An egress policy (or listener policy)
defines the actions to apply to outbound packets.
About this task
Take the following steps to define the criteria for a policy. Each set of criteria is a rule.
A policy can contain multiple rules.
Procedure
-
In the Navigation menu, select
Configure.
-
In the Devices panel, select the
device for which you want to create a policy.
-
Select the Configuration
tab.
-
In the Device Config menu,
select Add
Policy.
-
In the Name field, enter
a name for the policy.
-
In the Policy Type
field, select Egress
Policy.
-
In the Rule section, complete
the following fields.
-
Enter a Name for the policy rule.
-
Select the Sequence in which to apply the
rule.
-
Select a policy Match.
If you did not create a policy rule match, select Create
Match to create the match now.
You cannot use the same policy rule match multiple times in a policy. Rule match usage is
limited to one per policy.
-
In the Packet Slicing
field, select a value to represent the final packet size after slicing, unless
the packet is already smaller than the value you select.
-
In the Header Stripping
field, select one or more tags to strip: 802.1BR, VLAN, or VN (Virtual
NIC).
The 802.1BR and VN tags cannot coexist in the same policy rule action.
-
In the VLAN field,
select the VLAN ID to target the VLAN tag in the egress packet.
-
To remove the outer tunnel headers from the packet, select
Decap.
-
To prevent the rule from being
used in the policy, select Deny.
Tip
This option
prevents the rule from being used, but does not delete the configuration of
the rule. The rule is skipped and is not used to drop a packet. You can
reinstate the rule later without having to reconfigure it.
-
Select Add.
The rule parameters
appear in the pane on the right.
-
Repeat steps 7 through 13 until you have added all the rules you need.
-
Save (✔) your
selections.
