# RESTCONF

Exam Topics Covered:
5.2 Utilize RESTCONF to configure a network device including interfaces, static routes, and VLANs (IOS XE only)

## Overview

To determine the URL path, examine the ietf-interfaces YANG module. A utility called `pyang` can be used to view the model in tree format as shown below, using the command `pyang --format tree [module_filename]`.  The URL path will follow the format: https://{hostname}/restconf/data/{module}:{container}/{resource}.  Looking at the below YANG model, the module is `ietf-interfaces`, the container is `interfaces` and the resource is `interface`.  The `*` next to interface indicates that it is a leaf list, meaning there can be multiple interfaces.  In this case the path would be https://{hostname}/restconf/data/ietf-interfaces:interfaces/{interface}. 

When creating a new interface, the resource part of the URL is specified in the payload.  To create a new interface, we need to send a payload consisting of the following to https://{hostname}/restconf/data/ietf-interfaces:interfaces.  

```
{
  "interface": {
    "name": "Loopback101",
    "description": "Created by RESTCONF",
    "type": "iana-if-type:softwareLoopback",
    "enabled": True
}

```
The ? next to an attribute in the pyang tree indicates that the attribute is optional. 

When retrieving a specific interface, we can specify the `interface` resource in the URL path and match on the key which is denoted by `[name]` in the pyang tree output.  The path to retrieve interface Loopback101 would be https://{hostname}/restconf/data/ietf-interfaces:interfaces/interface=Loopback101.  

```
module: ietf-interfaces
  +--rw interfaces
  |  +--rw interface* [name]
  |     +--rw name                        string
  |     +--rw description?                string
  |     +--rw type                        identityref
  |     +--rw enabled?                    boolean
  |     +--rw link-up-down-trap-enable?   enumeration {if-mib}?
  |     +--ro admin-status                enumeration {if-mib}?
  |     +--ro oper-status                 enumeration
  |     +--ro last-change?                yang:date-and-time
  |     +--ro if-index                    int32 {if-mib}?
  |     +--ro phys-address?               yang:phys-address
  |     +--ro higher-layer-if*            interface-ref
  |     +--ro lower-layer-if*             interface-ref
  |     +--ro speed?                      yang:gauge64
  |     +--ro statistics
  |        +--ro discontinuity-time    yang:date-and-time
  |        +--ro in-octets?            yang:counter64
  |        +--ro in-unicast-pkts?      yang:counter64
  |        +--ro in-broadcast-pkts?    yang:counter64
  |        +--ro in-multicast-pkts?    yang:counter64
  |        +--ro in-discards?          yang:counter32
  |        +--ro in-errors?            yang:counter32
  |        +--ro in-unknown-protos?    yang:counter32
  |        +--ro out-octets?           yang:counter64
  |        +--ro out-unicast-pkts?     yang:counter64
  |        +--ro out-broadcast-pkts?   yang:counter64
  |        +--ro out-multicast-pkts?   yang:counter64
  |        +--ro out-discards?         yang:counter32
  |        +--ro out-errors?           yang:counter32
  x--ro interfaces-state
     x--ro interface* [name]
        x--ro name               string
        x--ro type               identityref
        x--ro admin-status       enumeration {if-mib}?
        x--ro oper-status        enumeration
        x--ro last-change?       yang:date-and-time
        x--ro if-index           int32 {if-mib}?
        x--ro phys-address?      yang:phys-address
        x--ro higher-layer-if*   interface-state-ref
        x--ro lower-layer-if*    interface-state-ref
        x--ro speed?             yang:gauge64
        x--ro statistics
           x--ro discontinuity-time    yang:date-and-time
           x--ro in-octets?            yang:counter64
           x--ro in-unicast-pkts?      yang:counter64
           x--ro in-broadcast-pkts?    yang:counter64
           x--ro in-multicast-pkts?    yang:counter64
           x--ro in-discards?          yang:counter32
           x--ro in-errors?            yang:counter32
           x--ro in-unknown-protos?    yang:counter32
           x--ro out-octets?           yang:counter64
           x--ro out-unicast-pkts?     yang:counter64
           x--ro out-broadcast-pkts?   yang:counter64
           x--ro out-multicast-pkts?   yang:counter64
           x--ro out-discards?         yang:counter32
           x--ro out-errors?           yang:counter32
```

## Manage Interface

In [117]:
import requests
import logging

logging.basicConfig(level=logging.INFO, format='%(levelname)s: %(message)s')
requests.packages.urllib3.disable_warnings()

# DevNet IOS XE Sandbox
api_path = "https://sandbox-iosxe-latest-1.cisco.com/restconf"

# DevNet Creds using HTTP Basic Authentication
auth = ("admin", "C1sco12345")

def create_intf(name: str):
    post_hdrs = {
        "Content-Type": "application/yang-data+json",
        "Accept": "application/yang-data+json, application/yang-data.errors+json"
    }

    # Headers for POST (interface creation)
    intf = {
        "interface":
        {
            "enabled": True,
            "name": name,
            "type": "iana-if-type:softwareLoopback"
        }
    }
    
    post_url = f"{api_path}/data/ietf-interfaces:interfaces"
    
    logging.info(f"Creating interface {name}...")
    resp = requests.post(post_url, auth=auth, headers=post_hdrs, verify=False, json=intf)
    
    logging.info(f"Status Code: {resp.status_code}, Reason: {resp.reason}\n")
    
def get_intf(name: str):
    # Headers for GET request
    get_hdrs = {"Accept": "application/yang-data+json"}
    get_url = f"{api_path}/data/ietf-interfaces:interfaces/interface={name}"
    logging.info(f"Get interface {name}...")
    resp = requests.get(get_url, auth=auth, headers=get_hdrs, verify=False)
    logging.info(str(resp.json()) + '\n')
    
def intf_state(name: str, enabled: bool):
    hdrs = {
        "Content-Type": "application/yang-data+json",
        "Accept": "application/yang-data+json, application/yang-data.errors+json"
    }
    url = f"{api_path}/data/ietf-interfaces:interfaces/interface={name}"
    payload = {
        "ietf-interfaces:interface": {
            "enabled": enabled
        }
    }
    if enabled:
        logging.info(f"Enabling interface {name}...")
    else:
        logging.info(f"Disabling interface {name}...")
    resp = requests.patch(url, auth=auth, headers=hdrs, verify=False, json=payload)
    logging.info(f"Status Code: {resp.status_code}, Reason: {resp.reason}\n")
    
def del_intf(name: str): 
    # Headers for DELETE request
    delete_hdrs = {"Accept": "application/yang-data+json"}
    delete_url = f"{api_path}/data/ietf-interfaces:interfaces/interface={name}"
    logging.info(f"Delete interface {name}...")
    resp = requests.delete(delete_url, auth=auth, headers=delete_hdrs, verify=False)
    
    logging.info(f"Status Code: {resp.status_code}, Reason: {resp.reason}\n")

   
if __name__ == "__main__":
    while True:
        print("1. Create Interface")
        print("2. Get Interface")
        print("3. Delete Interface")
        print("4. Disable Interface")
        print("5. Enable Interface")
        print("6. Quit")
        answer = input("Enter selection: ")
        if not answer == "6":
            intf_name = input("Interface name: ")
            if answer == "1":
                create_intf(intf_name)
            if answer == "2":
                get_intf(intf_name)
            if answer == "3":
                del_intf(intf_name)
            if answer == "4":
                intf_state(intf_name, enabled=False)
            if answer == "5":
                intf_state(intf_name, enabled=True)
        elif answer == "6":
            break
        else:
            "Invalid selection!"
    


1. Create Interface
2. Get Interface
3. Delete Interface
4. Disable Interface
5. Enable Interface
6. Quit
Enter selection: 1
Interface name: Loopback10103


INFO: Creating interface Loopback10103...
INFO: Status Code: 201, Reason: Created



1. Create Interface
2. Get Interface
3. Delete Interface
4. Disable Interface
5. Enable Interface
6. Quit


KeyboardInterrupt: Interrupted by user

## Manage Interface IP Addressing

To determine the URL path and request format, examine the `ietf-ip` YANG module. Since the `ietf-ip` module augments the `interfaces` module, the module, container, and resource are appended to the interface path.  The path then becomes https://hostname/restconf/data/ietf-interface:interfaces/interface=[ifname]/ietf-ip:ipv4/address.  

Using the example from the last section, to create an IP address on Loopback101, the URL would be https://hostname/restconf/data/ietf-interface/interfaces/interface=Loopback101/ietf-ip:ipv4/address. The payload would be:

```{
   "address":  
    { 
        "ip": ip_addr, 
        "netmask": netmask 
    } 
         
} 
```

```
module: ietf-ip 
  augment /if:interfaces/if:interface: 
    +--rw ipv4! 
    |  +--rw enabled?      boolean 
    |  +--rw forwarding?   boolean 
    |  +--rw mtu?          uint16 
    |  +--rw address* [ip] 
    |  |  +--rw ip                     inet:ipv4-address-no-zone 
    |  |  +--rw (subnet) 
    |  |     +--:(prefix-length) 
    |  |     |  +--rw prefix-length?   uint8 
    |  |     +--:(netmask) 
    |  |        +--rw netmask?         yang:dotted-quad {ipv4-non-contiguous-netmasks}? 
```



In [129]:
## import requests
import logging

logging.basicConfig(level=logging.INFO, format='%(levelname)s: %(message)s')
requests.packages.urllib3.disable_warnings()

# DevNet IOS XE Sandbox
api_path = "https://sandbox-iosxe-latest-1.cisco.com/restconf"

# DevNet Creds using HTTP Basic Authentication
auth = ("admin", "C1sco12345")

def assign_ip(if_name: str, ip_addr: str, netmask: str):
    hdrs = {
        "Content-Type": "application/yang-data+json",
        "Accept": "application/yang-data+json, application/yang-data.errors+json"
    }
    url = f"{api_path}/data/ietf-interfaces:interfaces/interface={if_name}/ietf-ip:ipv4/address"
    payload = { 
    "address":  
            { 
                "ip": ip_addr, 
                "netmask": netmask 
            } 
         
    } 

    logging.info(f"Assigning IP address {ip_addr} to {if_name}...")
    resp = requests.patch(url, auth=auth, headers=hdrs, verify=False, json=payload)
    logging.info(f"Status Code: {resp.status_code}, Reason: {resp.reason}\n")


def remove_ip(if_name: str, ip_addr: str):
    url = f"{api_path}/data/ietf-interfaces:interfaces/interface={if_name}/ietf-ip:ipv4/address={ip_addr}"
    hdrs = {
        "Content-Type": "application/yang-data+json",
        "Accept": "application/yang-data+json, application/yang-data.errors+json"
    }
    logging.info(f"Deleting IP address {ip_addr} from interface {if_name}")
    resp = requests.delete(url, auth=auth, headers=hdrs, verify=False)
    logging.info(f"Status Code: {resp.status_code}, Reason: {resp.reason}\n")

    
    
def update_ip(if_name: str, old_ip: str, new_ip: str, netmask: str):
    url = f"{api_path}/data/ietf-interfaces:interfaces/interface={if_name}/ietf-ip:ipv4/address={old_ip}"
      
    logging.info(f"Updating IP address {old_ip} on {if_name}...")
    remove_ip(if_name, old_ip)
    assign_ip(if_name, new_ip, netmask)

    
if __name__ == "__main__":
    while True:
        print("1. Assign IP Address")
        print("2. Update IP Address")
        print("3. Remove IP Address")
        print("4. Quit")
        answer = input("Enter selection: ")
        if not answer == "4":
            intf_name = input("Interface name: ")
            if answer == "1":
                ip_addr = input("IP Address: ")
                netmask = input("Subnet Mask: ")
                assign_ip(intf_name, ip_addr, netmask)
            if answer == "2":
                old_ip = input("Old IP: ")
                new_ip = input("New IP: ")
                netmask = input("Subnet Mask: ")
                update_ip(intf_name, old_ip, new_ip, netmask)
            if answer == "3":
                ip_addr = input("IP Address: ")
                remove_ip(intf_name, ip_addr)
        elif answer == "4":
            break
        else:
            "Invalid selection!"

1. Assign IP Address
2. Update IP Address
3. Remove IP Address
4. Quit
Enter selection: 1
Interface name: Loopback10103
IP Address: 6.6.6.6
Subnet Mask: 255.255.255.0


INFO: Assigning IP address 6.6.6.6 to Loopback10103...
INFO: Status Code: 204, Reason: No Content



1. Assign IP Address
2. Update IP Address
3. Remove IP Address
4. Quit
Enter selection: 3
Interface name: Loopback10103
IP Address: 6.6.6.6


INFO: Deleting IP address 6.6.6.6 from interface Loopback10103
INFO: Status Code: 204, Reason: No Content



1. Assign IP Address
2. Update IP Address
3. Remove IP Address
4. Quit
Enter selection: 3
Interface name: Loopback10103
IP Address: 5.5.5.5


INFO: Deleting IP address 5.5.5.5 from interface Loopback10103
INFO: Status Code: 204, Reason: No Content



1. Assign IP Address
2. Update IP Address
3. Remove IP Address
4. Quit


KeyboardInterrupt: Interrupted by user