Policy

Policy combines one or more Centralized policy definitions to create a Policy. These policies can then be activated to be applied to the SD-WAN deployment.

Diagram

Classes

centralized_policies (sdwan)

Name	Type	Constraint	Mandatory	Default Value
feature_policies	List	`[feature_policies]`	No

feature_policies (sdwan.centralized_policies)

Name	Type	Constraint	Mandatory
name	String	Regex: `^[A-Za-z0-9\-_]{1,127}$`	Yes
description	String		Yes
hub_and_spoke_topology	List	`[hub_and_spoke_topology]`	No
mesh_topology	List	`[mesh_topology]`	No
custom_control_topology	List	`[custom_control_topology]`	No
vpn_membership	List	`[vpn_membership]`	No
application_aware_routing	List	`[application_aware_routing]`	No
traffic_data	List	`[traffic_data]`	No
cflowd	List	`[cflowd]`	No

hub_and_spoke_topology (sdwan.centralized_policies.feature_policies)

Name	Type	Constraint	Mandatory	Default Value
policy_definition	String		Yes

mesh_topology (sdwan.centralized_policies.feature_policies)

Name	Type	Constraint	Mandatory	Default Value
policy_definition	String		Yes

custom_control_topology (sdwan.centralized_policies.feature_policies)

Name	Type	Constraint	Mandatory	Default Value
policy_definition	String		Yes
site_region	Class	`[site_region]`	Yes

vpn_membership (sdwan.centralized_policies.feature_policies)

Name	Type	Constraint	Mandatory	Default Value
policy_definition	String		Yes

application_aware_routing (sdwan.centralized_policies.feature_policies)

Name	Type	Constraint	Mandatory	Default Value
policy_definition	String		Yes
site_region_vpn	Class	`[site_region_vpn]`	No

traffic_data (sdwan.centralized_policies.feature_policies)

Name	Type	Constraint	Mandatory	Default Value
policy_definition	String		Yes
site_region_vpn	List	`[site_region_vpn]`	No

cflowd (sdwan.centralized_policies.feature_policies)

Name	Type	Constraint	Mandatory	Default Value
policy_definition	String		Yes
site_lists	List	String[Regex: `^[A-Za-z0-9\-_]{1,32}$`]	Yes

site_region (sdwan.centralized_policies.feature_policies.custom_control_topology)

Name	Type	Constraint	Mandatory
site_lists_in	List	String[Regex: `^[A-Za-z0-9\-_]{1,32}$`]	No
site_lists_out	List	String[Regex: `^[A-Za-z0-9\-_]{1,32}$`]	No
region_lists_in	List	String[Regex: `^[A-Za-z0-9\-_]{1,32}$`]	No
region_lists_out	List	String[Regex: `^[A-Za-z0-9\-_]{1,32}$`]	No
region_in	Integer	min: `0`, max: `63`	No
region_out	Integer	min: `0`, max: `63`	No

site_region_vpn (sdwan.centralized_policies.feature_policies.application_aware_routing)

Name	Type	Constraint	Mandatory
site_lists	List	String[Regex: `^[A-Za-z0-9\-_]{1,32}$`]	No
region_list	String	Regex: `^[A-Za-z0-9\-_]{1,32}$`	No
region	Integer	min: `0`, max: `63`	No
vpn_lists	List	String[Regex: `^[A-Za-z0-9\-_]{1,32}$`]	Yes

site_region_vpn (sdwan.centralized_policies.feature_policies.traffic_data)

Name	Type	Constraint	Mandatory
direction	Choice	`service`, `tunnel`, `all`	Yes
site_lists	List	String[Regex: `^[A-Za-z0-9\-_]{1,32}$`]	Yes
vpn_lists	List	String[Regex: `^[A-Za-z0-9\-_]{1,32}$`]	Yes

Examples

sdwan:
  centralized_policies:
    feature_policies:
      - name: Super_policy_test2
        description: Super_policy_test2
        hub_and_spoke_topology:
          - policy_definition: HST_DEFINITION_TEST1
        mesh_topology:
          - policy_definition: MT_DEFINITION_TEST1
        vpn_membership:
          - policy_definition: VPN_DEFINITION_TEST1
        custom_control_topology:
          - policy_definition: CCT_DEFINITION_TEST1
            site_region:
              site_lists_in:
                - CHICAGO-CCT-TEST
              site_lists_out:
                - DENVER-CCT-TEST
                - ATLANTA-CCT-TEST
        traffic_data:
          - policy_definition: TD_DEFINITION_TEST1
            site_region_vpn:
              - direction: service
                site_lists:
                  - GOA-TD-TEST
                vpn_lists:
                  - VPN-LIST-TD-TEST1
              - direction: all
                site_lists:
                  - CHENNAI-TD-TEST
                vpn_lists:
                  - VPN-LIST-TD-TEST2
        cflowd:
          - policy_definition: CFLOW_DEFINITION_TEST2
            site_lists:
              - MY-CFLOW-TEST
        application_aware_routing:
          - policy_definition: Test_application_aware_routing_number2
            site_region_vpn:
              site_lists: 
                - CHENNAI-TD-TEST
              vpn_lists:
                - VPN-LIST-TD-TEST1

Diagram​

Classes​

centralized_policies (sdwan)​

feature_policies (sdwan.centralized_policies)​

hub_and_spoke_topology (sdwan.centralized_policies.feature_policies)​

mesh_topology (sdwan.centralized_policies.feature_policies)​

custom_control_topology (sdwan.centralized_policies.feature_policies)​

vpn_membership (sdwan.centralized_policies.feature_policies)​

application_aware_routing (sdwan.centralized_policies.feature_policies)​

traffic_data (sdwan.centralized_policies.feature_policies)​

cflowd (sdwan.centralized_policies.feature_policies)​

site_region (sdwan.centralized_policies.feature_policies.custom_control_topology)​

site_region_vpn (sdwan.centralized_policies.feature_policies.application_aware_routing)​

site_region_vpn (sdwan.centralized_policies.feature_policies.traffic_data)​

Examples​

Diagram

Classes

centralized_policies (sdwan)

feature_policies (sdwan.centralized_policies)

hub_and_spoke_topology (sdwan.centralized_policies.feature_policies)

mesh_topology (sdwan.centralized_policies.feature_policies)

custom_control_topology (sdwan.centralized_policies.feature_policies)

vpn_membership (sdwan.centralized_policies.feature_policies)

application_aware_routing (sdwan.centralized_policies.feature_policies)

traffic_data (sdwan.centralized_policies.feature_policies)

cflowd (sdwan.centralized_policies.feature_policies)

site_region (sdwan.centralized_policies.feature_policies.custom_control_topology)

site_region_vpn (sdwan.centralized_policies.feature_policies.application_aware_routing)

site_region_vpn (sdwan.centralized_policies.feature_policies.traffic_data)

Examples