gre_tunnel¶

The following methods allow for interaction with the ZIA Traffic GRE Tunnels API endpoints.

Methods are accessible via zia.gre_tunnel

Permission to use, copy, modify, and/or distribute this software for any purpose with or without fee is hereby granted, provided that the above copyright notice and this permission notice appear in all copies.

THE SOFTWARE IS PROVIDED “AS IS” AND THE AUTHOR DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.

class TrafficForwardingGRETunnelAPI¶

Bases: APIClient

A Client object for the Traffic Forwarding GRE Tunnel resources.

add_gre_tunnel(**kwargs)¶

Add a new GRE tunnel.

Note: If the primary_dest_vip and secondary_dest_vip aren’t specified then the closest recommended VIPs will be automatically chosen.

Parameters:

source_ip (str) – The source IP address of the GRE tunnel. This is typically a static IP address in the organisation or SD-WAN.
primary_dest_vip (str) – The unique identifier for the primary destination virtual IP address (VIP) of the GRE tunnel. Defaults to the closest recommended VIP.
secondary_dest_vip (str) – The unique identifier for the secondary destination virtual IP address (VIP) of the GRE tunnel. Defaults to the closest recommended VIP that isn’t in the same city as the primary VIP.

Keyword Arguments:

**comment (str) – Additional information about this GRE tunnel
**ip_unnumbered (bool) – This is required to support the automated SD-WAN provisioning of GRE tunnels, when set to true gre_tun_ip and gre_tun_id are set to null
**internal_ip_range (str) – The start of the internal IP address in /29 CIDR range.
**within_country (bool) – Restrict the data center virtual IP addresses (VIPs) only to those within the same country as the source IP address.

Returns:

The resource record for the newly created GRE tunnel.

Return type:

tuple

Examples

Add a GRE tunnel with explicit VIPs:

>>> added_tunnel, zscaler_resp, err = client.zia.gre_tunnel.add_gre_tunnel(
... source_ip='1.1.1.1',
... comment=f"NewGRETunnel{random.randint(1000, 10000)}",
... ip_unnumbered=False,
... primary_dest_vip={
...     "id":4681,
...     "virtual_ip": "199.168.148.131",
... },
... secondary_dest_vip={
...     "id":34283,
...     "virtual_ip": "147.161.246.38",
... }
... )
... if err:
...     print(f"Error adding tunnel: {err}")
...     print(f"Full Response: {zscaler_resp}")
...     return
... print(f"Tunnel added successfully: {added_tunnel.as_dict()}")

Add a GRE tunnel with implicit VIPs:

>>> added_tunnel, zscaler_resp, err = client.zia.gre_tunnel.add_gre_tunnel(
... source_ip='1.1.1.1',
... comment=f"NewGRETunnel{random.randint(1000, 10000)}",
... ip_unnumbered=False,
... )
... if err:
...     print(f"Error adding tunnel: {err}")
...     print(f"Full Response: {zscaler_resp}")
...     return
... print(f"Tunnel added successfully: {added_tunnel.as_dict()}")

delete_gre_tunnel(tunnel_id)¶

Delete the specified GRE Tunnel.

Parameters:: tunnel_id (int) – The unique identifier for the GRE Tunnel.
Returns:: A tuple containing the response object and error (if any).
Return type:: tuple

Examples

>>> _, _, err = client.zia.gre_tunnel.delete_gre_tunnel(updated_tunnel.id)
... if err:
...     print(f"Error deleting tunnel: {err}")
...     return
... print(f"Tunnel with ID {updated_tunnel.id} deleted successfully.")

get_closest_diverse_vip_ids(ip_address)¶

Returns the closest diverse Zscaler destination VIPs for a given IP address.

Parameters:: ip_address (str) – The IP address used for locating the closest diverse VIPs.
Returns:: Tuple containing the preferred and secondary VIP IDs.
Return type:: tuple

Examples

>>> closest_vips = zia.traffic.get_closest_diverse_vip_ids('203.0.113.20')

get_gre_tunnel(tunnel_id)¶

Returns information for the specified GRE tunnel.

Parameters:: tunnel_id (str) – The unique identifier for the GRE tunnel.
Returns:: The GRE tunnel resource record.
Return type:: tuple

Examples: >>> tunnel, _, err = client.zia.gre_tunnel.get_gre_tunnel(‘4190936’) … if err: … print(f”Error fetching tunnel by ID: {err}”) … return … print(f”Fetched tunnel by ID: {tunnel.as_dict()}”)

get_ip_gre_tunnel_info(query_params=None)¶

Returns information for the list of IP addresses with GRE tunnel details.

Parameters:: query_params (dict, optional) – Optional query parameters. [query_params.ip_addresses] {list[int]}: Filter based on an IP address range.
Returns:: A tuple containing a list of GreTunnelInfo instances, Response, error.
Return type:: tuple

Example: >>> tunnels_list, _, err = client.zia.gre_tunnel.get_ip_gre_tunnel_info() … if err: … print(f”Error listing tunnels: {err}”) … return … for tunnel in tunnels_list: … print(tunnel.as_dict())

list_gre_ranges(query_params=None)¶

Returns a list of available GRE tunnel ranges.

Parameters:: {dict} (query_params) – Map of query parameters for the request. [query_params.internal_ip_range] {int}: Internal IP range information. [query_params.static_ip] {str}: Search string for filtering Static IP information. [query_params.limit] {int}: The maximum number of GRE tunnel IP ranges that can be added.
Returns:: List of configured gre .
Return type:: tuple

Examples

>>> ranges, _, error = client.zia.gre_tunnel.list_gre_ranges(
...     query_params={ 'internal_ip_range': '172.17.47.247-172.17.47.240'})
... if error:
...     print(f"Error listing GRE ranges: {error}")
...     return
... for rule in ranges:
...     print(rule)

list_gre_tunnels(query_params=None)¶

Returns the list of all configured GRE tunnels.

Keyword Arguments:

optional} ([query_params.page_size] {int,) – Specifies the page size. The default size is 100, but the maximum size is 1000.
optional} – Specifies the page size. The default size is 100, but the maximum size is 1000.

Returns:

A list of GRE tunnels configured in ZIA.

Return type:

Tuple

Examples

List configured GRE tunnels with default settings:

>>> tunnels_list, _, err = client.zia.gre_tunnel.list_gre_tunnels(
    query_params={'page': 1, 'page_size': 100}
)
... if err:
...     print(f"Error listing tunnels: {err}")
...     return
... for tunnel in tunnels_list:
...     print(tunnel.as_dict())

list_vip_group_by_dc(query_params=None)¶

Returns a list of recommended GRE tunnel (VIPs) grouped by data center.

Parameters:: {dict} (query_params) – Map of query parameters for the request. [query_params.source_ip] {str}: The source IP address (required). [query_params.page] {int}: Specifies the page offset. [query_params.page_size] {int}: Page size for pagination. [query_params.routable_ip] {bool}: The routable IP address. Default: True. [query_params.within_country_only] {bool}: Search within country only. Default: False. [query_params.include_private_service_edge] {bool}: Include ZIA Private Service Edge VIPs. Default: True. [query_params.include_current_vips] {bool}: Include currently assigned VIPs. Default: True. [query_params.latitude] {str}: Latitude coordinate of GRE tunnel source. [query_params.longitude] {str}: Longitude coordinate of GRE tunnel source. [query_params.geo_override] {bool}: Override the geographic coordinates. Default: False.
Returns:: A tuple containing (list of VIP groups by data center, Response, error)
Return type:: tuple

Examples

List VIP groups for a given source IP:

>>> vip_groups, resp, err = zia.vips.list_vip_group_by_dc(query_params={"sourceIp": "203.0.113.30"})
>>> for vip_group in vip_groups:
...    print(vip_group)

list_vips(query_params=None)¶

Returns a list of virtual IP addresses (VIPs) available in the Zscaler cloud.

Parameters:

query_params (dict) –

Map of query parameters for the request.

dc (str): Filter based on data center.
region (str): Filter based on region.
page (int): Specifies the page offset.
page_size (int): Specifies the page size. The default size is 100, and the maximum is 1000.
include (str): Include all, private, or public VIPs. Values: “all”, “private”, “public”.
sub_cloud (str): Filter based on the subcloud for the VIP.

Returns:

A tuple containing:

list: List of VIPs.
Response: The raw HTTP response object.
error: Any error encountered during the request.

Return type:

tuple

Examples

List VIPs using default settings:

>>> vip_list, _, err = client.zia.gre_tunnel.list_vips(
...     query_params={'dc': 'DFW1', 'region': 'NorthAmerica'})
>>> if err:
...     print(f"Error listing vips: {err}")
...     return
>>> print(f"Total vips found: {len(vip_list)}")
>>> for vip in vip_list:
...     print(vip)

list_vips_recommended(query_params=None)¶

Returns a list of recommended virtual IP addresses (VIPs) based on parameters.

Parameters:

query_params (dict, optional) – A dictionary of query parameters to filter results.

Keyword Arguments:

[query_params.routable_ip] (-) – Routable IP address. Default: True.
[query_params.within_country_only] (-) – Search within country only. Default: False.
[query_params.include_private_service_edge] (-) – Max number of GRE tunnel IP ranges that can be added.
[query_params.include_current_vips] (-) – Include currently assigned VIPs. Default: True.
[query_params.source_ip] (-) – The source IP address.
[query_params.latitude] (-) – Latitude coordinate of GRE tunnel source.
[query_params.longitude] (-) – Longitude coordinate of GRE tunnel source.
[query_params.geo_override] (-) – Override the geographic coordinates. Default: False.
[query_params.sub_cloud] (-) – The subcloud for the VIP.

Returns:

A tuple containing:

list[TrafficGRERecommendedVIP]: A list of recommended VIPs.

Response: The raw API response object.

Error: An error message, if applicable.

Return type:

tuple

Examples

Return recommended VIPs for a given source IP:

>>> recommended_vips, zscaler_resp, err = client.zia.traffic_gre_tunnel.list_vips_recommended(
... source_ip=source_ip, query_params={'routable_ip': True, 'within_country_only': True})
... if err:
...     print(f"Error listing recommended VIPs: {err}")
...     return
... if len(recommended_vips) < 2:
...     print("Error: Not enough VIPs found to assign both primary and secondary.")
...     return
... primary_vip_id = recommended_vips[0].id
... secondary_vip_id = recommended_vips[1].id
... print(f"Primary VIP ID: {primary_vip_id}")
... print(f"Secondary VIP ID: {secondary_vip_id}")

update_gre_tunnel(tunnel_id, **kwargs)¶

Update an existing GRE tunnel.

Parameters:

tunnel_id (str) – The unique identifier for the GRE tunnel.
source_ip (str) – The source IP address of the GRE tunnel. This is typically a static IP address in the organisation or SD-WAN.
primary_dest_vip (str) – The unique identifier for the primary destination virtual IP address (VIP) of the GRE tunnel. Defaults to the closest recommended VIP.
secondary_dest_vip (str) – The unique identifier for the secondary destination virtual IP address (VIP) of the GRE tunnel. Defaults to the closest recommended VIP that isn’t in the same city as the primary VIP.

Keyword Arguments:

**comment (str) – Additional information about this GRE tunnel
**ip_unnumbered (bool) – This is required to support the automated SD-WAN provisioning of GRE tunnels, when set to true gre_tun_ip and gre_tun_id are set to null
**internal_ip_range (str) – The start of the internal IP address in /29 CIDR range.
**within_country (bool) – Restrict the data center virtual IP addresses (VIPs) only to those within the same country as the source IP address.

Examples

Update a GRE tunnel with explicit VIPs:

>>> update_tunnel, zscaler_resp, err = client.zia.gre_tunnel.update_gre_tunnel(
... tunnel_id=122455
... source_ip='1.1.1.1',
... comment=f"NewGRETunnel{random.randint(1000, 10000)}",
... ip_unnumbered=False,
... primary_dest_vip={
...     "id":4681,
...     "virtual_ip": "199.168.148.131",
... },
... secondary_dest_vip={
...     "id":34283,
...     "virtual_ip": "147.161.246.38",
... }
... )
... if err:
...     print(f"Error adding tunnel: {err}")
...     print(f"Full Response: {zscaler_resp}")
...     return
... print(f"Tunnel added successfully: {update_tunnel.as_dict()}")

Update a GRE tunnel with implicit VIPs:

>>> update_tunnel, zscaler_resp, err = client.zia.gre_tunnel.update_gre_tunnel(
... tunnel_id=122455
... source_ip='1.1.1.1',
... comment=f"NewGRETunnel{random.randint(1000, 10000)}",
... ip_unnumbered=False,
... )
... if err:
...     print(f"Error adding tunnel: {err}")
...     print(f"Full Response: {zscaler_resp}")
...     return
... print(f"Tunnel added successfully: {update_tunnel.as_dict()}")