@sentriflow/core 0.1.0

package/src/parser/vendors/cisco-ios.ts

@@ -0,0 +1,110 @@
+// packages/core/src/parser/vendors/cisco-ios.ts
+
+import type { VendorSchema } from '../VendorSchema';
+
+/**
+ * Cisco IOS/IOS-XE configuration schema.
+ *
+ * Cisco IOS uses indentation-based hierarchy with specific exit commands
+ * for nested blocks like address-family. The '!' character serves as
+ * both a comment marker and section delimiter.
+ *
+ * Configuration structure:
+ * - Top-level: interface, router, vlan, access-list, etc.
+ * - Nested: address-family inside router bgp/ospf
+ * - Deeply nested: vrf inside address-family
+ */
+export const CiscoIOSSchema: VendorSchema = {
+  id: 'cisco-ios',
+  name: 'Cisco IOS/IOS-XE',
+  useBraceHierarchy: false,
+
+  commentPatterns: [/^!/],
+  sectionDelimiter: '!',
+
+  blockStarters: [
+    // ============ DEPTH 0: Top-level blocks ============
+
+    // Interface blocks
+    { pattern: /^interface\s+\S+/i, depth: 0 },
+
+    // Routing protocol blocks
+    { pattern: /^router\s+(?!router-id)\S+/i, depth: 0 },
+
+    // VLAN and L2
+    { pattern: /^vlan\s+\d+/i, depth: 0 },
+
+    // ACL and Security
+    { pattern: /^ip\s+access-list\s+\S+/i, depth: 0 },
+    { pattern: /^access-list\s+\S+/i, depth: 0 },
+    { pattern: /^ip\s+prefix-list\s+\S+/i, depth: 0 },
+    { pattern: /^route-map\s+\S+/i, depth: 0 },
+    { pattern: /^crypto\s+map\s+\S+/i, depth: 0 },
+    { pattern: /^crypto\s+isakmp\s+\S+/i, depth: 0 },
+    { pattern: /^crypto\s+ipsec\s+\S+/i, depth: 0 },
+    { pattern: /^crypto\s+pki\s+\S+/i, depth: 0 },
+
+    // QoS
+    { pattern: /^class-map\s+\S+/i, depth: 0 },
+    { pattern: /^policy-map\s+\S+/i, depth: 0 },
+
+    // Line and management
+    { pattern: /^line\s+(vty|console|aux)\s+\S+/i, depth: 0 },
+    { pattern: /^line\s+\d+/i, depth: 0 },
+
+    // Object groups (ASA/IOS)
+    { pattern: /^object-group\s+\S+/i, depth: 0 },
+    { pattern: /^object\s+\S+/i, depth: 0 },
+
+    // AAA
+    { pattern: /^aaa\s+group\s+server\s+\S+/i, depth: 0 },
+
+    // Voice
+    { pattern: /^dial-peer\s+voice\s+\S+/i, depth: 0 },
+    { pattern: /^voice\s+register\s+\S+/i, depth: 0 },
+    { pattern: /^telephony-service/i, depth: 0 },
+    { pattern: /^ephone-dn\s+\S+/i, depth: 0 },
+    { pattern: /^ephone\s+\S+/i, depth: 0 },
+
+    // VRF
+    { pattern: /^ip\s+vrf\s+\S+/i, depth: 0 },
+    { pattern: /^vrf\s+definition\s+\S+/i, depth: 0 },
+
+    // Other common blocks
+    { pattern: /^key\s+chain\s+\S+/i, depth: 0 },
+    { pattern: /^track\s+\d+/i, depth: 0 },
+    { pattern: /^redundancy/i, depth: 0 },
+    { pattern: /^controller\s+\S+/i, depth: 0 },
+    { pattern: /^archive/i, depth: 0 },
+    { pattern: /^ip\s+sla\s+\d+/i, depth: 0 },
+    { pattern: /^tacacs\s+server\s+\S+/i, depth: 0 },
+    { pattern: /^radius\s+server\s+\S+/i, depth: 0 },
+    { pattern: /^snmp-server\s+view\s+\S+/i, depth: 0 },
+    { pattern: /^banner\s+(motd|login|exec)/i, depth: 0 },
+    { pattern: /^control-plane/i, depth: 0 },
+    { pattern: /^ip\s+ips\s+signature-category/i, depth: 0 },
+
+    // ============ DEPTH 1: Inside routing protocols ============
+
+    { pattern: /^address-family\s+\S+/i, depth: 1 },
+    { pattern: /^af-interface\s+\S+/i, depth: 1 },
+    { pattern: /^topology\s+\S+/i, depth: 1 },
+    { pattern: /^service-family\s+\S+/i, depth: 1 },
+    { pattern: /^class\s+\S+/i, depth: 1 },
+    { pattern: /^category\s+\S+/i, depth: 1 },
+
+    // ============ DEPTH 2: Inside address-family ============
+
+    { pattern: /^vrf\s+\S+/i, depth: 2 },
+  ],
+
+  blockEnders: [
+    /^exit-address-family$/i,
+    /^exit-af-interface$/i,
+    /^exit-af-topology$/i,
+    /^exit-service-family$/i,
+    /^exit-sf-topology$/i,
+    /^exit-vrf$/i,
+    /^exit$/i,
+  ],
+};

package/src/parser/vendors/cisco-nxos.ts

@@ -0,0 +1,107 @@
+// packages/core/src/parser/vendors/cisco-nxos.ts
+
+import type { VendorSchema } from '../VendorSchema';
+
+/**
+ * Cisco NX-OS configuration schema.
+ *
+ * NX-OS (Nexus Operating System) is used on Cisco Nexus data center switches.
+ * It shares similarities with IOS but has unique features:
+ * - Feature-based activation (feature bgp, feature ospf)
+ * - VDC (Virtual Device Context) support
+ * - Different VRF syntax (vrf member vs ip vrf)
+ * - Role-based CLI
+ *
+ * Configuration structure follows IOS patterns but with NX-OS extensions.
+ */
+export const CiscoNXOSSchema: VendorSchema = {
+  id: 'cisco-nxos',
+  name: 'Cisco NX-OS',
+  useBraceHierarchy: false,
+
+  commentPatterns: [/^!/],
+  sectionDelimiter: '!',
+
+  blockStarters: [
+    // ============ DEPTH 0: Top-level blocks (NX-OS specific) ============
+
+    // NX-OS specific features
+    { pattern: /^feature\s+\S+/i, depth: 0 },
+    { pattern: /^vdc\s+\S+/i, depth: 0 },
+    { pattern: /^install\s+feature-set\s+\S+/i, depth: 0 },
+
+    // Port-channel and vPC (NX-OS specific)
+    { pattern: /^vpc\s+domain\s+\d+/i, depth: 0 },
+
+    // FabricPath (NX-OS specific)
+    { pattern: /^fabricpath\s+domain\s+\S+/i, depth: 0 },
+
+    // OTV (Overlay Transport Virtualization)
+    { pattern: /^otv\s+site-identifier\s+\S+/i, depth: 0 },
+
+    // Interface blocks (same as IOS)
+    { pattern: /^interface\s+\S+/i, depth: 0 },
+
+    // Routing protocol blocks
+    { pattern: /^router\s+(?!router-id)\S+/i, depth: 0 },
+
+    // VLAN
+    { pattern: /^vlan\s+\d+/i, depth: 0 },
+
+    // ACL (NX-OS uses similar syntax)
+    { pattern: /^ip\s+access-list\s+\S+/i, depth: 0 },
+    { pattern: /^ipv6\s+access-list\s+\S+/i, depth: 0 },
+    { pattern: /^mac\s+access-list\s+\S+/i, depth: 0 },
+
+    // Route-map and prefix-list
+    { pattern: /^route-map\s+\S+/i, depth: 0 },
+    { pattern: /^ip\s+prefix-list\s+\S+/i, depth: 0 },
+    { pattern: /^ipv6\s+prefix-list\s+\S+/i, depth: 0 },
+
+    // QoS (NX-OS Modular QoS CLI)
+    { pattern: /^class-map\s+\S+/i, depth: 0 },
+    { pattern: /^policy-map\s+\S+/i, depth: 0 },
+
+    // Line and management
+    { pattern: /^line\s+(vty|console)\s+\S+/i, depth: 0 },
+
+    // AAA
+    { pattern: /^aaa\s+group\s+server\s+\S+/i, depth: 0 },
+
+    // VRF definition (NX-OS style)
+    { pattern: /^vrf\s+context\s+\S+/i, depth: 0 },
+
+    // Zone-based firewall
+    { pattern: /^zone\s+\S+/i, depth: 0 },
+
+    // Control plane
+    { pattern: /^control-plane/i, depth: 0 },
+
+    // Spanning tree (MST configuration)
+    { pattern: /^spanning-tree\s+mst\s+configuration/i, depth: 0 },
+
+    // Role-based CLI
+    { pattern: /^role\s+name\s+\S+/i, depth: 0 },
+
+    // SNMP server
+    { pattern: /^snmp-server\s+user\s+\S+/i, depth: 0 },
+
+    // ============ DEPTH 1: Inside routing protocols ============
+
+    { pattern: /^address-family\s+\S+/i, depth: 1 },
+    { pattern: /^vrf\s+member\s+\S+/i, depth: 1 },
+    { pattern: /^template\s+peer\s+\S+/i, depth: 1 },
+    { pattern: /^neighbor\s+\S+/i, depth: 1 },
+    { pattern: /^class\s+\S+/i, depth: 1 },
+
+    // ============ DEPTH 2: Inside address-family ============
+
+    // Note: NX-OS uses different VRF nesting than IOS
+  ],
+
+  blockEnders: [
+    /^exit-address-family$/i,
+    /^exit-vrf$/i,
+    /^exit$/i,
+  ],
+};

package/src/parser/vendors/cumulus-linux.ts

@@ -0,0 +1,161 @@
+// packages/core/src/parser/vendors/cumulus-linux.ts
+
+import type { VendorSchema } from '../VendorSchema';
+
+/**
+ * NVIDIA Cumulus Linux configuration schema.
+ *
+ * Cumulus Linux is a Linux-based network operating system that supports
+ * multiple configuration formats:
+ *
+ * 1. NCLU (Network Command Line Utility) - Legacy CLI (Cumulus 3.x-4.x)
+ *    - Commands: net add, net del, net commit
+ *    - Example: "net add interface swp1 ip address 10.0.0.1/24"
+ *
+ * 2. NVUE (NVIDIA User Experience) - Modern CLI (Cumulus 5.x+)
+ *    - Commands: nv set, nv unset, nv config apply
+ *    - Example: "nv set interface swp1 ip address 10.0.0.1/24"
+ *
+ * 3. /etc/network/interfaces - Debian ifupdown2 format
+ *    - Stanzas: auto, iface, bridge-ports, bridge-vids
+ *    - Example:
+ *      auto swp1
+ *      iface swp1
+ *          address 10.0.0.1/24
+ *
+ * 4. /etc/frr/frr.conf - FRR routing daemon (Cisco-like syntax)
+ *    - Blocks: router bgp, router ospf, interface
+ *    - Example:
+ *      router bgp 65001
+ *       bgp router-id 10.0.0.1
+ *       neighbor swp1 interface remote-as external
+ *
+ * Interface naming conventions:
+ * - swp1-swpN: Switch ports (front panel)
+ * - eth0: Management interface
+ * - lo: Loopback
+ * - bridge, br_default: Bridge interfaces
+ * - bond0-bondN: Bond/LAG interfaces
+ * - vlan10, vlan20: VLAN interfaces (SVIs)
+ * - peerlink: MLAG peer link
+ *
+ * This schema handles:
+ * - NCLU/NVUE set-style commands (single line, depth 0)
+ * - /etc/network/interfaces stanzas (auto/iface blocks)
+ * - FRR routing configuration (router blocks with address-family)
+ */
+export const CumulusLinuxSchema: VendorSchema = {
+  id: 'cumulus-linux',
+  name: 'NVIDIA Cumulus Linux',
+  useBraceHierarchy: false,
+
+  commentPatterns: [
+    /^#/,           // Hash comments (interfaces file, FRR, NCLU output)
+    /^!/,           // Bang comments (FRR style)
+  ],
+  sectionDelimiter: '!',
+
+  blockStarters: [
+    // ============ DEPTH 0: Top-level blocks ============
+
+    // NCLU commands (net add/del) - single line commands
+    { pattern: /^net\s+add\s+/i, depth: 0 },
+    { pattern: /^net\s+del\s+/i, depth: 0 },
+
+    // NVUE commands (nv set/unset) - single line commands
+    { pattern: /^nv\s+set\s+/i, depth: 0 },
+    { pattern: /^nv\s+unset\s+/i, depth: 0 },
+    { pattern: /^nv\s+config\s+/i, depth: 0 },
+
+    // /etc/network/interfaces format (ifupdown2)
+    { pattern: /^auto\s+\S+/i, depth: 0 },
+    { pattern: /^iface\s+\S+/i, depth: 0 },
+    { pattern: /^allow-hotplug\s+\S+/i, depth: 0 },
+    { pattern: /^source\s+/i, depth: 0 },
+    { pattern: /^source-directory\s+/i, depth: 0 },
+
+    // FRR routing configuration blocks
+    { pattern: /^router\s+bgp\s+\d+/i, depth: 0 },
+    { pattern: /^router\s+ospf/i, depth: 0 },
+    { pattern: /^router\s+ospf6/i, depth: 0 },
+    { pattern: /^router\s+rip/i, depth: 0 },
+    { pattern: /^router\s+ripng/i, depth: 0 },
+    { pattern: /^router\s+isis\s+\S+/i, depth: 0 },
+    { pattern: /^router\s+pim/i, depth: 0 },
+
+    // FRR global configuration
+    { pattern: /^frr\s+defaults\s+/i, depth: 0 },
+    { pattern: /^frr\s+version\s+/i, depth: 0 },
+    { pattern: /^hostname\s+\S+/i, depth: 0 },
+    { pattern: /^log\s+/i, depth: 0 },
+    { pattern: /^service\s+/i, depth: 0 },
+    { pattern: /^debug\s+/i, depth: 0 },
+    { pattern: /^no\s+debug\s+/i, depth: 0 },
+
+    // FRR interface configuration
+    { pattern: /^interface\s+\S+/i, depth: 0 },
+
+    // FRR route-map, prefix-list, access-list
+    { pattern: /^route-map\s+\S+/i, depth: 0 },
+    { pattern: /^ip\s+prefix-list\s+\S+/i, depth: 0 },
+    { pattern: /^ipv6\s+prefix-list\s+\S+/i, depth: 0 },
+    { pattern: /^ip\s+access-list\s+\S+/i, depth: 0 },
+    { pattern: /^ip\s+community-list\s+\S+/i, depth: 0 },
+    { pattern: /^ip\s+as-path\s+access-list\s+\S+/i, depth: 0 },
+
+    // FRR VRF configuration
+    { pattern: /^vrf\s+\S+/i, depth: 0 },
+
+    // FRR line configuration
+    { pattern: /^line\s+vty/i, depth: 0 },
+
+    // EVPN configuration
+    { pattern: /^advertise-all-vni/i, depth: 0 },
+
+    // PBR (Policy Based Routing)
+    { pattern: /^pbr-map\s+\S+/i, depth: 0 },
+    { pattern: /^nexthop-group\s+\S+/i, depth: 0 },
+
+    // ============ DEPTH 1: Inside router blocks ============
+
+    // BGP address families
+    { pattern: /^address-family\s+ipv4\s+unicast/i, depth: 1 },
+    { pattern: /^address-family\s+ipv6\s+unicast/i, depth: 1 },
+    { pattern: /^address-family\s+l2vpn\s+evpn/i, depth: 1 },
+    { pattern: /^address-family\s+ipv4\s+vpn/i, depth: 1 },
+    { pattern: /^address-family\s+ipv6\s+vpn/i, depth: 1 },
+    { pattern: /^address-family\s+ipv4\s+labeled-unicast/i, depth: 1 },
+    { pattern: /^address-family\s+ipv6\s+labeled-unicast/i, depth: 1 },
+    { pattern: /^address-family\s+ipv4\s+multicast/i, depth: 1 },
+    { pattern: /^address-family\s+ipv6\s+multicast/i, depth: 1 },
+    { pattern: /^address-family\s+ipv4\s+flowspec/i, depth: 1 },
+    { pattern: /^address-family\s+ipv6\s+flowspec/i, depth: 1 },
+
+    // BGP neighbor configuration (can be at depth 0 or 1 depending on context)
+    { pattern: /^neighbor\s+\S+\s+/i, depth: 1 },
+
+    // OSPF area configuration
+    { pattern: /^area\s+\S+/i, depth: 1 },
+
+    // VRF inside router
+    { pattern: /^vrf\s+\S+/i, depth: 1 },
+
+    // ============ DEPTH 2: Inside address-family ============
+
+    // Network statements, redistribute, neighbor activation inside AF
+    { pattern: /^network\s+/i, depth: 2 },
+    { pattern: /^redistribute\s+/i, depth: 2 },
+    { pattern: /^neighbor\s+\S+\s+activate/i, depth: 2 },
+    { pattern: /^neighbor\s+\S+\s+route-map/i, depth: 2 },
+    { pattern: /^neighbor\s+\S+\s+soft-reconfiguration/i, depth: 2 },
+    { pattern: /^advertise-all-vni/i, depth: 2 },
+    { pattern: /^advertise\s+/i, depth: 2 },
+    { pattern: /^vni\s+\d+/i, depth: 2 },
+  ],
+
+  blockEnders: [
+    /^exit-address-family$/i,
+    /^exit-vrf$/i,
+    /^exit$/i,
+  ],
+};

package/src/parser/vendors/extreme-exos.ts

@@ -0,0 +1,154 @@
+// packages/core/src/parser/vendors/extreme-exos.ts
+
+import type { VendorSchema } from '../VendorSchema';
+
+/**
+ * Extreme Networks ExtremeXOS (EXOS) configuration schema.
+ *
+ * ExtremeXOS uses a flat, command-based configuration syntax where
+ * each configuration command is a standalone line. Unlike Cisco-style
+ * configs, EXOS uses explicit command keywords (create, configure,
+ * enable, disable) rather than indentation-based hierarchy.
+ *
+ * Key characteristics:
+ * - **Flat structure**: Most commands are standalone (create vlan, configure vlan)
+ * - **Explicit actions**: Commands start with verbs (create, configure, enable, disable)
+ * - **VLAN-centric**: VLANs are named objects, not just numbers
+ * - **Port notation**: Uses slot:port format (e.g., 1:1, 2:24)
+ * - **Comments**: Lines starting with # are comments
+ *
+ * Configuration structure:
+ * - No true nested blocks (unlike Cisco interface mode)
+ * - VLANs, ports, protocols configured with explicit commands
+ * - ACLs defined separately and applied to VLANs/ports
+ *
+ * Example config:
+ * ```
+ * # Basic EXOS configuration
+ * configure snmp sysname "exos-switch-01"
+ * create vlan "Management" tag 10
+ * configure vlan Management ipaddress 10.0.10.1/24
+ * configure vlan Management add ports 1:1-1:4 untagged
+ * enable vlan Management
+ * enable sharing 1:1 grouping 1:1-1:2 algorithm address-based L3_L4
+ * configure sntp-client primary server 10.0.0.1 vr VR-Default
+ * enable sntp-client
+ * ```
+ */
+export const ExtremeEXOSSchema: VendorSchema = {
+  id: 'extreme-exos',
+  name: 'Extreme Networks EXOS',
+  useBraceHierarchy: false,
+
+  commentPatterns: [/^#/],
+  sectionDelimiter: undefined, // EXOS doesn't use section delimiters
+
+  blockStarters: [
+    // ============ DEPTH 0: Top-level blocks ============
+    // EXOS is mostly flat, but some constructs can be treated as logical sections
+
+    // VLAN configuration (virtual block based on VLAN name)
+    // Note: These are conceptual groupings, not actual block syntax
+    { pattern: /^create\s+vlan\s+/i, depth: 0 },
+
+    // Access-list/ACL (can be multi-line with continuation)
+    { pattern: /^create\s+access-list\s+/i, depth: 0 },
+    { pattern: /^configure\s+access-list\s+/i, depth: 0 },
+
+    // Policy configuration
+    { pattern: /^create\s+policy\s+/i, depth: 0 },
+    { pattern: /^configure\s+policy\s+/i, depth: 0 },
+
+    // Routing protocols
+    { pattern: /^configure\s+ospf\s+/i, depth: 0 },
+    { pattern: /^configure\s+ospfv3\s+/i, depth: 0 },
+    { pattern: /^configure\s+bgp\s+/i, depth: 0 },
+    { pattern: /^configure\s+rip\s+/i, depth: 0 },
+    { pattern: /^configure\s+ripng\s+/i, depth: 0 },
+    { pattern: /^configure\s+isis\s+/i, depth: 0 },
+    { pattern: /^configure\s+pim\s+/i, depth: 0 },
+    { pattern: /^configure\s+igmp\s+/i, depth: 0 },
+    { pattern: /^configure\s+mld\s+/i, depth: 0 },
+
+    // Virtual router (VR) configuration
+    { pattern: /^create\s+vr\s+/i, depth: 0 },
+    { pattern: /^configure\s+vr\s+/i, depth: 0 },
+
+    // LAG/Sharing groups
+    { pattern: /^enable\s+sharing\s+/i, depth: 0 },
+
+    // Stacking
+    { pattern: /^enable\s+stacking\s+/i, depth: 0 },
+    { pattern: /^configure\s+stacking\s+/i, depth: 0 },
+
+    // EAPS (Ethernet Automatic Protection Switching)
+    { pattern: /^create\s+eaps\s+/i, depth: 0 },
+    { pattern: /^configure\s+eaps\s+/i, depth: 0 },
+
+    // STP configuration
+    { pattern: /^configure\s+stp\s+/i, depth: 0 },
+    { pattern: /^configure\s+stpd\s+/i, depth: 0 },
+
+    // QoS
+    { pattern: /^create\s+qosprofile\s+/i, depth: 0 },
+    { pattern: /^configure\s+qosprofile\s+/i, depth: 0 },
+
+    // MLAG/MLAG (Multi-chassis LAG)
+    { pattern: /^create\s+mlag\s+peer\s+/i, depth: 0 },
+    { pattern: /^configure\s+mlag\s+peer\s+/i, depth: 0 },
+
+    // SNMP configuration
+    { pattern: /^configure\s+snmp\s+/i, depth: 0 },
+    { pattern: /^configure\s+snmpv3\s+/i, depth: 0 },
+
+    // AAA/RADIUS/TACACS
+    { pattern: /^configure\s+radius\s+/i, depth: 0 },
+    { pattern: /^configure\s+tacacs\s+/i, depth: 0 },
+    { pattern: /^configure\s+aaa\s+/i, depth: 0 },
+
+    // Management
+    { pattern: /^configure\s+management\s+/i, depth: 0 },
+    { pattern: /^configure\s+ssh2\s+/i, depth: 0 },
+    { pattern: /^configure\s+telnet\s+/i, depth: 0 },
+
+    // SNTP/NTP
+    { pattern: /^configure\s+sntp-client\s+/i, depth: 0 },
+    { pattern: /^configure\s+ntp\s+/i, depth: 0 },
+
+    // Syslog
+    { pattern: /^configure\s+syslog\s+/i, depth: 0 },
+    { pattern: /^configure\s+log\s+/i, depth: 0 },
+
+    // Port mirroring
+    { pattern: /^create\s+mirror\s+/i, depth: 0 },
+    { pattern: /^configure\s+mirror\s+/i, depth: 0 },
+
+    // VLAN stacking (QinQ)
+    { pattern: /^configure\s+vlan\s+\S+\s+add\s+ports\s+/i, depth: 0 },
+
+    // VPLS
+    { pattern: /^create\s+vpls\s+/i, depth: 0 },
+    { pattern: /^configure\s+vpls\s+/i, depth: 0 },
+
+    // MPLS
+    { pattern: /^configure\s+mpls\s+/i, depth: 0 },
+
+    // Port configuration
+    { pattern: /^configure\s+ports?\s+\S+/i, depth: 0 },
+
+    // VLAN IP address configuration
+    { pattern: /^configure\s+vlan\s+\S+\s+ipaddress\s+/i, depth: 0 },
+
+    // ============ DEPTH 1: Inside conceptual blocks ============
+    // EXOS doesn't really have nested syntax, but some ACL/policy rules
+    // can span multiple lines with entry numbers
+
+    { pattern: /^entry\s+\d+\s+/i, depth: 1 },
+  ],
+
+  blockEnders: [
+    // EXOS doesn't have block enders in the traditional sense
+    // Commands are standalone
+    // Including these for compatibility with the parser
+  ],
+};

package/src/parser/vendors/extreme-voss.ts

@@ -0,0 +1,167 @@
+// packages/core/src/parser/vendors/extreme-voss.ts
+
+import type { VendorSchema } from '../VendorSchema';
+
+/**
+ * Extreme Networks VOSS (VSP Operating System Software) configuration schema.
+ *
+ * VOSS is used on Extreme Networks VSP (Virtual Services Platform) switches.
+ * It uses a Cisco-like CLI syntax with indentation-based hierarchy and
+ * multiple command modes (User EXEC, Privileged EXEC, Global Configuration,
+ * Interface Configuration, etc.).
+ *
+ * Key characteristics:
+ * - **Mode-based**: Similar to Cisco IOS with different CLI modes
+ * - **Indentation-based hierarchy**: Nested configuration under blocks
+ * - **Interface naming**: Uses GigabitEthernet slot/port (e.g., 1/1, 1/2)
+ * - **Comments**: Lines starting with # or ! are comments
+ * - **VLAN creation**: vlan create <id> type port-mstprstp <instance>
+ * - **SPB/SPBM**: Shortest Path Bridging support
+ *
+ * Configuration structure:
+ * - Global Configuration: configure terminal
+ * - Interface mode: interface GigabitEthernet 1/1
+ * - VLAN mode: vlan create, vlan members
+ * - Router mode: router isis, router bgp
+ *
+ * Example config:
+ * ```
+ * !
+ * ! VOSS Configuration
+ * !
+ * snmp-server name "vsp-switch-01"
+ * !
+ * vlan create 10 type port-mstprstp 0
+ * vlan create 20 type port-mstprstp 0
+ * vlan members 10 1/1-1/4 portmember
+ * !
+ * interface GigabitEthernet 1/1
+ *    no shutdown
+ *    default-vlan-id 10
+ * exit
+ * !
+ * router isis
+ *    spbm 1 b-vid 4051-4052 primary 4051
+ *    no shutdown
+ * exit
+ * !
+ * ```
+ */
+export const ExtremeVOSSSchema: VendorSchema = {
+  id: 'extreme-voss',
+  name: 'Extreme Networks VOSS',
+  useBraceHierarchy: false,
+
+  commentPatterns: [/^!/, /^#/],
+  sectionDelimiter: '!',
+
+  blockStarters: [
+    // ============ DEPTH 0: Top-level blocks ============
+
+    // Interface blocks
+    { pattern: /^interface\s+GigabitEthernet\s+\S+/i, depth: 0 },
+    { pattern: /^interface\s+Port-Channel\s+\S+/i, depth: 0 },
+    { pattern: /^interface\s+Loopback\s+\S+/i, depth: 0 },
+    { pattern: /^interface\s+Vlan\s+\d+/i, depth: 0 },
+    { pattern: /^interface\s+mgmtEthernet\s+\S+/i, depth: 0 },
+    { pattern: /^interface\s+mlt\s+\d+/i, depth: 0 },
+
+    // Routing protocols
+    { pattern: /^router\s+isis/i, depth: 0 },
+    { pattern: /^router\s+bgp\s+\d+/i, depth: 0 },
+    { pattern: /^router\s+ospf/i, depth: 0 },
+    { pattern: /^router\s+rip/i, depth: 0 },
+    { pattern: /^router\s+vrf\s+\S+/i, depth: 0 },
+
+    // VLAN configuration
+    { pattern: /^vlan\s+create\s+\d+/i, depth: 0 },
+    { pattern: /^vlan\s+i-sid\s+\d+/i, depth: 0 },
+    { pattern: /^vlan\s+members\s+\d+/i, depth: 0 },
+
+    // MLT (Multi-Link Trunking)
+    { pattern: /^mlt\s+\d+/i, depth: 0 },
+
+    // LACP
+    { pattern: /^lacp\s+\S+/i, depth: 0 },
+
+    // SPBM (Shortest Path Bridging MAC)
+    { pattern: /^spbm\s+\d+/i, depth: 0 },
+
+    // I-SID (Instance Service ID)
+    { pattern: /^i-sid\s+\d+/i, depth: 0 },
+
+    // IP routing
+    { pattern: /^ip\s+route\s+/i, depth: 0 },
+    { pattern: /^ip\s+prefix-list\s+\S+/i, depth: 0 },
+    { pattern: /^ip\s+route-map\s+\S+/i, depth: 0 },
+
+    // AAA and Security
+    { pattern: /^aaa\s+\S+/i, depth: 0 },
+    { pattern: /^radius\s+server\s+\S+/i, depth: 0 },
+    { pattern: /^tacacs\s+server\s+\S+/i, depth: 0 },
+
+    // ACLs
+    { pattern: /^filter\s+acl\s+\S+/i, depth: 0 },
+    { pattern: /^ip\s+access-list\s+\S+/i, depth: 0 },
+    { pattern: /^ipv6\s+access-list\s+\S+/i, depth: 0 },
+
+    // QoS
+    { pattern: /^qos\s+\S+/i, depth: 0 },
+
+    // Spanning Tree
+    { pattern: /^spanning-tree\s+\S+/i, depth: 0 },
+
+    // SNMP
+    { pattern: /^snmp-server\s+\S+/i, depth: 0 },
+
+    // NTP
+    { pattern: /^ntp\s+server\s+/i, depth: 0 },
+
+    // Logging
+    { pattern: /^logging\s+\S+/i, depth: 0 },
+
+    // SSH/Telnet
+    { pattern: /^ssh\s+\S+/i, depth: 0 },
+
+    // System
+    { pattern: /^sys\s+\S+/i, depth: 0 },
+    { pattern: /^boot\s+\S+/i, depth: 0 },
+
+    // Fabric Connect/DVR
+    { pattern: /^dvr\s+\S+/i, depth: 0 },
+    { pattern: /^cfm\s+\S+/i, depth: 0 },
+
+    // VRRP
+    { pattern: /^ip\s+vrrp\s+\S+/i, depth: 0 },
+
+    // Line/Console
+    { pattern: /^line\s+\S+/i, depth: 0 },
+
+    // LLDP
+    { pattern: /^lldp\s+\S+/i, depth: 0 },
+
+    // ============ DEPTH 1: Inside blocks ============
+
+    // Address family inside BGP
+    { pattern: /^address-family\s+\S+/i, depth: 1 },
+
+    // Area inside OSPF/ISIS
+    { pattern: /^area\s+\S+/i, depth: 1 },
+
+    // SPBM config inside ISIS
+    { pattern: /^spbm\s+\d+/i, depth: 1 },
+
+    // Neighbor inside BGP
+    { pattern: /^neighbor\s+\S+/i, depth: 1 },
+
+    // ============ DEPTH 2: Deeper nesting ============
+
+    { pattern: /^redistribute\s+\S+/i, depth: 2 },
+  ],
+
+  blockEnders: [
+    /^exit$/i,
+    /^end$/i,
+    /^back$/i,
+  ],
+};