Creates a Purview Application Policy and enters its configuration mode. Purview application policies allow you to define rules that dictate how each traffic type is managed on your network.
Extreme Network's AP5xx model APs, running WiNG 7.1.2 and later versions of the WiNG 7 OS, use ExtremeAnalytics for ExtremeCloud IQ - Site Engine (Purview™) libDPI engine to implement Application Visibility and Control (AVC). libDPI detects top-level hosting applications along with the services these applications host.
A Purview application policy contains rules that leverage the AP's libDPI engine to detect the underlying application to which a flow belongs. The rule then applies access control and quality of service actions to all the traffic associated with the application, not just traffic destined for specific IP addresses or ports. The control actions regulate both access control and traffic engineering (rate limit, marking, and prioritization) for applications and groups.
application-policy → radius → <PURVIEW-APP-POLICY-NAME>
command to apply the policy to every user successfully authenticated by the
RADIUS server. See purview-application-policy in the profile/device context.use → application-policy
<PURVIEW-APP-POLICY-NAME> command to apply the policy to
all users assigned to the role. See use in the user-role policy context.use → application-policy
<PURVIEW-APP-POLICY-NAME> command to apply the policy to
all users accessing the WLAN. See use (wlan-config-mode)use → application-policy
<PURVIEW-APP-POLICY-NAME> command to apply the policy for
the traffic corresponding to the bridged VLAN. See use in the bridge VLAN context.
Note
Legacy WiNG devices, running WiNG 5.9.X or WiNG 7.2.1 do not support Purview libDPI engine. Legacy WiNG devices use a third-party, DPI engine to enforce AVC within the managed network. For more information on configuring AVC on legacy devices, see application-policy and application-group.These legacy devices are: AP7522, AP7532, AP7562, AP7612, AP7632, AP7662, AP8432, AP8533, NX500, NX7500, NX9500, NX9600 and VX9000.
purview-application-policy <PURVIEW-APP-POLICY-NAME>
purview-application-policy <PURVIEW-APP-POLICY-NAME>
| purview-application-policy <PURVIEW-APP-POLICY-NAME> | Specify the Purview application policy name. If an application policy with the specified name does not exist, it is created. The name should not exceed 32 characters in length. |
nx9500-6C8809(config)#purview-application-policy PurAppPolicy nx9500-6C8809(config-purview-app-policy-PurAppPolicy)#? Purview Application Policy Mode commands: allow Allow packets deny Deny packets description Purview application policy description enforcement-time Configure policy enforcement based on time logging Application recognition logging mark Mark packets no Negate a command or set its defaults rate-limit Rate-limit packets clrscr Clears the display screen commit Commit all changes made in this session do Run commands from Exec mode end End current mode and change to EXEC mode exit End current mode and down to previous mode help Description of the interactive help system revert Revert changes service Service Commands show Show running system information write Write running configuration to memory or terminal nx9500-6C8809(config-purview-app-policy-PurAppPolicy)#
| no (global-config-mode) | Removes an existing Purview application policy |
| application | Creates an application definition and enters its configuration mode. Use this command to create customized application detection signatures. |
| purview-application-group | Creates a Purview Application Group and enters its configuration mode. |
| nsight-policy (global-config-mode) | Creates an NSight policy and enters its configuration mode. |