CLI Add-On Feature Templates - Cisco
CLI Add-On Feature TemplatesTable 1: Feature History TableFeature NameRelease InformationDescriptionCLI Add-On Feature TemplatesCisco IOS XE Release 17.2.1rThis feature adds a new featuretemplate called the CLI add-onfeature template. You can use thisfeature template to attach specificCLI configurations to a device. Ifa configuration cannot be specifiedusing Cisco vManage but can beconfigured using the CLI on thedevice, then you can use thisfeature template to specify suchconfigurations. You can also useCLI add-on feature templates to addsmall pieces of CLI configuration,instead of an entire runningconfiguration.Cisco vManage 20.1.1This feature is not intended toreplace existing feature templatesbut instead to enhance theirfunctionality. Note that not all CLIsare supported. For moreinformation, see Qualified CLIs forCisco IOS XE Release 17.2.1r, onpage 3.Additional Commands Qualified Cisco IOS XE Release Amsterdam With each release, we qualifyfor CLI Add-On Feature Templates 17.2.1vcommands for use with the CLIadd-on feature templates feature.Cisco SD-WAN Release 20.1.12In this release, we qualifiedadditional commands as describedin Qualified CLIs for Cisco IOS XERelease Amsterdam 17.2.1v, onpage 5.CLI Add-On Feature Templates1
CLI Add-On Feature TemplatesOverview of the CLI Add-On Feature Templates Overview of the CLI Add-On Feature Templates, on page 2 Restrictions for CLI Add-On Feature Templates, on page 2 Create a CLI Add-On Feature Template, on page 3 Qualified CLIs for CLI Add-On Feature Templates, on page 3Overview of the CLI Add-On Feature TemplatesIf you attach a device template containing both a feature template and the new CLI add-on feature template,the configurations are merged. The merge gives priority to the new CLI add-on feature templates. CiscovManage first generates the configurations based on the feature template. After the configuration is generated,it uses the configuration from the CLI add-on feature templates to merge it into the feature template configoutput that was previously generated. Hence, using this feature, you can add specific device configurationsthat are not provided by the existing feature templates or you can override the configurations of existing featuretemplates.When you specify commands using the template, use the commands as per the syntax displayed in the showsdwan running-config output. When you attach the template to the device, Cisco vManage takes theinformation from all feature templates and also takes the data you specified using the CLI add-on featuretemplate to create the device configuration. The commands that you specify in the CLI add-on feature templateoverwrites any equivalent commands in the corresponding feature template.In addition to changing existing commands, the CLI add-on feature template can also be used to specifycommands that are not available in Cisco vManage but are supported by the device. For example, for CiscoAAA, the attempts login command is not available in Cisco vManage. By using a CLI add-on featuretemplate, you can specify the aaa authentication attempts login number command for a device. Afteryou create the feature template, ensure that you add it to the device template.NoteYou must define the CLI add-on feature template before you use it in a device template.For a list of CLIs that are qualified, see Qualified CLIs for CLI Add-On Feature Templates, on page 3.Restrictions for CLI Add-On Feature TemplatesThe following restrictions apply when using the CLI add-on feature templates: This feature is only supported on Cisco IOS XE SD-WAN devices running Cisco IOS XE Release 17.2.1ror onwards. Ensure that you only use configuration commands as they appear in the output of the show sdwanrunning-config command. Before using a command in the CLI add-on feature template, verify thecommand by logging in and running it on the intended device. For a list of supported commands when using CLI add-on feature templates, see Qualified CLIs for CLIAdd-On Feature Templates, on page 3.CLI Add-On Feature Templates2
CLI Add-On Feature TemplatesCreate a CLI Add-On Feature TemplateCreate a CLI Add-On Feature TemplateTo create a CLI add-on feature template, do the following:1.Navigate to Configuration Templates2.Click the Feature tab.3.Click Add Template,4.Under the Select Devices pane, select the devices for which you are creating the template.5.Under the Select Template pane, scroll down to the Other Templates section.6.Click CLI Add-On Template.7.In the Template Name field, enter a name for the feature template. This field is mandatory and cancontain only uppercase and lowercase letters, the digits 0 through 9, hyphens (-), and underscores ( ).It cannot contain spaces or any other characters.8.In the Description field, enter a description for the device template. This field is mandatory, and it cancontain any characters and spaces.9.In the CLI Configuration box, enter the configuration either by typing it, cutting and pasting it, oruploading a file.10.To convert an actual configuration value to a variable, select the value and click Create Variable. Enterthe variable name, and click Create Variable. You can also type the variable name directly, in theformat {{variable-name}}. For example: {{hostname}}.11.Click Save. The new feature template is displayed the Feature Template table.12.To use the CLI add-on feature template, edit the device template as follows:a. In the Templates page, click the Device tab.b. Select the device template for which you want to add the CLI add-on feature template.c. Click the More Actions icon to the right of the row and click Edit.d. Scroll to the Additional Templates section.e. In the CLI Add-On Template field, select the CLI add-on feature template that you previouslycreated.f.Click Update.Qualified CLIs for CLI Add-On Feature TemplatesQualified CLIs for Cisco IOS XE Release 17.2.1rThis section lists the CLIs that are qualified for the CLI add-on feature templates in Cisco IOS XE Release17.2.1r.CLI Add-On Feature Templates3
CLI Add-On Feature TemplatesQualified CLIs for Cisco IOS XE Release 17.2.1rCisco AAA Commandsaaa group server tacacs tacacs-511server-private 172.16.0.1 key 7 110a1016141dip vrf forwarding 511!aaa authentication attempts login 5aaa authentication login default group tacacs-511aaa authentication enable default group tacacs-511 enableaaa authorization config-commandsaaa authorization exec default group tacacs-511 local noneaaa authorization commands 0 default group tacacs-511 local noneaaa authorization commands 1 default group tacacs-511 local noneaaa authorization commands 2 default group tacacs-511 local noneaaa authorization commands 3 default group tacacs-511 local noneaaa authorization commands 4 default group tacacs-511 local noneaaa authorization commands 5 default group tacacs-511 local noneaaa authorization commands 6 default group tacacs-511 local noneaaa authorization commands 7 default group tacacs-511 local noneaaa authorization commands 8 default group tacacs-511 local noneaaa authorization commands 9 default group tacacs-511 local noneaaa authorization commands 10 default group tacacs-511 local noneaaa authorization commands 11 default group tacacs-511 local noneaaa authorization commands 12 default group tacacs-511 local noneaaa authorization commands 13 default group tacacs-511 local noneaaa authorization commands 14 default group tacacs-511 local noneaaa authorization commands 15 default group tacacs-511 local noneaaa authorization network default localaaa accounting exec default start-stop group tacacs-511aaa accounting commands 0 default start-stop group tacacs-511aaa accounting commands 1 default start-stop group tacacs-511aaa accounting commands 2 default start-stop group tacacs-511aaa accounting commands 3 default start-stop group tacacs-511aaa accounting commands 4 default start-stop group tacacs-511aaa accounting commands 5 default start-stop group tacacs-511aaa accounting commands 6 default start-stop group tacacs-511aaa accounting commands 7 default start-stop group tacacs-511aaa accounting commands 8 default start-stop group tacacs-511aaa accounting commands 9 default start-stop group tacacs-511aaa accounting commands 10 default start-stop group tacacs-511aaa accounting commands 11 default start-stop group tacacs-511aaa accounting commands 12 default start-stop group tacacs-511aaa accounting commands 13 default start-stop group tacacs-511aaa accounting commands 14 default start-stop group tacacs-511aaa accounting commands 15 default start-stop group tacacs-511aaa accounting connection default start-stop group tacacs-511aaa accounting system default start-stop group tacacs-511Cisco BGP Commandsrouter bgp 64496neighbor 10.0.0.1 remote-as 64496bgp graceful-restartneighbor 10.0.0.1 ha-mode graceful-restart disable!router bgp 64496address-family ipv4 unicast vrf 1redistribute ompredistribute staticredistribute connected!CLI Add-On Feature Templates4
CLI Add-On Feature TemplatesQualified CLIs for Cisco IOS XE Release Amsterdam 17.2.1vrouter bgp 64496address-family ipv6 unicast vrf 1redistribute ompredistribute staticredistribute connected!policy-map PMapclass PMap-super-fastpriority level 1police percent 5class PMap-fastpriority level 2police percent 5policy-map generic-cosclass cos-map-genericbandwidth remaining percent 5queue-limit 108 packetsclass class-defaultbandwidth remaining percent 95queue-limit 2028 packetsIP Commandsip dns serverip host vrf 1 test 1 192.168.0.{{variable1}}ip host vrf 1 test 2 192.168.0.{{variable2}}Privilege Exec Show loggingsdwan control connectionssdwan bfd sessionssdwan systemQualified CLIs for Cisco IOS XE Release Amsterdam 17.2.1vThis section lists the CLIs that are qualified for the CLI add-on feature templates in Cisco IOS XE ReleaseAmsterdam 17.2.1v.ACL Commandsip access-list extended acl 111 permit object-group employee 1 any any!AppNav Commandsservice-insertion appnav-controller-group scgappnav-controller 192.3.3.1 vrf 2appnav-controller 192.3.3.2 vrf 2!service-insertion service-node-group acg1service-node 192.3.3.3!service-insertion service-context waas/1appnav-controller-group scgCLI Add-On Feature Templates5
CLI Add-On Feature TemplatesQualified CLIs for Cisco IOS XE Release Amsterdam e!service-insertion waas interface Tunnel2service-insertion waas interface Tunnel3!AppQoE Commandsappqoeno tcpopt enableBridge Domain Commandsbridge-domain 10ip igmp snooping check rtr-alert-optionip igmp snooping check ttlip igmp snooping immediate-leaveip igmp snooping last-member-query-count 1ip igmp snooping last-member-query-interval 100ip igmp snooping report-suppressionip igmp snooping robustness-variable 1ip igmp snooping queriermac aging-time 1000mac learningmac limit action flooding disablemac limit maximum addresses 10BFD Commandsbfd color mplshello-interval 300000no pmtu-discoverymultiplier60!bfd color ltehello-interval 300000pmtu-discoverymultiplier60!bfd color 3ghello-interval 300000no pmtu-discoverymultiplier60!bfd app-route multiplier 6bfd app-route poll-interval 4294967295Cisco BGP Commandsrouter bgpaddress-family no-vrf ipv4address-family no-vrf ipv6address-family with-vrf ipv4address-family with-vrf ipv6bgp always-compare-medbgp bestpath as-path multipath-relaxbgp bestpath med missing-as-worstbgp deterministic-medbgp graceful-restartCLI Add-On Feature Templates6
CLI Add-On Feature TemplatesQualified CLIs for Cisco IOS XE Release Amsterdam 17.2.1vbgp bestpath compare-routeridbgp log-neighbor-changesbgp router-idneighbordistance bgp extern-asdistance bgp internal-asdistance bgp localmaximum-paths eibgptimers bgp holdtimetimers bgp keepalive-intervalneighbor dns-address1 remote-as 999999999neighbor dns-address1 description test neighbor 2neighbor dns-address1 activateneighbor dns-address1 ebgp-multihop 255neighbor dns-address1 password 7 00141215174C04140B1E1Eneighbor dns-address1 shutdownneighbor dns-address1 timers 65534 65535neighbor dns-address2 remote-as 999999neighbor dns-address2description test neighbor 1neighbor dns-address2ebgp-multihop 255neighbor dns-address2 password 7 13151601181B0B382F1B7Aneighbor dns-address2 shutdownneighbor dns-address2 timers 65534 65535neighbor 10.228.0.129 remote-as 999999999neighbor 10.228.0.129 advertise-map ADVERTISE non-exist-map NON-EXISTneighbor 10.228.0.129 ha-mode graceful-restart disablepropagate-aspathaddress-family ipv4 unicast vrf 1redistribute connectedredistribute ompredistribute staticexit-address-family!address-family ipv6 unicast vrf 1redistribute connectedredistribute ompredistribute family ipv4 unicastaggregate-address 192.168.51.0 255.255.255.0 as-set summary-onlyaggregate-address 192.168.52.0 255.255.255.0 as-set summary-onlyneighbor 10.0.0.1 advertise-map ADVERTISE non-exist-map NON-EXISTneighbor dns-address1 remote-as 999999999neighbor dns-address1 activateneighbor dns-address1 advertisement-interval 600neighbor dns-address1 maximum-prefix 2147483647 100neighbor dns-address1 maximum-prefix 769434 100 restart 65535neighbor dns-address1 next-hop-selfneighbor dns-address1 send-community bothneighbor dns-address2 remote-as 999999neighbor dns-address2 activateneighbor dns-address2 advertisement-interval 600neighbor dns-address2 maximum-prefix 98765 100 restart 65535neighbor dns-address2 next-hop-selfneighbor dns-address2 route-map route map name neighbor dns-address2 send-community bothneighbor dns-address2 timers 3 9network dns-address2 mask 255.255.255.0network 192.168.51.0 mask 255.255.255.0network 192.168.52.0 mask 255.255.255.0exit-address-family!CLI Add-On Feature Templates7
CLI Add-On Feature TemplatesQualified CLIs for Cisco IOS XE Release Amsterdam 17.2.1vtimers bgp 60 180!Class Map Commandsclass-map match-any BestEffortmatch qos-group 3!class-map match-any Bulkmatch qos-group 4!class-map match-any Criticalmatch qos-group 1!class-map match-any Critical-Lowmatch qos-group 2!class-map match-any BULKmatch qos-group 2!class-map match-any CONTROL-SIGNALINGmatch qos-group 4!class-map match-any CRITICAL-DATAmatch qos-group 1!class-map match-any Defaultmatch qos-group 5!class-map match-any INTERACTIVE-VIDEOmatch qos-group 3!class-map match-any LLQmatch qos-group 0!class-map match-any Queue0match qos-group 0!class-map match-any Queue1match qos-group 1!class-map match-any Queue2match qos-group 2!class-map match-any Queue3match qos-group 3!class-map match-any Queue4match qos-group 4!class-map match-any Queue5match qos-group 5!class-map type inspect match-all cmapmatch access-group name cmap!class class-defaultpass!class-map match-any Queue4match qos-group 0!CLI Add-On Feature Templates8
CLI Add-On Feature TemplatesQualified CLIs for Cisco IOS XE Release Amsterdam 17.2.1vCrypto Commandscrypto ikev2 authorization policy li policyexitno crypto ikev2 diagnose errorcrypto ikev2 keyring if-ipsec256-ikev2-keyringpeer if-ipsec256-ikev2-keyring-peeraddress 172.16.93.1pre-shared-key cisco123!!crypto ikev2 policy policy1-globalproposal p1-global!crypto ikev2 profile if-ipsec256-ikev2-profileaaa authorization group psk list default li policyauthentication local pre-shareauthentication remote pre-shareno config-exchange requestkeyring local if-ipsec256-ikev2-keyringlifetime 86400match identity remote address 172.16.93.2!crypto ikev2 proposal p1-globalencryption aes-cbc-128 aes-cbc-256group 14 15 16 2integrity sha1 sha256 sha384 sha512!!crypto ipsec exclude peer-list ipv4 172.16.93.2crypto ipsec transform-set if-ipsec256-ikev2-transform esp-gcm 256mode tunnel!crypto ipsec profile if-ipsec256-ipsec-profileset ikev2-profile if-ipsec256-ikev2-profileset pfs group16set transform-set if-ipsec256-ikev2-transformset security-association lifetime kilobytes disableset security-association lifetime seconds 3600set security-association replay window-size 512!no crypto isakmp diagnose errorcrypto isakmp aggressive-mode disableparameter-map type inspect-globalalert onlog dropped-packetsmulti-tenancyvpn zone security!no crypto ikev2 diagnose errorno crypto isakmp diagnose errorEIGRP Commandsrouter eigrp eigrp-nameaddress-family ipv4 vrf {{SVPN}} autonomous-system {{SVPN}}af-interface {{LAN EIGRP INT1 name}}no dampening-changeno dampening-intervalhello-interval rface {{LAN EIGRP INT2 name}}CLI Add-On Feature Templates9
CLI Add-On Feature TemplatesQualified CLIs for Cisco IOS XE Release Amsterdam 17.2.1vno dampening-changeno dampening-intervalhello-interval 5hold-time15split-horizonexit-af-interface!{{LAN EIGRP neighbor1 tf}} neighbor {{LAN EIGRP neighbor1 ip addr}}{{LAN EIGRP neighbor1 src int}}{{LAN EIGRP neighbor2 tf}} neighbor {{LAN EIGRP neighbor2 ip addr}}{{LAN EIGRP neighbor2 src int}}{{LAN EIGRP neighbor3 tf}} neighbor {{LAN EIGRP neighbor3 ip addr}}{{LAN EIGRP neighbor3 src int}}{{LAN EIGRP neighbor4 tf}} neighbor {{LAN EIGRP neighbor4 ip addr}}{{LAN EIGRP neighbor4 src int}}{{LAN EIGRP neighbor5 tf}} neighbor {{LAN EIGRP neighbor5 ip addr}}{{LAN EIGRP neighbor5 src int}}network {{LAN EIGRP INT1 linknet}}network {{LAN EIGRP INT2 linknet}}topology baseredistribute omp metric 1000000 255 1 1500redistribute staticexit-af-topology!exit-address-family!!Global Configuration Commandsmemory free low-watermark processor 70694platform punt-keepalive disable-kernel-coreno service padno service tcp-small-serversno service udp-small-serversplatform console virtualplatform qfp utilization monitor load 80platform punt-keepalive disable-kernel-corehostname myorgusername admin privilege 15 secretusernameusername employee1 privilegeusername employee1 secret encryptionusername employee1 secret secretclock timezone UTClogging monitorlogging persistentlogging persistent size 104857600 filesize 10485760logging bufferedlogging consolelogging trap errorslogging rate-limitlogging host 10.90.9.6 vrf 4logging source-interface loopback111 vrf 4login on-success logno crypto ikev2 diagnose errorno crypto isakmp diagnose errorcrypto pki trustpoint TP-self-signed-3865005142enrollment selfsignedrevocation-check nonesubject-namecn IOS-Self-Signed-Certificate-3865005142line con 0login authentication defaultspeed9600CLI Add-On Feature Templates10
CLI Add-On Feature TemplatesQualified CLIs for Cisco IOS XE Release Amsterdam 17.2.1vstopbits 1!login authentication defaultspeed19200stopbits 1line vty 0 4transport input sshline vty 5 80transport input ssh!mac address-table aging-time timeout !md-list 192.168.200.1lldp runnacm cmd-read-default denynacm cmd-exec-default denynetconf-yang cisco-ia blocking cli-blocking-enabledInterface GigabitEthernet Commandsno shutdownarp timeoutip address 192.10.6.5vrf forwarding vrf10ip address dhcp client-id GigabitEthernet1no ip redirectsip mtumtuip nat outsideip ospf 65535 area 1ip ospf authentication message-digestip ospf networkbroadcastip ospf costip ospf dead-intervalip ospf hello-intervalip ospf message-digest-key 255 md5 7 00051105005E0D01072846ip ospf priorityip ospf retransmit-intervalnegotiation autoservice-policy output policy 1ip tcp adjust-mss 1100cdp enableip nat outsidebandwidth 100000vrrp 64 address-family ipv4vrrpv2track 2 shutdownaddress 10.50.4.3 primarypriority 11timers advertise 1000interface GigabitEthernet1.101no shutdownencapsulation dot1Q 101vrf forwarding 2ip address 192.168.66.1no ip redirectsip directed-broadcastip mtu1496ipv6 address 2001:DB8::1ipv6 enableip nbar protocol-discoveryip policy route-map policy 1CLI Add-On Feature Templates11
CLI Add-On Feature TemplatesQualified CLIs for Cisco IOS XE Release Amsterdam 17.2.1vip helper-address 10.8.4.5ip helper-address 10.50.4.6tunnel-interfaceencapsulation gre weight 1encapsulation ipsec weight 1no bordercolor lteno last-resort-circuitno controller-group-list 1no vbond-as-stun-servervmana
crypto ikev2 proposal p1-global encryption aes-cbc-128 aes-cbc-256 group 14 15 16 2 integrity sha1 sha256 sha384 sha512!!crypto ipsec exclude peer-list ipv4 172.16.93.2 crypto ipsec transform-set if-ipsec256-ikev2-transform esp-gcm 256 mode tunnel! crypto ipsec profile if-ipsec256-ipsec-pr
AWS CLI Cheat sheet - List of All CLI commands Setup Install AWS CLI AWS CLI is an common CLI tool for managing the AWS resources. With this single tool we can manage all the aws resources sudo apt-get install -y python-dev python-pip sudo pip install awscli aws --version aws configure Bash one-liners cat file # output a file
Commands for Analytics developers. Help for Salesforce CLI Commands The -h --help parameter shows details about Salesforce CLI topics and their commands. CLI Deprecation Policy Salesforce deprecates CLI commands and parameters when, for example, the underlying API changes. analytics Namespace Commands for Analytics developers. analytics:enable
Generating and serving an Angular project via a development server 2 Angular CLI - The Basic Steps 3 Chapter 2: angular-cli project deployment on apache tomcat 8.0.14 server 4 Introduction 4 Examples 4 Neccessary steps taken before deploying the angular-cli project for production build. 4 Angular-cli build command to build project bundle for .
JSON Templates for CLI Migration of vCenter Server for Windows 139 About Migrating a vCenter Server for Windows with an External Platform Services Controller Using the CLI 141 Migration Configuration Parameters 143 Run a Pre-Check Before a CLI Migration to vCenter Server Appliance 155 Perform a CLI Migration of vCenter Server from Windows to an .
Cisco MDS 9509 CLI MDS 9000 CLI Cisco IOS CLI Cisco MDS 9000 CLI Cisco Fabric Manager Java Cisco Fabric Manager Cisco Fabric Manager API Supervisor Supervisor 1 1 SFP VSAN / 1/2Gbps 255 16 224 1/2Gbps 48 1
Cisco IOS XR Getting Started Guide for the Cisco CRS-1 Router OL-24754-01 6 CLI Tips, Techniques, and Shortcuts This chapter describes techniques for using the command-line interface (CLI) of the Cisco IOS XR software. Contents CLI Tips and Shortcuts, page 6-139 † Dis
Sep 20, 2021 · Mr Miguel Ko, Chairman of CLI, said: “Today’s listing of CLI marks yet another milestone in . Mr Lee Chee Koon, Group CEO of CLI, said: “The experience, network and track record of . responsible real estate company, CLI contributes to the environmental and social well-being of the communities where it operates, as it delivers long .
xiv. Overview. About the CLI Guide. 2. CLI Overview. 2. Introducing the Command-Line Interface. 3. CLI Modes, Commands, and Statement Hierarchies\204An Overview. 5. Other Tools to Configure and Monitor Juniper Networks Devices. 7. Configure Junos OS in a FIPS Environment. 7. Getting Start
