EgressACLTemplate

An egress security policy is a set of rules defining how network traffic is treated within a domain. Egress Security Policies control traffic flowing out of the network.

Overview

active boolean filterable   orderable  
associatedLiveEntityID string filterable  
associatedVirtualFirewallPolicyID string read only   autogenerated  
autoGeneratePriority boolean creation only   filterable   orderable  
defaultAllowIP boolean filterable   orderable  
defaultAllowNonIP boolean filterable   orderable  
defaultInstallACLImplicitRules boolean filterable   orderable  
description string filterable  
entityScope enum (ENTERPRISE | GLOBAL) autogenerated  
externalID string filterable   orderable   locally unique  
lastUpdatedBy string autogenerated  
name string required   filterable   orderable  
policyState enum (DRAFT | LIVE) filterable   orderable  
priority integer filterable   orderable  
priorityType enum (BOTTOM | BOTTOM_FIREWALL | MIDDLE_FIREWALL | NONE | TOP | TOP_FIREWALL) filterable   orderable  

API Resource

/egressacltemplates/id
delete get put

Parents

/egressacltemplates
get
/domains/id/egressacltemplates
get post
/l2domains/id/egressacltemplates
get post
/l2domaintemplates/id/egressacltemplates
get post
/domaintemplates/id/egressacltemplates
get post

Children

/egressacltemplates/id/metadatas
get post
/egressacltemplates/id/egressaclentrytemplates
get post
/egressacltemplates/id/globalmetadatas
get post put
/egressacltemplates/id/vms
get
/egressacltemplates/id/jobs
get post
/egressacltemplates/id/containers
get
/egressacltemplates/id/eventlogs
get

Members

This object has no members.

Attributes documentation

active boolean filterable   orderable  
Discussion

If enabled, it means that this ACL or QOS entry is active

Charateristics

Format: free
SDK attribute: active

associatedLiveEntityID string filterable  
Discussion

In the draft mode, the ACL entry refers to this LiveEntity. In non-drafted mode, this is null.

Charateristics

Format: free
SDK attribute: associatedLiveEntityID

associatedVirtualFirewallPolicyID string read only   autogenerated  
Discussion

The ID of the Virtual Firewall Policy, if this was created as part of the Virtual Firewall Policy creation

Charateristics

Format: free
SDK attribute: associatedVirtualFirewallPolicyID

autoGeneratePriority boolean creation only   filterable   orderable  
Discussion

This option affects how ACL entry priorities are generated when not specified. If 'false', the priority is generated by incrementing the current highest priority by 100. If 'true', a random priority will be generated, which is advised when creating many entries concurrently without specifying the priority. This will cause the ACL entry to be randomly placed in the existing list of ACL entries. Therefore it is advised to only enable this when allow rules are being created.

Charateristics

SDK attribute: autoGeneratePriority

defaultAllowIP boolean filterable   orderable  
Discussion

If enabled a default ACL of Allow All is added as the last entry in the list of ACL entries

Charateristics

Format: free
SDK attribute: defaultAllowIP

defaultAllowNonIP boolean filterable   orderable  
Discussion

If enabled, non ip traffic will be dropped

Charateristics

Format: free
SDK attribute: defaultAllowNonIP

defaultInstallACLImplicitRules boolean filterable   orderable  
Discussion

If enabled, implicit rule will allow intra domain traffic by default

Charateristics

Format: free
SDK attribute: defaultInstallACLImplicitRules

description string filterable  
Discussion

A description of the entity

Charateristics

Format: free
Max length: 255
SDK attribute: description

entityScope enum autogenerated  
Discussion

Specify if scope of entity is Data center or Enterprise level

Charateristics

Allowed values: ENTERPRISE, GLOBAL
SDK attribute: entityScope

externalID string filterable   orderable   locally unique  
Discussion

External object ID. Used for integration with third party systems

Charateristics

Format: free
SDK attribute: externalID

lastUpdatedBy string autogenerated  
Discussion

ID of the user who last updated the object.

Charateristics

Format: free
SDK attribute: lastUpdatedBy

name string required   filterable   orderable  
Discussion

The name of the entity

Charateristics

Format: free
Min length: 1
Max length: 255
SDK attribute: name

policyState enum filterable   orderable  
Discussion

None

Charateristics

Allowed values: DRAFT, LIVE
Format: free
SDK attribute: policyState

priority integer filterable   orderable  
Discussion

The priority of the ACL entry that determines the order of entries

Charateristics

SDK attribute: priority

priorityType enum filterable   orderable  
Discussion

Possible values: TOP, BOTTOM, TOP_FIREWALL, BOTTOM_FIREWALL, MIDDLE_FIREWALL or NONE. TOP and BOTTOM ACL policies can only be defined and managed on the template level, NONE can be used on both the template and instantiated level. TOP_FIREWALL, BOTTOM_FIREWALL, MIDDLE_FIREWALL are used to represent acls dirived from Virtual Firewall Policies. These allow for careful control of ACL priority handling.

Charateristics

Allowed values: BOTTOM, BOTTOM_FIREWALL, MIDDLE_FIREWALL, NONE, TOP, TOP_FIREWALL
SDK attribute: priorityType