default-role

The default-role command moves you into the vnsmode:default-role context. The default-role replaces the former default-policy of previous releases. The vnsmode:default-role context provides commands for the configuration of the default-role.

The default-role definitions provide a placeholder for completion of incomplete (no-change) roles (policies) for the VNS being configured. Refer to role Commands for a complete discussion of role commands.

The default-role specifies:

  • A topology to use when a VNS is created using a role (non-auth role) that does not specify a topology. The default assigned topology is the Bridge Traffic Locally at AP topology.
  • An inbound and outbound rate control profile. The default rate control profile is “Unlimited”.
  • A set of filters. The default filter set is a single deny all rule.

After you complete configuration changes for the default-role, run the apply command before exiting the vnsmode:default-role context to implement the changes.

The following commands are available in the vnsmode:default-role context: