Cisco Cisco Prime Network Services Controller 3.0 Developer's Guide
Page 8
OL-28369-01
●
With user input, defines edge firewalls and associates them with ASA 1000Vs for provisioning.
●
Interacts with VMware vCenter instances to retrieve Virtual Machine (VM) attributes.
●
Maintains an inventory of discovered VMs and distributes them to the VSGs with the following information:
- VM attributes, such as name, hypervisor, parent vApp, and cluster
- vNIC attributes, such as port profile name and IP address
●
Manages pools of VSGs and ASA 1000Vs.
●
Maintains health states and faults for VSGs and ASA 1000Vs.
●
Maintains diagnostic information, such as audit logs, faults, and event logs.
The Resource Manager type is resource-mgr. Use this service type in the API URL for all requests related to
Resource Manager.
Resource Manager.
Policy Manager
Policy Manager is the central repository for device configuration profiles, service policies, service profiles, and all
associated artifacts. When a compute firewall is associated with a VSG from Resource Manager, the VSG queries
Policy Manager to resolve the device profile, service profiles, and all referenced policies. The VSG then configures
itself according to the information retrieved from Policy Manager. The same process is used when an edge firewall
is associated with an ASA 1000V.
associated artifacts. When a compute firewall is associated with a VSG from Resource Manager, the VSG queries
Policy Manager to resolve the device profile, service profiles, and all referenced policies. The VSG then configures
itself according to the information retrieved from Policy Manager. The same process is used when an edge firewall
is associated with an ASA 1000V.
Policy Manager provides the following services:
●
Using the user input, defines:
- Firewall device profiles
- Object groups
- Policies
- Policy rules with conditions on:
- Network attributes such as protocol, source or destination, IP address, and port.
- VM attributes such as instance name, guest OS, zone, parent application, port profile, cluster,
resource pool, hostname, and hypervisor.
- Custom attributes.
- Policy sets
- Security profile dictionary and custom attributes
- Service profiles
- Prime Network Services Controller system management device profiles and policies for NTP, DNS,
syslog, and faults.
- Virtual zones (vZones)
●
Using the user input, assigns policies and policy sets.
●
Distributes service policies, service profiles, device profiles, and associated objects to edge and compute
firewall instances.
firewall instances.
●
Maintains diagnostic information such as audit logs, faults, and event logs.
The Policy Manager service type is policy-mgr. Use this service type in the API URL for all requests related to
Policy Manager.
Policy Manager.
VM Manager
M Manager is responsible for interacting with VMware vCenter and maintaining the VM information retrieved from
vCenter. It is a backend service without any user-accessible services. The VM Manager service type is vm-mgr.
vCenter. It is a backend service without any user-accessible services. The VM Manager service type is vm-mgr.
Prime Network Services Controller XML API
The Prime Network Services Controller XML API is a programmatic way of integrating and interacting with Prime
Network Services Controller. The API interface accepts XML documents by using the HTTPS protocol. Developers
can use any programming language to generate XML documents that contain the API methods. Configuration and
state information is stored in a hierarchical tree structure known as the management information tree, and is
completely exposed through the XML API.
Network Services Controller. The API interface accepts XML documents by using the HTTPS protocol. Developers
can use any programming language to generate XML documents that contain the API methods. Configuration and
state information is stored in a hierarchical tree structure known as the management information tree, and is
completely exposed through the XML API.