to physical access devices. · The mapping table doesn't exist. · The mapping table is created through the bare metal module and cannot be deleted. · The mapping table is created through the resource access template module and cannot be deleted. · Unknown internal server error. |
Create QinQ-VXLAN mapping table
|
Keyword |
CREATE_QINQ-VXLAN_OP |
|
Message text |
Created QinQ-VXLAN mapping table: $1 |
|
Variable fields |
$1: QinQ-VXLAN mapping table information. |
|
Example |
Created QinQ-VXLAN mapping table: ID: [218b5f2f-e435-4365-a1ab-0eaa03b7fa19] Name: [table] QinQ-VXLAN mappings: [ [ SVLAN: [1--1], CVLAN: [2--3], VXLAN: [3--3], Assignment only: [false], Access mode: [Ethernet] Rewrite rule list: [ Direction: [inbound], Type: [NEST], SVLAN: [1], CVLAN: [2], Symmetric: [false] ] ] ] |
|
Explanation |
A QinQ-VXLAN mapping table was created. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · The VLAN ID is invalid or out of range. · Invalid VXLAN ID. · The mapping table already exists. · No name is specified. · Overlapped mappings exist in the mapping table. · The QinQ-VXLAN mapping range must be the same as the SVLAN or CVLAN mapping range. · The symmetric parameter can only be configured as false in the outbound rule. · A maximum of one rewrite rule can be configured in one direction of a QinQ-VXLAN mapping. · No outbound rule can be configured if the symmetric parameter has been configured as true for an inbound rule. · The rewrite_svlan_id parameter is required when the rewrite rule in the inbound direction is NEST. · The rewrite_cvlan_id and rewrite_svlan_id parameters cannot be both empty if the rewrite rule is REMARK_ONE. · The rewrite_cvlan_id and rewrite_svlan_id parameters cannot be both empty if the rewrite rule is REMARK_TWO. · The rewrite_svlan_id parameter is required when the rewrite rule in the inbound direction is REMARK_ONE. · The symmetric cannot be configured as true when the rewrite rule in the inbound direction is REMARK_ONE and the rewrite_cvlan_id is greater than 0. · The symmetric cannot be configured as true when the rewrite rule in the inbound direction is REMARK_TWO and both the rewrite_cvlan_id and rewrite_svlan_id are greater than 0. · The rewrite_svlan_id parameter is required when the rewrite rule in the outbound direction is NEST. · The rewrite_svlan_id parameter is required when the rewrite rule in the outbound direction is REMARK_ONE. · The SVLAN mapping range and CVLAN mapping range cannot be both greater than 1. · Invalid rewrite direction. · The rewrite_cvlan_id and rewrite_svlan_id parameters are not required if the rewrite rule is STRIP. · All mappings in the same mapping table must be the same type. · The SVLAN and CVLAN mapping ranges of all mappings in the same mapping table must be the same. · Inconsistent mapping table type and mapping type. · QinQ-VXLAN mapping tables with the VLAN access mode do not support the rewrite_rules parameter. · The gaps between the start IDs and end IDs of the SVLAN mapping range, CVLAN mapping range, and VXLAN mapping range cannot be all greater than 1. · Unknown internal server error. · The reserved VLAN ID conflicts with a VLAN ID of a VLAN-VXLAN mapping. |
Update QinQ-VXLAN mapping table
|
Keyword |
UPDATE_QINQ-VXLAN_OP |
|
Message text |
Updated QinQ-VXLAN mapping table: $1 |
|
Variable fields |
$1: QinQ-VXLAN mapping table information. |
|
Example |
Updated QinQ-VXLAN mapping table: ID: [218b5f2f-e435-4365-a1ab-0eaa03b7fa19] Name: [table] QinQ-VXLAN mappings: [ [ SVLAN: [1--1], CVLAN: [2--3], VXLAN: [3--3], Assignment only: [false], Access mode: [Ethernet] Rewrite rule list: [ Direction: [inbound], Type: [NEST], SVLAN: [1], CVLAN: [2], Symmetric: [false] ] ] ] |
|
Explanation |
A QinQ-VXLAN mapping table was modified. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · The VLAN ID is invalid or out of range. · Invalid VXLAN ID. · Overlapped mappings exist in the mapping table. · The mapping table doesn't exist. · The QinQ-VXLAN mapping range must be the same as the SVLAN or CVLAN mapping range. · The symmetric parameter can only be configured as false in the outbound rule. · A maximum of one rewrite rule can be configured in one direction of a QinQ-VXLAN mapping. · No outbound rule can be configured if the symmetric parameter has been configured as true for an inbound rule. · The rewrite_svlan_id parameter is required when the rewrite rule in the inbound direction is NEST. · The rewrite_cvlan_id and rewrite_svlan_id parameters cannot be both empty if the rewrite rule is REMARK_ONE. · The rewrite_cvlan_id and rewrite_svlan_id parameters cannot be both empty if the rewrite rule is REMARK_TWO. · The rewrite_svlan_id parameter is required when the rewrite rule in the inbound direction is REMARK_ONE. · The symmetric cannot be configured as true when the rewrite rule in the inbound direction is REMARK_ONE and the rewrite_cvlan_id is greater than 0. · The symmetric cannot be configured as true when the rewrite rule in the inbound direction is REMARK_TWO and both the rewrite_cvlan_id and rewrite_svlan_id are greater than 0. · The rewrite_svlan_id parameter is required when the rewrite rule in the outbound direction is NEST. · The rewrite_svlan_id parameter is required when the rewrite rule in the outbound direction is REMARK_ONE. · The SVLAN mapping range and CVLAN mapping range cannot be both greater than 1. · Invalid rewrite direction. · The rewrite_cvlan_id and rewrite_svlan_id parameters are not required if the rewrite rule is STRIP. · All mappings in the same mapping table must be the same type. · The SVLAN and CVLAN mapping ranges of all mappings in the same mapping table must be the same. · Inconsistent mapping table type and mapping type. · QinQ-VXLAN mapping tables with the VLAN access mode do not support the rewrite_rules parameter. · The gaps between the start IDs and end IDs of the SVLAN mapping range, CVLAN mapping range, and VXLAN mapping range cannot be all greater than 1. · Unknown internal server error. · The reserved VLAN ID conflicts with a VLAN ID of a VLAN-VXLAN mapping. |
Delete QinQ-VXLAN mapping table
|
Keyword |
DELETE_QINQ-VXLAN_OP |
|
Message text |
Deleted QinQ-VXLAN mapping table: $1 |
|
Variable fields |
$1: QinQ-VXLAN mapping table ID. |
|
Example |
Deleted QinQ-VXLAN mapping table: 218b5f2f-e435-4365-a1ab-0eaa03b7fa19 |
|
Explanation |
A QinQ-VXLAN mapping table was deleted. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · The mapping table is already bound to ports. · The mapping table is already bound to physical access devices. · The mapping table doesn't exist. · Unknown internal server error. |
Bind VLAN-VXLAN mapping table
|
Keyword |
BIND_VLAN-VXLAN_OP |
|
Message text |
Bound VLAN-VXLAN mapping table: $1 |
|
Variable fields |
$1: Information for bindings between a VLAN-VXLAN mapping table and physical access devices. |
|
Example |
Bound VLAN-VXLAN mapping table: ID: [218b5f2f-e435-4365-a1ab-0eaa03b7fa19] Name: [table] Physical access device: [ c1a3e882-51ad-4847-8dbb-d7d972a5934f ] |
|
Explanation |
A VLAN-VXLAN mapping table was bound to physical access devices. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · The mapping table doesn't exist. · The physical access device doesn't exist. · The physical access device is already bound to a VLAN-VXLAN mapping table. · No physical access device ID list is specified for the VLAN-VXLAN mapping table. · The device type doesn't match. · Duplicate physical access device IDs. · The port on the specified device has been bound to a QinQ-VXLAN mapping table. · The QinQ-VXLAN mapping table does not support device binding. · Unknown internal server error. |
Update VLAN-VXLAN mapping table binding
|
Keyword |
UPDATE_VLAN-VXLAN_BINDING_OP |
|
Message text |
Updated VLAN-VXLAN mapping table binding: $1 |
|
Variable fields |
$1: Information for bindings between a VLAN-VXLAN mapping table and physical access devices. |
|
Example |
Updated VLAN-VXLAN mapping table binding: ID: [218b5f2f-e435-4365-a1ab-0eaa03b7fa19] Name: [table] Physical access device: [ c1a3e882-51ad-4847-8dbb-d7d972a5934f ] |
|
Explanation |
The bindings between a VLAN-VXLAN mapping table and physical access devices were modified. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · The mapping table doesn't exist. · The physical access device doesn't exist. · The physical access device is already bound to a VLAN-VXLAN mapping table. · No physical access device ID list is specified for the VLAN-VXLAN mapping table. · The device type doesn't match. · Duplicate physical access device IDs. · The port on the specified device has been bound to a QinQ-VXLAN mapping table. · The QinQ-VXLAN mapping table does not support device binding. · Unknown internal server error. |
Delete VLAN-VXLAN mapping table binding
|
Keyword |
DELETE_VLAN-VXLAN_BINDING_OP |
|
Message text |
Deleted VLAN-VXLAN mapping table binding: $1 |
|
Variable fields |
$1: VLAN-VXLAN mapping table ID. |
|
Example |
Deleted VLAN-VXLAN mapping table binding: 218b5f2f-e435-4365-a1ab-0eaa03b7fa19 |
|
Explanation |
The bindings between a VLAN-VXLAN mapping table and all physical access devices were deleted. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · The mapping table doesn't exist. · The binding doesn't exist. |
Bind ports to VLAN-VXLAN mapping table
|
Keyword |
CREATE_PORTBIND_OP |
|
Message text |
Bound ports to VLAN-VXLAN mapping table: $1 |
|
Variable fields |
$1: Information for bindings between a VLAN-VXLAN mapping table and ports. |
|
Example |
Bound ports to VLAN-VXLAN mapping table: Mapping table ID: [fe17ff86-82c2-417f-bb2d-47500aad4113] Mapping table name: [1] Device port list: [ [ Device ID: 1a310715-255d-444d-a321-da98764c53ee Device name: 125 Port name: FortyGigE3/4/0/2 Port num: 0x30fa Port untagged VLAN ID: null ] ] |
|
Explanation |
A VLAN-VXLAN mapping table was bound to ports. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · The mapping table doesn't exist. · The physical access device doesn't exist. · The port is already bound to another mapping table. · The device type doesn't match. · Duplicate physical access device IDs. · Unknown internal server error. · Duplicated interfaces exist. · Non-VTEP interfaces exist. |
Update bindings between ports and VLAN-VXLAN mapping table
|
Keyword |
UPDATE_PORTBIND_OP |
|
Message text |
Updated bindings between ports and QinQ-VXLAN mapping table: $1 |
|
Variable fields |
$1: Information for bindings between a VLAN-VXLAN mapping table and ports. |
|
Example |
Updated bindings between ports and QinQ-VXLAN mapping table: Mapping table ID: [fe17ff86-82c2-417f-bb2d-47500aad4113] Mapping table name: [1] Device port list: [ [ Device ID: 1a310715-255d-444d-a321-da98764c53ee Device name: 125 Port name: FortyGigE3/4/0/2 Port num: 0x30fa Port untagged VLAN ID: null ] ] |
|
Explanation |
The bindings between a VLAN-VXLAN mapping table and ports were modified. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · The mapping table doesn't exist. · The port is already bound to another mapping table. · The physical access device doesn't exist. · The device type doesn't match. · Duplicate physical access device IDs. · The binding between the mapping table and ports doesn't exist. · Unknown internal server error. · Duplicated interfaces exist. · Non-VTEP interfaces exist. |
Delete bindings between ports and VLAN-VXLAN mapping table
|
Keyword |
DEL_PORTBIND_OP |
|
Message text |
Deleted bindings between ports and VLAN-VXLAN mapping table: $1 |
|
Variable fields |
$1: VLAN-VXLAN mapping table ID. |
|
Example |
Deleted bindings between ports and VLAN-VXLAN mapping table: e866fcca-6df6-4c4d-8eb7-418ef487732a |
|
Explanation |
The bindings between a VLAN-VXLAN mapping table and all ports were deleted. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · The mapping table doesn't exist. · The binding between the mapping table and ports doesn't exist. |
Bind ports to QinQ-VXLAN mapping table
|
Keyword |
BIND_QINQ-VXLAN_PORT_OP |
|
Message text |
Bound ports to QinQ-VXLAN mapping table: $1 |
|
Variable fields |
$1: Information for bindings between a QinQ-VXLAN mapping table and ports. |
|
Example |
Bound ports to QinQ-VXLAN mapping table: Mapping table ID: [fe17ff86-82c2-417f-bb2d-47500aad4113] Mapping table name: [1] Device port list: [ [ Device ID: 1a310715-255d-444d-a321-da98764c53ee Device name: 125 Port name: FortyGigE3/4/0/2 Port num: 0x30fa Port untagged VLAN ID: null ] ] |
|
Explanation |
A QinQ-VXLAN mapping table was bound to ports. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · The mapping table doesn't exist. · The physical access device doesn't exist. · The port is already bound to another mapping table. · The device type doesn't match. · Duplicate physical access device IDs. · The port has been bound to another QinQ-VXLAN mapping table. · A device binding exists on the device to which the specified port belongs. · Unknown internal server error. · Duplicated interfaces exist. · Non-VTEP interfaces exist. |
Update bindings between ports and QinQ-VXLAN mapping table
|
Keyword |
UPDATE_QINQ-VXLAN_PORTBIND_OP |
|
Message text |
Updated bindings between ports and QinQ-VXLAN mapping table: $1 |
|
Variable fields |
$1: Information for bindings between a QinQ-VXLAN mapping table and ports. |
|
Example |
Updated bindings between ports and QinQ-VXLAN mapping table: Mapping table ID: [fe17ff86-82c2-417f-bb2d-47500aad4113] Mapping table name: [1] Device port list: [ [ Device ID: 1a310715-255d-444d-a321-da98764c53ee Device name: 125 Port name: FortyGigE3/4/0/2 Port num: 0x30fa Port untagged VLAN ID: null ] ] |
|
Explanation |
The bindings between a QinQ-VXLAN mapping table and ports were modified. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · The mapping table doesn't exist. · The port is already bound to another mapping table. · The physical access device doesn't exist. · The device type doesn't match. · Duplicate physical access device IDs. · The port has been bound to another QinQ-VXLAN mapping table. · A device binding exists on the device to which the specified port belongs. · The binding between the mapping table and ports doesn't exist. · Unknown internal server error. · Duplicated interfaces exist. · Non-VTEP interfaces exist. |
Delete bindings between ports and QinQ-VXLAN mapping table
|
Keyword |
DELETE_QINQ-VXLAN_PORTBIND_OP |
|
Message text |
Deleted bindings between ports and QinQ-VXLAN mapping table: $1 |
|
Variable fields |
$1: QinQ-VXLAN mapping table ID |
|
Example |
Deleted bindings between ports and QinQ-VXLAN mapping table: e866fcca-6df6-4c4d-8eb7-418ef487732a |
|
Explanation |
The bindings between a QinQ-VXLAN mapping table and all ports were deleted. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · The mapping table doesn't exist. · The binding between the mapping table and ports doesn't exist. |
Create gateway group
|
Keyword |
CREATE_GWGROUP_OP |
|
Message text |
Created gateway group: $1 |
|
Variable fields |
$1: Gateway group information. |
|
Example |
Created gateway group: ID: [741f1414-d71e-4775-acf9-d68bbb55e803] Name: [L3GW] MAC: [3c:8c:40:4e:dd:46] Description: [123] Type: [GROUPCGSR] Members: [ 5da35b42-1e37-4c3f-928b-0afc77fcfd34 ffd8176c-820a-4dc5-94a9-5f4c4fbff0c5 ] VTEP IP: [1.1.1.1] Connect mode: [VLAN] Firewall for only external traffic: [false] Firewall for only internal traffic: [false] Firewall for only vRouter traffic: [false] Bind IP address pool :[true] Bind VLAN pool: [true] Bound IP address pools: [ Address pool name: pool1 Address pool name: pool2 Address pool name: pool3 ] Bound VLAN pools: [ VLAN pool name: vlan1 ] |
|
Explanation |
A gateway group was created. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · Unknown internal server error. · The gateway group already exists. · Invalid name. · Invalid parameter. · Invalid description. · Invalid IP address. · Invalid IP address pool name. · Invalid VLAN pool name. · The device type and the gateway control mode do not match. · The gateway group's MAC address conflicts with the VM's MAC address. · The IP address pool does not exist. · The IP address pool has been bound to another gateway group. · The default IP address pool cannot be bound to gateway groups. · The VLAN pool does not exist. · The VLAN pool has been bound to another gateway group. · The default VLAN pool cannot be bound to gateway groups. · Gateway groups that use the default IP address pool cannot be bound to other IP address pools. · Gateway groups that use the default VLAN pool cannot be bound to other VLAN pools. · Do not set the MAC address to 3C:8C:40:4E:DD:47, 3C:8C:40:4E:DD:48, 3C:8C:40:4E:DD:49, 3C:8C:40:4E:DD:4A or 68:05:CA:21:D6:E5 for the gateway group. These MAC addresses are reserved for the controller. · The gateway group's MAC address conflicts with the NE’s default MAC address. · A gateway group can be bound to only one IP address pool of each type. · The gateway group is not bound to the specified type of IP address pool. · Gateway groups cannot be bound to security external IP address pools. · The network element is being deleted or being removed from the gateway group. |
Update gateway group
|
Keyword |
UPDATE_GWGROUP_OP |
|
Message text |
Updated gateway group: $1 |
|
Variable fields |
$1: Gateway group information. |
|
Example |
Updated gateway group: ID: [741f1414-d71e-4775-acf9-d68bbb55e803] Name: [L3GW] MAC: [3c:8c:40:4e:dd:46] Description: [123] Type: [GROUPCGSR] Members: [ 5da35b42-1e37-4c3f-928b-0afc77fcfd34 ] VTEP IP: [1.1.1.1] Connect mode: [VLAN] Firewall for only external traffic: [false] Firewall for only internal traffic: [false] Firewall for only vRouter traffic: [false] Bound IP address pools: [ Address pool name: pool1 Address pool name: pool2 Address pool name: pool3 ] Bound VLAN pools:[ VLAN pool name: vlan1 ] |
|
Explanation |
A gateway group was modified. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · Unknown internal server error. · Invalid description. · Invalid parameter. · Invalid IP address pool name. · Invalid VLAN pool name. · The gateway group is in use. · The gateway group doesn't exist. · The device type and the gateway control mode do not match. · The gateway group's MAC address conflicts with the VM's MAC address. · The IP address pool does not exist. · The IP address pool has been bound to another gateway group. · The default IP address pool cannot be bound to gateway groups. · The VLAN pool does not exist. · The VLAN pool has been bound to another gateway group. · The default VLAN pool cannot be bound to gateway groups. · Gateway groups that use the default IP address pool cannot be bound to other IP address pools. · Gateway groups that use the default VLAN pool cannot be bound to other VLAN pools. · Do not set the MAC address to 3C:8C:40:4E:DD:47, 3C:8C:40:4E:DD:48, 3C:8C:40:4E:DD:49, 3C:8C:40:4E:DD:4A or 68:05:CA:21:D6:E5 for the gateway group. These MAC addresses are reserved for the controller. · The gateway group's MAC address conflicts with the NE’s default MAC address. · A gateway group can be bound to only one IP address pool of each type. · The gateway group is not bound to the specified type of IP address pool. · Gateway groups cannot be bound to security external IP address pools. · The gateway group cannot be unbound from VLAN pools that are in use. · The gateway group cannot be unbound from IP address pools that are in use. · The network element is being deleted or being removed from the gateway group. · Cannot modify the work mode of a gateway group with the EVPN network type. |
Delete gateway group
|
Keyword |
DELETE_GWGROUP_OP |
|
Message text |
Deleted gateway group: $1 |
|
Variable fields |
$1: Gateway group ID. |
|
Example |
Deleted gateway group: 741f1414-d71e-4775-acf9-d68bbb55e803 |
|
Explanation |
A gateway group was deleted. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · The gateway group doesn't exist. · The gateway group is in use. |
Create IP address pool
|
Keyword |
CREATE_GWGROUP_IPPOOL_OP |
|
Message text |
Created IP address pool: $1 |
|
Variable fields |
$1: IP address pool information. |
|
Example |
Created IP address pool: ID: [b12059c8-4f72-4efd-af06-8707d836f275] Name: [huha_lb] Type: [TENANT_SUPPORT_LB] CIDR: [19.19.19.0/24] Allocated: [false] Can be bound: [false] Address range list [ { Start IP: [19.19.19.1] End IP: [19.19.19.4] Status: [false] } { Start IP: [19.19.19.6] End IP: [19.19.19.10] Status: [false] } ] |
|
Explanation |
An IP address pool was created. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Invalid JSON format. · Invalid name. · Invalid CIDR. · The IP address pool is already used. · The IP address pool ID already exists. · The CIDR of the IP address pool is invalid. · Configuration recovery is in progress. · The IP address pool type is already exist. · The IP address pool name already exists. · The gateway address must belong to the specified network. · The start IP address and end IP address must belong to the specified network. · The IP address range overlaps with another one. · The status field is read only. · The start IP address or end IP address cannot be a broadcast address or network address. · The gateway address cannot be a broadcast address or network address. · Unknown internal server error. · For each IP address pool type, only one default address pool is allowed. · The network address overlaps with a network address in another IP address pool. · Network addresses cannot be configured for this type of address pools. · Address ranges are required for this type of address pools. · The team can have only one vRouter interconnection IP pool and the pool must be configured as the default IP pool. |
Update IP address pool
|
Keyword |
UPDATE_GWGROUP_IPPOOL_OP |
|
Message text |
Updated IP address pool: $1 |
|
Variable fields |
$1: IP address pool information. |
|
Example |
Updated IP address pool: ID: [4272f686-1faf-4587-b7a2-2f68246666e2] Name: [1222] Type: [NGFW_MANAGE] CIDR: [10.1.1.0/24] Nexthop: [10.0.0.254] Allocated: [false] Can be bound: [false] Address range list [ { Start IP: [19.19.19.1] End IP: [19.19.19.4] Status: [false] } { Start IP: [19.19.19.6] End IP: [19.19.19.10] Status: [false] } ] |
|
Explanation |
An IP address pool was modified. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Invalid name. · Invalid JSON format. · The CIDR of the IP address pool is invalid. · The IP address pool name already exists. · The IP address pool is already used. · The IP address range overlaps with another one. · The network address field is read only. · The status field is read only. · The start IP address and end IP address must belong to the specified network. · The start IP address or end IP address cannot be a broadcast address or network address. · Address ranges are required for this type of address pools. · Unknown internal server error. |
Delete IP address pool
|
Keyword |
DELETE_GWGROUP_IPPOOL_OP |
|
Message text |
Deleted IP address pool: $1 |
|
Variable fields |
$1: IP address pool ID. |
|
Example |
Deleted IP address pool: 4272f686-1faf-4587-b7a2-2f68246666e2 |
|
Explanation |
An IP address pool was deleted. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · The IP address pool doesn't exist. · The IP address pool is already used. · Unknown internal server error. · Failed to delete the security external IP address pool. The pool has been bound to a VNF virtual gateway resource. |
Create VLAN pool
|
Keyword |
CREATE_GWGROUP_VLAN_RANGE_OP |
|
Message text |
Created VLAN pool: $1 |
|
Variable fields |
$1: VLAN pool information. |
|
Example |
Created VLAN pool: ID: [445dd33e-3b27-44a5-b7f1-c6fb0a859311] Name: [newRange] Start VLAN: [11] End VLAN: [4011] Allocated: [false] Can be bound: [false] |
|
Explanation |
A VLAN pool was created. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Invalid JSON format. · Invalid name. · The VLAN pool is already used. · The VLAN pool ID already exists. · The VLAN pool name already exists. · The VLAN pool overlaps with another one. · The VLAN ID is invalid or out of range. · The vRouter interconnection network VLAN pool already exists. · Configuration recovery is in progress. · Unknown internal server error. |
Update VLAN pool
|
Keyword |
UPDATE_GWGROUP_VLAN_RANGE_OP |
|
Message text |
Updated VLAN pool: $1 |
|
Variable fields |
$1: VLAN pool information. |
|
Example |
Updated VLAN pool: ID: [8688051f-5095-4b27-93c1-89922ff9b0b6] Name: [newRange] Start VLAN: [4020] End VLAN: [4050] Allocated: [false] Can be bound: [false] |
|
Explanation |
A VLAN pool was modified. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Invalid JSON format. · The VLAN ID is invalid or out of range. · Invalid name. · The VLAN pool is already used. · The VLAN pool doesn't exist. · Unknown internal server error. · The VLAN pool overlaps with another VLAN pool bound to the same gateway group. · The new VLAN range of the vRouter interconnection network VLAN pool must include the original VLAN range of the pool. |
Delete VLAN pool
|
Keyword |
DELETE_GWGROUP_VLAN_RANGE_OP |
|
Message text |
Deleted VLAN pool: $1 |
|
Variable fields |
$1: VLAN pool ID. |
|
Example |
Deleted VLAN pool: 8688051f-5095-4b27-93c1-89922ff9b0b6 |
|
Explanation |
A VLAN pool was deleted. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · The VLAN pool doesn't exist. · The VLAN pool is already used. · Cannot delete the VLAN pool because VLAN IDs in the VLAN pool have been used by vRouter interconnections. · Unknown internal server error. |
Create VXLAN pool
|
Keyword |
ACTION_CREATE_VXLANPOOL |
|
Message text |
Created VXLAN pool: $1 |
|
Variable fields |
$1: VXLAN pool information. |
|
Example |
Created VXLAN pool: VXLAN pool ID:[8ca117d1-b2ea-4538-9464-6a924f7fdf89] VXLAN pool name:[B] Start VNI:[3] End VNI:[3] VXLAN pool allocated:[false] |
|
Explanation |
A VXLAN pool was created. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · Unknown internal server error. · Invalid name. · Invalid start VNI value. · Invalid end VNI value. · VNI value is out of range. · The name is required. · The range is required. · The start value is required. · The end value is required. · The VXLAN pool name already exists. · The VXLAN pool ID already exists. · The end VXLAN ID must be greater than or equal to the start VXLAN ID. · The VXLAN pool overlaps with another VXLAN pool. · The VXLAN range cannot contain existing segment IDs or mapping segment IDs. |
Update VLAN pool
|
Keyword |
ACTION_UPDATE_VXLANPOOL |
|
Message text |
Updated VXLAN pool: $1 |
|
Variable fields |
$1: VXLAN pool information. |
|
Example |
Updated VXLAN pool: VXLAN pool ID:[8ca117d1-b2ea-4538-9464-6a924f7fdf89] VXLAN pool name:[BA] Start VNI:[334] End VNI:[3344] VXLAN allocated:[false] |
|
Explanation |
A VXLAN pool was modified. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · Unknown internal server error. · Invalid name. · Invalid start VNI value. · Invalid end VNI value. · The name is required. · The range is required. · The start value is required. · The end value is required. · VNI value is out of range. · The VXLAN pool does not exist. · The VXLAN pool name already exists. · VXLAN pools in use cannot be modified or deleted. · The end VXLAN ID must be greater than or equal to the start VXLAN ID. · The VXLAN pool overlaps with another VXLAN pool. · The VXLAN range cannot contain existing segment IDs or mapping segment IDs. |
Delete VLAN pool
|
Keyword |
ACTION_DELETE_VXLANPOOL |
|
Message text |
Deleted VXLAN pool: $1 |
|
Variable fields |
$1: VXLAN pool ID. |
|
Example |
Deleted VXLAN pool: 8ca117d1-b2ea-4538-9464-6a924f7fdf89 |
|
Explanation |
A VXLAN pool was deleted. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · Unknown internal server error. · The VXLAN pool does not exist. · VXLAN pools in use cannot be modified or deleted. |
Create physical NE
|
Keyword |
CREATE_PHYNE_OP |
|
Message text |
Created physical NE: $1 |
|
Variable fields |
$1: Physical NE information. |
|
Example |
Created physical NE: NE ID: [f10dbcef-b96a-48ad-8613-47fc7fe9f4e8] NE name: [125] NE MAC: [3C:8c:40:4e:dd:46] NE type: [L3GW] VTEP IP: [4.4.4.1] Gateway group ID: [c1a8d276-ea09-4ff8-8192-4c3bf9461810] Gateway group name: [gw] NETCONF username: [admin] NETCONF password: [******] Management IP: [97.0.1.12] Provider type: [PHY_DEVICE] NE capability: [L3GW] Priority region ID: [ce1c6ccb-b830-477d-81b8-fd6922e2a820] Priority region name: [region] Reserved tunnel ID: [256] Supporting autoconfiguration: [true] Supporting VTEP: [true] Service migration: [false] PreCfgVxlanService: [false] OpenflowPermitPort: [false] PreStatVxlanService: [true] openflowControllerPort: [null] openflowSslPolicyName: [null] Clear configuration: [false] Data synchronization: [OFF] OpenFlow forbidden port: [7] Region ID: [ce1c6ccb-b830-477d-81b8-fd6922e2a820] Region name: [region] isDeleting:[false] NE status: [ACTIVE] Inactive reason: [] |
|
Explanation |
A physical NE was created. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · Unknown internal server error. · Invalid name. · The NE ID already exists. · The NE name already exists. · The management IP address already exists. · Invalid description. · Invalid parameter. · The gateway group doesn't exist. · Physical gateway service devices can be bound only to BIND_PHY type gateway groups. · The gateway group is already bound to a gateway service device. · Invalid IP address. · The VTEP IP already exists. · The NETCONF username or password is not configured. · Invalid NETCONF username. · Invalid NETCONF password. · The VSM service is disabled. · Invalid VDS ID. · The preferred region doesn't exist. · Invalid tunnel ID. · The number of physical NEs exceeds the limit of the overlay hardware entity license. · The management IP address conflicts with the host IP. · Invalid BGP instance name. · The reserved VLAN ID conflicts with a VLAN ID of a VLAN-VXLAN mapping. |
Update physical NE
|
Keyword |
UPDATE_PHYNE_OP |
|
Message text |
Updated physical NE: $1 |
|
Variable fields |
$1: Physical NE information. |
|
Example |
Updated physical NE: NE ID: [f10dbcef-b96a-48ad-8613-47fc7fe9f4e8] NE name: [125] NE MAC: [3C:8c:40:4e:dd:46] NE type: [L3GW] VTEP IP: [4.4.4.1] Gateway group ID: [c1a8d276-ea09-4ff8-8192-4c3bf9461810] Gateway group name: [gw] NETCONF username: [admin] NETCONF password: [******] Management IP: [97.0.1.12] Provider type: [PHY_DEVICE] NE capability: [L3GW] Priority region ID: [ce1c6ccb-b830-477d-81b8-fd6922e2a820] Priority region name: [region] Reserved tunnel ID: [256] Supporting autoconfiguration: [true] Supporting VTEP: [true] Service migration: [false] PreCfgVxlanService: [false] OpenflowPermitPort: [false] PreStatVxlanService: [true] openflowControllerPort: [null] openflowSslPolicyName: [null] Clear configuration: [false] Data synchronization: [OFF] OpenFlow forbidden port: [7] Region ID: [ce1c6ccb-b830-477d-81b8-fd6922e2a820] Region name: [region] isDeleting:[false] NE status: [ACTIVE] Inactive reason: [] |
|
Explanation |
A physical NE was modified. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · Unknown internal server error. · The NE doesn't exist. · Invalid description. · Invalid parameter. · The gateway group doesn't exist. · Physical gateway service devices can be bound only to BIND_PHY type gateway groups. · The gateway group is already bound to a gateway service device. · Invalid IP address. · The VTEP IP already exists. · Invalid NETCONF username. · Invalid NETCONF password. · The network element is being deleted or being removed from the gateway group. · The reserved VLAN ID conflicts with a VLAN ID of a VLAN-VXLAN mapping. |
Delete physical NE
|
Keyword |
DELETE_PHYNE_OP |
|
Message text |
Deleted physical NE: ID: $1 Name: $2 Management IP: $3 |
|
Variable fields |
$1: ID of the physical NE. $2: Name of the physical NE. $3: Management IP of the physical NE. |
|
Example |
Deleted physical NE: ID: [f10dbcef-b96a-48ad-8613-47fc7fe9f4e8] Name: [125] Management IP: [97.0.1.12] |
|
Explanation |
A physical NE was deleted. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · The NE doesn't exist. · The NE is migrating services. · The network element is being deleted or being removed from the gateway group. |
Batch add physical NEs
|
Keyword |
BATCH_ADD_PHYNE_OP |
|
Message text |
Batch added physical NEs: Added NEs: $1 Ignored NEs: $2 |
|
Variable fields |
$1: Number of added physical NEs. $2: Number of ignored physical NEs. A physical NE is ignored and not added to the controller if the information about the physical NE conflicts with that of an NE on the controller. |
|
Example |
Batch added physical NEs: Added NEs: 10 Ignored NEs: 5 |
|
Explanation |
Multiple physical NEs were added in bulk. |
|
Possible failure causes |
· Information about the NE in row m of sheet n is invalid. · Information about the NE in row m of sheet n conflicts with that of an NE on the controller. |
Start scanning physical NE
|
Keyword |
START_SCAN_PHYNE_OP |
|
Message text |
Started scanning physical NEs: $1 |
|
Variable fields |
$1: Settings for auto physical NE scanning. |
|
Example |
Started scanning physical NEs: Start management IP: [192.168.125.0] End management IP: [192.168.125.10] NETCONF username: [admin] NETCONF password: [admin] |
|
Explanation |
The user started auto physical NE scanning. |
|
Possible failure causes |
The service is disabled. |
Stop scanning physical NE
|
Keyword |
STOP_SCAN_PHYNE_OP |
|
Message text |
Stopped scanning physical NEs |
|
Variable fields |
N/A |
|
Example |
Stopped scanning physical NEs |
|
Explanation |
The user stopped auto physical NE scanning. |
|
Possible failure causes |
The service is disabled. |
Start migration on physical gateway
|
Keyword |
START_MIGRATION_PHYGW_OP |
|
Message text |
Started migration on physical gateway: $1 |
|
Variable fields |
$1: Physical gateway ID. |
|
Example |
Started migration on physical gateway: f10dbcef-b96a-48ad-8613-47fc7fe9f4e8 |
|
Explanation |
A service migration was started on a physical gateway. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · The device doesn't exist. · The device is inactive. · The device is migrating services. · The network element is being deleted or being removed from the gateway group. |
Complete migration on physical gateway
|
Keyword |
COMPLETE_MIGRATION_PHYGW_OP |
|
Message text |
Completed migration on physical gateway: $1 |
|
Variable fields |
$1: Physical gateway ID. |
|
Example |
Completed migration on physical gateway: f10dbcef-b96a-48ad-8613-47fc7fe9f4e8 |
|
Explanation |
Service migration on a physical gateway completed. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · The device doesn't exist. · Only physical gateway devices support migration. · The device has already completed migration. · The network element is being deleted or being removed from the gateway group. |
Start data synchronization on physical NE
|
Keyword |
START_DATA_SYNCHRONIZATION_OP |
|
Message text |
Started data synchronization on physical NE: $1 |
|
Variable fields |
$1: Physical NE ID. |
|
Example |
Started data synchronization on physical NE: 28424135-36f5-4dde-ad2e-29580411de8d |
|
Explanation |
A physical NE was specified for data synchronization. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The device doesn't exist. · The device is inactive. · Configuration recovery is in progress. · The controller is not the active leader. · Underlay devices do not support this function. · The network element is being deleted or being removed from the gateway group. · The system is performing data synchronization or configuration auditing for the network element. |
Start configuration auditing on physical NE
|
Keyword |
START_PHYNE_CONFIG_AUDIT_OP |
|
Message text |
Started configuration auditing on physical NE $1 |
|
Variable fields |
$1: Physical NE ID. |
|
Example |
Started configuration auditing on physical NE 28424135-36f5-4dde-ad2e-29580411de8d |
|
Explanation |
Configuration auditing was started on a physical NE. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The device doesn't exist. · The device is inactive. · Configuration recovery is in progress. · The controller is not the active leader. · Underlay devices do not support this function. · The network element is being deleted or being removed from the gateway group. · The system is performing data synchronization or configuration auditing for the network element. |
Start data synchronization on virtual NE
|
Keyword |
START_VIRTUAL_NE_DATA_SYNCHRONIZATION_OP |
|
Message text |
Started data synchronization on virtual NE $1 |
|
Variable fields |
$1: Virtual NE ID. |
|
Example |
Started data synchronization on virtual NE 28424135-36f5-4dde-ad2e-29580411de8d |
|
Explanation |
Data synchronization was started on a virtual NE. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The device doesn't exist. · The device is inactive. · Configuration recovery is in progress. · The controller is not the active leader. · The system is performing data synchronization or configuration auditing for the network element. |
Start configuration auditing on virtual NE
|
Keyword |
START_VIRTUAL_NE_CONFIG_AUDIT_OP |
|
Message text |
Started configuration auditing on virtual NE $1 |
|
Variable fields |
$1: Virtual NE ID. |
|
Example |
Started configuration auditing on virtual NE 28424135-36f5-4dde-ad2e-29580411de8d |
|
Explanation |
Configuration auditing was started on a virtual NE. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The device doesn't exist. · The device is inactive. · Configuration recovery is in progress. · The controller is not the active leader. · The system is performing data synchronization or configuration auditing for the network element. |
Create NETCONF default user
|
Keyword |
CREATE_NETCONF_DEFAULT_USER_OP |
|
Message text |
Created NETCONF default user: $1 |
|
Variable fields |
$1: NETCONF default user information. |
|
Example |
Created NETCONF default user: Username: [admin] Password: [******] |
|
Explanation |
A NETCONF default user was created. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · Invalid parameter. · Invalid JSON format. · Configuration recovery is in progress. · The controller is not the active leader. |
Configure default MAC address
|
Keyword |
CONFIGURE_DEFAULT_MAC_ADDRESS_OP |
|
Message text |
Configured default MAC address: $1 |
|
Variable fields |
$1: Default MAC address. |
|
Example |
Configured default MAC address: 6A:12:7C:5F:2D:2C |
|
Explanation |
The default MAC address was configured. |
|
Possible failure causes |
· Unknown internal server error. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · The service is disabled. · Invalid default MAC address. · The default MAC address conflicts with the VM's MAC address. · The default MAC address conflicts with the gateway group's MAC address. · Do not set the MAC address to 3C:8C:40:4E:DD:47, 3C:8C:40:4E:DD:48, 3C:8C:40:4E:DD:49, or 3C:8C:40:4E:DD:4A for the NE default. These MAC addresses are reserved for the controller. |
Delete default MAC address
|
Keyword |
DELETE_DEFAULT_MAC_ADDRESS_OP |
|
Message text |
Deleted default MAC address: $1 |
|
Variable fields |
$1: Default MAC address. |
|
Example |
Deleted default MAC address: A6:12:7B:5F:D2:2C |
|
Explanation |
The default MAC address was deleted. |
|
Possible failure causes |
· Unknown internal server error. · The controller is not the active leader. · Configuration recovery is in progress. · The default MAC address doesn't exist. |
Create third party NE
|
Keyword |
CREATE_THIRD_PARTY_NE_OP |
|
Message text |
Created third party NE: $1 |
|
Variable fields |
$1: Third-party NE information. |
|
Example |
Created third party NE: ID: [8032909d-47a1-4715-90af-5153ffe39899] Name: [IPS1] Description: [thirdPartyIPS] Access device ID: [8032909d-47a1-4715-90af-5153ffe39811] Access device name: [6800] Access device VTEP IP: [12.1.1.1] Ingress port ID: [151] Egress port ID: [153] VLAN of ingress port: [100] VLAN of egress port: [100] |
|
Explanation |
A third-party NE was created. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · Unknown internal server error. · Invalid name. · Invalid description. · Invalid parameter. · The number of virtual service nodes exceeds the license limit. · The service chain license is not available. · The ingress port doesn't exist. · The egress port doesn't exist. · Invalid VLAN ID of the ingress port. · Invalid VLAN ID of the egress port. · Invalid ingress port ID. · Invalid egress port ID. · The ID of the third party NE already exists. · The name of the third party NE already exists. · The IDs of the third party NE and physical access device must be different. · The ingress port is already used. · The egress port is already used. · The name of the physical access device is read only. · The VTEP IP of the physical access device is read only. |
Delete third party NE
|
Keyword |
DELETE_THIRD_PARTY_NE_OP |
|
Message text |
Deleted third party NE: $1 |
|
Variable fields |
$1: ID of the third-party NE. |
|
Example |
Deleted third party NE: 8032909d-47a1-4715-90af-5153ffe39899 |
|
Explanation |
A third-party NE was deleted. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · The third party NE doesn't exist. · Failed to delete the third party network element because it is used by a service chain. · The service chain service is disabled. |
Configure reserved option
|
Keyword |
CONFIGURE_RESERVE_OPTION_OP |
|
Message text |
Configured reserved option: $1 |
|
Variable fields |
$1: Value of the reserved option. |
|
Example |
Configured reserved option: Reserved option: [true] |
|
Explanation |
The reserved option was configured. The values for the reserved option are as follows: · true—Enables the reserved option. The physical gateway can advertise overlay subnet routes through BGP. · false—Disables the reserved option. The physical gateway cannot advertise overlay subnet routes through BGP. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · Invalid JSON format. · Configuration recovery is in progress. · The controller is not the active leader. · Unknown internal server error. |
Create address pool
|
Keyword |
CREATE_ADDRPOOL_OP |
|
Message text |
Created address pool: $1 |
|
Variable fields |
$1: Address pool information. |
|
Example |
Created address pool: Address pool ID: [aa68bc06-8e30-468d-a805-d4f48952c646] Address pool name: [a] Start IP address: [10.1.1.1] End IP address: [10.1.1.100] IP address allocated: [false] |
|
Explanation |
A VTEP address pool was created. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · The address pool ID is already used. · No IP address is specified for the address pool. · Invalid name. · The address pool name is already used. · The start IP address is higher than the end IP address. · The address pool contains special or reserved IP addresses. · The IP range of the address pool overlaps with that of another address pool. · Unknown internal server error. |
Update address pool
|
Keyword |
UPDATE_ADDRPOOL_OP |
|
Message text |
Updated address pool: $1 |
|
Variable fields |
$1: Address pool information. |
|
Example |
Updated address pool: Address pool ID: [aa68bc06-8e30-468d-a805-d4f48952c646] Address pool name: [a] Start IP address: [10.1.1.1] End IP address: [10.1.1.100] IP address allocated: [false] |
|
Explanation |
A VTEP address pool was updated. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Invalid JSON format. · Configuration recovery is in progress. · The address pool doesn't exist. · Invalid name. · The address pool name is already used. · The start IP address is higher than the end IP address. · The address pool contains special or reserved IP addresses. · The address pool is in use. · The IP range of the address pool overlaps with that of another address pool. · Unknown internal server error. |
Delete address pool
|
Keyword |
DELETE_ADDRPOOL_OP |
|
Message text |
Deleted address pool: $1 |
|
Variable fields |
$1: Address pool ID. |
|
Example |
Deleted address pool: 0e447abc-9716-4171-902c-ecb8a090cebb |
|
Explanation |
A VTEP address pool was deleted. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · The address pool doesn't exist. · The address pool is in use. · Unknown internal server error. |
Add resource
|
Keyword |
ADD_RESOURCE_OP |
|
Message text |
Added resource: $1 |
|
Variable fields |
$1: Resource information. |
|
Example |
Added resource: Resource ID: [94f94495-d510-4872-b221-294098a6a247] Resource name: [VSR_6232412828] Tenant ID: [ffffffff-0000-0000-0000-000000000001] Tenant name: [default] Resource feature: [GW+GWSN] Resource family: [NFV] Resource type: [VSR] Supporting VTEP: [true] Supporting share: [false] Supporting HA: [true] NF list: [ { NF ID: [fb1671e4-496c-446a-8b4e-1ae834ba8546] NF name: [VSR_6463834061] NF management IP: [8.8.8.1] Data synchronization: [DEFAULT] } ] VNF template name: [test] |
|
Explanation |
A resource was added. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · The resource already exists. · Invalid parameter. · Unknown internal server error. · The number of virtual service nodes exceeds the license limit. · The service chain license is not available. · The VNFM is not configured. · Invalid name. · The tenant doesn't exist. · The network function ID is already used. · The management IP address is already used. · No network function list is specified for the physical resource. · The gateway group doesn't exist. · The VTEP address pool is not configured or doesn't have enough assignable IP addresses. · Duplicate network function IDs. · Duplicate management IP addresses. · Failed to get resources from the VNFM. · No physical gateway resource is configured for the tenant. · A physical gateway resource is already configured for the tenant. · The resource family conflicts with the gateway network type. · The physical gateway resource has only one network function node. · Physical gateway devices can't be separately used as resources. · No physical gateway service node is bound to the gateway group. · Physical gateway service nodes can't be used as resources. · Physical access devices can't be used as resources. · The tenant service is disabled. · The NGFWM service is not started. · Server processing error. · No permission to add the resource. · The VNFM service is not loaded. · Before creating resources through VNFM3.0, delete all resources created through VNFM2.0. · Switch to VNFM2.0 and then create resources through VNFM2.0. · The management IP address for the virtual NE doesn't exist. · The management IP address conflicts with the host IP. · The tenant is not bound to a service gateway group resource. · The two tenants bound to different gateway groups can't share a service resource of the GATEWAY_SERVICE type. · The tenant has GATEWAY_SERVICE service resources. Please bind the tenant to a service gateway group that uses the default address pool and default VLAN pool. · A tenant bound to a gateway group using a non-default address pool or non-default VLAN pool cannot share GATEWAY_SERVICE service resources with a tenant not bound to any gateway resources. |
Delete resource
|
Keyword |
DELETE_RESOURCE_OP |
|
Message text |
Deleted resource: $1 |
|
Variable fields |
$1: Resource ID. |
|
Example |
Deleted resource: 0e447abc-9716-4171-902c-ecb8a090cebb |
|
Explanation |
A resource was deleted. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · Invalid parameter. · Invalid JSON format. · Configuration recovery is in progress. · The controller is not the active leader. · Unknown internal server error. · The VNFM is not configured. · The resource is already bound to the extranet. · The NGFWM service is not started. · Server processing error. · The configuration item does not exist. · Failed to delete the NGFW resource. Please manually delete the NGFW resource. · The virtual gateway resource still exists. · No permission to delete the resource. · The vRouter bound to the resource has been bound to the sharing external IP. · A vPort or APP cluster VIP on the vRouter bound to the resource has been bound to a floating IP with a protocol specified. · The service gateway group resource cannot be deleted because the address pool of the resource is being used by the GATEWAY_SERVICE service resource of the tenant. |
Configure VNFM
|
Keyword |
CONFIGURE_VNFM_OP |
|
Message text |
Configured VNFM: $1 |
|
Variable fields |
$1: VNF Manager information. |
|
Example |
Configured VNFM: IP address: [3.3.3.3] Port number: [8080] Username: [admin] Password: [******] Version: [VNFM2.0] |
|
Explanation |
A VNF Manager was specified or modified. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · Invalid parameter. · Invalid JSON format. · Configuration recovery is in progress. · The controller is not the active leader. · The port number is not in the range of 0 to 65535. · The VNFM address or port is incorrect. · The VNFM username or password is incorrect. · Unknown internal server error. · The VNFM version must be VNFM3.0 or VNFM2.0. · Before modifying the VNFM version, please delete all VNF resources. |
Configure gateway network
|
Keyword |
CONFIGURE_GWNETWORK_OP |
|
Message text |
Configured gateway network: $1 |
|
Variable fields |
$1: Gateway network information. |
|
Example |
Configured gateway network: Tenant ID: [ffffffff-0000-0000-0000-000000000001] Gateway network type: [GROUP] Status: [UNUSABLE] |
|
Explanation |
The gateway mode for the gateway group was specified. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · Invalid parameter. · Invalid JSON format. · Configuration recovery is in progress. · The controller is not the active leader. · The tenant doesn't exist. · The gateway network type is already specified for the tenant. · No permission to specify the gateway network for the tenant. · Unknown internal server error. |
Update gateway network
|
Keyword |
UPDATE_GWNETWORK_OP |
|
Message text |
Updated gateway network: $1 |
|
Variable fields |
$1: Gateway network information. |
|
Example |
Updated gateway network: Tenant ID: [ffffffff-0000-0000-0000-000000000001] Gateway network type: [GROUP] Status: [UNUSABLE] |
|
Explanation |
The gateway mode for the gateway group was modified. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · Invalid parameter. · Invalid JSON format. · Configuration recovery is in progress. · The controller is not the active leader. · The tenant doesn't exist. · Resources are already allocated for the tenant. · No permission to modify the gateway network for the tenant. · Unknown internal server error. |
Router bound to gateway
|
Keyword |
BIND_ROUTER_GW_OP |
|
Message text |
Router bound to gateway: $1 |
|
Variable fields |
$1: Virtual router ID. |
|
Example |
Router bound to gateway: aa68bc06-8e30-468d-a805-d4f48952c646 |
|
Explanation |
A virtual router was bound to a gateway. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · Invalid parameter. · Invalid JSON format. · Configuration recovery is in progress. · The controller is not the active leader. · The virtual router doesn't exist. · No gateway network type is specified for the tenant. · The gateway is unavailable. · The virtual router is already bound to a gateway resource. · No permission to bind the virtual router to the gateway. · The vRouters using the public VRF can not be bound to the same service gateway group. · Unknown internal server error. |
Create aggregation group member
|
Keyword |
CREATE_AGGGROUP_MEMBER_OP |
|
Message text |
Created aggregation group member: $1 |
|
Variable fields |
$1: Aggregation group member configuration information. |
|
Example |
Created aggregation group member: ID: [beea3a3d-685d-4e22-b64c-44b1a360b19c] Name: [test] Description: [Description] Device ID: [fc8bbc44-76a6-4654-a0eb-1e6cdb642b95] Device name: [68] Group ID: [9f42cc59-80a6-4d52-98d7-847b4c360882] LACP short period enable: [False] Member port: [FortyGigE1/0/49] Group index: [7] Group mode: [1] Member port priority: [123] Selected status: [0] Unselected reason: [0] |
|
Explanation |
An aggregation group member was created. |
|
Possible failure causes |
· Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · Invalid description. · Unknown internal server error. · The aggregation group member already exists on the device. · The aggregation group member already exists. · The device ID doesn't exist. · The aggregation group doesn't exist on the device. · Invalid interface priority. · The device ID cannot be null. · No aggregation group ID is specified. · No name is specified. |
Update aggregation group member
|
Keyword |
UPDATE_AGGGROUP_MEMBER_OP |
|
Message text |
Updated aggregation group member: $1 |
|
Variable fields |
$1: Aggregation group member configuration information. |
|
Example |
Updated aggregation group member: ID: [beea3a3d-685d-4e22-b64c-44b1a360b19c] Name: [test] Description: [Change] Device ID: [fc8bbc44-76a6-4654-a0eb-1e6cdb642b95] Device name: [68] Group ID: [9f42cc59-80a6-4d52-98d7-847b4c360882] LACP short period enable: [False] Member port: [FortyGigE1/0/49] Group index: [7] Group mode: [1] Member port priority: [456] Selected status: [0] Unselected reason: [0] |
|
Explanation |
An aggregation group member was updated. |
|
Possible failure causes |
· Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · Invalid description. · Unknown internal server error. · The aggregation group member doesn't exist. · The aggregate interface and member interface are different types. · Invalid interface priority. · The aggregation group ID doesn't exist. · The aggregation group member is created through the bare metal module and cannot be modified. |
Delete aggregation group member
|
Keyword |
DELETE_AGGGROUP_MEMBER_OP |
|
Message text |
Deleted aggregation group member: $1 |
|
Variable fields |
$1: Aggregation group member ID. |
|
Example |
Deleted aggregation group member: beea3a3d-685d-4e22-b64c-44b1a360b19c |
|
Explanation |
An aggregation group member was deleted. |
|
Possible failure causes |
· The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Unknown internal server error. · The aggregation group member doesn't exist. · The aggregation group member is created through the bare metal module and cannot be deleted. |
Create aggregation group
|
Keyword |
CREATE_AGGGROUP_OP |
|
Message text |
Created aggregation group: $1 |
|
Variable fields |
$1: Aggregation group configuration information. |
|
Example |
Created aggregation group: ID: [9f42cc59-80a6-4d52-98d7-847b4c360882] Name: [test] Device ID: [fc8bbc44-76a6-4654-a0eb-1e6cdb642b95] Device name: [68] Group index: [7] Link mode: [Dynamic] LACP edge enable: [False] Load sharing mode type: [Default] VTEP enable: [False] |
|
Explanation |
An aggregation group was created. |
|
Possible failure causes |
· Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · Invalid description. · Unknown internal server error. · Duplicate aggregation group ID. · The device ID doesn't exist. · The aggregate interface ID is invalid. · The aggregate interface cannot be used as an access interface. · The aggregation group already exists on the device. · The aggregation group doesn't exist. · No available aggregation group indexes. · The global aggregation group settings are not configured. · The group index cannot be a reserved index. · The group index has been used by another group. |
Update aggregation group
|
Keyword |
UPDATE_AGGGROUP_OP |
|
Message text |
Updated aggregation group: $1 |
|
Variable fields |
$1: Aggregation group configuration information. |
|
Example |
Updated aggregation group: ID: [ff9f1d56-507f-4190-bc52-70da3fe96dc5] Name: [test] Description: [B] Device ID: [fc8bbc44-76a6-4654-a0eb-1e6cdb642b95] Device name: [68] Group index: [7] Link mode: [Dynamic] LACP edge enable: [False] Load sharing mode type: [Default] VTEP enable: [True] |
|
Explanation |
An aggregation group was updated. |
|
Possible failure causes |
· Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid description. · Unknown internal server error. · The aggregation group doesn't exist. · The aggregate group is created through the bare metal module and cannot be modified. |
Delete aggregation group
|
Keyword |
DELETE_AGGGROUP_OP |
|
Message text |
Deleted aggregation group: $1 |
|
Variable fields |
$1: Aggregation group ID. |
|
Example |
Deleted aggregation group: ff9f1d56-507f-4190-bc52-70da3fe96dc5 |
|
Explanation |
An aggregation group was deleted. |
|
Possible failure causes |
· The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Unknown internal server error. · The aggregation group doesn't exist. · The aggregate group is created through the bare metal module and cannot be deleted. |
Create global aggregation group configuration
|
Keyword |
CREATE_GLOBAL_AGGGROUP_CONFIG_OP |
|
Message text |
Created global aggregation group configuration: $1 |
|
Variable fields |
$1: Global aggregation group configuration information. |
|
Example |
Created global aggregation group configuration: ID: [b57f56eb-bb3f-4908-bb68-1e1c4508a210] Name: [test] Description: [666] Device ID: [fc8bbc44-76a6-4654-a0eb-1e6cdb642b95] Device name: [68] System priority: [32768] Load sharing mode: [0] Reserved group indexes: [1-16384] |
|
Explanation |
Global aggregation group configuration was created. |
|
Possible failure causes |
· Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid name. · Invalid description. · Unknown internal server error. · The global aggregation group configuration already exists. · Duplicate global aggregation group configuration. · Invalid reserved aggregation group indexes. |
Update global aggregation group configuration
|
Keyword |
UPDATE_GLOBAL_AGGGROUP_CONFIG_OP |
|
Message text |
Updated global aggregation group configuration: $1 |
|
Variable fields |
$1: Global aggregation group configuration information. |
|
Example |
Updated global aggregation group configuration: ID: [b57f56eb-bb3f-4908-bb68-1e1c4508a210] Name: [test] Description: [66666666] Device ID: [fc8bbc44-76a6-4654-a0eb-1e6cdb642b95] Device name: [68] System priority: [32768] Load sharing mode: [0] Reserved group indexes: [1-16384] |
|
Explanation |
Global aggregation group configuration was updated. |
|
Possible failure causes |
· Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid description. · Unknown internal server error. · The global aggregation group configuration doesn't exist. |
Delete global aggregation group configuration
|
Keyword |
DELETE_GLOBAL_AGGGROUP_CONFIG_OP |
|
Message text |
Deleted global aggregation group configuration: $1 |
|
Variable fields |
$1: Global aggregation group configuration ID. |
|
Example |
Deleted global aggregation group configuration: 7c3bcda6-7bec-4318-bd7b-3e49fc96c54e |
|
Explanation |
Global aggregation group configuration was deleted. |
|
Possible failure causes |
· The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Unknown internal server error. · The global aggregation group configuration doesn't exist. · The device is configured with aggregation groups. Cannot delete the global aggregation group settings. |
Delete NE VXLAN tunnels
|
Keyword |
DELETE_NE_TUNNEL_OP |
|
Message text |
Deleted NE VXLAN tunnels: NE ID: $1 Tunnels: $2 |
|
Variable fields |
$1: NE ID. $2: VXLAN tunnel list. |
|
Example |
Deleted NE VXLAN tunnels: NE ID: 28424135-36f5-4dde-ad2e-29580411de8d Tunnels: [ { Source IP: 98.0.57.16 Destination IP: 6.6.6.3 } ] |
|
Explanation |
The specified VXLAN tunnel on the specified NE was deleted, but the VXLAN tunnel on the device will not be deleted. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The NE doesn't exist. · Configuration recovery is in progress. · The controller is not the active leader. · Invalid JSON format. · Unknown internal server error. |
Create connection limit rule
|
Keyword |
CREATE_CONNECTIONLIMIT_OP |
|
Message text |
Created connection limit rule: $1 |
|
Variable fields |
$1: Connection limit rule configuration information. |
|
Example |
Created connection limit rule: ID: [fecaab1f-2dc4-4cb0-b77a-2a4dbdfb9da8] Name: [connlimit] Description: [conn-vsr] Tenant ID: [ffffffff-0000-0000-0000-000000000001] AE type: [subnet] Per-service connection limit: [true] Per-source connection limit: [false] Per-destination connection limit: [true] Upper limit connection limit: [100] Lower limit connection limit: [100] AE list: [ { AE ID: [f98344e9-927e-4697-a6df-1170ed08eb4b] Limit direction: [ALL] } ] |
|
Explanation |
A connection limit rule was added. |
|
Possible failure causes |
· Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Unknown internal server error. · The lower connection limit cannot be larger than the upper connection limit. · Please select at least one of the per-service, per-source, and per-destination connection limit filtering methods. · A virtual subnet or vPort can be bound to only one connection limit rule. · The virtual subnet or vPort doesn't exist. · The virtual subnet or vPort doesn't belong to the tenant. · The limit direction must be IN, OUT, or ALL. |
Update connection limit rule
|
Keyword |
UPDATE_CONNECTIONLIMIT_OP |
|
Message text |
Updated connection limit rule: $1 |
|
Variable fields |
$1: Connection limit rule configuration information. |
|
Example |
Updated connection limit rule: ID: [fecaab1f-2dc4-4cb0-b77a-2a4dbdfb9da8] Name: [connlimit] Description: [conn-vsr] Tenant ID: [ffffffff-0000-0000-0000-000000000001] AE type: [subnet] Per-service connection limit: [true] Per-source connection limit: [false] Per-destination connection limit: [true] Upper limit connection limit: [100] Lower limit connection limit: [100] AE list: [ { AE ID: [f98344e9-927e-4697-a6df-1170ed08eb4b] Limit direction: [ALL] } ] |
|
Explanation |
A connection limit rule was modified. |
|
Possible failure causes |
· Invalid JSON format. · The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Unknown internal server error. · The lower connection limit cannot be larger than the upper connection limit. · The virtual subnet or vPort doesn't exist. · The virtual subnet or vPort doesn't belong to the tenant. · The limit direction must be IN, OUT, or ALL. · Please select at least one of the per-service, per-source, and per-destination connection limit filtering methods. · A virtual subnet or vPort can be bound to only one connection limit rule. · The AE type field is read only. |
Delete connection limit rule
|
Keyword |
DELETE_CONNECTIONLIMIT_OP |
|
Message text |
Deleted connection limit rule: $1 |
|
Variable fields |
$1: Connection limit rule ID. |
|
Example |
Deleted connection limit rule: fecaab1f-2dc4-4cb0-b77a-2a4dbdfb9da8 |
|
Explanation |
A connection limit rule was deleted. |
|
Possible failure causes |
· The service is disabled. · Configuration recovery is in progress. · The controller is not the active leader. · Unknown internal server error. · The connection limit rule doesn't exist. |
Create cloud private line
|
Keyword |
CREATE_CLOUDPRIVATELINE_OP |
|
Message text |
Created cloud private line:$1 |
|
Variable fields |
$1: Cloud private line configuration. |
|
Example |
Created cloud private line: UUID:[93fdcbec-3187-4848-9d36-c18cb5d9b901] Router_ID:[a8244061-82ae-4bbd-b7b0-c50f0c618a62] Cloud private line CIDRs:[[68.5.5.5/24, 68.3.3.3/24]] IP_address:[1.1.1.1] Subnet mask:[255.255.255.0] Gateway_IP:[3.3.3.3] VLAN_ID:4021 |
|
Explanation |
A cloud private line was created. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Invalid JSON format. · The cloud private line already exists. · The vRouter does not exist. · Invalid IP address. · Invalid Mask. · Invalid VLAN ID. · The VLAN ID is already in the VLAN pool. · The VLAN ID already exists. · Configuration recovery is in progress. · Unknown internal server error. |
Update cloud private line
|
Keyword |
UPDATE_CLOUDPRIVATELINE_OP |
|
Message text |
Updated cloud private line:$1 |
|
Variable fields |
$1: Cloud private line configuration. |
|
Example |
Updated cloud private line: UUID:[93fdcbec-3187-4848-9d36-c18cb5d9b902] Router_ID:[a8244061-82ae-4bbd-b7b0-c50f0c618a62] Cloud private line CIDRs:[[68.2.2.2/24]] IP_address:[1.1.1.1] Subnet mask:[255.255.255.0] Gateway_IP:[3.3.3.3] VLAN_ID:4023 |
|
Explanation |
A cloud private line was modified. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Invalid JSON format. · The cloud private line does not exist. · The vRouter does not exist. · Invalid IP address. · Invalid VLAN ID. · The VLAN ID is already in the VLAN pool. · Unknown internal server error. |
Delete cloud private line
|
Keyword |
DELETE_CLOUDPRIVATELINE_OP |
|
Message text |
Deleted cloud private line: $1 |
|
Variable fields |
$1: UUID of the cloud private line. |
|
Example |
Deleted cloud private line:93fdcbec-3187-4848-9d36-c18cb5d9b901 |
|
Explanation |
A cloud private line was deleted. |
|
Possible failure causes |
· Invalid license. · Invalid JSON format. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · The cloud private line does not exist. · Unknown internal server error. |
NEYANGM
This section contains network element YANG manager messages.
Download YANG files
|
Keyword |
DOWNLOAD_YANG_FILES_OP |
|
Message text |
Download YANG files: $1 |
|
Variable fields |
$1: Network element ID. |
|
Example |
Download YANG files: NE ID: 84f2ab2c-fd56-48f1-9030-bf1c6297d644 |
|
Explanation |
The YANG files of a network element were downloaded. |
|
Possible failure causes |
· The operation requires the administrator privilege. · The controller is not the active leader. · The controller is obtaining the YANG files. |
Get YANG files from NE
|
Keyword |
GET_YANG_FILES_FROM_NE_OP |
|
Message text |
Get YANG files from NE: $1 |
|
Variable fields |
$1: Network element ID. |
|
Example |
Get YANG files from NE: NE ID: 84f2ab2c-fd56-48f1-9030-bf1c6297d644 |
|
Explanation |
The YANG files of a network element were synchronized. |
|
Possible failure causes |
· The operation requires the administrator privilege. · The controller is not the active leader. · The controller is obtaining the YANG files. |
Set YANG files identifier
|
Keyword |
SET_YANG_FILES_IDENTIFIER_OP |
|
Message text |
Set YANG files identifier: $1 |
|
Variable fields |
$1: YANG file identifier. |
|
Example |
Set YANG files identifier: NE ID: 84f2ab2c-fd56-48f1-9030-bf1c6297d644 Identifier: aaa |
|
Explanation |
An identifier was configured for the YANG files of a network element. |
|
Possible failure causes |
· The operation requires the administrator privilege. · The controller is not the active leader. |
NGFWM
This section contains NGFW manager messages.
Add device
|
Keyword |
ADD_DEVICE_OP |
|
Message text |
Added device: $1 |
|
Variable fields |
$1: Device information. |
|
Example |
Added device: ID: 8dfb8b46-50d9-46c1-87c4-7aac7976ef5b Name: device1 IP: 192.168.34.15 Port: 832 Username: admin Vendor: F5 Max. number of NGFW resources: 64 Data synchronization: ON |
|
Explanation |
A device was added. |
|
Possible failure causes |
· The device name already exists. · Invalid device port. · Invalid username. · Invalid password. · Invalid device name. · The IP address is used by a device. · Invalid IP address. · The device is unreachable or the username or password is incorrect. · The NGFWM service is not started. · The F5 service is not started. · Failed to add the F5 device. · Invalid vendor. · Server processing error. · Invalid JSON format. · The maximum number of NGFW resources must be an integer in the range of 1 to 2147483647. · Failed to establish an SSH connection between the controller and the device. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Update device
|
Keyword |
UPDATE_DEVICE_OP |
|
Message text |
Updated device: $1 |
|
Variable fields |
$1: Device configuration. |
|
Example |
Updated device: ID: 8dfb8b46-50d9-46c1-87c4-7aac7976ef5b Name: device1 IP: 192.168.34.15 Port: 832 Username: admin Max. number of NGFW resources: 64 Data synchronization: ON |
|
Explanation |
The configuration of a device was modified. |
|
Possible failure causes |
· The max. number of NGFW resources cannot be smaller than the number of NGFW resources existing on the device. · The maximum number of NGFW resources must be an integer in the range of 1 to 2147483647. · The configuration item does not exist. · The NGFWM service is not started. · Server processing error. · Invalid JSON format. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Delete device
|
Keyword |
DELETE_DEVICE_OP |
|
Message text |
Deleted device: $1 |
|
Variable fields |
$1: Device name. |
|
Example |
Deleted device: DeviceName |
|
Explanation |
A device was deleted. |
|
Possible failure causes |
· The NGFWM service is not started. · Server processing error. · The configuration item does not exist. · Delete the NGFW resources on the device first. · Failed to delete the F5 device. · The device is in an F5 group and cannot be deleted. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Add F5 group
|
Keyword |
ADD_ F5_GROUP_OP |
|
Message text |
Added F5 group: $1. |
|
Variable fields |
$1: F5 group settings. |
|
Example |
Added F5 group: Name: device1 Device list:[ { Device name: device1 IP address: 192.168.9.198 } { Device name: device2 IP adress: 192.168.10.198 } ]. |
|
Explanation |
An F5 group was created. |
|
Possible failure causes |
· The name already exists. · Invalid name. · The NGFWM service is not started. · Server processing error. · Invalid JSON format. · F5 devices that have been added to the resource pool exist. · F5 devices that have been added to other F5 groups exist. · A maximum of two F5 devices can be added to an F5 group. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Update F5 group
|
Keyword |
UPDATE_ F5_GROUP_OP |
|
Message text |
Updated F5 group: $1. |
|
Variable fields |
$1: F5 group settings. |
|
Example |
Updated F5 group: Name: device1 Device list:[ { Device name: device1 IP adress: 192.168.9.198 } { Device name: device2 IP adress: 192.168.10.198 } ] |
|
Explanation |
An F5 group was modified. |
|
Possible failure causes |
· The NGFWM service is not started. · Server processing error. · Invalid JSON format. · F5 devices that have been added to the resource pool exist. · F5 devices that have been added to other F5 groups exist. · The F5 group is already used by a resource pool. · The F5 group does not exist. · The name already exists. · Invalid name. · A maximum of two F5 devices can be added to an F5 group. · The F5 group cannot be deleted because NGFW resources exist on the F5 devices in the F5 group. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Delete F5 group
|
Keyword |
DELETE_ F5_GROUP_OP |
|
Message text |
Deleted F5 group: $1. |
|
Variable fields |
$1: Name of the F5 group. |
|
Example |
Deleted F5 group: Name. |
|
Explanation |
An F5 group was deleted. |
|
Possible failure causes |
· The NGFWM service is not started. · Server processing error. · The configuration item does not exist. · The F5 group cannot be deleted because NGFW resources exist on the F5 devices in the F5 group. · The F5 group is already used by a resource pool. · The F5 group does not exist. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Start data synchronization on device
|
Keyword |
START_NGFW_DEVICE_DATA_SYNCHRONIZATION_OP |
|
Message text |
Started data synchronization on device: $1 |
|
Variable fields |
$1: Device name. |
|
Example |
Started data synchronization on device: m9k |
|
Explanation |
Data synchronization was started on a device. |
|
Possible failure causes |
· The NGFWM service is not started. · Server processing error. · Invalid JSON format. · F5 devices do not support this function. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Start configuration audit on device
|
Keyword |
START_NGFW_DEVICE_CONFIG_AUDIT_OP |
|
Message text |
Started configuration auditing on device: $1 |
|
Variable fields |
$1: Device name. |
|
Example |
Started configuration auditing on device: m9k |
|
Explanation |
Configuration auditing was started on a device. |
|
Possible failure causes |
· The NGFWM service is not started. · Server processing error. · Invalid JSON format. · F5 devices do not support this function. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Create template
|
Keyword |
CREATE_TEMPLATE_OP |
|
Message text |
Created template: $1 |
|
Variable fields |
$1: Template information. |
|
Example |
Created template: ID: 8dfb8b46-50d9-46c1-87c4-7aac7976ef5b Name: F1000tmp108 Device name: M9000 Security engine group ID: 3 Resource pool name: FW1 Template type: GatewayGroupFW Interface list: [ { Interface name: GigabitEthernet1/0/1 Interface type: Management } { Interface name: GigabitEthernet1/0/2 Interface type: Uplink } { Interface name: GigabitEthernet1/0/3 Interface type: Downlink } ] Extend setting: ip vpn-instance external_vpn ip vpn-instance external_vpn ospf 1 vpn-instance external_vpn import-route direct import-route static area 0.0.0.0 interface GigabitEthernet1/0/2 ip binding vpn-instance external_vpn ospf 1 area 0.0.0.0 ip route-static 0.0.0.0 0 1.2.2.254 interface loopback 2 ip binding vpn-instance external_vpn security-zone name SEC_ZONE_DEFAULT import interface GigabitEthernet1/0/1 Object-policy ip SEC_POLICY_DEFAULT rule 0 pass security-zone intra-zone default permit zone-pair security source Any destination Any object-policy apply ip SEC_POLICY_DEFAULT session synchronization enable nat port-block synchronization enable ipsec redundancy enable |
|
Explanation |
A template was created. |
|
Possible failure causes |
· Invalid template name. · The template name already exists. · Invalid parameter. · No available device. · Invalid security engine group ID. · Invalid resource pool name. · The security engine group is not bound to the resource pool. · Invalid interface name. · The NGFWM service is not started. · The IP address pool cannot contain broadcast, loopback, multicast, or reserved address. · An F5 device supports only gateway group LB resource templates. · Server processing error. · Invalid JSON format. · The IP address pool of the uplink interface has been used by another template. · An interface with the same name already exists for the interface type. · All interfaces in a template of this type cannot be configured with IP address pools. · For a template of this type, the uplink interface can be configured with IP address pools, and the management interface and downlink interface cannot be configured with IP address pools. · For a template of this type, the uplink interface cannot be configured with IP address pools, and the management interface and downlink interface must be configured with IP address pools. · The name of the management VRF must be management_vpn. · You can configure the management VRF name only for gateway group FW resource and gateway group LB resource templates. · The name of the cloud private-line interface to external network must be unique. · You can configure the vRouter interconnect interface and cloud private-line interface to external network only for gateway group FW resource templates. · The vRouter interconnect interface name cannot be the same as the downlink interface name. · Invalid resource pool type. · The F5 group does not exist. · The IP address pool does not exist. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Delete template
|
Keyword |
DELETE_TEMPLATE_OP |
|
Message text |
Deleted template: $1 |
|
Variable fields |
$1: Template name. |
|
Example |
Deleted template: TemplateName |
|
Explanation |
A template was deleted. |
|
Possible failure causes |
· The NGFWM service is not started. · Server processing error. · The configuration item does not exist. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Create NGFW resource
|
Keyword |
CREATE_NGFW_RESOURCE_OP |
|
Message text |
Created NGFW resource: $1 |
|
Variable fields |
$1: NGFW resource information. |
|
Example |
Created NGFW resource: Name: resource1 Device name: device1 Resource pool name: FW Template type: GatewayGroupFW Description: XXXXX CPU weight: 2 Disk: 1000 Memory: 2000 Username: default Interface list: [ { Interface name: GigabitEthernet1/0/1 Interface type: Management IP: 1.2.3.3 Mask: 255.255.0.0 } { Interface name: GigabitEthernet1/0/2 Interface type: Uplink IP: 1.2.30.5 Mask: 255.255.0.0 } ] |
|
Explanation |
An NGFW resource was created. |
|
Possible failure causes |
· Invalid NGFW resource name. · The NGFW resource name already exists. · The interface name and type of the NGFW resource are required. · The IP address and mask must be both configured. · Invalid parameter. · Server processing error. · The NGFWM service is not started. · Invalid JSON format. · Failed to deploy the extended configuration and custom configuration to the NGFW resource through SSH. · Failed to establish the SSH connection between the controller and the device. · The number of NGFW resources on all devices in the resource pool has reached the upper limit. · The F5 service is not started. · Failed to assign resources to the NGFW resource by using NETCONF. · Failed to get information of the device where the NGFW resource resides. · The CPU weight of the NGFW resource must be in the range of 1 to 10. · The disk of the NGFW resource must be in the range of 1 to 999999999. · The memory of the NGFW resource must be in the range of 1 to 999999999. · The disk size can’t exceed the disk size of the security engine where the NGFW resource resides. · The memory size can’t exceed the memory size of the security engine where the NGFW resource resides. · Failed to create the NGFW resource. · Failed to obtain the maximum number of NGFW resources supported by the device. · Failed to allocate interfaces for the NGFW resource through NETCONF. · No available templates of this type. · Invalid subnet. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. · The NGFW resource interface failed to obtain an IP address from the IP address pool. |
Update NGFW resource
|
Keyword |
UPDATE_NGFW_RESOURCE_OP |
|
Message text |
Updated NGFW resource: $1 |
|
Variable fields |
$1: NGFW resource information. |
|
Example |
Updated NGFW resource: Name: resource1 Device name: device1 Resource pool name: FW Template type: GatewayGroupFW Description: XXXXX CPU weight: 2 Disk: 1000 Memory: 2000 Username: default Interface list: [ { Interface name: GigabitEthernet1/0/1 Interface type: Management IP: 1.2.3.3 Mask: 255.255.0.0 } { Interface name: GigabitEthernet1/0/2 Interface type: Uplink IP: 1.2.30.5 Mask: 255.255.0.0 } ] |
|
Explanation |
An NGFW resource was modified. |
|
Possible failure causes |
· The NGFWM service is not started. · Server processing error. · The configuration item does not exist. · Failed to assign resources to the NGFW resource by using NETCONF. · Failed to get information of the device where the NGFW resource resides. · The CPU weight of the NGFW resource must be in the range of 1 to 10. · The disk of the NGFW resource must be in the range of 1 to 999999999. · The memory of the NGFW resource must be in the range of 1 to 999999999. · The disk size can’t exceed the disk size of the security engine where the NGFW resource resides. · The memory size can’t exceed the memory size of the security engine where the NGFW resource resides. · Failed to update the NGFW resource. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Delete NGFW resource
|
Keyword |
DELETE_NGFW_RESOURCE_OP |
|
Message text |
Deleted NGFW resource: $1 |
|
Variable fields |
$1: NGFW resource name. |
|
Example |
Deleted NGFW resource: aa |
|
Explanation |
An NGFW resource was deleted. |
|
Possible failure causes |
· The NGFWM service is not started. · Server processing error. · The configuration item does not exist. · Failed to delete the NGFW resource. Please manually delete the NGFW resource. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Create resource pool
|
Keyword |
CREATE_RESOURCE_POOL_OP |
|
Message text |
Created resource pool: $1 |
|
Variable fields |
$1: Resource pool information. |
|
Example |
Created resource pool: Name: FW1 Type: FW Device list: [ { Device name: M9K Security engine group ID: 1 } ] |
|
Explanation |
A resource pool was created. |
|
Possible failure causes |
· The NGFWM service is not started. · Server processing error. · The resource pool name already exists. · The default user of the NGFW resource must be configured. · Invalid resource pool name. · Invalid device name. · The device bound to the resource pool doesn't exist. · Invalid JSON format. · Invalid resource pool type. · The security engine group has been bound to another resource pool. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Update resource pool
|
Keyword |
UPDATE_RESOURCE_POOL_OP |
|
Message text |
Updated resource pool: $1 |
|
Variable fields |
$1: Resource pool information. |
|
Example |
Updated resource pool: Name: FW1 Type: FW Device list: [ { Device name: M9K Security engine group ID: 1 } ] |
|
Explanation |
A resource pool was modified. |
|
Possible failure causes |
· The NGFWM service is not started. · Server processing error. · The resource pool name already exists. · The default user of the NGFW resource must be configured. · Invalid resource pool name. · Invalid device name. · The device bound to the resource pool doesn't exist. · Invalid JSON format. · Cannot unbind the security engine F5 group from the resource pool because the security engine F5 group has NGFW resources. · The resource pool type cannot be changed. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Delete resource pool
|
Keyword |
DELETE_RESOURCE_POOL_OP |
|
Message text |
Deleted resource pool: $1 |
|
Variable fields |
$1: Resource pool name. |
|
Example |
Deleted resource pool: aa |
|
Explanation |
A resource pool was deleted. |
|
Possible failure causes |
· The NGFWM service is not started. · Server processing error. · The configuration item does not exist. · Cannot delete the resource pool because the resource pool has NGFW resources. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
Set default user
|
Keyword |
SET_DEFAULT_USER_OP |
|
Message text |
Set default user: $1 |
|
Variable fields |
$1: NGFW resource default user information. |
|
Example |
Set default user: Username: admin |
|
Explanation |
The NGFW resource default username and password were set. |
|
Possible failure causes |
· The NGFWM service is not started. · Server processing error. · Invalid username. · Invalid password. · Invalid JSON format. · The controller is not the active leader. · You do not have privilege to perform the operation. · Configuration recovery is in progress. |
ServiceChain
This section contains service chain messages.
Create service chain
|
Keyword |
CREATE_SC_OP |
|
Message text |
Created service chain $1 |
|
Variable fields |
$1: Service chain information. |
|
Example |
Created service chain id: 7fda0d76-9a0a-4129-bc53-31e3b215f854 tenant id: ffffffff-0000-0000-0000-000000000001 name: sc1 base: source context: name: any flag: ANY destination context: name: external flag: EXTERNAL source port: 0 destination port: 0 protocol: HTTP service nodes: type: FW service id: a3645da8-a8d3-4dce-887f-87f310dc662a provider id: 5236ccde-8156-43df-9825-db2473877782 resource id: 2758558b-0a9c-4bdd-bee7-85149c2f0c82 management ip: 98.0.0.27 vtep IP: 10.0.0.3 service name: fw1 status: ACTIVE service path id: 1 |
|
Explanation |
A service chain was created. |
|
Possible failure causes |
· The firewall service has not been found. · The load balancer service has not been found. · Configuration recovery is in progress. · The controller is not the active leader. · The operation requires the administrator privilege. · The service chain already exists. · The specified context doesn't exist. · The specified tenant doesn't exist. · The service instance doesn't exist. · The tenant IDs for the service chain and the specified service instance are different. · The mode of the service instance is not SERVICE_CHAIN. · The tenant IDs for the service chain and the specified source or destination context are different. · The source and destination contexts are already used by another service chain. · The types of the source and destination contexts can't both be external. · The service instance is already used by another service chain. · Only one firewall service instance is allowed in a service chain. · Only one loadbalancer service instance is allowed in a service chain. · The source or destination context of the third-party service chain cannot be any. · A service chain can contain a maximum of 16 third-party service instances. · A service instance is required. · Duplicated service instances exist in the service chain. · vPorts with overlapping network addresses exist in the source and destination contexts. · Third-party service instances of a service chain must belong to different virtual link layer networks. · Third-party service instances of a service chain must be bound to the same vRouter. · Third-party service instances bound to the same vRouter must belong to the same service chain. · Invalid external network address. · Duplicated external network addresses exist. · The external network address is required. · The external network address can be configured only when the context is external. · You can create a maximum of 128 third-party service chains for the virtual link layer network of the source context, destination context, or third-party service instance. · You can create a maximum of 256 third-party service chains for the vRouter bound to the source context, destination context, or third-party service instance. · The source context and third-party service instance cannot be bound to the same vRouter. · The destination context and third-party service instance cannot be bound to the same vRouter. · The vRouter bound to the source context, destination context, or third-party service instance does not exist. · The network address of the source context overlaps with the IP address of the vPort in the third-party service instance. · The network address of the destination context overlaps with the IP address of the vPort in the third-party service instance. · A resource is required to be bound with each service instance for a PBR-firewall service chain. · A service instance of the third-party type can't form a service chain with service instances of other types. · No resources available in the source context. · No resources available in the destination context. · PBR firewall service instances of a service chain must belong to different virtual device. · A service instance of the PBR firewall type can't form a service chain with service instances of other types. · A service chain can contain a maximum of 1 PBR firewall service instances. · The resource access template corresponding to the PBR firewall service instance has configuration errors or does not exist. · Not enough VLAN pools, VXLAN pools, or address pools in the resource access template corresponding to the PBR firewall service instance. · Unknown internal service error. |
Update service chain
|
Keyword |
UPDATE_SC_OP |
|
Message text |
Updated service chain $1 |
|
Variable fields |
$1: Service chain information. |
|
Example |
Updated service chain id: 7fda0d76-9a0a-4129-bc53-31e3b215f854 tenant id: ffffffff-0000-0000-0000-000000000001 name: sc1 base: source context: name: any flag: ANY destination context: name: external flag: EXTERNAL source port: 0 destination port: 0 protocol: HTTP service nodes: type: FW service id: a3645da8-a8d3-4dce-887f-87f310dc662a provider id: 5236ccde-8156-43df-9825-db2473877782 resource id: 2758558b-0a9c-4bdd-bee7-85149c2f0c82 management ip: 98.0.0.27 vtep IP: 10.0.0.3 service name: fw1 status: ACTIVE service path id: 1 |
|
Explanation |
A service chain was modified. |
|
Possible failure causes |
· The service of the service chain has not been found. · Configuration recovery is in progress. · The controller is not the active leader. · The operation requires the administrator privilege. · The configuration item doesn't exist. · The specified context doesn't exist. · The service instance doesn't exist. · The tenant IDs for the service chain and the specified service instance are different. · The mode of the service instance is not SERVICE_CHAIN. · The tenant IDs for the service chain and the specified source or destination context are different. · The source and destination contexts are already used by another service chain. · The types of the source and destination contexts can't both be external. · The service instance is already used by another service chain. · Only one firewall service instance is allowed in a service chain. · Only one loadbalancer service instance is allowed in a service chain. · The source or destination context of the third-party service chain cannot be any. · A service chain can contain a maximum of 16 third-party service instances · A service instance is required. · Duplicated service instances exist in the service chain. · vPorts with overlapping network addresses exist in the source and destination contexts. · Third-party service instances of a service chain must belong to different virtual link layer networks. · Third-party service instances of a service chain must be bound to the same vRouter. · Third-party service instances bound to the same vRouter must belong to the same service chain. · A resource is required to be bound with each service instance for a PBR-firewall service chain. · Invalid external network address. · Duplicated external network addresses exist. · The external network address is required. · The external network address can be configured only when the context is external. · No resources available in the source context. · No resources available in the destination context. · PBR firewall service instances of a service chain must belong to different virtual device. · A service instance of the PBR firewall type can't form a service chain with service instances of other types. · A service chain can contain a maximum of 1 PBR firewall service instances. · The resource access template corresponding to the PBR firewall service instance has configuration errors or does not exist. · Not enough VLAN pools, VXLAN pools, or address pools in the resource access template corresponding to the PBR firewall service instance. · Unknown internal service error. |
Delete service chain
|
Keyword |
DELETE_SC_OP |
|
Message text |
Deleted service chain $1 |
|
Variable fields |
$1: Service chain UUID. |
|
Example |
Deleted service chain 7fda0d76-9a0a-4129-bc53-31e3b215f854 |
|
Explanation |
A service chain was deleted. |
|
Possible failure causes |
· The service of the service chain has not been found. · Configuration recovery is in progress. · The controller is not the active leader. · The operation requires the administrator privilege. · The configuration item doesn't exist. |
Create context
|
Keyword |
CREATE_CONTEXT_OP |
|
Message text |
Created context $1 |
|
Variable fields |
$1: Context information. |
|
Example |
Created context id: 764a2ebe-eb47-43f7-98f3-e492b7b8ebeb tenant id: ffffffff-0000-0000-0000-000000000001 name: net1 context base: type: NETWORK networks: e3672c88-04db-4c85-bd1c-3e8b869c94b3 53b5199d-7181-41f6-8f8a-4637603a9e04 tenant name: default in chain: false |
|
Explanation |
A context was created. |
|
Possible failure causes |
· The service of the service chain has not been found. · Configuration recovery is in progress. · The controller is not the active leader. · The operation requires the administrator privilege. · The context already exists. · The specified tenant doesn't exist. · The specified vPort doesn't exist. · The tenant IDs for the context and the specified vPort are different. · The specified vSubnet doesn't exist. · The tenant IDs for the context and the specified vSubnet are different. · The specified vNetwork doesn't exist. · The tenant IDs for the context and the specified vNetwork are different. |
Update context
|
Keyword |
UPDATE_CONTEXT_OP |
|
Message text |
Updated context $1 |
|
Variable fields |
$1: Context information. |
|
Example |
Updated context id: 764a2ebe-eb47-43f7-98f3-e492b7b8ebeb tenant id: ffffffff-0000-0000-0000-000000000001 name: net1 context base: type: NETWORK networks: e3672c88-04db-4c85-bd1c-3e8b869c94b3 53b5199d-7181-41f6-8f8a-4637603a9e04 tenant name: default in chain: false |
|
Explanation |
A context was modified. |
|
Possible failure causes |
· The service of the service chain has not been found. · Configuration recovery is in progress. · The controller is not the active leader. · The operation requires the administrator privilege. · The configuration item doesn't exist. · The context is being used by a service chain. · The specified vPort doesn't exist. · The tenant IDs for the context and the specified vPort are different. · The specified vSubnet doesn't exist. · The tenant IDs for the context and the specified vSubnet are different. · The specified vNetwork doesn't exist. · The tenant IDs for the context and the specified vNetwork are different. |
Delete context
|
Keyword |
DELETE_CONTEXT_OP |
|
Message text |
Deleted context $1. |
|
Variable fields |
$1: Context UUID. |
|
Example |
Deleted context ab7a8b0f-9704-4ba0-8411-b689c98ace7e |
|
Explanation |
A context was deleted. |
|
Possible failure causes |
· The service of the service chain has not been found. · Configuration recovery is in progress. · The controller is not the active leader. · The operation requires the administrator privilege. · The configuration item doesn't exist. · The context is being used by a service chain. |
SSLVPNaaS
This section contains messages from the SSL VPN module.
Create PKI domain
|
Keyword |
CREATE_PKI_DOMAIN_OP |
|
Message text |
Created PKI domain $1 |
|
Variable fields |
$1: Information about the PKI domain. |
|
Example |
Created PKI domain ID: 9a83d713-8e79-4ca8-a2e9-8df29daf5fd6 Name: pkiDomain1 Tenant ID: ffffffff-0000-0000-0000-000000000001 Tenant name: default Description: pki domain Public key name: dmpubkey Local certification file name: local.crt CA certification file name: ca.crt |
|
Explanation |
A PKI domain was created. |
|
Possible failure causes |
· The configuration item ID already exists. · The configuration item name already exists. · The tenant doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Unknown error. · Invalid PKI domain name. · Invalid description. · The PKI domain name is required. · The public key name is required. · Invalid public key name. · The CA certification file name is required. · The local certification file name is required. · Invalid CA certification file name. · Invalid local certification file name. · The tenant ID is required. · Invalid tenant ID. · Invalid JSON format. |
Update PKI domain
|
Keyword |
UPDATE_PKI_DOMAIN_OP |
|
Message text |
Updated PKI domain $1. |
|
Variable fields |
$1: Information about the PKI domain. |
|
Example |
Updated PKI domain ID: 9a83d713-8e79-4ca8-a2e9-8df29daf5fd6 Name: pkiDomain1 Tenant ID: ffffffff-0000-0000-0000-000000000001 Tenant name: default Description: pki domain Public key name: dmpubkey Local certification file name: local.crt CA certification file name: ca.crt |
|
Explanation |
A PKI domain was modified. |
|
Possible failure causes |
· The PKI domain doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · The PKI domain ID is read only. · Invalid PKI domain name. · Invalid description. · The PKI domain name is read only. · Invalid PKI domain ID. · Invalid public key name. · Invalid CA certification file name. · Invalid local certification file name. · The tenant ID is read only. · Invalid JSON format. |
Delete PKI domain
|
Keyword |
DELETE_PKI_DOMAIN_OP |
|
Message text |
Deleted PKI domain $1 |
|
Variable fields |
$1: PKI domain name. |
|
Example |
Deleted PKI domain pki |
|
Explanation |
A PKI domain was deleted. |
|
Possible failure causes |
· The PKI domain doesn't exist. · The PKI domain is being used by an SSL policy. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Unknown error. · Invalid PKI domain ID. |
Create SSL policy
|
Keyword |
CREATE_SSL_POLICY_OP |
|
Message text |
Created SSL policy $1 |
|
Variable fields |
$1: Information about the SSL policy. |
|
Example |
Created SSL policy ID: b52fff79-7bcf-4bff-9340-68c5f6c1c495 Name: sslpolicy Tenant ID: ffffffff-0000-0000-0000-000000000001 Tenant name: default PKI domain ID: e0cdcbe7-3623-4270-becb-8390d88d8009 PKI domain name: pkidomain Description: sslpolicy |
|
Explanation |
An SSL policy was created. |
|
Possible failure causes |
· The configuration item ID already exists. · The PKI domain doesn't exist. · The SSL policy and PKI domain belong to different tenants. · The configuration item name already exists. · The tenant doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Unknown error. · The PKI domain ID is required. · Invalid description. · The SSL policy name is required. · Invalid SSL policy name. · The tenant ID is required. · Invalid tenant ID. · Invalid JSON format. |
Update SSL policy
|
Keyword |
UPDATE_SSL_POLICY_OP |
|
Message text |
Updated SSL policy $1 |
|
Variable fields |
$1: Information about the SSL policy. |
|
Example |
Updated SSL policy ID: b52fff79-7bcf-4bff-9340-68c5f6c1c495 Name: sslpolicy Tenant ID: ffffffff-0000-0000-0000-000000000001 Tenant name: default PKI domain ID: e0cdcbe7-3623-4270-becb-8390d88d8009 PKI domain name: pkidomain Description: sslpolicy |
|
Explanation |
An SSL policy was modified. |
|
Possible failure causes |
· The configuration item doesn’t exist. · The PKI domain doesn't exist. · The SSL policy and PKI domain belong to different tenants. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · The SSL policy doesn't exist. · Unknown error. · Invalid description. · Invalid SSL policy ID. · The SSL policy ID is read only. · The SSL policy name is read only. · Invalid SSL policy name. · The tenant ID is read only. · Invalid JSON format. |
Delete SSL policy
|
Keyword |
DELETE_SSL_POLICY_OP |
|
Message text |
Deleted SSL policy $1 |
|
Variable fields |
$1: SSL policy name. |
|
Example |
Deleted SSL policy sslpolicy |
|
Explanation |
An SSL policy was deleted. |
|
Possible failure causes |
· The SSL policy doesn't exist. · The SSL policy is being used by gateways. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Unknown error. · Invalid SSL policy ID. |
Create SSL VPN gateway
|
Keyword |
CREATE_SSLVPN_GATEWAY_OP |
|
Message text |
Created SSL VPN gateway $1 |
|
Variable fields |
$1: Information about the SSL VPN gateway. |
|
Example |
Created SSL VPN gateway ID: 70dc3186-ac5b-4ba1-ac7f-7a27ef566efb Name: sslvpngateway Tenant ID: ffffffff-0000-0000-0000-000000000001 Tenant name: default IP: 192.168.0.1 Port: 443 Description: sslvpngateway vRouter ID: e9f32f57-a8f0-4bfa-9b6c-7b377775f0f0 vRouter name: def Enabled: true |
|
Explanation |
An SSL VPN gateway was created. |
|
Possible failure causes |
· The configuration item name already exists. · The vRouter doesn't exist. · The configuration item and the bound vRouter belong to different tenants. · The SSL policy doesn't exist. · The gateway and SSL policy belong to different tenants. · If two gateways are bound with different vRouters but the vRouters share the same external IP address, the gateways must use different port numbers. · No external network is specified for the vRouter. · The configuration item ID already exists. · The tenant doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Invalid gateway port number. · Unknown error. · Invalid description. · The gateway name is required. · Invalid gateway name. · The gateway port number is required. · The tenant ID is required. · Invalid tenant ID. · The vRouter ID is required. · Invalid vRouter ID. · Invalid JSON format. · Cannot specify the vRouter enabled with gateway forwarding of external traffic. |
Update SSL VPN gateway
|
Keyword |
UPDATE_SSLVPN_GATEWAY_OP |
|
Message text |
Updated SSL VPN gateway $1 |
|
Variable fields |
$1: Information about the SSL VPN gateway. |
|
Example |
Updated SSL VPN gateway ID: 70dc3186-ac5b-4ba1-ac7f-7a27ef566efb Name: sslvpngateway Tenant ID: ffffffff-0000-0000-0000-000000000001 Tenant name: default IP: 192.168.0.1 Port: 443 Description: sslvpngateway vRouter ID: e9f32f57-a8f0-4bfa-9b6c-7b377775f0f0 vRouter name: def Enabled: true |
|
Explanation |
An SSL VPN gateway was modified. |
|
Possible failure causes |
· The configuration item doesn’t exist. · The SSL policy doesn't exist. · The gateway and SSL policy belong to different tenants. · If two gateways are bound with different vRouters but the vRouters share the same external IP address, the gateways must use different port numbers · No external network is specified for the vRouter. · The configuration item and the bound vRouter belong to different tenants. · The gateway is being used by SSL VPN contexts. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · The gateway doesn't exist. · Invalid gateway port number. · The vRouter doesn't exist. · Unknown error. · Invalid description. · Invalid gateway ID. · The gateway ID is read only. · Invalid gateway name. · The gateway name is read only. · The tenant ID is read only. · The vRouter ID is required. · Invalid JSON format. · Cannot specify the vRouter enabled with gateway forwarding of external traffic. |
Delete SSL VPN gateway
|
Keyword |
DELETE_SSLVPN_GATEWAY_OP |
|
Message text |
Deleted SSL VPN gateway $1 |
|
Variable fields |
$1: Name of the SSL VPN gateway. |
|
Example |
Deleted SSL VPN gateway gateway |
|
Explanation |
An SSL VPN gateway was deleted. |
|
Possible failure causes |
· The gateway doesn't exist. · The gateway is being used by SSL VPN contexts. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Unknown error. · Invalid gateway ID. |
Create IP address pool
|
Keyword |
CREATE_SSLVPN_POOL_OP |
|
Message text |
Created SSL VPN IP address pool $1 |
|
Variable fields |
$1: Information about the SSL VPN address pool. |
|
Example |
Created SSL VPN IP address pool ID: 6835896c-5152-4bed-a2ab-092c9980e2b8 Name: ippool Tenant ID: ffffffff-0000-0000-0000-000000000001 Tenant name: default vRouter ID: ffffffff-0000-0000-0000-000000000001 vRouter name: vrt1 Start IP address: 14.14.14.14 End IP address: 14.14.14.16 Mask: 255.255.0.0 Description: ippool |
|
Explanation |
An SSL VPN address pool was created. |
|
Possible failure causes |
· The configuration item ID already exists. · The configuration item name already exists. · The start IP address must be lower than the end IP address. · The number of SSL VPN AC interfaces reached the maximum on the gateway or service resource for the specified vRouter. · Overlapping IP address pool range. · The tenant doesn't exist. · The vRouter doesn't exist. · The configuration item and the bound vRouter belong to different tenants. · The controller is not the active leader. · The operation requires the administrator privilege. · For different IP address pools, their start IP addresses must belong to different subnets. · Configuration recovery is in progress. · The service has not been found. · Invalid start IP address. · Invalid end IP address. · Unknown error. · Invalid description. · Invalid IP address pool name. · The IP address pool name is required. · The start IP address is required. · The end IP address is required. · The subnet mask is required. · Invalid subnet mask. · The tenant ID is required. · Invalid tenant ID. · The vRouter ID is required. · Invalid vRouter ID. · Invalid JSON format. · The specified IP address range conflicts with the subnet associated with the vRouter. · Cannot specify the vRouter enabled with gateway forwarding of external traffic. |
Update IP address pool
|
Keyword |
UPDATE_SSLVPN_POOL_OP |
|
Message text |
Updated SSL VPN IP address pool $1 |
|
Variable fields |
$1: Information about the SSL VPN address pool. |
|
Example |
Updated SSL VPN IP address pool ID: 6835896c-5152-4bed-a2ab-092c9980e2b8 Name: ippool Tenant ID: ffffffff-0000-0000-0000-000000000001 Tenant name: default vRouter ID: ffffffff-0000-0000-0000-000000000001 vRouter name: vrt1 Start IP address: 14.14.14.14 End IP address: 14.14.14.16 Mask: 255.255.0.0 Description: ippool |
|
Explanation |
An SSL VPN address pool was modified. |
|
Possible failure causes |
· The configuration item doesn’t exist. · The start IP address must be lower than the end IP address. · Overlapping IP address pool range. · The vRouter doesn't exist. · The configuration item and the bound vRouter belong to different tenants. · The controller is not the active leader. · The operation requires the administrator privilege. · For different IP address pools, their start IP addresses must belong to different subnets. · Configuration recovery is in progress. · The service has not been found. · Invalid start IP address. · Invalid end IP address. · The IP address pool doesn't exist. · The IP address pool is being used by SSL VPN contexts. · The number of SSL VPN AC interfaces reached the maximum on the gateway or service resource for the specified vRouter. · Unknown error. · Invalid description. · The IP address pool ID is read only. · Invalid IP address pool ID. · Invalid IP address pool name. · The IP address pool name is read only. · Invalid subnet mask. · The tenant ID is read only. · The vRouter ID is required. · Invalid JSON format. · The specified IP address range conflicts with the subnet associated with the vRouter. · Cannot specify the vRouter enabled with gateway forwarding of external traffic. |
Delete IP address pool
|
Keyword |
DELETE_SSLVPN_POOL_OP |
|
Message text |
Deleted SSL VPN IP address pool $1 |
|
Variable fields |
$1: Name of the SSL VPN address pool. |
|
Example |
Deleted SSL VPN IP address pool ippool |
|
Explanation |
An SSL VPN address pool was deleted. |
|
Possible failure causes |
· The IP address pool doesn't exist. · The IP address pool is being used by SSL VPN contexts. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Unknown error. · Invalid IP address pool ID. |
Create SSL VPN context
|
Keyword |
CREATE_SSLVPN_CONTEXT_OP |
|
Message text |
Created SSL VPN context $1 |
|
Variable fields |
$1: Information about the SSL VPN context. |
|
Example |
Created SSL VPN context ID: 6835896c-5152-4bed-a2ab-092c9980e2b8 Name: 123 Tenant ID: ffffffff-0000-0000-0000-000000000001 Tenant name: default vRouter ID: e9f32f57-a8f0-4bfa-9b6c-7b377775f0f0 vRouter name: def SSL VPN gateway ID: 83974693-027a-441b-9c40-805910abfdd2 SSL VPN gateway name: gateway IP address pool ID: 0b403e57-06b8-41ee-85f6-6feb8fa4c2bc IP address pool name: ippool ISP domain: aaa Description: sslvpnContext Enabled: true |
|
Explanation |
An SSL VPN context was created. |
|
Possible failure causes |
· The configuration item ID already exists. · The tenant doesn't exist. · The vRouter doesn't exist. · The gateway doesn't exist. · The configuration item and the bound vRouter belong to different tenants. · The SSL VPN context and gateway belong to different vRouters. · The configuration item name already exists. · The IP address pool doesn't exist. · The SSL VPN context and IP address pool belong to different tenants. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Invalid domain name. · Unknown error. · Invalid description. · The gateway ID is required. · The IP address pool ID is required. · The SSL VPN context name is required. · Invalid SSL VPN context name. · Invalid ISP domain name. · The tenant ID is required. · Invalid tenant ID. · The vRouter ID is required. · Invalid vRouter ID. · Invalid JSON format. · Cannot specify the vRouter enabled with gateway forwarding of external traffic. |
Update SSL VPN context
|
Keyword |
UPDATE_SSLVPN_CONTEXT_OP |
|
Message text |
Updated SSL VPN context $1 |
|
Variable fields |
$1: Information about the SSL VPN context. |
|
Example |
Updated SSL VPN context ID: 6835896c-5152-4bed-a2ab-092c9980e2b8 Name: 123 Tenant ID: ffffffff-0000-0000-0000-000000000001 Tenant name: default vRouter ID: e9f32f57-a8f0-4bfa-9b6c-7b377775f0f0 vRouter name: def SSL VPN gateway ID: 83974693-027a-441b-9c40-805910abfdd2 SSL VPN gateway name: gateway IP address pool ID: 0b403e57-06b8-41ee-85f6-6feb8fa4c2bc IP address pool name: ippool ISP domain: aaa Description: sslvpnContext Enabled: true |
|
Explanation |
An SSL VPN context was modified. |
|
Possible failure causes |
· The SSL VPN context doesn't exist. · The gateway doesn't exist. · The SSL VPN context and gateway belong to different vRouters. · The IP address pool doesn't exist. · The SSL VPN context and IP address pool belong to different tenants. · The configuration item and the bound vRouter belong to different tenants. · The tenant doesn't exist. · The vRouter doesn't exist. · The configuration item and the bound vRouter belong to different tenants. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Invalid domain name. · Unknown error. · Invalid description. · The gateway ID is required. · The IP address pool ID is required. · The SSL VPN context ID is read only. · Invalid SSL VPN context name. · The SSL VPN context name is read only. · Invalid ISP domain name. · The tenant ID is read only. · Invalid JSON format. · Cannot specify the vRouter enabled with gateway forwarding of external traffic. |
Delete SSL VPN context
|
Keyword |
DELETE_SSLVPN_CONTEXT_OP |
|
Message text |
Deleted SSL VPN context $1 |
|
Variable fields |
$1: Name of the SSL VPN context. |
|
Example |
Deleted SSL VPN context context1 |
|
Explanation |
An SSL VPN context was deleted. |
|
Possible failure causes |
· The SSL VPN context doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Unknown error. · Invalid SSL VPN context ID. |
Create route list
|
Keyword |
CREATE_ROUTE_LIST_OP |
|
Message text |
Created route list $1 |
|
Variable fields |
$1: Information about the route list. |
|
Example |
Created route list ID: 6835896c-5152-4bed-a2ab-092c9980e2b8 Name: 123 SSL VPN context ID: e5471ec1-4a5d-4ce8-81a8-70fc74634c24 SSL VPN context name: sslvpncontext Route list: [ CIDR: 192.168.0.1/8, CIDR: 192.168.0.2/16 ] |
|
Explanation |
A route list was created. |
|
Possible failure causes |
· The configuration item ID already exists. · The SSL VPN context doesn't exist. · The configuration item name already exists. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Invalid CIDR. · Unknown error. · The SSL VPN context ID is required. · Invalid route list name. · The route list name is required. · Invalid JSON format. |
Update route list
|
Keyword |
UPDATE_ROUTE_LIST_OP |
|
Message text |
Updated route list $1 |
|
Variable fields |
$1: Information about the route list. |
|
Example |
Updated route list ID: 6835896c-5152-4bed-a2ab-092c9980e2b8 Name: 123 SSL VPN context ID: e5471ec1-4a5d-4ce8-81a8-70fc74634c24 SSL VPN context name: sslvpncontext Route list: [ CIDR: 192.168.0.1/8, CIDR: 192.168.0.2/16 ] |
|
Explanation |
A route list was modified. |
|
Possible failure causes |
· The route list doesn't exist. · The SSL VPN context doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Invalid CIDR. · Unknown error. · Invalid SSL VPN context ID. · The SSL VPN context ID is read only. · Invalid policy group ID. · The route list ID is read only. · The route list name is read only. · The route list doesn't exist. · Invalid JSON format. |
Delete route list
|
Keyword |
DELETE_ROUTE_LIST_OP |
|
Message text |
Deleted route list $1 |
|
Variable fields |
$1: Name of the route list. |
|
Example |
Deleted route list routelist1 |
|
Explanation |
A route list was deleted. |
|
Possible failure causes |
· The route list doesn't exist. · The route list is being used by policy groups. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Unknown error. · The route list doesn't exist. |
Create policy group
|
Keyword |
CREATE_POLICY_GROUP_OP |
|
Message text |
Created policy group $1 |
|
Variable fields |
$1: Information about the SSL VPN policy group. |
|
Example |
Created policy group ID: 6835896c-5152-4bed-a2ab-092c9980e2b8 Name: 123 SSL VPN context ID: e5471ec1-4a5d-4ce8-81a8-70fc74634c24 SSL VPN context name: sslvpncontext Route type: ROUTE_LIST Route list ID: 3b020a55-cc55-4882-b6f1-d26d5f21f8a9 Route list name: routelist |
|
Explanation |
An SSL VPN policy group was created. |
|
Possible failure causes |
· The SSL VPN context doesn't exist. · The route list doesn't exist. · The configuration item ID already exists. · The configuration item name already exists. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Invalid policy group name. · Unknown error. · The SSL VPN context ID is required. · The policy group name is required. · The route list ID is required. · The route list doesn't exist. · Invalid JSON format. |
Update policy group
|
Keyword |
UPDATE_POLICY_GROUP_OP |
|
Message text |
Updated policy group $1 |
|
Variable fields |
$1: Information about the SSL VPN policy group. |
|
Example |
Updated policy group ID: 6835896c-5152-4bed-a2ab-092c9980e2b8 Name: 123 SSL VPN context ID: e5471ec1-4a5d-4ce8-81a8-70fc74634c24 SSL VPN context name: sslvpncontext Route type: ROUTE_LIST Route list ID: 3b020a55-cc55-4882-b6f1-d26d5f21f8a9 Route list name: routelist |
|
Explanation |
An SSL VPN policy group was modified. |
|
Possible failure causes |
· The policy group doesn't exist. · The SSL VPN context doesn't exist. · The route list doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Invalid policy group name. · Unknown error. · Invalid SSL VPN context ID. · The SSL VPN context ID is read only. · Invalid policy group ID. · The policy group ID is read only. · The policy group name is read only. · Invalid JSON format. |
Delete policy group
|
Keyword |
DELETE_POLICY_GROUP_OP |
|
Message text |
Deleted policy group $1 |
|
Variable fields |
$1: Policy group name. |
|
Example |
Deleted policy group policygroup1 |
|
Explanation |
An SSL VPN policy group was deleted. |
|
Possible failure causes |
· The policy group doesn't exist. · The controller is not the active leader. · The operation requires the administrator privilege. · Configuration recovery is in progress. · The service has not been found. · Unknown error. · The policy group doesn't exist. · Invalid JSON format. |
Tenant
This section contains tenant messages.
Add tenant
|
Keyword |
ADD_TENANT_OP |
|
Message text |
Add tenant $1 |
|
Variable fields |
$1: Information about the tenant. |
|
Example |
Add tenant ID: ec4bf666-5c73-4897-b4fc-3fcbae79f746 Name: tenant1 Type: local-create |
|
Explanation |
A tenant was added. |
|
Possible failure causes |
· The service has not been found. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · The length of name is too long. · Invalid parameter. · The tenant already exists. · The tenant name is required. |
Update tenant
|
Keyword |
UPDATE_TENANT_OP |
|
Message text |
Update tenant $1 |
|
Variable fields |
$1: Information about the tenant. |
|
Example |
Update tenant ID: ec4bf666-5c73-4897-b4fc-3fcbae79f746 Name: tenant1 Type: local-create |
|
Explanation |
A tenant was modified. |
|
Possible failure causes |
· The service has not been found. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · The length of name is too long. · Invalid parameter. · The tenant name is required. · Can't modify the default tenant. |
Delete tenant
|
Keyword |
DELETE_TENANT_OP |
|
Message text |
Delete tenant $1 |
|
Variable fields |
$1: Information about the tenant. |
|
Example |
Delete tenant ID: ec4bf666-5c73-4897-b4fc-3fcbae79f746 Name: tenant1 Type: local-create |
|
Explanation |
A tenant was deleted. |
|
Possible failure causes |
· The service has not been found. · The controller is not the active leader. · Configuration recovery is in progress. · Can't delete the default tenant. · The tenant has bound resources. |
Import tenants
|
Keyword |
IMPORT_TENANTS_OP |
|
Message text |
Import tenants |
|
Variable fields |
None. |
|
Example |
Import tenants |
|
Explanation |
Tenants were imported. |
|
Possible failure causes |
· The service has not been found. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · The Keystone URL can't be null. · The administrator name can't be null. · The administrator password can't be null. · The administrator tenant can't be null. · The Keystone URL is too long. · The administrator name is too long. · The administrator password is too long. · The administrator tenant name is too long. · Invalid parameter. · Invalid Keystone URL format. · Failed to import tenant accounts from the OpenStack server. |
TPaaS
This section contains third-party service module messages.
Create third-party service device
|
Keyword |
CREATE_THIRDPARTY_SERVICE_DEVICE_OP |
|
Message text |
Created third-party service device: $1 |
|
Variable fields |
$1: Third-party service device settings. |
|
Example |
Created third-party service device: UUID: 8032909d-47a1-4715-90af-5153ffe39899 Name: TP1 Description: text Incoming vPort VXLAN ID: 100 Outgoing vPort VXLAN ID: 200 Incoming vPort IP address: 1.1.1.1 Outgoing vPort IP address: 192.168.0.1 |
|
Explanation |
A third-party service device was created. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · Unknown internal server error. · Invalid name. · Invalid description. · The specified tenant does not exist. · Invalid access mode. · The vPort does not exist. · The incoming vPort does not exist. · The outgoing vPort does not exist. · Invalid incoming vPort VXLAN ID. · Invalid outgoing vPort VXLAN ID. · Invalid incoming vPort IP address. · Invalid outgoing vPort IP address. · The ingress vPort IP address is required. · The egress vPort IP address is required. · The ingress vPort VXLAN ID is required. · The egress vPort VXLAN ID is required. · The UUID already exists. · The name already exists. · The incoming vPort has been used by another third-party service device. · The outgoing vPort has been used by another third-party service device. · When the access mode is auto access, only the incoming vPort VXLAN ID, outgoing vPort VXLAN ID, incoming vPort IP address, and outgoing vPort IP address can be configured. · When the access mode is manual access, only the incoming vPort and outgoing vPort can be configured. · An egress vPort and an ingress vPort cannot belong to the same virtual link layer network. · The type of egress/inegress vPort only supports phy. |
Update third-party service device
|
Keyword |
UPDATE_THIRDPARTY_SERVICE_DEVICE_OP |
|
Message text |
Updated third-party service device: $1 |
|
Variable fields |
$1: Third-party service device settings. |
|
Example |
Updated third-party service device: UUID: 8032909d-47a1-4715-90af-5153ffe39899 Name: TP1 Description: text1 |
|
Explanation |
A third-party service device was modified. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · Unknown internal server error. · The third-party service device does not exist. · Invalid name. · Invalid description. · The tenant field is read only. · The access mode field is read only. · The incoming vPort VXLAN ID field is read only. · The outgoing vPort VXLAN ID field is read only. · The incoming vPort IP address field is read only. · The outgoing vPort IP address field is read only. · The incoming vPort field is read only. · The outgoing vPort field is read only. |
Delete third-party service device
|
Keyword |
DELETE_THIRDPARTY_SERVICE_DEVICE_OP |
|
Message text |
Deleted third-party service device: $1 |
|
Variable fields |
$1: UUID of the third-party service device. |
|
Example |
Deleted third-party service device: 8032909d-47a1-4715-90af-5153ffe39899 |
|
Explanation |
A third-party service device was deleted. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · The third-party service device does not exist. · Failed to delete the third-party service device because it has been used by a service. |
Create third-party service
|
Keyword |
CREATE_THIRDPARTY_SERVICE_OP |
|
Message text |
Created third-party service: $1 |
|
Variable fields |
$1: Third-party service settings. |
|
Example |
Created third-party service: UUID: 8032909d-47a1-4715-90af-5153ffe39899 Name: TPservice Description: text Tenant: ffffffff-0000-0000-0000-000000000001 Third-party service device: 954a1680-fd27-4cc1-b5ec-8f530c81f57a |
|
Explanation |
A third-party service was created. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · Unknown internal server error. · Invalid name. · Invalid description. · The specified tenant does not exist. · The UUID already exists. · The third-party service device does not exist. |
Update third-party service
|
Keyword |
UPDATE_THIRDPARTY_SERVICE_OP |
|
Message text |
Updated third-party service: $1 |
|
Variable fields |
$1: Third-party service settings. |
|
Example |
Updated third-party service: UUID: 8032909d-47a1-4715-90af-5153ffe39899 Name: TPservice Description: text1 |
|
Explanation |
A third-party service was modified. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid JSON format. · Unknown internal server error. · The third-party service device does not exist. · Invalid name. · Invalid description. · The tenant field is read only. · The third-party service device field is read only. |
Delete third party service
|
Keyword |
DELETE_THIRDPARTY_SERVICE_OP |
|
Message text |
Deleted third-party service: $1 |
|
Variable fields |
$1: UUID of the third-party service. |
|
Example |
Deleted third-party service: 8032909d-47a1-4715-90af-5153ffe39899 |
|
Explanation |
A third-party service was deleted. |
|
Possible failure causes |
· Invalid license. · The service is disabled. · The controller is not the active leader. · Configuration recovery is in progress. · The third-party service does not exist. · Failed to delete the third-party service because it has been used by a service chain. |
TPFW
This section contains third-party firewall messages.
Add TPFW
|
Keyword |
ADD_TPFW_OP |
|
Message text |
Added third-party firewall $1. |
|
Variable fields |
$1: Name of the third-party firewall. If the firewall name does not exist, its UUID is displayed. |
|
Example |
Added third-party firewall tpfw1. |
|
Explanation |
A third-party firewall was added. |
|
Possible failure causes |
· The controller is not the active leader. · You have no privilege to perform the operation. · Configuration recovery is in progress. · Invalid JSON format. · The configuration item already exists. · The name field up to 60 characters, case sensitive. Valid characters include Chinese characters, letters, digits, and underscores (_). · The description field up to 255 characters, case sensitive. · Incorrect UUID format of the synchronization operation. · Can't find the BUS type for the operation. · Team HA startup failure. · Team HA processing error. · Data format error. · Failed to insert the data. · Failed to add the configuration. · Failed to bind the dedicated subnet to the dedicated vRouter. · The redirect subnet can't be null. · The redirect IP address can't be null. · The dedicated vRouter can't be null. · The dedicated subnet can't be null. · The dedicated IP address can't be null. · The service NE can't be null. · The UUID of the redirect vRouter is read-only. · The redirect subnet doesn't exist. · The dedicated vRouter doesn't exist. · The dedicated subnet doesn't exist. · The redirect IP address and dedicated IP address can't be the same. · The dedicated IP address is not in the dedicated subnet. · The redirect IP address is not in the redirect subnet. · The redirect subnet and dedicated subnet can't be the same. |
Update TPFW
|
Keyword |
UPDATE_TPFW_OP |
|
Message text |
Updated third-party firewall $1. |
|
Variable fields |
$1: Name of the third-party firewall. If the firewall name does not exist, its UUID is displayed. |
|
Example |
Updated third-party firewall tpfw1. |
|
Explanation |
A third-party firewall was modified. |
|
Possible failure causes |
· The controller is not the active leader. · You have no privilege to perform the operation. · Configuration recovery is in progress. · UUID format error. · The UUID can't be modified. · Invalid JSON format. · Incorrect UUID format of the synchronization operation. · Can't find the BUS type for the operation. · Team HA startup failure. · Team HA processing error. · Team HA update failure. · The configuration doesn't exist. · Failed to modify the configuration. · The name field up to 60 characters, case sensitive. Valid characters include Chinese characters, letters, digits, and underscores (_). · The description field up to 255 characters, case sensitive. · The name of the third-party firewall can't be modified. · The redirect IP address can't be modified. · The dedicated IP address can't be modified. · The service NE ID can't be modified. · A vRouter link already exists on the third-party firewall. · The UUID of the vRouter can't be modified. · The redirect vRouter doesn't exist. · Failed to add the redirect routing table. · Failed to add the dedicated routing table. · Failed to add the routes to the third-party firewall. · Failed to delete the dedicated routing table. · Failed to delete the redirect routing table. · Failed to bind the redirect subnet to the redirect vRouter. · Failed to unbound the redirect subnet from the redirect vRouter. · The redirect vRouter and dedicated vRouter are the same. · The configuration doesn't exist. · Data format error. · Failed to update the data in the database. |
Delete TPFW
|
Keyword |
DELETE_TPFW_OP |
|
Message text |
Deleted third-party firewall $1. |
|
Variable fields |
$1: Name of the third-party firewall. If the firewall name does not exist, its UUID is displayed. |
|
Example |
Deleted third-party firewall tpfw1. |
|
Explanation |
A third-party firewall was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · You have no privilege to perform the operation. · Configuration recovery is in progress. · UUID format error. · Incorrect UUID format of the synchronization operation. · Can't find the BUS type for the operation. · Team HA startup failure. · Team HA processing error. · Team HA deletion failure. · The configuration doesn't exist. · Data deletion error. · Can't delete the third-party firewall because it is already bound to a Redirect vRouter. · Failed to unbind the dedicated vRouter from the dedicated subnet. |
Create vRouter link
|
Keyword |
CREATE_VROUTERLINK_OP |
|
Message text |
Created vRouter link $1. |
|
Variable fields |
$1: Name of the vRouter link. If the vRouter link name does not exist, its UUID is displayed. |
|
Example |
Created vRouter link vrlink1. |
|
Explanation |
A vRouter link was added. |
|
Possible failure causes |
· The controller is not the active leader. · You have no privilege to perform the operation. · Configuration recovery is in progress. · Invalid JSON format. · The configuration item already exists. · The name field up to 60 characters, case sensitive. Valid characters include Chinese characters, letters, digits, and underscores (_). · Team HA startup failure. · Data format error. · Failed to insert the data. · Failed to add the configuration. · Failed to create the vRouter link. · vRouter 1 doesn't exist. · vRouter 2 doesn't exist. · vRouter 1 can't be null. · vRouter 2 can't be null. |
Delete vRouter link
|
Keyword |
DELETE_VROUTERLINK_OP |
|
Message text |
Deleted vRouter link $1. |
|
Variable fields |
$1: Name of the vRouter link. If the vRouter link name does not exist, its UUID is displayed. |
|
Example |
Deleted vRouter link vrlink1. |
|
Explanation |
A vRouter link was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · You have no privilege to perform the operation. · Configuration recovery is in progress. · UUID format error. · The configuration doesn't exist. · Data format error. · Team HA startup failure. · Team HA deletion failure. · Data deletion error. · Failed to delete the vRouter link. |
VPNaaS
This section contains messages from the IPsec VPN service module.
Create IKE policy
|
Keyword |
CREATE_IKEPOLICY_OP |
|
Message text |
Create IKE policy $1 |
|
Variable fields |
$1: Information about the IKE policy. |
|
Example |
Create IKE policy Name: ikepolicy1 UUID: 5522aff7-1b3c-48dd-9c3c-b50f016b73db Description: ikepolicy1 IKE Version: v1 Auth Algorithm: sha1 Encryption Algorithm: aes-128 PFS: group5 Phase1 Negotiation Mode: main Lifetime: Units: seconds Value: 3600 |
|
Explanation |
An IKE policy was created. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · The tenant doesn't exist. |
Delete IKE policy
|
Keyword |
DELETE_IKEPOLICY_OP |
|
Message text |
Delete IKE policy $1 |
|
Variable fields |
$1: UUID of the IKE policy. |
|
Example |
Delete IKE policy UUID: 5522aff7-1b3c-48dd-9c3c-b50f016b73db |
|
Explanation |
An IKE policy was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · The IKE policy is in use. |
Update IKE policy
|
Keyword |
UPDATE_IKEPOLICY_OP |
|
Message text |
Update IKE policy $1 |
|
Variable fields |
$1: Information about the IKE policy. |
|
Example |
Update IKE policy Name: ikepolicy1 Description: ikepolicy1 IKE Version: v1 Auth Algorithm: sha1 Encryption Algorithm: aes-128 PFS: group5 Phase1 Negotiation Mode: main Lifetime: Units: seconds Value: 3600 |
|
Explanation |
An IKE policy was modified. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · The IKE policy is in use. |
Create IPsec policy
|
Keyword |
CREATE_IPSECPOLICY_OP |
|
Message text |
Create IPsec policy $1 |
|
Variable fields |
$1: Information about the IPsec policy. |
|
Example |
Create IPsec policy Name: policy UUID: 5291b189-fd84-46e5-84bd-78f40c05d69c Description: policy1 Encapsulation Mode: tunnel Transform Protocol: ESP Auth Algorithm: sha1 Encryption Algorithm: aes-128 Lifetime: Units: seconds Value: 3600 PFS: group5 |
|
Explanation |
An IPsec policy was created. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · The tenant doesn't exist. |
Delete IPsec policy
|
Keyword |
DELETE_IPSECPOLICY_OP |
|
Message text |
Delete IPsec policy $1 |
|
Variable fields |
$1: UUID of the IPsec policy. |
|
Example |
Delete IPsec policy UUID: 5291b189-fd84-46e5-84bd-78f40c05d69c |
|
Explanation |
An IPsec policy was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · The IPsec policy is in use. |
Update IPsec policy
|
Keyword |
UPDATE_IPSECPOLICY_OP |
|
Message text |
Update IPsec policy $1 |
|
Variable fields |
$1: Information about the IPsec policy. |
|
Example |
Update IPsec policy Name: policy Description: policy1 Encapsulation Mode: tunnel Transform Protocol: AH Auth Algorithm: sha1 Encryption Algorithm: aes-128 Lifetime: Units: seconds Value: 3600 PFS: group5 |
|
Explanation |
An IPsec policy was modified. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · The IPsec policy is in use. |
Create VPN service
|
Keyword |
CREATE_VPNSERVICE_OP |
|
Message text |
Create VPN service $1 |
|
Variable fields |
$1: Information about the VPN service. |
|
Example |
Create VPN service Name: vpn1 UUID: 9faaf49f-dd89-4e39-a8c6-101839aa49bc Description: 33 Router Id: ec8619be-0ba8-4955-8835-3b49ddb76f89 Subnet Id: f4fb4528-ed93-467c-a57b-11c7ea9f963e Admin State Up: ACTIVE |
|
Explanation |
A VPN service was created. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · The VPN service can't be bound to external subnet. · The tenant doesn't exist. · The vRouter doesn't exist. · The vSubnet doesn't exist. · The VPN service and the specified vRouter belong to different tenants. · The vSubnet is not bound to the specified vRouter. · Cannot specify the vRouter enabled with gateway forwarding of external traffic. |
Delete VPN service
|
Keyword |
DELETE_VPNSERVICE_OP |
|
Message text |
Delete VPN service $1 |
|
Variable fields |
$1: UUID of the VPN service. |
|
Example |
Delete VPN service UUID: 9faaf49f-dd89-4e39-a8c6-101839aa49bc |
|
Explanation |
A VPN service was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · The VPN service is in use. |
Update VPN service
|
Keyword |
UPDATE_VPNSERVICE_OP |
|
Message text |
Update VPN service $1 |
|
Variable fields |
$1: Information about the VPN service. |
|
Example |
Update VPN service Name: vpn1 UUID: 9faaf49f-dd89-4e39-a8c6-101839aa49bc Description: vpnservice1 |
|
Explanation |
A VPN service was modified. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · The VPN service is in use. · The vSubnet doesn't exist. · The vSubnet is not bound to the specified vRouter. · Cannot specify the vRouter enabled with gateway forwarding of external traffic. |
Create IPsec Site Connections
|
Keyword |
CREATE_IPSEC_SITE_CONNS_OP |
|
Message text |
Create IPsec Site Connections $1 |
|
Variable fields |
$1: Information about the IPsec site connection. |
|
Example |
Create IPsec Site Connections Name: vpnconnection1 UUID: cbc152a0-7e93-4f98-9f04-b085a4bf2511 Description: connections 1 VPN Service Id: c2f3178d-5530-4c4a-89fc-050ecd552636 IKE Policy Id: bf5612ac-15fb-460c-9b3d-6453da2fafa2 IPsec Policy Id: 8ba867b2-67eb-4835-bb61-c226804a1584 Peer Address: 172.24.4.226 Peer Id: 172.24.4.226 Peer CIDRS: [10.1.0.0/24] Auth Mode: PSK PSK: ****** Initiator: bi-directional Admin State Up: true MTU: 1500 DPD: Action: clear Interval: 30 Timeout: 120 Route Mode: static |
|
Explanation |
An IPsec site connection was created. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · The tenant doesn't exist. · The IPsec site connection and the specified VPN service belong to different tenants. · The IPsec site connection and the specified IKE policy belong to different tenants. · The IPsec site connection and the specified IPsec policy belong to different tenants. · The VPN service doesn't exist. · The IKE policy doesn't exist. · The IPsec policy doesn't exist. · Configuration recovery is in progress. · The number of IPsec site connections has reached the maximum. |
Delete IPsec Site Connection
|
Keyword |
DELETE_IPSEC_SITE_CONN_OP |
|
Message text |
Delete IPsec Site Connection $1 |
|
Variable fields |
$1: UUID of the IPsec site connection. |
|
Example |
Delete IPsec Site Connection UUID: cbc152a0-7e93-4f98-9f04-b085a4bf2511 |
|
Explanation |
An IPsec site connection was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. |
Update IPsec Site Connections
|
Keyword |
UPDATE_IPSEC_SITE_CONNS_OP |
|
Message text |
Update IPsec Site Connections $1. |
|
Variable fields |
$1: Information about the IPsec site connection. |
|
Example |
Update IPsec Site Connections Name: vpnconnection1 UUID: cbc152a0-7e93-4f98-9f04-b085a4bf2511 Description: connections 2 Peer Address: 172.24.4.226 Peer Id: 172.24.4.226 Peer CIDRS: [10.1.0.0/24] PSK: ****** Initiator: bi-directional Admin State Up: true MTU: 1500 DPD: Action: clear Interval: 30 Timeout: 120 Route Mode: static |
|
Explanation |
An IPsec site connection was modified. |
|
Possible failure causes |
· The controller is not the active leader. · The operation requires the administrator privilege. · The IPsec site connection and the specified VPN service belong to different tenants. · The IPsec site connection and the specified IKE policy belong to different tenants. · The IPsec site connection and the specified IPsec policy belong to different tenants. · The VPN service doesn't exist. · The IKE policy doesn't exist. · The IPsec policy doesn't exist. · Configuration recovery is in progress. |
Create IPsec site connection peer CIDR
|
Keyword |
CREATE_IPSEC_SITE_CONNS_PEER_CIDR_OP |
|
Message text |
Create IPsec site connection peer CIDR $1. |
|
Variable fields |
$1: Information about the peer subnet. |
|
Example |
Create IPsec site connection peer CIDR IPsec site connection UUID: cbc152a0-7e93-4f98-9f04-b085a4bf2511 Peer CIDR: 12.2.2.2/12. |
|
Explanation |
A peer subnet was created for an IPsec site connection. |
|
Possible failure causes |
· The IPsec site connection doesn't exist. · The IPsec site peer CIDR already exists. · The number of IPsec site connections has reached the maximum. |
Delete IPsec site connection peer CIDR
|
Keyword |
DELETE_IPSEC_SITE_CONNS_PEER_CIDR_OP |
|
Message text |
Delete IPsec site connection peer CIDR $1. |
|
Variable fields |
$1: Information about the peer subnet. |
|
Example |
Delete IPsec site connection peer CIDR IPsec site connection UUID: cbc152a0-7e93-4f98-9f04-b085a4bf2511 Peer CIDR: 12.2.2.2/12. |
|
Explanation |
A peer subnet of an IPsec site connection was deleted. |
|
Possible failure causes |
· The IPsec site connection doesn't exist. · The IPsec site peer CIDR doesn't exist. |
VSM
This section contains virtual network messages.
Create VDS
|
Keyword |
CREATE_VDS_OP |
|
Message text |
Created VDS "$1". |
|
Variable fields |
$1: VDS name. |
|
Example |
Created VDS "vds2". |
|
Explanation |
A VDS was created. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The VDS name already exists. · The length of the bridge name exceeds the limit. · The bridge name already exists. · The VXLAN tunnel name already exists. · The length of the VXLAN tunnel name exceeds the limit. · The openflow idle aging time exceeds the limit. · The openflow hard aging time exceeds the limit. · The anti-spoofing flow table aging time exceeds the limit. · Invalid VXLAN range. · Invalid global virtual MAC address. · Invalid VTEP IP for the network node. · Invalid VTEP MAC for the network node. · Invalid forwarding mode. · The length of the automatically generated VXLAN tunnel name exceeds the limit. · The VDS name and the bridge name cannot both be null. · The VDS already exists. · The VXLAN ID range is required. · The number of VXLAN ID digits in VSI interface name is invalid. · The VDS name cannot exceed 62 characters. · The data center name cannot exceed 255 characters. · Unknown error. |
Update VDS
|
Keyword |
UPDATE_VDS_OP |
|
Message text |
Updated VDS "$1". |
|
Variable fields |
$1: VDS name. |
|
Example |
Updated VDS "vds2". |
|
Explanation |
A VDS was modified. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · Can't modify the global virtual MAC address, bridge name, VXLAN range, and VXLAN tunnel name for the VDS. · The VDS ID is required. · The VDS name already exists. · The length of the bridge name exceeds the limit. · The bridge name already exists. · The VXLAN tunnel name already exists. · The length of the VXLAN tunnel name exceeds the limit. · The openflow idle aging time exceeds the limit. · The openflow hard aging time exceeds the limit. · The anti-spoofing flow table aging time exceeds the limit. · Invalid VXLAN range. · Invalid global virtual MAC address. · Invalid VTEP IP for the network node. · Invalid VTEP MAC for the network node. · Invalid forwarding mode. · The specified resource doesn't exist. · Can't modify the default VDS name. · Can't modify the number of VXLAN ID digits in VSI interface name. · The bridge name is required. · The VXLAN tunnel name is required. · The parameter (parameters) can't be modified. · The VDS name cannot exceed 62 characters. · The data center name cannot exceed 255 characters. · Unknown error. |
Delete VDS
|
Keyword |
DELETE_VDS_OP |
|
Message text |
Deleted VDS "$1". |
|
Variable fields |
$1: VDS name. |
|
Example |
Deleted VDS "vds2". |
|
Explanation |
A VDS was deleted. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Can't delete the VDS because it is in use. · Can't delete the default VDS. · Unknown error. |
Add host
|
Keyword |
ADD_HOST_OP |
|
Message text |
Added host "$1". |
|
Variable fields |
$1: IP address of the host. |
|
Example |
Added host "1.1.1.1" |
|
Explanation |
A host was added. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · Invalid IP address. · No available region. · Can’t reach the host. · The HA module has not been found. · Failed to add the host because no region accepts vSwitches. · The host already exists. · Failed to add the host because the domain type is vCenter. · The bridge doesn't exist. · Unknown error. · Invalid overlay license. · Number of CPUs that can be managed is insufficient. Please purchase a new license or expand the old one. · The domain doesn't exist. · Not allowed to access the host. · Incorrect bridge configuration on the host. · The request is invalid. · The IP address is already used by a network element. · No available IP addresses in the VTEP IP address pool. · Host host, parameter is required. · The host type and the domain type do not match. · The host name cannot exceed 255 characters. |
Update host
|
Keyword |
UPDATE_HOST_OP |
|
Message text |
Updated host “$1”. |
|
Variable fields |
$1: IP address of the host. |
|
Example |
Updated host “1.1.1.1”. |
|
Explanation |
A host was modified. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · Failed to add the host because no region accepts vSwitches. · Failed to add the host because the domain type is vCenter. · The host already exists. · The bridge doesn't exist. · No available region. · Invalid overlay license. · Invalid IP address. · The domain doesn't exist. · The request is invalid. · Unknown error. · No available IP addresses in the VTEP IP address pool. · Host host, parameter is required. |
Delete host
|
Keyword |
DELETE_HOST_OP |
|
Message text |
Deleted host "$1". |
|
Variable fields |
$1: IP address of the host. |
|
Example |
Deleted host "1.1.1.1" |
|
Explanation |
A host was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Cannot delete the host because it is a network element. · Unknown error. |
Create vRouter
|
Keyword |
CREATE_ROUTE_OP |
|
Message text |
Created vRouter "$1". |
|
Variable fields |
$1: vRouter name. |
|
Example |
Created vRouter "router01" |
|
Explanation |
A vRouter was created. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid tenant ID. · The router ID is already used. · The router is required. · The is_bind_gw field is a read-only field. · The segment ID is already used. · The segment ID is out of range. · Invalid routing table. · The VDS doesn't exist. · The VPN name is already used. · The AS number is required. · The value for the maximum number of ECMP routes is invalid. · Invalid summary route network. · The IPv4 address of the peer is required. · Invalid CIDR. · The CIDR overlaps with another CIDR. · The IPv4 address of the peer is invalid. · The AS number of the peer is invalid. · The vRouter can not be configured with the same summary route network. · The vRouters using the public VRF can not be bound to the same service gateway group. · The specified device doesn't exist. · The device ID and the device name do not match. · The BGP peer already exists. · The vRouter name cannot exceed 255 characters. · The VPN name cannot exceed 31 characters. · Unknown error. |
Update vRouter
|
Keyword |
UPDATE_ROUTE_OP |
|
Message text |
Updated vRouter "$1". |
|
Variable fields |
$1: vRouter name. |
|
Example |
Updated vRouter "router01" |
|
Explanation |
A vRouter was modified. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The subnet and the router are not in the same VDS. · The specified external network doesn't exist. · The specified external network has no subnet. · Failed to bind the router to the external network, because the external subnet doesn't have enough assignable IP addresses. · The router ID is required. · The specified resource doesn't exist. · For vRouters bound to a service gateway group to share an external IP address, these vRouter must be bound to the same gateway service resource. · The vRouters to which the sharing IP belongs must have been bound to a gateway. · For vRouters bound to a service gateway group to share an external IP address, these vRouter must be bound to a gateway service resource. · The IP address is already used by another port. · Invalid routing table. · The segment ID is already used. · The segment ID is out of range. · The AS number is required. · The value for the maximum number of ECMP routes is invalid. · Invalid summary route network. · The ID of the routing table is different than the vRouter. · The IPv4 address of the peer is required. · Invalid CIDR. · The IPv4 address of the peer is invalid. · The AS number of the peer is invalid. · The is_bind_gw field is a read-only field. · The subnet overlaps with another subnet. · The subnet must belong to the specified network. · The CIDR overlaps with another CIDR. · Failed to bind the vRouter to an external network because the specified network is not an external network. · The IP address doesn't belong to the network. · The IP address doesn't belong to the subnet. · The extranet IP is invalid. · The external network is required. · The subnet and the extranet IP can't both be null. · The extranet IP conflicts with a floating IP. · The extranet IP conflicts with a gateway IP. · The extranet IP conflicts with the broadcast address of the subnet. · The extranet IP conflicts with the subnet address. · The external subnet doesn't exist. · The extranet IP has been used by another gateway resource. · The vRouter can not be configured with the same summary route network. · A vPort or APP cluster VIP on the vRouter has been bound to a floating IP. · The specified device doesn't exist. · The device ID and the device name do not match. · The BGP peer already exists. · The vRouter name cannot exceed 255 characters. · The settings of whether traffic from the vRouter to the external network is directly forwarded by the gateway must be the same on vRouters bound to the same sharing IP. · When the value of the direct_external field is true, the external network bound to the vRouter must be a VLAN and the value of the force_flat field must be false. · If the value of the direct_external parameter is false for a vRouter, the vRouter cannot be bound to a virtual firewall configured with a security external network address pool and an external network of the VLAN type at the same time. · Unknown error. |
Delete vRouter
|
Keyword |
DELETE_ROUTE_OP |
|
Message text |
Deleted vRouter "$1". |
|
Variable fields |
$1: vRouter name. |
|
Example |
Deleted vRouter "router01". |
|
Explanation |
A vRouter was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Failed to delete the router, because it has a bound subnet. · Failed to delete the vRouter because it has been bound to service resources. · Failed to delete the vRouter because it has been bound to a vRouter link. · Failed to delete the vRouter because the vRouter has routing tables. · Failed to delete the vRouter because a routing table has been bound to the vRouter. · The vRouter has been bound to a vRouter interconnection. · The vRouter has been bound to a Layer 3 DC interconnection. · Unknown error. |
Create internal route
|
Keyword |
CREATE_INTERNAL_ROUTE_OP |
|
Message text |
Created internal route to router "$1", "dest: $2, next hop: $3". |
|
Variable fields |
$1: vRouter name. $2: Destination network of the intranet route. $3: Next hop of the intranet route. |
|
Example |
Created internal route to router "vRouter1", "dest: 100.1.1.1/24, next hop: 100.1.1.1". |
|
Explanation |
An intranet route was created. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The next hop address doesn't belong to the destination network of the route. · The destination network of the route overlaps with that of another internal route. · The destination is required. · The next hop is required. · The specified resource doesn't exist. · Invalid IP address. · Invalid CIDR. · The request is invalid. · Unknown error. |
Delete internal route
|
Keyword |
DELETE_INTERNAL_ROUTE_OP |
|
Message text |
Deleted internal route from router $1, "dest: $2, next hop: $3". |
|
Variable fields |
$1: vRouter name. $2: Destination network of the intranet route. $3: Next hop of the intranet route. |
|
Example |
Deleted internal route from router "vrouter1", "dest: 100.1.1.1/24, next hop: 100.1.1.1". |
|
Explanation |
An intranet route was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · The subnet has been bound to a vRouter interconnection. · The subnet has been bound to a Layer 3 DC interconnection. · Unknown error. |
Create interface
|
Keyword |
CREATE_INTERFACE_OP |
|
Message text |
Created interface "$1" to vRouter "$2". |
|
Variable fields |
$1: Name of the subnet with which the interface associates. $2: vRouter name. |
|
Example |
Created interface "subnet3" to vRouter "vrouter1". |
|
Explanation |
An interface was created. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The subnet has already been bound to another router. · The subnet and the router are not in the same VDS. · The specified subnet doesn't exist. · Subnets in the same network must be bound to the same router. · The specified resource doesn't exist. · The subnet overlaps with another subnet. · The subnet ID was null. · The subnet and the vRouter are not in the same tenant. · The subnet has already been bound to the vRouter. · The subnet overlaps with an interconnected address of a vRouter that forms a vRouter link with the current vRouter. · The subnet overlaps with a subnet of a vRouter that forms a vRouter link with the current vRouter. · The subnet overlaps with a selected subnet of the other vRouter in a vRouter interconnection. · The subnet overlaps with a remote subnet in a Layer 3 DC interconnection that involves the vRouter. · Unknown error. |
Delete interface
|
Keyword |
DELETE_INTERFACE_OP |
|
Message text |
Deleted interface "$1" from vRouter "$2". |
|
Variable fields |
$1: Name of the subnet with which the interface associates. $2: vRouter name. |
|
Example |
Deleted interface "subnet1" from vRouter "vrouter1". |
|
Explanation |
An interface was deleted. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The subnet can't be directly deleted from or added to the router. · The specified subnet doesn't exist. · The subnet has already been unbound from router. · The subnet ID is required. · Failed to delete the interface from the vRouter, because the vPort or APP cluster VIP in the subnet has a floating IP. · The specified resource doesn't exist. · The subnet has been bound to a routing table. · The vPort has been bound to a routing table. · The subnet overlaps with the destination subnet of the route entry. · Unknown error. |
Create network
|
Keyword |
CREATE_NETWORK_OP |
|
Message text |
Created network "$1". |
|
Variable fields |
$1: Name of the virtual link layer network. |
|
Example |
Created network "network01". |
|
Explanation |
A virtual link layer network was created. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid tenant ID. · The segment ID is already used. · The segment ID is out of range. · The shared attribute is not supported. · The network's parameter is incorrect. · The network already exists. · The service IP address does not match the gateway type. · The add-to-router attribute is not supported in external and VLAN network. · The router doesn't exist. · The router and network doesn't belong to the same tenant. · The router and network doesn't belong to the same VDS. · Failed to create the VXLAN because no available overlay license exists. · Invalid ARP flooding configuration. · Invalid ARP proxy configuration. · Invalid DHCP to controller configuration. · Invalid broadcast suppression configuration. · Invalid unknown multicast suppression configuration. · Invalid unknown unicast suppression configuration. · Invalid ARP to controller configuration. · Invalid RARP to controller configuration. · Invalid RARP flooding configuration. · Unknown network type. · The type of the network is different than the other networks in the tenant. · The ARP packet sending rate exceeds the rate limit. · The VDS doesn't exist. · The number of DHCP servers on the DHCP relay agent can't exceed 8. · The IP address of the DHCP server is invalid. · The IP address of the DHCP server is required. · External networks and VLANs do not support network sharing. · No available segment ID. · The network name cannot exceed 255 characters. · Only external networks can be configured as flat networks. · When the external network is a VXLAN, the value of the force_flat field cannot be false. · The segment ID of a flat network must be null. · The value of the force_flat field can be configured as true only when the network is an external network. · Unknown error. |
Update network
|
Keyword |
UPDATE_NETWORK_OP |
|
Message text |
Updated network "$1". |
|
Variable fields |
$1: Name of the virtual link layer network. |
|
Example |
Updated network "network01". |
|
Explanation |
A virtual link layer network was modified. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The shared attribute is not supported. · The external attribute can't be modified. · The network's parameter is incorrect. · The specified resource doesn't exist. · Invalid ARP flooding configuration. · Invalid ARP proxy configuration. · Invalid DHCP to controller configuration. · Invalid broadcast suppression configuration. · Invalid unknown multicast suppression configuration. · Invalid unknown unicast suppression configuration. · Invalid ARP to controller configuration. · Invalid RARP to controller configuration. · Invalid RARP flooding configuration. · The ARP packet sending rate exceeds the rate limit. · The number of DHCP servers on the DHCP relay agent can't exceed 8. · The IP address of the DHCP server is invalid. · The IP address of the DHCP server is required. · Failed to disable network sharing for the virtual link layer network because it is being used by other tenants. · External networks and VLANs do not support network sharing. · The network name cannot exceed 255 characters. · Unknown error. |
Delete network
|
Keyword |
DELETE_NETWORK_OP |
|
Message text |
Deleted network "$1". |
|
Variable fields |
$1: Name of the virtual link layer network. |
|
Example |
Deleted network "network02". |
|
Explanation |
A virtual link layer network was deleted. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · Can’t delete the network because a port group resides on the network. · The network contains a subnet. · The specified resource doesn't exist. · The port group has not been unbound from the subnet. · The subnet has not been unbound from the router. · A port resides on the subnet. · Can't delete the network because the network has flooding domains. · The network has been bound to a Layer 2 DC interconnection. · Unknown error. |
Create subnet
|
Keyword |
CREATE_SUBNET_OP |
|
Message text |
Created subnet "$1". |
|
Variable fields |
$1: Subnet name. |
|
Example |
Created subnet "subnet01". |
|
Explanation |
A subnet was created. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid tenant ID. · The network doesn't exist. · The CIDR is required. · The gateway IP is required. · The gateway IP address doesn't belong to the subnet. · The service IP address doesn't belong to the subnet. · The DHCP attribute of the subnet is not the same in the network. · The IP addresses in the address pool don't belong to the subnet. · The service IP address conflicts with the gateway IP address. · The gateway IP address conflicts with the subnet broadcast address. · The gateway IP address conflicts with the subnet address. · The subnet overlaps with another subnet. · The service IP can't be specified in non-traditional forwarding mode. · The pool's start IP can't be higher than the end IP. · The IP range of the address pool overlaps with the IP range of another address pool. · The subnet's tenant ID is different than the network. · The subnet ID already exists. · Invalid IP address. · The domain name can't exceed 255 characters. · Invalid server identifier. · The lease duration exceeds the limit. · The address pool address format is invalid. · The DNS server address format is invalid. · The format of the host route destination is invalid. · The format of the host route next hop is invalid. · The configuration contains duplicate host routes. · Invalid CIDR. · The configuration contains duplicate DNS. · Failed to create subnets for a VXLAN because no available overlay license exists. · The subnet name cannot exceed 255 characters. · An external subnet must be configured with a gateway IP address. · Subnets not configured with a gateway IP address cannot be enabled with DHCP. · The gateway IP for the subnet of a VLAN cannot be null. · Unknown error. |
Update subnet
|
Keyword |
UPDATE_SUBNET_OP |
|
Message text |
Updated subnet "$1". |
|
Variable fields |
$1: Subnet name. |
|
Example |
Updated subnet "subnet01". |
|
Explanation |
A subnet was modified. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The subnet ID is required. · The pool's start IP can't be higher than the end IP. · The IP range of the address pool overlaps with the IP range of another address pool. · The IP addresses in the address pool don't belong to the subnet. · Invalid routing table. · Invalid IP address. · The domain name can't exceed 255 characters. · Invalid server identifier. · The format of the host route destination is invalid. · The format of the host route next hop is invalid. · The configuration contains duplicate host routes. · The address pool of the internal subnet can't be modified. · The specified resource doesn't exist. · The subnet is not bound to a vRouter. · The configuration contains duplicate DNS. · The subnet name cannot exceed 255 characters. · The gateway IP address doesn’t belong to the subnet. · The gateway IP address conflicts with the subnet broadcast address. · The gateway IP address conflicts with the subnet address. · The service IP address conflicts with the gateway IP address. · An external subnet must be configured with a gateway IP address. · Subnets not configured with a gateway IP address cannot be enabled with DHCP. · The gateway IP for the subnet of a VLAN cannot be null. · Cannot modify the gateway IP address for the subnet, because the subnet is bound a vRouter. · The gateway IP address is already used by a vPort. · The gateway IP address is already used by an APP cluster VIP. · The gateway IP address is already used by a floating IP. · Unknown error. |
Delete subnet
|
Keyword |
DELETE_SUBNET_OP |
|
Message text |
Deleted subnet "$1". |
|
Variable fields |
$1: Subnet name. |
|
Example |
Deleted subnet "subnet01". |
|
Explanation |
A subnet was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · A port resides on the subnet. · The port group has not been unbound from the subnet. · The subnet has not been unbound from the router. · An APP cluster VIP resides on the subnet. · The specified resource doesn't exist. · The external subnet has floating IPs. · The subnet has been bound to a vRouter interconnection. · The subnet has been bound to a Layer 3 DC interconnection. · Unknown error. |
Create network policy
|
Keyword |
CREATE_NETWORK_POLICY_OP |
|
Message text |
Created network policy "$1". |
|
Variable fields |
$1: Network policy name. |
|
Example |
Created network policy "policy01". |
|
Explanation |
A network policy was created. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The QoS policy UUID is already used. · Invalid CIR value of inbound QoS. · Invalid CIR value of outbound QoS. · Invalid CBS value of inbound QoS. · Invalid CBS value of outbound QoS. · Invalid DSCP value. · The profile name is required. · Invalid rate value. · Unknown error. |
Update network policy
|
Keyword |
UPDATE_NETWORK_POLICY_OP |
|
Message text |
Updated network policy "$1". |
|
Variable fields |
$1: Network policy name. |
|
Example |
Updated network policy "policy01". |
|
Explanation |
A network policy was modified. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The QoS policy ID is required. · Failed to configure inbound QoS. · Failed to configure outbound QoS. · Failed to remove the inbound QoS configuration. · Failed to remove the outbound QoS configuration. · Invalid CIR value of inbound QoS. · Invalid CIR value of outbound QoS. · Invalid CBS value of inbound QoS. · Invalid CBS value of outbound QoS. · Invalid DSCP value. · The specified resource doesn't exist. · The profile name is required. · Invalid rate value. · Unknown error. |
Delete network policy
|
Keyword |
DELETE_NETWORK_POLICY_OP |
|
Message text |
Deleted network policy "$1". |
|
Variable fields |
$1: Network policy name. |
|
Example |
Deleted network policy "policy01". |
|
Explanation |
A network policy was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · Can't delete the default network policy. · The network policy has been bound to a port or a port group. · The specified resource doesn't exist. · Unknown error. |
Create security policy
|
Keyword |
CREATE_SECURITY_POLICY_OP |
|
Message text |
Created security policy"$1". |
|
Variable fields |
$1: Security policy name. |
|
Example |
Created security policy"spolicy01". |
|
Explanation |
A security policy was created. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · Duplicate security policy UUID. · Invalid anti-spoofing flow entry aging time. · Invalid empty rule action. · The subnet name cannot exceed 255 characters. · Unknown error. |
Update security policy
|
Keyword |
UPDATE_SECURITY_POLICY_OP |
|
Message text |
Updated security policy "$1". |
|
Variable fields |
$1: Security policy name. |
|
Example |
Updated security policy "spolicy01". |
|
Explanation |
A security policy was modified. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The security policy ID is required. · Invalid anti-spoofing flow entry aging time. · Invalid empty rule action. · The specified resource doesn't exist. · The security policy name cannot exceed 255 characters. · Unknown error. |
Delete security policy
|
Keyword |
DELETE_SECURITY_POLICY_OP |
|
Message text |
Deleted security policy "$1". |
|
Variable fields |
$1: Security policy name. |
|
Example |
Deleted security policy "spolicy01". |
|
Explanation |
A security policy was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The security policy has been bound to a port or a port group. · The specified resource doesn't exist. · Unknown error. |
Create floating IP
|
Keyword |
CREATE_FLOATING_IP_OP |
|
Message text |
Created floating IP "$1". |
|
Variable fields |
$1: Floating IP address. |
|
Example |
Created floating ip "202.100.1.10". |
|
Explanation |
A floating IP address was created. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The specified subnet doesn't exist. · The specified subnet is not an external subnet. · The specified port doesn't exist. · Invalid port type. · The fixed IP address must be the IP address of the port. · The port has not been bound to the router. · Floating IP address allocation failed. · The IP address must belong to the specified subnet. · The network doesn't exist. · Failed to bind the floating IP to the vPort or APP cluster VIP, because the floating IP doesn't belong to the external network bound to the vRouter of the vPort or APP cluster VIP. · The floating IP ID already exists. · The APP cluster VIP doesn't exist. · Invalid protocol type. · Invalid port number. · The configuration conflicts with the configuration of an existing floating IP. · The floating IP can be bound only to a vPort or an APP cluster VIP. · The subnet to which the APP cluster VIP belongs is not bound to a vRouter. · The configuration of the floating IP conflicts with the configuration of a bound floating IP. · Invalid local port number. · The IP address doesn't belong to the network. · The specified network is not an external network. · The specified subnet doesn't belong to the network. · The vRouter is not bound to an external network. · The external network doesn't exist. · The external network doesn't have any subnets. · The floating IP conflicts with an extranet IP. · The floating IP conflicts with a gateway IP. · The floating IP conflicts with the broadcast address of the subnet. · The floating IP conflicts with the subnet address. · The UUIDs of the vPort, APP cluster VIP, subnet, and network to which the floating IP belongs are not specified. · Invalid IP address. · Unknown error. |
Update floating IP
|
Keyword |
UPDATE_FLOATING_IP_OP |
|
Message text |
Updated floating IP $1 |
|
Variable fields |
$1: Floating IP address. |
|
Example |
Updated floating IP "202.100.1.10" |
|
Explanation |
A floating IP address was modified. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The specified port doesn't exist. · The port has not been bound to the router. · The external network doesn't exist. · The floating IP has been bound to another port. · The specified resource doesn't exist. · The gateway of the vRouter to which the floating IP that can be shared belongs doesn't support floating IP addresses. · The floating IP address that can be shared has been used by another gateway resource. · The vRouter to which the floating IP address that can be shared belongs doesn't bind a gateway service resource. · The vRouter to which the floating IP address that can be shared belongs has not been bound to a gateway. · Failed to bind the floating IP to the vPort or APP cluster VIP, because the floating IP doesn't belong to the external network bound to the vRouter of the vPort or APP cluster VIP. · The APP cluster VIP doesn't exist. · Invalid protocol type. · Invalid port number. · The floating IP can be bound only to a vPort or an APP cluster VIP. · The subnet to which the APP cluster VIP belongs is not bound to a vRouter. · The floating IP has been bound to another APP cluster VIP. · The configuration of the floating IP conflicts with the configuration of a bound floating IP. · Invalid local port number. · Invalid IP address. · The IP address of the floating IP can't be modified. · The protocol type and the port number of the floating IP can't be modified. · The UUIDs of the vPort, APP cluster VIP, subnet, and network to which the floating IP belongs are not specified. · Unknown error. |
Delete floating IP
|
Keyword |
DELETE_FLOATING_IP_OP |
|
Message text |
Deleted floating IP $1 |
|
Variable fields |
$1: Floating IP address. |
|
Example |
Deleted floating IP "202.100.1.10". |
|
Explanation |
A floating IP address was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Unknown error. |
Create port group
|
Keyword |
CREATE_PORT_GROUP_OP |
|
Message text |
Created port group "$1". |
|
Variable fields |
$1: Port group name. |
|
Example |
Created port group "group01". |
|
Explanation |
A port group was created. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The port group name is already used. · The port group ID is already used. · The port group name should be less than 80 characters. · The network ID is required. · The port group name is case sensitive and can contain only Chinese characters, letters, digits, underscores (_), and hyphens (-). · The network doesn't exist. · No subnet is created. · The specified port policy doesn't exist. · The specified security policy doesn't exist. · Failed to create the port group on the vCenter. · The ID of the specified tenant is different than the tenant to which the specified virtual link layer network belongs. · Unknown error. |
Update port group
|
Keyword |
UPDATE_PORT_GROUP_OP |
|
Message text |
Updated port group "$1" |
|
Variable fields |
$1: Port group name. |
|
Example |
Updated port group "group01". |
|
Explanation |
A port group was modified. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified port policy doesn't exist. · The specified security policy doesn't exist. · The port group ID is required. · Can't modify the port group name. · Can't modify the network where the port group resides. · The specified resource doesn't exist. · Operation failed. The security policy rule failed to take effect because of insufficient hardware resources. · Unknown error. |
Delete port group
|
Keyword |
DELETE_PORT_GROUP_OP |
|
Message text |
Deleted port group "$1" |
|
Variable fields |
$1: Port group name. |
|
Example |
Deleted port group "group01". |
|
Explanation |
A port group was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The port group contains visible ports. · The specified resource doesn't exist. · Unknown error. |
Create security rule
|
Keyword |
CREATE_SECURITY_RULE_OP |
|
Message text |
Created security rule “$1” for security policy “$2”. |
|
Variable fields |
$1: UUID of the security rule. $2: Name of the security policy. |
|
Example |
Created security rule “d32019d3-bc6e-4319-9c1d-6722fc136a22” for security policy “policy1”. |
|
Explanation |
An ACL rule was created. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid security policy UUID. · Duplicate security rule UUID. · The new security rule conflicts with the old rules. · IPv6 is not supported. · Invalid IP version. · Invalid IP prefix. · Invalid protocol type. · Invalid port range. · Invalid ICMP type. · Invalid ICMP code. · Invalid direction. · Operation failed. The security policy rule failed to take effect because of insufficient hardware resources. · Unknown error. |
Update security rule
|
Keyword |
UPDATE_SECURITY_RULE_OP |
|
Message text |
Updated security rule “$1” of security policy “$2”. |
|
Variable fields |
$1: UUID of the ACL rule. $2: Name of the security policy. |
|
Example |
Updated security rule “d32019d3-bc6e-4319-9c1d-6722fc136a22” of security policy “policy1”. |
|
Explanation |
An ACL rule was modified. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The new security rule conflicts with the old rules. · IPv6 is not supported. · Invalid IP version. · Invalid IP prefix. · Invalid protocol type. · Invalid port range. · Invalid ICMP type. · Invalid ICMP code. · Invalid direction. · The specified resource doesn’t exist. · Operation failed. The security policy rule failed to take effect because of insufficient hardware resources. · Unknown error. |
Delete security rule
|
Keyword |
DELETE_SECURITY_RULE_OP |
|
Message text |
Deleted security rule “$1” from security policy “$2”. |
|
Variable fields |
$1: UUID of the ACL rule. $2: Name of the security policy. |
|
Example |
Deleted security rule “d32019d3-bc6e-4319-9c1d-6722fc136a22” from security policy “policy1”. |
|
Explanation |
An ACL rule was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Unknown error. |
Authenticate with vCenter
|
Keyword |
AUTH_VCENTER_OP |
|
Message text |
Authenticated with vCenter. |
|
Variable fields |
N/A |
|
Example |
Authenticated with vCenter. |
|
Explanation |
The controller was connected to the vCenter server. |
|
Possible failure causes |
· Failed to connect to the vCenter. · The vCenter has connected to another domain. · Invalid IP address. · The domain ID is required. · The domain can't connect to the vCenter. · The domain doesn't exist. · The vCenter username cannot exceed 255 characters. · The vCenter password cannot exceed 255 characters. · The vCenter name cannot exceed 255 characters. · Unknown error. |
Disconnect with vCenter
|
Keyword |
DISCONNECT_VCENTER_OP |
|
Message text |
Disconnected with vCenter. |
|
Variable fields |
N/A |
|
Example |
Disconnected with vCenter. |
|
Explanation |
The controller was disconnected from the vCenter server. |
|
Possible failure causes |
· The controller is not the active leader. · The specified resource doesn't exist. · Failed to connect to the vCenter. · Configuration recovery is in progress. · Unknown error. |
Upload vib
|
Keyword |
UPLOAD_VIB_OP |
|
Message text |
Uploaded vib $1. |
|
Variable fields |
$1: Name of the .vib file. |
|
Example |
Uploaded vib s1020v_esx6.0.0-3.1.1.11.1_amd64.zip |
|
Explanation |
A .vib file was added. |
|
Possible failure causes |
The vSwitch version file name is invalid. |
Delete vib
|
Keyword |
DELETE_VIB_OP |
|
Message text |
Deleted vib $1. |
|
Variable fields |
$1: UUID of the .vib file. |
|
Example |
Deleted vib 501172da-2514-3013-9a7e-5fb1f75d6090 |
|
Explanation |
A .vib file was deleted. |
|
Possible failure causes |
· Failed to delete the installation file. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. |
Install VFE
|
Keyword |
INSTALL_VFE_OP |
|
Message text |
Installed VFE |
|
Variable fields |
N/A |
|
Example |
Installed VFE |
|
Explanation |
A vSwitch version was installed. |
|
Possible failure causes |
· Failed to connect to the vCenter. · Installation failed. · Failed to get the installation file. |
Update VFE
|
Keyword |
UPDATE_VFE_OP |
|
Message text |
Updated VFE $1. |
|
Variable fields |
$1: vSwitch version. |
|
Example |
Updated VFE 1.0-1.001.55.D002. |
|
Explanation |
The vSwitch version was updated. |
|
Possible failure causes |
· Update failed. · Failed to get the installation file. · Versions not match. |
Uninstall VFE
|
Keyword |
UNINSTALL_VFE_OP |
|
Message text |
Uninstalled VFE. |
|
Variable fields |
N/A |
|
Example |
Uninstalled VFE. |
|
Explanation |
The vSwitch version was uninstalled. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · Uninstallation failed. · Connection to the vCenter is not established. |
Create domain
|
Keyword |
CREATE_DOMAIN_OP |
|
Message text |
Created domain "$1". |
|
Variable fields |
$1: Domain name. |
|
Example |
Created domain "domain01". |
|
Explanation |
A domain was created. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The domain name is required. · Invalid domain type. · The domain UUID is already used. · The domain name is already used. · The host doesn't exist. · The VDS doesn't exist. · The domain name cannot exceed 255 characters. · Unknown error. |
Update domain
|
Keyword |
UPDATE_DOMAIN_OP |
|
Message text |
Updated domain "$1". |
|
Variable fields |
$1: Domain name. |
|
Example |
Updated domain "domain01". |
|
Explanation |
A domain was modified. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The domain ID is required. · The domain name is required. · The specified resource doesn't exist. · The host doesn't exist. · Invalid domain type. · The domain name is already used. · Can't unbind the default VDS from the default domain. · Can't unbind the VDS from the domain because online hosts exist. · The VDS doesn't exist. · Can't unbind the VDS from the domain because the VDS has hosts. · The domain name cannot exceed 255 characters. · Unknown error. |
Delete domain
|
Keyword |
DELETE_DOMAIN_OP |
|
Message text |
Deleted domain "$1". |
|
Variable fields |
$1: Domain name. |
|
Example |
Deleted domain "domain01". |
|
Explanation |
A domain was deleted. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · Failed to delete the domain. · Can't delete the default domain. · Can't delete the domain because it has been connected to vCenter. · Can't delete the domain because it has been bound to VDS. · Unknown error. |
Create vPort
|
Keyword |
CREATE_VPORT_OP |
|
Message text |
Created vPort "$1: $2/$3". |
|
Variable fields |
$1: Name of the subnet to which the vPort belongs. $2: IP address of the vPort. $3: MAC address of the vPort. |
|
Example |
Created vPort "tap1:100.1.1.100/00:01:00:01:10:00". |
|
Explanation |
A vPort was created. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid tenant ID. · The network doesn't exist. · Duplicate port ID. · The network ID is required. · Invalid port group ID. · The port group and the port don't reside on the same network. · The default uplink port policy can't be used as the port policy. · Invalid port policy ID. · Invalid port security policy UUID. · The MAC address is already used by another port. · The port and the gateway can't use the same IP address. · Neither the MAC address nor the IP address is configured. · The IP address is already used by another port. · The port IP address must belong to an existing subnet. · The IP address must belong to the specified subnet. · The subnet must belong to the specified network. · The domain doesn't exist. · The mirror direction is required. · The mirror type is required. · Invalid mirror direction. · Invalid mirror type. · The mirror remote IP is required. · The length of the description is out of range. · The VLAN ID must be an integer in the range of 1 to 4094. · Invalid flooding domain. · Invalid APP cluster VIP. · The APP cluster VIP and the vPort don't reside on the same network. · The flooding domain and the vPort don't reside on the same network. · The vPort can be bound to a maximum of 10 flooding domains. · The specified subnet doesn't exist. · Invalid IP address. · The host name cannot exceed 255 characters. · APP cluster VIPs bound to the same vPort must belong to the same subnet. · The subnet to which the vPort belongs must be bound to a vRouter because the vPort has been bound to a routing table. · The subnets of the flooding domains bound to the same vPort can't overlap with each other. · The specified resource doesn't exist. · The MAC address conflicts with the gateway MAC address or reserved gateway MAC address. · Invalid MAC address. · The vPort name cannot exceed 255 characters. · Operation failed. The security policy rule failed to take effect because of insufficient hardware resources. · The interface MTU is out of range. · The number of NTP server addresses cannot exceed 63. · The NTP server address is invalid. · Duplicated NTP server addresses exist. · The extend_dhcp_options field is invalid. · The value of the opt_name field is required. · The value of the opt_name field is invalid. · The value of the opt_value field is required. · The value of the server-ip-address DHCP option is invalid. · The value of the tftp-server DHCP option cannot exceed 63 characters. · The value of the bootfile-name DHCP option cannot exceed 127 characters. · The values of the opt_name fields cannot be the same. · Unknown error. |
Update vPort
|
Keyword |
UPDATE_VPORT_OP |
|
Message text |
Updated vPort "$1: $2/$3". |
|
Variable fields |
$1: Name of the vPort. $2: IP address of the vPort. $3: MAC address of the vPort. |
|
Example |
Updated vPort "tap01: 100.1.1.100/00: 01: 00: 01: 10: 00". |
|
Explanation |
A vPort was modified. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · The parameter (parameters) can't be modified. · Invalid port group ID. · The port group and the port don't reside on the same network. · The default uplink port policy can't be used as the port policy. · Invalid port policy ID. · Invalid port security policy UUID. · The mirror direction is required. · The mirror type is required. · Invalid mirror direction. · Invalid mirror type. · The mirror remote IP is required. · The port IP address must belong to an existing subnet. · The IP address is already used by another port. · The port and the gateway can't use the same IP address. · Can't update the MAC address. · The IP address must belong to the specified subnet. · Can't update the port name. · The subnet must belong to the specified network. · Unknown error. · The vPort is created through vCenter and the port group can't be modified. · The network doesn't exist. · The specified subnet doesn't exist. · The specified resource doesn't exist. · The length of the description is out of range. · Invalid APP cluster VIP. · The APP cluster VIP and the vPort don't reside on the same network. · The flooding domain and the vPort don't reside on the same network. · The vPort can be bound to a maximum of 10 flooding domains. · Failed to modify the IP address of the port because the port is a physical port. · Invalid IP address. · The flooding domain doesn't exist. · The host name cannot exceed 255 characters. · APP cluster VIPs bound to the same vPort must belong to the same subnet. · The subnet to which the vPort belongs must be bound to a vRouter because the vPort has been bound to a routing table. · The MAC address conflicts with the gateway MAC address or reserved gateway MAC address. · Invalid MAC address. · The vPort name cannot exceed 255 characters. · Operation failed. The security policy rule failed to take effect because of insufficient hardware resources. · The interface MTU is out of range. · The number of NTP server addresses cannot exceed 63. · The NTP server address is invalid. · Duplicated NTP server addresses exist. · The extend_dhcp_options field is invalid. · The value of the opt_name field is required. · The value of the opt_name field is invalid. · The value of the opt_value field is required. · The value of the server-ip-address DHCP option is invalid. · The value of the tftp-server DHCP option cannot exceed 63 characters. · The value of the bootfile-name DHCP option cannot exceed 127 characters. · The values of the opt_name fields cannot be the same. |
Delete vPort
|
Keyword |
DELETE_VPORT_OP |
|
Message text |
Deleted vPort "$1: $2/$3". |
|
Variable fields |
$1: Name of the subnet to which the vPort belongs. $2: IP address of the vPort. $3: MAC address of the vPort. |
|
Example |
Deleted vPort "tap1:100.1.1.100/00:01:00:01:10:00". |
|
Explanation |
A vPort was deleted. |
|
Possible failure causes |
· The request is invalid: Incorrect JSON. · The controller is not the active leader. · Configuration recovery is in progress. · Can't delete the port because it is created by vCenter. · Can't delete the auto created LB vPort. · The specified resource doesn't exist. · Cannot delete vPorts of the gateway type. · Unknown error. |
Create router link
|
Keyword |
CREATE_ROUTERLINK_OP |
|
Message text |
Created router link "$1" |
|
Variable fields |
$1: Name of the vRouter link. |
|
Example |
Created router link "zn_routelink" |
|
Explanation |
A vRouter link was created. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The vRouter link ID has already been used. · The specified vRouter doesn't exist. · The specified vRouter IDs cannot be the same. · The vRouter link already exists. · Both router_id1 and router_id2 are required. · The subnet of vRouter1 overlaps with the subnet of vRouter2. · The vRouter link name cannot exceed 255 characters. · Unknown error. |
Update router link
|
Keyword |
UPDATE_ROUTERLINK_OP |
|
Message text |
Updated router link "$1" |
|
Variable fields |
$1: Name of the vRouter link. |
|
Example |
Updated router link "zn_routelink" |
|
Explanation |
A vRouter link was modified. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The vRouter link ID is required. · The specified resource doesn't exist. · The vRouter link name cannot exceed 255 characters. · Unknown error. |
Delete router link
|
Keyword |
DELETE_ROUTERLINK_OP |
|
Message text |
Deleted router link "$1" |
|
Variable fields |
$1: Name of the vRouter link. |
|
Example |
Deleted router link "zn_routelink" |
|
Explanation |
A vRouter link was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Cannot delete PBR vRouter links. · Unknown error. |
Create route table
|
Keyword |
CREATE_ROUTETABLE_OP |
|
Message text |
Created routing table "$1" |
|
Variable fields |
$1: Name of the routing table. |
|
Example |
Created routing table "zn_routetable" |
|
Explanation |
A routing table was created. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The routing table already exists. · The router ID is required. · The router doesn't exist. · The tenant ID of the routing table is different than the vRouter. · The tenant name of the routing table is different than the vRouter. · Failed to create the routing table because physical MAC address forwarding is disabled. · The routing table name cannot exceed 255 characters. · Unknown error. |
Update route table
|
Keyword |
UPDATE_ROUTETABLE_OP |
|
Message text |
Updated routing table "$1" |
|
Variable fields |
$1: Name of the routing table. |
|
Example |
Updated routing table "zn_routetable" |
|
Explanation |
A routing table was modified. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · The route table id is required. · The routing table name cannot exceed 255 characters. · Unknown error. |
Delete route table
|
Keyword |
DELETE_ROUTETABLE_OP |
|
Message text |
Deleted routing table "$1" |
|
Variable fields |
$1: Name of the routing table. |
|
Example |
Deleted routing table "zn_routetable" |
|
Explanation |
A routing table was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · The routing table is being used by a subnet. · The routing table is being used by a vPort. · The routing table is used by a vRouter. · Unknown error. |
Create route entry
|
Keyword |
CREATE_ROUTE_OP |
|
Message text |
Created route "CIDR: $1, next hop type: $2" |
|
Variable fields |
$1: Destination address. $2: Next hop type. |
|
Example |
Created route "CIDR: 2.1.1.0/24, next hop type: IPv4" |
|
Explanation |
A route entry was created. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The route has already existed. · Invalid next hop. · Invalid CIDR. · Invalid routing table ID. · Invalid next hop type. · The destination subnet of the route entry overlaps with the subnet bound to the interface of the vRouter. · The specified device doesn't exist. · The device ID and the device name do not match. · Duplicate devices exist. · The specified next hop vRouter does not exist. · When the next hop type is Blackhole, the next hop is not required. · When the next hop type is Blackhole, the value of the is_distributed parameter must be false. · When the next hop type is Blackhole, the next hop vRouter is not required. · Unknown error. |
Update route entry
|
Keyword |
UPDATE_ROUTE_OP |
|
Message text |
Updated route "CIDR: $1, next hop type: $2" |
|
Variable fields |
$1: Destination address. $2: Next hop type. |
|
Example |
Updated route "CIDR: 2.1.1.0/24, next hop type: IPv4". |
|
Explanation |
A route entry was modified. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · The specified device doesn't exist. · The device ID and the device name do not match. · Duplicate devices exist. · Unknown error. |
Delete route entry
|
Keyword |
DELETE_ROUTE_OP |
|
Message text |
Deleted route "CIDR: $1, next hop type: $2" |
|
Variable fields |
$1: Destination address. $2: Next hop type. |
|
Example |
Deleted route "CIDR: 2.1.1.0/24, next hop type: IPv4" |
|
Explanation |
A route entry was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Unknown error. |
Create APP cluster VIP
|
Keyword |
CREATE_CLUSTER_IP_OP |
|
Message text |
Created cluster IP ”$1”. |
|
Variable fields |
$1: IP address of the APP cluster VIP. |
|
Example |
Created cluster IP ”192.168.1.1”. |
|
Explanation |
An APP cluster VIP was created. |
|
Possible failure causes |
· The network doesn't exist. · Invalid tenant ID. · Invalid IP address. · The APP cluster VIP ID already exists. · The APP cluster VIP already exists. · The APP cluster VIP is required. · The APP cluster VIP conflicts with the IP address of a vPort. · The APP cluster VIP must belong to an existing subnet. · The tenant is required. · The network is required. · The APP cluster VIP conflicts with the broadcast address of the subnet. · The APP cluster VIP conflicts with the subnet address. · The APP cluster mode is invalid. · The request is invalid. · Unknown error. · The controller is not the active leader. · Configuration recovery is in progress. |
Update APP cluster VIP
|
Keyword |
UPDATE_CLUSTER_IP_OP |
|
Message text |
Updated cluster IP ”$1”. |
|
Variable fields |
$1: IP address of the APP cluster VIP. |
|
Example |
Updated cluster IP ”192.168.1.1”. |
|
Explanation |
An APP cluster VIP was modified. |
|
Possible failure causes |
· The APP cluster mode is invalid. · The request is invalid. · Unknown error. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · The parameter (parameters) can’t be modified. |
Delete APP cluster VIP
|
Keyword |
DELETE_CLUSTER_IP_OP |
|
Message text |
Deleted cluster IP “$1”. |
|
Variable fields |
$1: IP address of the APP cluster VIP. |
|
Example |
Deleted cluster IP ”192.168.100.100”. |
|
Explanation |
An APP cluster VIP was deleted. |
|
Possible failure causes |
· Unknown error. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. |
Create flooding domain
|
Keyword |
CREATE_FLOODINGDOMAIN_OP |
|
Message text |
Created flooding domain “$1”. |
|
Variable fields |
$1: Name of the flooding domain. |
|
Example |
Created flooding domain “domain1”. |
|
Explanation |
A flooding domain was created. |
|
Possible failure causes |
· The network doesn't exist. · The network ID is required. · The flooding domain name already exists. · The flooding domain name can't exceed 255 characters. · The flooding domain ID already exists. · The flooding domain name is required. · The MAC address type must be ANY for the flooding domain. · The MAC address type is required. · The mask length for the subnet address of the flooding domain must be in the range of 4 to 32 bits. · The subnet address conflicts with the subnet address of another flooding domain within the same network. · No valid group IDs exist. · The IP address of the flooding domain must be a multicast or broadcast address. · Invalid CIDR. · The request is invalid. · Unknown error. · The controller is not the active leader. · Configuration recovery is in progress. |
Update flooding domain
|
Keyword |
UPDATE_FLOODINGDOMAIN_OP |
|
Message text |
Updated flooding domain “$1”. |
|
Variable fields |
$1: Name of the flooding domain. |
|
Example |
Updated flooding domain “domain1”. |
|
Explanation |
A flooding domain was modified. |
|
Possible failure causes |
· The MAC address type must be ANY for the flooding domain. · The MAC address type is required. · The mask length for the subnet address of the flooding domain must be in the range of 4 to 32 bits. · The subnet address conflicts with the subnet address of another flooding domain within the same network. · The IP address of the flooding domain must be a multicast or broadcast address. · The IP address of the flooding domain conflicts with the IP address of another flooding domain bound to the same vPort. · Invalid CIDR. · The request is invalid. · Unknown error. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · The parameter (parameters) can’t be modified. |
Delete flooding domain
|
Keyword |
DELETE_FLOODINGDOMAIN_OP |
|
Message text |
Deleted flooding domain “$1”. |
|
Variable fields |
$1: Name of the flooding domain. |
|
Example |
Deleted flooding domain “domain1”. |
|
Explanation |
A flooding domain was deleted. |
|
Possible failure causes |
· Unknown error. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. |
Update vCenter status
|
Keyword |
SET_VCENTER_STATUS_OP |
|
Message text |
Updated vCenter status to “$1”. |
|
Variable fields |
$1: vCenter connection status. Options include connected and disconnected. |
|
Example |
Updated vCenter status to connected. |
|
Explanation |
The vCenter status was updated. |
|
Possible failure causes |
· Failed to connect to the vCenter. · The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · Unknown error. |
Delete vPort prefix name
|
Keyword |
DELETE_PORT_PREFNAME_OP |
|
Message text |
Deleted vPort prefix name “$1”. |
|
Variable fields |
$1: vPort prefix name. |
|
Example |
Deleted vPort prefix name “a1”. |
|
Explanation |
A vPort prefix name was deleted. |
|
Possible failure causes |
Unknown error. |
Update advanced setting
|
Keyword |
UPDATE_GLOBAL_CONFIG_OP |
|
Message text |
Updated the advanced settings. Stateful flow table: $1, NE bidirectional security policy: $2. |
|
Variable fields |
$1: On/off state of the stateful flow table mode. $2: On/off state of the NE bidirectional security policy. |
|
Example |
Updated the advanced settings. Stateful flow table: off, NE bidirectional security policy: off. |
|
Explanation |
The user enabled or disabled the advanced settings. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · Unknown error. |
Create netoverlay host
|
Keyword |
CREATE_NETOVERLAYHOST_OP |
|
Message text |
Created netoverlay host "$1". |
|
Variable fields |
$1: Name of the network overlay host. |
|
Example |
Created netoverlay host "112". |
|
Explanation |
A network overlay host is created. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The netoverlay host name is required. · The netoverlay host already exists. · The netoverlay host name cannot exceed 255 character. · Unknown error. |
Delete netoverlay host
|
Keyword |
DELETE_NETOVERLAY_HOST_OP |
|
Message text |
Deleted netoverlay host "$1". |
|
Variable fields |
$1: Name of the network overlay host. |
|
Example |
Deleted netoverlay host "112". |
|
Explanation |
A network overlay host is deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Unknown error. |
Create VLAN-VXLAN map
|
Keyword |
CREATE_VLANVXLAN_MAP_OP |
|
Message text |
Created VLAN-VXLAN map "$1-$2". |
|
Variable fields |
$1: VLAN ID. $2: VXLAN ID. |
|
Example |
Created VLAN-VXLAN map "11-22". |
|
Explanation |
A VLAN-VXLAN mapping is created. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The netoverlay host ID is required. · The netoverlay host does not exist. · The VLAN ranges of hosts in a network overlay cannot be the same. · The VLAN ranges of hosts in a network overlay already exist. · The VLAN ID is required. · The VXLAN ID is required. · The VLAN ID is out of range. · The VXLAN ID is out of range. · Unknown error. |
Delete VLAN-VXLAN map
|
Keyword |
DELETE_VLANVXLAN_MAP_OP |
|
Message text |
Deleted VLAN-VXLAN map "$1-$2". |
|
Variable fields |
$1: VLAN ID. $2: VXLAN ID. |
|
Example |
Deleted VLAN-VXLAN map "11-22". |
|
Explanation |
A VLAN-VXLAN mapping is deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Unknown error. |
Configure batch vSwitch deployment parameters
|
Keyword |
SET_VSWITCH_CFG_OP |
|
Message text |
Configured batch vSwitch deployment parameters. |
|
Variable fields |
N/A |
|
Example |
Configured batch vSwitch deployment parameters. |
|
Explanation |
Batch vSwitch deployment parameters were configured. |
|
Possible failure causes |
· The request is invalid. · The start IP address can't be higher than the end IP address. · The IP address ranges of VTEP IP address pool 1 and VTEP IP address pool 2 can't overlap with each other. · Unknown error. |
Import host file
|
Keyword |
IMPORT_HOST_LIST_OP |
|
Message text |
Imported host file. |
|
Variable fields |
N/A |
|
Example |
Imported host file. |
|
Explanation |
A host file was imported. |
|
Possible failure causes |
· Host host-IP, parameter is required. · Unknown error. |
Run custom script
|
Keyword |
CUSTOM_SCRIPT_OP |
|
Message text |
Ran custom script. Total: $1. Success: $2. Failure: $3. |
|
Variable fields |
$1: Number of hosts that run custom scripts. $2: Number of hosts that successfully run custom scripts. $3: Number of hosts that fail to run custom scripts. |
|
Example |
Ran custom script. |
|
Explanation |
The custom script is executed for the host. |
|
Possible failure causes |
· The request is invalid. · The task has been terminated by user user. · For more information, see the deployment logs. · Deploying. Please try later. · Unknown error. |
Export host file
|
Keyword |
EXPORT_HOST_LIST_OP |
|
Message text |
Exported host file. |
|
Variable fields |
N/A |
|
Example |
Exported host file. |
|
Explanation |
The host list is exported. |
|
Possible failure causes |
N/A |
Export SSH key
|
Keyword |
EXPORT_SSH_KEY_OP |
|
Message text |
Exported SSH key. |
|
Variable fields |
N/A |
|
Example |
Exported SSH key. |
|
Explanation |
The SSH key is exported. |
|
Possible failure causes |
Unknown error. |
Upload custom script
|
Keyword |
UPLOAD_CUSTOM_SCRIPT_OP |
|
Message text |
Uploaded custom script ”$1”. |
|
Variable fields |
$1: Name of the custom script. |
|
Example |
Uploaded custom script “selfShell.sh”. |
|
Explanation |
A custom script is uploaded. |
|
Possible failure causes |
Unknown error. |
Install vSwitch
|
Keyword |
INSTALL_VSWITCH_OP |
|
Message text |
Installed vSwitch. Total: $1. Success: $2. Failure: $3. |
|
Variable fields |
$1: Number of hosts that are installed with vSwitch versions. $2: Number of hosts that are successfully installed with vSwitch versions. $3: Number of hosts that fail to be installed with vSwitch versions. |
|
Example |
Installed vSwitch. |
|
Explanation |
A vSwitch version is installed for the host. |
|
Possible failure causes |
· The request is invalid. · The task has been terminated by user user. · For more information, see the deployment logs. · Deploying. Please try later. · Unknown error. |
Update vSwitch
|
Keyword |
UPDATE_VSWITCH_OP |
|
Message text |
Updated vSwitch. Total: $1. Success: $2. Failure: $3. |
|
Variable fields |
$1: Number of hosts whose vSwitch versions are updated. $2: Number of hosts whose vSwitch versions are successfully updated. $3: Number of hosts whose vSwitch versions fail to be updated. |
|
Example |
Updated vSwitch. |
|
Explanation |
A vSwitch version is upgraded for the host. |
|
Possible failure causes |
· The request is invalid. · The task has been terminated by user user. · For more information, see the deployment logs. · Deploying. Please try later. · Unknown error. |
Uninstall vSwitch
|
Keyword |
UNINSTALL_VSWITCH_OP |
|
Message text |
Uninstalled vSwitch. Total: $1. Success: $2. Failure: $3. |
|
Variable fields |
$1: Number of hosts whose vSwitch versions are uninstalled. $2: Number of hosts whose vSwitch versions are successfully uninstalled. $3: Number of hosts whose vSwitch versions fail to be uninstalled. |
|
Example |
Uninstalled vSwitch. |
|
Explanation |
The vSwitch version is unloaded for a host. |
|
Possible failure causes |
· The request is invalid. · The task has been terminated by user user. · For more information, see the deployment logs. · Deploying. Please try later. · Unknown error. |
Check host status
|
Keyword |
CHECK_HOST_STATUS |
|
Message text |
Checked host status. |
|
Variable fields |
N/A |
|
Example |
Checked host status. |
|
Explanation |
The host status is checked. |
|
Possible failure causes |
· The request is invalid. · The task has been terminated by user (sdn). · Unknown error. |
Upload vSwitch file
|
Keyword |
UPLOAD_VSWITCH_FILE_OP |
|
Message text |
Uploaded vSwitch file ”$1”. |
|
Variable fields |
$1: vSwitch version file name. |
|
Example |
Uploaded vSwitch file “s1020v_F2237.zip”. |
|
Explanation |
A vSwitch version file is uploaded. |
|
Possible failure causes |
· Parse zip file failure. · The installation file of the same version already exists. · Unknown error. |
Delete vSwitch file
|
Keyword |
DELETE_VSWITCH_FILE_OP |
|
Message text |
Deleted vSwitch file ”$1”. |
|
Variable fields |
$1: vSwitch version file name. |
|
Example |
Deleted vSwitch file “s1020v_F2237.zip”. |
|
Explanation |
A vSwitch version file is deleted. |
|
Possible failure causes |
Unknown error. |
Create network nodes
|
Keyword |
CREATE_NETWORKNODE_OP |
|
Message text |
Created network nodes ”$1”. |
|
Variable fields |
$1: Names of the network nodes. |
|
Example |
Created network nodes "network1", "network2". |
|
Explanation |
One or multiple network nodes were created. |
|
Possible failure causes |
· Unknown error. · Duplicated VTEP IP addresses exist for the network nodes created in bulk. · Duplicated UUIDs exist for the network nodes created in bulk. · Duplicated names exist for the bulk-created network nodes of the same VDS. · The request is invalid. · The network node is already used. · The VDS doesn't exist. · Invalid VTEP IP address. · VTEP IP is required. · The network node name cannot exceed 255 characters. · The specified resource doesn't exist. |
Update network node
|
Keyword |
UPDATE_NETWORKNODE_OP |
|
Message text |
Updated network node ”$1”. |
|
Variable fields |
$1: Name of the network node. |
|
Example |
Updated network node “netnode”. |
|
Explanation |
A network node was modified. |
|
Possible failure causes |
· Unknown error. · The request is invalid. · Invalid VTEP IP address. · The name cannot be modified. · The VDS ID cannot be modified. · VTEP IP is required. · The specified resource doesn't exist. |
Delete network node
|
Keyword |
DELETE_NETWORKNODE_OP |
|
Message text |
Deleted network node ”$1”. |
|
Variable fields |
$1: Name of the network node. |
|
Example |
Deleted network node “netnode”. |
|
Explanation |
A network node was deleted. |
|
Possible failure causes |
· Unknown error. · The request is invalid. · The specified resource doesn't exist. |
Create vRouter interconnection
|
Keyword |
CREATE_VROUTERCONNECTION_OP |
|
Message text |
Created vRouter interconnection "$1". |
|
Variable fields |
$1: vRouter interconnection name. |
|
Example |
Created vRouter interconnection "vpc 01". |
|
Explanation |
A vRouter interconnection was created. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The vRouter interconnection ID already exists. · The tenant ID is required. · The tenant does not exist. · The local vRouter ID is required. · The remote vRouter ID is required. · The local vRouter does not exist. · The remote vRouter does not exist. · The local subnet ID is required. · The remote subnet ID is required. · The local subnet list contains nonexistent subnets. · The remote subnet list contains nonexistent subnets. · A remote subnet of the vRouter interconnection overlaps with a remote subnet of a Layer 3 DC interconnection. The subnet of the vRouter interconnection must cover the overlapping subnet of the Layer 3 DC interconnection. · The local vRouter and the remote vRouter cannot be the same. · The local subnets overlap with the subnets of the remote vRouter. · The remote subnets overlap with the subnets of the local vRouter. · The vRouter interconnection already exists. · The status field is a read-only field. · The vRouter interconnection name cannot exceed 255 characters. · The vRouter interconnection description cannot exceed 255 characters. · The network to which the remote subnet belongs cannot be a VLAN. · The remote subnet cannot be an external subnet. · The network to which the local subnet belongs cannot be a VLAN. · The local subnet cannot be an external subnet. · If a vRouter is bound to multiple vRouter interconnections, the selected subnets of the other vRouters bound to these vRouter interconnections cannot overlap. · The vRouter interconnection network address pool does not exist or no IP addresses are available in the address pool. · The vRouter interconnection network VLAN pool does not exist. · Unknown error. |
Update vRouter interconnection
|
Keyword |
UPDATE_VROUTERCONNECTION_OP |
|
Message text |
Updated vRouter interconnection "$1". |
|
Variable fields |
$1: vRouter interconnection name. |
|
Example |
Updated vRouter interconnection "vpc ". |
|
Explanation |
A vRouter interconnection was modified. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · The status field is a read-only field. · The local subnet ID is required. · The remote subnet ID is required. · The local subnet list contains nonexistent subnets. · The remote subnet list contains nonexistent subnets. · The local vRouter cannot be modified. · The remote vRouter cannot be modified. · The tenant cannot be modified. · A remote subnet of the vRouter interconnection overlaps with a remote subnet of a Layer 3 DC interconnection. The subnet of the vRouter interconnection must cover the overlapping subnet of the Layer 3 DC interconnection. · The vRouter interconnection name cannot exceed 255 characters. · The vRouter interconnection description cannot exceed 255 characters. · The network to which the remote subnet belongs cannot be a VLAN. · The remote subnet cannot be an external subnet. · The network to which the local subnet belongs cannot be a VLAN. · The local subnet cannot be an external subnet. · If a vRouter is bound to multiple vRouter interconnections, the selected subnets of the other vRouters bound to these vRouter interconnections cannot overlap. · Unknown error. |
Delete vRouter interconnection
|
Keyword |
DELETE_VPCCONNECTION_OP |
|
Message text |
Deleted vRouter interconnection "$1". |
|
Variable fields |
$1: vRouter interconnection name. |
|
Example |
Deleted vRouter interconnection "vpc". |
|
Explanation |
A vRouter interconnection was deleted. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Unknown error. |
Create Layer 2 DC interconnection
|
Keyword |
CREATE_L2DCICONNECT_OP |
|
Message text |
Created Layer 2 DC interconnection "$1". |
|
Variable fields |
$1: Layer 2 DC interconnection name. |
|
Example |
Created Layer 2 DC interconnection "l2-dci-connect 01". |
|
Explanation |
A Layer 2 DC interconnection was created. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The Layer 2 DC interconnection ID has already been used. · The Layer 2 DC interconnection name is required. · The network ID is required. · The mapping segment ID is required. · The network has been bound to another Layer 2 DC interconnection. · The VDS doesn't exist. · The mapping segment ID is out of range. · The mapping segment ID is already used. · Invalid import target. · Invalid export target. · The Layer 2 DC import target is required. · The Layer 2 DC export target is required. · The export target conflicts with the export target of a Layer 2 DC interconnection. · The export target conflicts with the export target of a Layer 3 DC interconnection. · The network type cannot be VLAN. · The network cannot be external. · The Layer 2 DC interconnection name cannot exceed 255 characters. · The Layer 2 DC interconnection description cannot exceed 255 characters. · Unknown error. |
Update Layer 2 DC interconnection
|
Keyword |
UPDATE_L2DCICONNECT_OP |
|
Message text |
Updated Layer 2 DC interconnection "$1". |
|
Variable fields |
$1: Layer 2 DC interconnection name. |
|
Example |
Updated Layer 2 DC interconnection "l2-dci-connect". |
|
Explanation |
A Layer 2 DC interconnection was modified. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · The name cannot be modified. · The network ID cannot be modified. · The mapping segment ID is required. · Invalid import target. · Invalid export target. · The Layer 2 DC import target is required. · The Layer 2 DC export target is required. · The export target conflicts with the export target of a Layer 2 DC interconnection. · The export target conflicts with the export target of a Layer 3 DC interconnection. · The Layer 2 DC interconnection description cannot exceed 255 characters. · Unknown error. |
Delete Layer 2 DC interconnection
|
Keyword |
DELETE_L2DCICONNECT_OP |
|
Message text |
Deleted Layer 2 DC interconnection "$1". |
|
Variable fields |
$1: Layer 2 DC interconnection name. |
|
Example |
Deleted Layer 2 DC interconnection "l2-dci-connect". |
|
Explanation |
A Layer 2 DC interconnection was deleted. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Unknown error. |
Create Layer 3 DC interconnection
|
Keyword |
CREATE_L3DCICONNECT_OP |
|
Message text |
Created Layer 3 DC interconnection "$1". |
|
Variable fields |
$1: Layer 3 DC interconnection name. |
|
Example |
Created Layer 3 DC interconnection "l3-dci-connect 01". |
|
Explanation |
A Layer 3 DC interconnection was created. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The layer 3 DC interconnection name is required. · The local subnet ID is required. · The router ID is required. · The specified vRouter doesn't exist. · The remote subnet is required when the firewall service is enabled. · Invalid remote subnet. · Duplicated remote subnets exist. · A remote subnet of the Layer 3 DC interconnection overlaps with a remote subnet of a vRouter interconnection. The subnet of the Layer 3 DC interconnection must be covered by the overlapping subnet of the vRouter interconnection. · The remote subnets overlap with the subnets of the vRouter. · The remote subnet cannot be configured when the firewall service is disabled. · Invalid packet encapsulation type. · The specified subnet doesn't exist. · The specified subnet is not bound to the vRouter. · The mapping segment ID is required. · The VDS doesn't exist. · The mapping segment ID is out of range. · The mapping segment ID is already used. · Invalid export target. · The Layer 3 DC export target is required. · The Layer 3 DC interconnection ID has already been used. · Invalid import target. · The Layer 3 DC import target is required. · The export target conflicts with the export target of a Layer 2 DC interconnection. · The export target conflicts with the export target of a Layer 3 DC interconnection. · The VPN instance name is already used. Please modify the mapping segment ID. · You can configure the same mapping segment ID for multiple Layer 3 DC interconnections using different vRouters only when all these interconnections are enabled with the firewall service. · The Layer 3 DC interconnection name cannot exceed 255 characters. · The Layer 3 DC interconnection description cannot exceed 255 characters. · Some remote subnets overlap with the remote subnets of other Layer 3 DC interconnections of the vRouter. · The mapping segment ID has been used by another Layer 3 DC interconnection of the vRouter. · For two Layer 3 DC interconnections configured with the same mapping segment ID, their remote subnets and local subnets cannot both overlap. · For two Layer 3 DC interconnections configured with the same mapping segment ID, the remote subnets of one Layer 3 DC interconnection cannot overlap with the local subnets of the other Layer 3 DC interconnection. · The network to which the local subnet belongs cannot be a VLAN. · The local subnet cannot be an external subnet. · When two Layer 3 DC interconnections of the same vRouter are both not enabled with the firewall function, the local subnets cannot overlap. · The import RTs of Layer 3 DC interconnections configured with the same mapping segment ID must be the same, and so must the export RTs. · The vRouter does not bind a gateway or the gateway bound to the vRouter is not assigned with an available data center interconnection network IP address. · Unknown error. |
Update Layer 3 DC interconnection
|
Keyword |
UPDATE_L3DCICONNECT_OP |
|
Message text |
Updated Layer 3 DC interconnection "$1". |
|
Variable fields |
$1: Layer 3 DC interconnection name. |
|
Example |
Updated Layer 3 DC interconnection "l3-dci-connect". |
|
Explanation |
A Layer 3 DC interconnection was modified. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · The name cannot be modified. · The vRouter ID cannot be modified. · The firewall service status cannot be modified. · The logical firewall cannot be modified. · The packet encapsulation type cannot be modified. · The local subnet ID is required. · The specified subnet does not exist. · The specified subnet is not bound to the vRouter. · A remote subnet of the Layer 3 DC interconnection overlaps with a remote subnet of a vRouter interconnection. · The mapping segment ID is required. · A remote subnet of the Layer 3 DC interconnection overlaps with a remote subnet of a vRouter interconnection. The subnet of the Layer 3 DC interconnection must be covered by the overlapping subnet of the vRouter interconnection. · The remote subnet is required when the firewall service is enabled. · The remote subnets overlap with the subnets of the vRouter. · The remote subnet cannot be configured when the firewall service is disabled. · Invalid import target. · Invalid export target. · The Layer 3 DC import target is required. · The Layer 3 DC export target is required. · The export target conflicts with the export target of a Layer 2 DC interconnection. · The export target conflicts with the export target of a Layer 3 DC interconnection. · You can configure the same mapping segment ID for multiple Layer 3 DC interconnections using different vRouters only when all these interconnections are enabled with the firewall service. · The Layer 3 DC interconnection description cannot exceed 255 characters. · Some remote subnets overlap with the remote subnets of other Layer 3 DC interconnections of the vRouter. · The mapping segment ID has been used by another Layer 3 DC interconnection of the vRouter. · For two Layer 3 DC interconnections configured with the same mapping segment ID, their remote subnets and local subnets cannot both overlap. · For two Layer 3 DC interconnections configured with the same mapping segment ID, the remote subnets of one Layer 3 DC interconnection cannot overlap with the local subnets of the other Layer 3 DC interconnection. · The network to which the local subnet belongs cannot be a VLAN. · The local subnet cannot be an external subnet. · When two Layer 3 DC interconnections of the same vRouter are both not enabled with the firewall function, the local subnets cannot overlap. · The import RTs of Layer 3 DC interconnections configured with the same mapping segment ID must be the same, and so must the export RTs. · The specified subnet is not bound to a vRouter. · Can't specify a subnet whose origin is PBR. · Unknown error. |
Delete Layer 3 DC interconnection
|
Keyword |
DELETE_L3DCICONNECT_OP |
|
Message text |
Deleted Layer 3 DC interconnection "$1". |
|
Variable fields |
$1: Layer 3 DC interconnection name. |
|
Example |
Deleted Layer 3 DC interconnection "l3-dci-connect". |
|
Explanation |
A Layer 3 DC interconnection was deleted. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Unknown error. |
Add subnet to Layer 3 DC interconnection
|
Keyword |
ADD_L3DCICONNECTSUBNET_OP |
|
Message text |
Added subnet "$1" to Layer 3 DC interconnection "$2" |
|
Variable fields |
$1: Local subnet name. $2: Layer 3 DC interconnection name. |
|
Example |
Added subnet "subnet 1" to Layer 3 DC interconnection "l3-dci-connect 2" |
|
Explanation |
A local subnet was added to a Layer 3 DC interconnection. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The subnet ID was null. · The router ID is required. · The specified subnet doesn't exist. · The specified subnet is not bound to the vRouter. · The subnet has already been bound to the Layer 3 DC interconnection. · Can't specify a subnet whose origin is PBR. · The network to which the local subnet belongs cannot be a VLAN. · The local subnet cannot be an external subnet. · The specified subnet is not bound to a vRouter. · When two Layer 3 DC interconnections of the same vRouter are both not enabled with the firewall function, the local subnets cannot overlap. · For two Layer 3 DC interconnections configured with the same mapping segment ID, their remote subnets and local subnets cannot both overlap. · For two Layer 3 DC interconnections configured with the same mapping segment ID, the remote subnets of one Layer 3 DC interconnection cannot overlap with the local subnets of the other Layer 3 DC interconnection. · The vRouter is not the vRouter bound to the Layer 3 DC interconnection. · The request is invalid. · The specified resource doesn't exist. · Unknown error. |
Delete Layer 3 DC interconnection subnet
|
Keyword |
DELETE_L3DCICONNECTsubnet_OP |
|
Message text |
Deleted subnet "$1" from Layer 3 DC interconnection "$2" |
|
Variable fields |
$1: Local subnet name. $2: Layer 3 DC interconnection name. |
|
Example |
Deleted subnet "interface 1" from Layer 3 DC interconnection "l3-dci-connect 2" |
|
Explanation |
A local subnet was deleted from a Layer 3 DC interconnection. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The subnet ID is required. · The vRouter ID is required. · The specified subnet doesn't exist. · The specified vRouter doesn't exist. · The subnet is not bound to the Layer 3 DC interconnection. · The specified subnet is not bound to the vRouter. · The specified resource doesn't exist. · The local subnet ID of the Layer 3 DC interconnection is required. · The specified subnet is not bound to a vRouter. · The request is invalid. · Unknown error. |
Update global default action
|
Keyword |
UPDATE_GLOBALDEFAULTACTION_OP |
|
Message text |
Updated global default action “$1”. |
|
Variable fields |
$1: DFW global default action. |
|
Example |
Updated global default action “forward”. |
|
Explanation |
The DFW global default action was modified. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The global default action is required. · The global default action is invalid. · The maximum number of sessions is invalid. · Unknown error. |
Create DFW policy
|
Keyword |
CREATE_DFW_POLICY_OP |
|
Message text |
Created DFW policy “$1”. |
|
Variable fields |
$1: DFW policy or subpolicy name. |
|
Example |
Created DFW policy “policy1”. |
|
Explanation |
A DFW policy or subpolicy was created. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The DFW policy already exists. · The DFW policy name cannot exceed 255 characters. · The DFW policy description cannot exceed 255 characters. · The policy type is required. · The default action is required. · The default action is invalid. · Unknown error. |
Update DFW policy
|
Keyword |
UPDATE_DFW_POLICY_OP |
|
Message text |
Updated DFW policy “$1”. |
|
Variable fields |
$1: DFW policy or subpolicy name. |
|
Example |
Updated DFW policy “policy1”. |
|
Explanation |
A DFW policy or subpolicy was modified. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Invalid DFW policy ID. · The DFW policy does not exist. · The DFW policy name cannot exceed 255 characters. · The DFW policy description cannot exceed 255 characters. · The default action is invalid. · Unknown error. |
Delete DFW policy
|
Keyword |
DELETE_DFW_POLICY_OP |
|
Message text |
Deleted DFW policy “$1”. |
|
Variable fields |
$1: DFW policy or subpolicy name. |
|
Example |
Deleted DFW policy “policy1”. |
|
Explanation |
A DFW policy or subpolicy was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · The DFW subpolicy cannot be deleted because it is in used. · Unknown error. |
Create DFW policy rule
|
Keyword |
CREATE_DFW_POLICY_RULE_OP |
|
Message text |
Created DFW policy rule “$1”. |
|
Variable fields |
$1: DFW policy or subpolicy rule name. |
|
Example |
Created DFW policy rule “rule1”. |
|
Explanation |
A DFW policy or subpolicy rule was created. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · Invalid policy rule ID. · The policy rule already exists. · The specified subpolicy does not exist. · You cannot specify a subpolicy for the subpolicy rule. · Invalid action. · The policy rule number is out of range. · The specified policy or subpolicy does not exist. · The policy rule name cannot exceed 255 characters. · The source IP is invalid. · The destination IP is invalid. · The IP set does not exist. · The source IP and the source IP set cannot be both configured. · The Net&Port IP set and protocol cannot be configured at the same time. · The Net&Port IP set and port range cannot be configured at the same time. · The source IP set port direction is invalid. · Cannot configure the port direction for a NET IP set. · The destination IP and the destination IP set cannot be both configured. · The destination IP set port direction is invalid. · The ICMP type is required. · Invalid ICMP type. · Invalid ICMP code. · The ICMP protocol type and port range cannot be configured at the same time. · The ICMP protocol type and TCP flag check or match cannot be configured at the same time. · The tcp flag match and check must be configured at the same time. · The TCP flag check is invalid. · The TCP flag match is invalid. · The TCP flag match parameter is not a TCP flag check parameter. · The UDP protocol type and ICMP flag cannot be configured at the same time. · The UDP protocol type and TCP flag cannot be configured at the same time. · The protocol type is invalid. · The protocol type is required. · Invalid port number range. · Invalid port number. · The start port number cannot be greater than the end port number. · Invalid state. · The new DFW policy rule conflicts with another rule. · Unknown error. |
Delete DFW policy rule
|
Keyword |
DELETE_DFW_POLICY_RULE_OP |
|
Message text |
Deleted DFW policy rule “$1”. |
|
Variable fields |
$1: DFW policy or subpolicy rule name. |
|
Example |
Deleted DFW policy rule “rule1”. |
|
Explanation |
A DFW policy or subpolicy rule was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · The rule does not belong to any DFW policy. · Unknown error. |
Create DFW IP set
|
Keyword |
CREATE_DFW_IPSET_OP |
|
Message text |
Created DFW IP set “$1”. |
|
Variable fields |
$1: DFW IP set name. |
|
Example |
Created DFW IP set “set1”. |
|
Explanation |
A DFW IP set was created. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The IP set ID is invalid. · The IP set already exists. · The IP set name cannot exceed 255 characters. · The IP set type is invalid. · The maximum number of IP set rules is invalid. · Unknown error. |
Update DFW IP set
|
Keyword |
UPDATE_DFW_IPSET_OP |
|
Message text |
Updated DFW IP set “$1”. |
|
Variable fields |
$1: DFW IP set name. |
|
Example |
Updated DFW IP set “set1”. |
|
Explanation |
A DFW IP set was modified. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The IP set ID is required. · The IP set does not exist. · The IP set name cannot exceed 255 characters. · Unknown error. |
Delete DFW IP set
|
Keyword |
DELETE_DFW_IPSET_OP |
|
Message text |
Deleted DFW IP set “$1”. |
|
Variable fields |
$1: DFW IP set name. |
|
Example |
Deleted DFW IP set “set1”. |
|
Explanation |
A DFW IP set was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · The IP set is used by a policy rule. · Unknown error. |
Create DFW IP set rule
|
Keyword |
CREATE_DFW_IPSET_RULE_OP |
|
Message text |
Created DFW IP set rule “$1”. |
|
Variable fields |
$1: DFW IP set rule name. |
|
Example |
Created DFW IP set rule “rule1”. |
|
Explanation |
A DFW IP set rule was created. |
|
Possible failure causes |
· The request is invalid. · The controller is not the active leader. · Configuration recovery is in progress. · The IP set rule ID is invalid. · The IP set rule already exists. · The IP set ID is required. · The IP set does not exist. · The CIDR is required. · Invalid CIDR. · The ICMP type is required. · The ICMP code is required. · Invalid ICMP type. · Invalid ICMP code. · The protocol type is invalid. · You cannot specify a protocol type for a Net IP set. · The IP set rule overlaps with another rule. · The number of IP set rules exceeds the limit. · Unknown error. |
Delete DFW IP set rule
|
Keyword |
DELETE_DFW_IPSET_RULE_OP |
|
Message text |
Deleted DFW IP set rule “$1”. |
|
Variable fields |
$1: DFW IP set rule name. |
|
Example |
Deleted DFW IP set rule “rule1”. |
|
Explanation |
A DFW IP set rule was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Unknown error. |
Created static link
|
Keyword |
CREATE_STATICLINK_OP |
|
Message text |
Created static link “$1”. |
|
Variable fields |
$1: Name of the static link. |
|
Example |
Created static link “link1”. |
|
Explanation |
A static link was created. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The request is invalid. · The system name is required. · The system name cannot exceed 255 characters. · The device IP is required. · The device IP is invalid. · The abbreviated access port name is required. · The abbreviated access port name cannot exceed 255 characters. · The static link already exists. · The netoverlay host contains duplicate static link. · Unknown error. |
Deleted static link
|
Keyword |
DELETE_STATICLINK_OP |
|
Message text |
Deleted static link “$1”. |
|
Variable fields |
$1: Name of the static link. |
|
Example |
Deleted static link “link1”. |
|
Explanation |
A static link was deleted. |
|
Possible failure causes |
· The controller is not the active leader. · Configuration recovery is in progress. · The specified resource doesn't exist. · Unknown error. |
ZTP
This section contains zero touch provisioning (ZTP) messages.
Create provisioning
|
Keyword |
ADD_PROVISIONING_OP |
|
Message text |
Created provisioning: $1 |
|
Variable fields |
$1: Provisioning information. |
|
Example |
Created provisioning: MAC address: 02:6f:56:3e:2a:62, device ID: 02:6f:56:3e:2a:62, IP address: 192.168.2.2, subnet mask:255.255.255.0, configuration file: tt.cfg, description: switch |
|
Explanation |
A provisioning was created. |
|
Possible failure causes |
· ZTP license was required. · The controller was not the active leader. · The DHCP server was not installed. · The zero touch provisioning service was starting up. · Permission limit. · Incorrect IP address. · The MAC address was already used. · The device ID was already used. · The IP address was already used. · Failed to modify the DHCP configuration file. · Incorrect MAC address. · Incorrect subnet mask. · Incorrect device configuration file name. · The start IP, end IP, and gateway IP were not in the same subnet. |
Modify provisioning
|
Keyword |
MODIFY_PROVISIONING_OP |
|
Message text |
Modified provisioning: $1 |
|
Variable fields |
$1: Provisioning information. |
|
Example |
Modified provisioning: MAC address: 02:6f:56:3e:2a:62, device ID: 02:6f:56:3e:2a:63, IP address: 192.168.5.6, subnet mask:255.255.255.0,configuration file: xx.cfg, description: switch2 |
|
Explanation |
A provisioning was modified. |
|
Possible failure causes |
· ZTP license was required. · The controller was not the active leader. · The DHCP server was not installed. · The zero touch provisioning service was starting up. · Permission limit. · Incorrect IP address. · The provisioning didn't exist. · The device ID was already used. · The IP address was already used. · Failed to modify the DHCP configuration file. · Incorrect MAC address. · Incorrect subnet mask. · Incorrect device configuration file name. |
Delete provisioning
|
Keyword |
DELETE_PROVISIONING_OP |
|
Message text |
Deleted provisioning: $1 |
|
Variable fields |
$1: Provisioning information. |
|
Example |
Deleted provisioning: MAC address: 02:6f:56:3e:2a:62 |
|
Explanation |
A provisioning was deleted. |
|
Possible failure causes |
· The controller was not the active leader. · The DHCP server was not installed. · The zero touch provisioning service was starting up. · Permission limit. · The provisioning didn't exist. · Failed to modify the DHCP configuration file. · Incorrect MAC address. |
Create address pool
|
Keyword |
CREATE_ZTP_POOL_OP |
|
Message text |
Created address pool: $1 |
|
Variable fields |
$1: Address pool information. |
|
Example |
Created address pool: IP range: 5.2.2.2-5.2.2.188, subnet mask: 255.255.0.0, gateway: 5.2.2.1 |
|
Explanation |
An address pool was created. |
|
Possible failure causes |
· ZTP license was required. · The controller was not the active leader. · The DHCP server was not installed. · The zero touch provisioning service was starting up. · Permission limit. · Incorrect IP address. · Incorrect gateway IP address. · The number of address pools exceeded the upper limit (125). · The address pool overlapped with the existing address pools. · Failed to modify the DHCP configuration file. · Incorrect subnet mask. · Incorrect IP address range. |
Delete address pool
|
Keyword |
DELETE_ZTP_POOL_OP |
|
Message text |
Deleted address pool: $1 |
|
Variable fields |
$1: Address pool information. |
|
Example |
Deleted address pool: IP range: 5.2.2.2-5.2.2.188 |
|
Explanation |
An address pool was deleted. |
|
Possible failure causes |
· The controller was not the active leader. · The DHCP server was not installed. · The zero touch provisioning service was starting up. · Permission limit. · The address pool didn't exist. · Failed to modify the DHCP configuration file. · Incorrect IP address. · Incorrect IP address range. |
Modify file server address
|
Keyword |
MODIFY_FILESERVER_OP |
|
Message text |
Modified file server address: $1 |
|
Variable fields |
$1: IP address of the local file server or URL of a third-party file server. |
|
Example |
Modified file server address: 192.168.1.3 Modified file server address: tftp://192.168.1.3/ |
|
Explanation |
The file server address was modified. |
|
Possible failure causes |
· ZTP license was required. · The controller was not the active leader. · The DHCP server was not installed. · The zero touch provisioning service was starting up. · Permission limit. · Incorrect third-party file server address. · Failed to modify the DHCP configuration file. · Incorrect IP address. |
Upload DHCP configuration file
|
Keyword |
UPLOAD_DHCP_CONF_OP |
|
Message text |
Uploaded DHCP configuration file |
|
Variable fields |
N/A |
|
Example |
Uploaded DHCP configuration file |
|
Explanation |
A DHCP configuration file was uploaded. |
|
Possible failure causes |
· ZTP license was required. · The controller was not the active leader. · The DHCP server was not installed. · The zero touch provisioning service was starting up. · Permission limit. · Incorrect DHCP configuration file name. · Incorrect configuration format existed in the DHCP configuration file. · The device ID was already used. · The MAC address was already used. · The IP address was already used. · The address pool overlapped with the existing address pools. · The number of address pools exceeded the upper limit (125). · Failed to modify the DHCP configuration file. · Incorrect IP address. |
Upload device configuration file
|
Keyword |
UPLOAD_CFGGC_OP |
|
Message text |
Uploaded device configuration file |
|
Variable fields |
N/A |
|
Example |
Uploaded device configuration file |
|
Explanation |
A configuration file (.cfg) for physical network devices was uploaded through single-node provisioning. |
|
Possible failure causes |
· ZTP license was required. · Permission limit. · Incorrect device configuration file name. · Failed to save the device configuration file. |
Upload device configuration file
|
Keyword |
UPLOAD_CFGSC_OP |
|
Message text |
Uploaded device configuration file |
|
Variable fields |
N/A |
|
Example |
Uploaded device configuration file |
|
Explanation |
A configuration file (.cfg) for physical network devices was uploaded through multi-node provisioning. |
|
Possible failure causes |
· ZTP license was required. · Permission limit. · Incorrect device configuration file name. · Failed to save the device configuration file. |
Upload device configuration file
|
Keyword |
UPLOAD_CFGZIP_OP |
|
Message text |
Uploaded device configuration file |
|
Variable fields |
N/A |
|
Example |
Uploaded device configuration file |
|
Explanation |
A ZIP file containing configuration files for physical network devices was uploaded. |
|
Possible failure causes |
· ZTP license was required. · Permission limit. · Incorrect device configuration file name. · Failed to save the device configuration file. |
Apply DHCP configuration
|
Keyword |
ACTIVATE_OPENDHCP_OP |
|
Message text |
Applied DHCP configuration |
|
Variable fields |
N/A |
|
Example |
Applied DHCP configuration |
|
Explanation |
The DHCP configuration was applied. |
|
Possible failure causes |
· The controller was not the active leader. · The DHCP server was not installed. · The zero touch provisioning service was starting up. · Permission limit. |
