Cisco Cisco Prime Network Services Controller 3.0 Developer's Guide
Page 44
OL-28369-01
<policyZoneNameRef id="1" value="trustedClients-0" />
</policyNetworkExpression>
</policyNetworkExpression>
</policyRuleCondition>
<policyRuleCondition id="101" order="20">
<policyRuleCondition id="101" order="20">
<policyNetworkExpression opr="eq">
<policyNwAttrQualifier attrEp="destination"/>
<policyZoneNameRef id="1" value="trustedServers-0" />
</policyNetworkExpression>
<policyNwAttrQualifier attrEp="destination"/>
<policyZoneNameRef id="1" value="trustedServers-0" />
</policyNetworkExpression>
</policyRuleCondition>
<policyRuleCondition id="103" order="30">
<policyRuleCondition id="103" order="30">
<policyNetworkExpression opr="eq">
<policyNwAttrQualifier attrEp="destination"/>
<policyNetworkPort id="1" placement="0" value="22" />
</policyNetworkExpression>
<policyNwAttrQualifier attrEp="destination"/>
<policyNetworkPort id="1" placement="0" value="22" />
</policyNetworkExpression>
</policyRuleCondition>
<fwpolicyAction actionType="permit"/>
</policyRule>
<policyRule name="allowTacacs" order="2">
<fwpolicyAction actionType="permit"/>
</policyRule>
<fwpolicyAction actionType="permit"/>
</policyRule>
<policyRule name="allowTacacs" order="2">
<fwpolicyAction actionType="permit"/>
</policyRule>
</policyRuleBasedPolicy>
</pair>
</inConfigs>
</configConfMos>
Response
<configConfMos
cookie="<real_cookie>"
commCookie="7/15/0/1b5"
srcExtSys="10.193.33.221"
destExtSys="10.193.33.221"
srcSvc="sam_extXMLApi"
destSvc="policy-mgr_dme"
response="yes">
<outConfigs>
commCookie="7/15/0/1b5"
srcExtSys="10.193.33.221"
destExtSys="10.193.33.221"
srcSvc="sam_extXMLApi"
destSvc="policy-mgr_dme"
response="yes">
<outConfigs>
<pair key="org-root/org-tenant1/pol-trustedHosts">
<policyRuleBasedPolicy
descr=""
dn="org-root/org-tenant1/pol-trustedHosts"
intId="25131"
name="trustedHosts"
status="created"/>
dn="org-root/org-tenant1/pol-trustedHosts"
intId="25131"
name="trustedHosts"
status="created"/>
</pair>
</outConfigs>
</configConfMos>
PolicySet
The following example creates ACL-PolicySet and sets the order in which policies are applied.
Request
<configConfMos
cookie="<real_cookie>"
inHierarchical="false">
<inConfigs>
inHierarchical="false">
<inConfigs>
<pair key="org-root/org-tenant1/pset-ACL-PolicySet/polref-Test">
<policyPolicyNameRef
dn="org-root/org-tenant1/pset-ACL-PolicySet/polref-Test"
order="100"
order="100"