| Name | Type | Description | Notes |
|---|---|---|---|
| isDefault | Boolean | Flag to indicate whether rule is default. | [optional] |
| direction | DirectionEnum | Rule direction in case of stateless distributed service rules. This will only considered if section level parameter is set to stateless. Default to IN_OUT if not specified. | [optional] |
| ruleTag | String | User level field which will be printed in CLI and packet logs. | [optional] |
| ipProtocol | IpProtocolEnum | Type of IP packet that should be matched while enforcing the rule. | [optional] |
| notes | String | User notes specific to the rule. | [optional] |
| appliedTos | List<ResourceReference> | List of object where rule will be enforced. The section level field overrides this one. Null will be treated as any. | [optional] |
| logged | Boolean | Flag to enable packet logging. Default is disabled. | [optional] |
| disabled | Boolean | Flag to disable rule. Disabled will only be persisted but never provisioned/realized. | [optional] |
| sources | List<ResourceReference> | List of sources. Null will be treated as any. | [optional] |
| action | ActionEnum | Action enforced on the packets which matches the distributed service rule. Currently DS Layer supports below actions. ALLOW - Forward any packet when a rule with this action gets a match (Used by Firewall). DROP - Drop any packet when a rule with this action gets a match. Packets won't go further(Used by Firewall). REJECT - Terminate TCP connection by sending TCP reset for a packet when a rule with this action gets a match (Used by Firewall). REDIRECT - Redirect any packet to a partner appliance when a rule with this action gets a match (Used by Service Insertion). DO_NOT_REDIRECT - Do not redirect any packet to a partner appliance when a rule with this action gets a match (Used by Service Insertion). | |
| priority | Long | Priority of the rule. | [optional] |
| sourcesExcluded | Boolean | Negation of the source. | [optional] |
| destinationsExcluded | Boolean | Negation of the destination. | [optional] |
| destinations | List<ResourceReference> | List of the destinations. Null will be treated as any. | [optional] |
| Name | Value |
|---|---|
| IN | "IN" |
| OUT | "OUT" |
| IN_OUT | "IN_OUT" |
| Name | Value |
|---|---|
| IPV4 | "IPV4" |
| IPV6 | "IPV6" |
| IPV4_IPV6 | "IPV4_IPV6" |
| Name | Value |
|---|---|
| ALLOW | "ALLOW" |
| DROP | "DROP" |
| REJECT | "REJECT" |
| REDIRECT | "REDIRECT" |
| DO_NOT_REDIRECT | "DO_NOT_REDIRECT" |