Managing the Local VPP Database
Only one dynamic ACL or policy can be added to a VPP. Ingress LVPPs
apply to traffic flowing from the VM, into the switch port, and then to the client. Egress
LVPPs apply to traffic flowing from the client, out the switch port, and to the VM.
For instructions on creating policy files, see Policy Manager. For instructions on creating
dynamic ACLs, see ACLs.
-
To create and configure entries in the LVPP database, use
the following commands:
create
vm-tracking vpp vpp_name
configure vm-tracking vpp vpp_name add [ingress | egress] [policy policy_name | dynamic-rule rule_name] {policy-order policy_order}
-
To delete or unconfigure entries in the local VPP
database, use the following commands:
delete
vm-tracking vpp {vpp_name}
unconfigure vm-tracking vpp vpp_name
-
To display the policy file or ACL associated with one or
more VPPs , use the following command:
show
vm-tracking vpp {vpp_name}