API Description | API Path |
---|---|
List all Service Definitions registered on given enforcement point.List all Service Definitions registered on given enforcement point. |
GET /policy/api/v1/enforcement-points/<enforcement-point-id>/service-definitions
|
Create a Service Definition on given enforcement point.Create a Service Definition on given enforcement point. |
POST /policy/api/v1/enforcement-points/<enforcement-point-id>/service-definitions
|
Delete an existing Service Definition on the given enforcement pointDelete an existing Service Definition on the given enforcement point. |
DELETE /policy/api/v1/enforcement-points/<enforcement-point-id>/service-definitions/<service-definition-id>
|
Read Service Definition with given service-definition-id.Read Service Definition with given service-definition-id. |
GET /policy/api/v1/enforcement-points/<enforcement-point-id>/service-definitions/<service-definition-id>
|
Update an existing Service Definition on the given enforcement pointUpdate an existing Service Definition on the given enforcement point. |
PUT /policy/api/v1/enforcement-points/<enforcement-point-id>/service-definitions/<service-definition-id>
|
List all DNS security profilesList all DNS security profiles |
GET /policy/api/v1/infra/dns-security-profiles
GET /policy/api/v1/global-infra/dns-security-profiles |
Delete DNS security profileDelete DNS security profile |
DELETE /policy/api/v1/infra/dns-security-profiles/<profile-id>
DELETE /policy/api/v1/global-infra/dns-security-profiles/<profile-id> |
Read the DNS Forwarder for the given tier-0 instanceRead the DNS Forwarder for the given tier-0 instance |
GET /policy/api/v1/infra/dns-security-profiles/<profile-id>
GET /policy/api/v1/global-infra/dns-security-profiles/<profile-id> |
Create or update DNS security profileCreate or update DNS security profile |
PATCH /policy/api/v1/infra/dns-security-profiles/<profile-id>
PATCH /policy/api/v1/global-infra/dns-security-profiles/<profile-id> |
Create or update DNS security profileCreate or update DNS security profile |
PUT /policy/api/v1/infra/dns-security-profiles/<profile-id>
PUT /policy/api/v1/global-infra/dns-security-profiles/<profile-id> |
List communication mapsList all communication maps for a domain. This API is deprecated. Please use the following API instead. GET /infra/domains/domain-id/security-policies |
GET /policy/api/v1/infra/domains/<domain-id>/communication-maps
(Deprecated)
|
Deletes a communication map from this domainDeletes the communication map along with all the communication entries This API is deprecated. Please use the following API instead. DELETE /infra/domains/domain-id/security-policies/security-policy-id |
DELETE /policy/api/v1/infra/domains/<domain-id>/communication-maps/<communication-map-id>
(Deprecated)
|
Read communication-mapRead communication-map for a domain. This API is deprecated. Please use the following API instead. GET /infra/domains/domain-id/security-policies/security-policy-id |
GET /policy/api/v1/infra/domains/<domain-id>/communication-maps/<communication-map-id>
(Deprecated)
|
Patch communication mapPatch the communication map for a domain. If a communication map for the given communication-map-id is not present, the object will get created and if it is present it will be updated. This is a full replace This API is deprecated. Please use the following API instead. PATCH /infra/domains/domain-id/security-policies/security-policy-id |
PATCH /policy/api/v1/infra/domains/<domain-id>/communication-maps/<communication-map-id>
(Deprecated)
|
Revise the positioning of communication mapsThis is used to set a precedence of a communication map w.r.t others. This API is deprecated. Please use the following API instead. POST /infra/domains/domain-id/security-policies/security-policy-id?action=revise |
POST /policy/api/v1/infra/domains/<domain-id>/communication-maps/<communication-map-id>?action=revise
(Deprecated)
|
Create or Update communication mapCreate or Update the communication map for a domain. This is a full replace. All the CommunicationEntries are replaced. This API is deprecated. Please use the following API instead. PUT /infra/domains/domain-id/security-policies/security-policy-id |
PUT /policy/api/v1/infra/domains/<domain-id>/communication-maps/<communication-map-id>
(Deprecated)
|
List CommunicationEntriesList CommunicationEntries This API is deprecated. Please use the following API instead. GET /infra/domains/domain-id/security-policies/security-policy-id/rules |
GET /policy/api/v1/infra/domains/<domain-id>/communication-maps/<communication-map-id>/communication-entries
(Deprecated)
|
Delete CommunicationEntryDelete CommunicationEntry This API is deprecated. Please use the following API instead. DELETE /infra/domains/domain-id/security-policies/security-policy-id/rules/rule-id |
DELETE /policy/api/v1/infra/domains/<domain-id>/communication-maps/<communication-map-id>/communication-entries/<communication-entry-id>
(Deprecated)
|
Read CommunicationEntryRead CommunicationEntry This API is deprecated. Please use the following API instead. GET /infra/domains/domain-id/security-policies/security-policy-id/rules/rule-id |
GET /policy/api/v1/infra/domains/<domain-id>/communication-maps/<communication-map-id>/communication-entries/<communication-entry-id>
(Deprecated)
|
Patch a CommunicationEntryPatch the CommunicationEntry. If a communication entry for the given communication-entry-id is not present, the object will get created and if it is present it will be updated. This is a full replace This API is deprecated. Please use the following API instead. PATCH /infra/domains/domain-id/security-policies/security-policy-id/rules/rule-id |
PATCH /policy/api/v1/infra/domains/<domain-id>/communication-maps/<communication-map-id>/communication-entries/<communication-entry-id>
(Deprecated)
|
Revise the positioning of communication entryThis is used to re-order a communictation entry within a communication map. This API is deprecated. Please use the following API instead. POST /infra/domains/domain-id/security-policies/security-policy-id/rules/rule-id?action=revise |
POST /policy/api/v1/infra/domains/<domain-id>/communication-maps/<communication-map-id>/communication-entries/<communication-entry-id>?action=revise
(Deprecated)
|
Create or update a CommunicationEntryUpdate the CommunicationEntry. If a CommunicationEntry with the communication-entry-id is not already present, this API fails with a 404. Creation of CommunicationEntries is not allowed using this API. This API is deprecated. Please use the following API instead PUT /infra/domains/domain-id/security-policies/securit-policy-id/rules/rule-id |
PUT /policy/api/v1/infra/domains/<domain-id>/communication-maps/<communication-map-id>/communication-entries/<communication-entry-id>
(Deprecated)
|
Delete Endpoint policyDelete Endpoint policy. |
DELETE /policy/api/v1/infra/domains/<domain-id>/endpoint-policies/<endpoint-policy-id>
|
Read Endpoint policyRead Endpoint policy. |
GET /policy/api/v1/infra/domains/<domain-id>/endpoint-policies/<endpoint-policy-id>
|
Create or update Endpoint policyCreate or update the Endpoint policy. |
PATCH /policy/api/v1/infra/domains/<domain-id>/endpoint-policies/<endpoint-policy-id>
|
Create or update Endpoint policyCreate or update the Endpoint policy. |
PUT /policy/api/v1/infra/domains/<domain-id>/endpoint-policies/<endpoint-policy-id>
|
List Endpoint rulesList Endpoint rules |
GET /policy/api/v1/infra/domains/<domain-id>/endpoint-policies/<endpoint-policy-id>/endpoint-rules
|
Delete EndpointRuleDelete EndpointRule |
DELETE /policy/api/v1/infra/domains/<domain-id>/endpoint-policies/<endpoint-policy-id>/endpoint-rules/<endpoint-rule-id>
|
Read Endpoint ruleRead Endpoint rule |
GET /policy/api/v1/infra/domains/<domain-id>/endpoint-policies/<endpoint-policy-id>/endpoint-rules/<endpoint-rule-id>
|
Update Endpoint ruleCreate a Endpoint rule with the endpoint-rule-id is not already present, otherwise update the Endpoint Rule. |
PATCH /policy/api/v1/infra/domains/<domain-id>/endpoint-policies/<endpoint-policy-id>/endpoint-rules/<endpoint-rule-id>
|
Update Endpoint ruleCreate a Endpoint rule with the endpoint-rule-id is not already present, otherwise update the Endpoint Rule. |
PUT /policy/api/v1/infra/domains/<domain-id>/endpoint-policies/<endpoint-policy-id>/endpoint-rules/<endpoint-rule-id>
|
List gateway policiesList all gateway policies for specified Domain. |
GET /policy/api/v1/infra/domains/<domain-id>/gateway-policies
GET /policy/api/v1/global-infra/domains/<domain-id>/gateway-policies |
Delete GatewayPolicyDelete GatewayPolicy |
DELETE /policy/api/v1/infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>
|
Read gateway policyRead gateway policy for a domain. |
GET /policy/api/v1/infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>
GET /policy/api/v1/global-infra/domains/<domain-id>/gateway-policies/<gateway-policy-id> |
Update gateway policyUpdate the gateway policy for a domain. This is a full replace. All the rules are replaced. |
PATCH /policy/api/v1/infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>
|
Revise the positioning of gateway policyThis is used to set a precedence of a gateway policy w.r.t others. |
POST /policy/api/v1/infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>?action=revise
|
Update gateway policyUpdate the gateway policy for a domain. This is a full replace. All the rules are replaced. |
PUT /policy/api/v1/infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>
|
List rulesList rules |
GET /policy/api/v1/infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>/rules
GET /policy/api/v1/global-infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>/rules |
Delete ruleDelete rule |
DELETE /policy/api/v1/infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>/rules/<rule-id>
|
Read ruleRead rule |
GET /policy/api/v1/infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>/rules/<rule-id>
GET /policy/api/v1/global-infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>/rules/<rule-id> |
Update gateway ruleUpdate the gateway rule. Create new rule if a rule with the rule-id is not already present. |
PATCH /policy/api/v1/infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>/rules/<rule-id>
|
Revise the positioning of gateway ruleThis is used to re-order a gateway rule within a gateway policy. |
POST /policy/api/v1/infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>/rules/<rule-id>?action=revise
|
Update gateway ruleUpdate the gateway rule. Create new rule if a rule with the rule-id is not already present. |
PUT /policy/api/v1/infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>/rules/<rule-id>
|
Get gateway rule statisticsGet statistics of a gateway rule. - no enforcement point path specified: Stats will be evaluated on each enforcement. point. - {enforcement_point_path}: Stats are evaluated only on the given enforcement point. |
GET /policy/api/v1/infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>/rules/<rule-id>/statistics
GET /policy/api/v1/global-infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>/rules/<rule-id>/statistics |
Get gateway policy statisticsGet statistics of a gateay policy. - no enforcement point path specified: Stats will be evaluated on each enforcement. point. - {enforcement_point_path}: Stats are evaluated only on the given enforcement point. |
GET /policy/api/v1/infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>/statistics
GET /policy/api/v1/global-infra/domains/<domain-id>/gateway-policies/<gateway-policy-id>/statistics |
Get DNS security profile binding mapAPI will get DNS security profile binding map |
GET /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/dns-security-profile-binding-maps
GET /policy/api/v1/global-infra/domains/<domain-id>/groups/<group-id>/dns-security-profile-binding-maps |
Delete DNS security profile binding mapAPI will delete DNS security profile binding map |
DELETE /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/dns-security-profile-binding-maps/<dns-security-profile-binding-map-id>
|
Get DNS security profile binding mapAPI will get DNS security profile binding map |
GET /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/dns-security-profile-binding-maps/<dns-security-profile-binding-map-id>
GET /policy/api/v1/global-infra/domains/<domain-id>/groups/<group-id>/dns-security-profile-binding-maps/<dns-security-profile-binding-map-id> |
Create or update DNS security profile binding mapAPI will create or update DNS security profile binding map |
PATCH /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/dns-security-profile-binding-maps/<dns-security-profile-binding-map-id>
|
Update DNS security profile binding mapAPI will update DNS security profile binding map |
PUT /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/dns-security-profile-binding-maps/<dns-security-profile-binding-map-id>
|
List Firewall Flood Protection Profile Binding MapsAPI will list all Firewall Flood Protection Profile Binding Maps in current group id. |
GET /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/firewall-flood-protection-profile-binding-maps
GET /policy/api/v1/global-infra/domains/<domain-id>/groups/<group-id>/firewall-flood-protection-profile-binding-maps |
Delete Firewall Flood Protection Profile BindingAPI will delete Firewall Flood Protection Profile Binding |
DELETE /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/firewall-flood-protection-profile-binding-maps/<firewall-flood-protection-profile-binding-map-id>
|
Get Firewall Flood Protection Profile Binding MapAPI will get Firewall Flood Protection Profile Binding Map |
GET /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/firewall-flood-protection-profile-binding-maps/<firewall-flood-protection-profile-binding-map-id>
GET /policy/api/v1/global-infra/domains/<domain-id>/groups/<group-id>/firewall-flood-protection-profile-binding-maps/<firewall-flood-protection-profile-binding-map-id> |
Create or update Firewall Flood Protection Profile Binding MapAPI will create or update Firewall Flood Protection profile binding map |
PATCH /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/firewall-flood-protection-profile-binding-maps/<firewall-flood-protection-profile-binding-map-id>
|
Update Firewall Flood Protection Profile Binding MapAPI will update Firewall Flood Protection Profile Binding Map |
PUT /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/firewall-flood-protection-profile-binding-maps/<firewall-flood-protection-profile-binding-map-id>
|
List Firewall Session Timer Profile Binding MapsAPI will list all Firewall Session Timer Profile Binding Maps in current group id. |
GET /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/firewall-session-timer-profile-binding-maps
GET /policy/api/v1/global-infra/domains/<domain-id>/groups/<group-id>/firewall-session-timer-profile-binding-maps |
Delete Firewall Session Timer Profile BindingAPI will delete Firewall Session Timer Profile Binding |
DELETE /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/firewall-session-timer-profile-binding-maps/<firewall-session-timer-profile-binding-map-id>
|
Get Firewall Session Timer Profile Binding MapAPI will get Firewall Session Timer Profile Binding Map |
GET /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/firewall-session-timer-profile-binding-maps/<firewall-session-timer-profile-binding-map-id>
GET /policy/api/v1/global-infra/domains/<domain-id>/groups/<group-id>/firewall-session-timer-profile-binding-maps/<firewall-session-timer-profile-binding-map-id> |
Create or update Firewall Session Timer Profile Binding MapAPI will create or update Firewall Session Timer profile binding map |
PATCH /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/firewall-session-timer-profile-binding-maps/<firewall-session-timer-profile-binding-map-id>
|
Update Firewall Session Timer Profile Binding MapAPI will update Firewall Session Timer Profile Binding Map |
PUT /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/firewall-session-timer-profile-binding-maps/<firewall-session-timer-profile-binding-map-id>
|
List Group Monitoring Profile Binding MapsAPI will list all Group Monitoring Profile Binding Maps in current group id. |
GET /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/group-monitoring-profile-binding-maps
GET /policy/api/v1/global-infra/domains/<domain-id>/groups/<group-id>/group-monitoring-profile-binding-maps |
Delete Group Monitoring Profile BindingAPI will delete Group Monitoring Profile Binding |
DELETE /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/group-monitoring-profile-binding-maps/<group-monitoring-profile-binding-map-id>
|
Get Group Monitoring Profile Binding MapAPI will get Group Monitoring Profile Binding Map |
GET /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/group-monitoring-profile-binding-maps/<group-monitoring-profile-binding-map-id>
GET /policy/api/v1/global-infra/domains/<domain-id>/groups/<group-id>/group-monitoring-profile-binding-maps/<group-monitoring-profile-binding-map-id> |
Create Group Monitoring Profile Binding MapAPI will create group monitoring profile binding map |
PATCH /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/group-monitoring-profile-binding-maps/<group-monitoring-profile-binding-map-id>
|
Update Group Monitoring Profile Binding MapAPI will update Group Monitoring Profile Binding Map |
PUT /policy/api/v1/infra/domains/<domain-id>/groups/<group-id>/group-monitoring-profile-binding-maps/<group-monitoring-profile-binding-map-id>
|
List IDS security policiesList intrusion detection system security policies. |
GET /policy/api/v1/infra/domains/<domain-id>/intrusion-service-policies
|
Delete IDS security policyDelete intrusion detection system security policy. |
DELETE /policy/api/v1/infra/domains/<domain-id>/intrusion-service-policies/<policy-id>
|
Get IDS security policy.Read intrusion detection system security policy. |
GET /policy/api/v1/infra/domains/<domain-id>/intrusion-service-policies/<policy-id>
|
Patch IDS security policyPatch intrusion detection system security policy for a domain. |
PATCH /policy/api/v1/infra/domains/<domain-id>/intrusion-service-policies/<policy-id>
|
Revise the positioning of IDS security policiesThis is used to set a precedence of a security policy w.r.t others. |
POST /policy/api/v1/infra/domains/<domain-id>/intrusion-service-policies/<policy-id>?action=revise
|
create or update IDS security policyUpdate intrusion detection system security policy for a domain. |
PUT /policy/api/v1/infra/domains/<domain-id>/intrusion-service-policies/<policy-id>
|
List IDS rulesList intrusion detection rules. |
GET /policy/api/v1/infra/domains/<domain-id>/intrusion-service-policies/<policy-id>/rules
|
Delete IDS ruleDelete intrusion detection rule. |
DELETE /policy/api/v1/infra/domains/<domain-id>/intrusion-service-policies/<policy-id>/rules/<rule-id>
|
Get IDS rule.Read intrusion detection rule |
GET /policy/api/v1/infra/domains/<domain-id>/intrusion-service-policies/<policy-id>/rules/<rule-id>
|
Patch IDS rulePatch intrusion detection system rule. |
PATCH /policy/api/v1/infra/domains/<domain-id>/intrusion-service-policies/<policy-id>/rules/<rule-id>
|
Revise the positioning of IDS ruleThis is used to re-order a rule within a security policy. |
POST /policy/api/v1/infra/domains/<domain-id>/intrusion-service-policies/<policy-id>/rules/<rule-id>?action=revise
|
create or update IDS ruleUpdate intrusion detection system rule. |
PUT /policy/api/v1/infra/domains/<domain-id>/intrusion-service-policies/<policy-id>/rules/<rule-id>
|
List redirection policys for a domainList redirection policys for a domain |
GET /policy/api/v1/infra/domains/<domain-id>/redirection-policies
|
Delete redirection policyDelete redirection policy. |
DELETE /policy/api/v1/infra/domains/<domain-id>/redirection-policies/<redirection-policy-id>
|
Read redirection policyRead redirection policy. |
GET /policy/api/v1/infra/domains/<domain-id>/redirection-policies/<redirection-policy-id>
|
Create or update redirection policyCreate or update the redirection policy. |
PATCH /policy/api/v1/infra/domains/<domain-id>/redirection-policies/<redirection-policy-id>
|
Create or update redirection policyCreate or update the redirection policy. |
PUT /policy/api/v1/infra/domains/<domain-id>/redirection-policies/<redirection-policy-id>
|
List rulesList rules |
GET /policy/api/v1/infra/domains/<domain-id>/redirection-policies/<redirection-policy-id>/rules
|
Delete RedirectionRuleDelete RedirectionRule |
DELETE /policy/api/v1/infra/domains/<domain-id>/redirection-policies/<redirection-policy-id>/rules/<rule-id>
|
Read ruleRead rule |
GET /policy/api/v1/infra/domains/<domain-id>/redirection-policies/<redirection-policy-id>/rules/<rule-id>
|
Update redirection ruleCreate a rule with the rule-id is not already present, otherwise update the rule. |
PATCH /policy/api/v1/infra/domains/<domain-id>/redirection-policies/<redirection-policy-id>/rules/<rule-id>
|
Update redirection ruleCreate a rule with the rule-id is not already present, otherwise update the rule. |
PUT /policy/api/v1/infra/domains/<domain-id>/redirection-policies/<redirection-policy-id>/rules/<rule-id>
|
List security policiesList all security policies for a domain. |
GET /policy/api/v1/infra/domains/<domain-id>/security-policies
GET /policy/api/v1/global-infra/domains/<domain-id>/security-policies |
Deletes a security policy from this domainDeletes the security policy along with all the rules |
DELETE /policy/api/v1/infra/domains/<domain-id>/security-policies/<security-policy-id>
|
Read security policyRead security policy for a domain. |
GET /policy/api/v1/infra/domains/<domain-id>/security-policies/<security-policy-id>
GET /policy/api/v1/global-infra/domains/<domain-id>/security-policies/<security-policy-id> |
Patch security policyPatch the security policy for a domain. If a security policy for the given security-policy-id is not present, the object will get created and if it is present it will be updated. This is a full replace |
PATCH /policy/api/v1/infra/domains/<domain-id>/security-policies/<security-policy-id>
|
Revise the positioning of security policiesThis is used to set a precedence of a security policy w.r.t others. |
POST /policy/api/v1/infra/domains/<domain-id>/security-policies/<security-policy-id>?action=revise
|
Create or Update security policyCreate or Update the security policy for a domain. This is a full replace. All the rules are replaced. |
PUT /policy/api/v1/infra/domains/<domain-id>/security-policies/<security-policy-id>
|
List rulesList rules |
GET /policy/api/v1/infra/domains/<domain-id>/security-policies/<security-policy-id>/rules
GET /policy/api/v1/global-infra/domains/<domain-id>/security-policies/<security-policy-id>/rules |
Delete ruleDelete rule |
DELETE /policy/api/v1/infra/domains/<domain-id>/security-policies/<security-policy-id>/rules/<rule-id>
|
Read ruleRead rule |
GET /policy/api/v1/infra/domains/<domain-id>/security-policies/<security-policy-id>/rules/<rule-id>
GET /policy/api/v1/global-infra/domains/<domain-id>/security-policies/<security-policy-id>/rules/<rule-id> |
Patch a rulePatch the rule. If Rule corresponding to the the given rule-id is not present, the object will get created and if it is present it will be updated. This is a full replace |
PATCH /policy/api/v1/infra/domains/<domain-id>/security-policies/<security-policy-id>/rules/<rule-id>
|
Revise the positioning of ruleThis is used to re-order a rule within a security policy. |
POST /policy/api/v1/infra/domains/<domain-id>/security-policies/<security-policy-id>/rules/<rule-id>?action=revise
|
Create or update a ruleUpdate the rule. Create new rule if a rule with the rule-id is not already present. |
PUT /policy/api/v1/infra/domains/<domain-id>/security-policies/<security-policy-id>/rules/<rule-id>
|
Get rule statisticsGet statistics of a rule. - no enforcement point path specified: Stats will be evaluated on each enforcement point. - {enforcement_point_path}: Stats are evaluated only on the given enforcement point. |
GET /policy/api/v1/infra/domains/<domain-id>/security-policies/<security-policy-id>/rules/<rule-id>/statistics
GET /policy/api/v1/global-infra/domains/<domain-id>/security-policies/<security-policy-id>/rules/<rule-id>/statistics |
Get security policy statisticsGet statistics of a security policy. - no enforcement point path specified: Stats will be evaluated on each enforcement point. - {enforcement_point_path}: Stats are evaluated only on the given enforcement point. |
GET /policy/api/v1/infra/domains/<domain-id>/security-policies/<security-policy-id>/statistics
GET /policy/api/v1/global-infra/domains/<domain-id>/security-policies/<security-policy-id>/statistics |
List Endpoint policiesList all Endpoint policies across all domains ordered by precedence. |
GET /policy/api/v1/infra/domains/endpoint-policies
|
List Firewall Flood Protection Profile Binding Maps for all domainsAPI will list all Firewall Flood Protection Profile Binding Maps across all domains. This API returns the binding maps order by the sequence number. |
GET /policy/api/v1/infra/domains/firewall-flood-protection-profile-binding-maps
|
List Firewall Session Timer Profile Binding Maps for all domainsAPI will list all Firewall Session Timer Profile Binding Maps across all domains. This API returns the binding maps order by the sequence number. |
GET /policy/api/v1/infra/domains/firewall-session-timer-profile-binding-maps
GET /policy/api/v1/global-infra/domains/firewall-session-timer-profile-binding-maps |
List redirection policysList all redirection policys across all domains ordered by precedence. |
GET /policy/api/v1/infra/domains/redirection-policies
|
List policy draftsList policy drafts. |
GET /policy/api/v1/infra/drafts
|
Delete a manual draftDelete a manual draft. |
DELETE /policy/api/v1/infra/drafts/<draft-id>
|
Read draftRead a draft for a given draft identifier. |
GET /policy/api/v1/infra/drafts/<draft-id>
|
Patch a manual draftCreate a new manual draft if the specified draft id does not correspond to an existing draft. Update the manual draft otherwise. Auto draft can not be updated. |
PATCH /policy/api/v1/infra/drafts/<draft-id>
|
Publish a draftRead a draft and publish it by applying changes onto current configuration. |
POST /policy/api/v1/infra/drafts/<draft-id>?action=publish
|
Create or update a manual draftCreate a new manual draft if the specified draft id does not correspond to an existing draft. Update the manual draft otherwise. Auto draft can not be updated. |
PUT /policy/api/v1/infra/drafts/<draft-id>
|
Get an aggregated configuration for the draftGet an aggregated configuration that will get applied onto current configuration during publish of this draft. The response is a hierarichal payload containing the aggregated configuration differences from the latest auto draft till the specified draft. |
GET /policy/api/v1/infra/drafts/<draft-id>/aggregated
|
Get a preview of a configuration after publish of a draftGet a preview of a configuration which will be present after publish of a specified draft. The response essentially is a hierarichal payload containing the configuration, which will be in active after a specified draft gets published onto current configuration. |
GET /policy/api/v1/infra/drafts/<draft-id>/complete
|
Get PolicyFirewallSchedulersGet all PolicyFirewallSchedulers |
GET /policy/api/v1/infra/firewall-schedulers
GET /policy/api/v1/global-infra/firewall-schedulers |
Delete Policy Firewall SchedulerDeletes the specified PolicyFirewallScheduler. If scheduler is consumed in a security policy, it won't get deleted. |
DELETE /policy/api/v1/infra/firewall-schedulers/<firewall-scheduler-id>
|
Get PolicyFirewallSchedulerGet a PolicyFirewallScheduler by id |
GET /policy/api/v1/infra/firewall-schedulers/<firewall-scheduler-id>
GET /policy/api/v1/global-infra/firewall-schedulers/<firewall-scheduler-id> |
Create or Update PolicyFirewallSchedulerCreates/Updates a PolicyFirewallScheduler, which can be set at security policy. Note that at least one property out of "days", "start_date", "time_interval", "end_date" is required if "recurring" field is true. Also "start_time" and "end_time" should not be present. And if "recurring" field is false then "start_date" and "end_date" is mandatory, "start_time" and "end_time" is optional. Also the fields "days" and "time_interval" should not be present. |
PATCH /policy/api/v1/infra/firewall-schedulers/<firewall-scheduler-id>
|
Create or Update PolicyFirewallSchedulerUpdates a PolicyFirewallScheduler, which can be set at security policy. Note that at least one property out of "days", "start_date", "time_interval", "end_date" is required if "recurring" field is true. Also "start_time" and "end_time" should not be present. And if "recurring" field is false then "start_date" and "end_date" is mandatory, "start_time" and "end_time" is optional. Also the fields "days" and "time_interval" should not be present. |
PUT /policy/api/v1/infra/firewall-schedulers/<firewall-scheduler-id>
|
List Firewall Session Timer ProfilesAPI will list all Firewall Session Timer Profiles |
GET /policy/api/v1/infra/firewall-session-timer-profiles
GET /policy/api/v1/global-infra/firewall-session-timer-profiles |
Delete Firewall Session Timer ProfileAPI will delete Firewall Session Timer Profile |
DELETE /policy/api/v1/infra/firewall-session-timer-profiles/<firewall-session-timer-profile-id>
DELETE /policy/api/v1/global-infra/firewall-session-timer-profiles/<firewall-session-timer-profile-id> |
Get Firewall Session Timer ProfileAPI will get Firewall Session Timer Profile |
GET /policy/api/v1/infra/firewall-session-timer-profiles/<firewall-session-timer-profile-id>
GET /policy/api/v1/global-infra/firewall-session-timer-profiles/<firewall-session-timer-profile-id> |
Create or update Firewall Session Timer ProfileAPI will create/update Firewall Session Timer Profile |
PATCH /policy/api/v1/infra/firewall-session-timer-profiles/<firewall-session-timer-profile-id>
PATCH /policy/api/v1/global-infra/firewall-session-timer-profiles/<firewall-session-timer-profile-id> |
Update Firewall Session Timer ProfileAPI will update Firewall Session Timer Profile |
PUT /policy/api/v1/infra/firewall-session-timer-profiles/<firewall-session-timer-profile-id>
PUT /policy/api/v1/global-infra/firewall-session-timer-profiles/<firewall-session-timer-profile-id> |
List Flood Protection ProfilesAPI will list all Flood Protection Profiles |
GET /policy/api/v1/infra/flood-protection-profiles
GET /policy/api/v1/global-infra/flood-protection-profiles |
Delete Flood Protection ProfileAPI will delete Flood Protection Profile |
DELETE /policy/api/v1/infra/flood-protection-profiles/<flood-protection-profile-id>
DELETE /policy/api/v1/global-infra/flood-protection-profiles/<flood-protection-profile-id> |
Get Flood Protection ProfileAPI will get Flood Protection Profile |
GET /policy/api/v1/infra/flood-protection-profiles/<flood-protection-profile-id>
GET /policy/api/v1/global-infra/flood-protection-profiles/<flood-protection-profile-id> |
Create or update Flood Protection ProfileAPI will create/update Flood Protection Profile |
PATCH /policy/api/v1/infra/flood-protection-profiles/<flood-protection-profile-id>
PATCH /policy/api/v1/global-infra/flood-protection-profiles/<flood-protection-profile-id> |
Update Firewall Flood Protection ProfileAPI will update Firewall Flood Protection Profile |
PUT /policy/api/v1/infra/flood-protection-profiles/<flood-protection-profile-id>
PUT /policy/api/v1/global-infra/flood-protection-profiles/<flood-protection-profile-id> |
List Flood Protection ProfilesAPI will list all Flood Protection Profiles bindings. |
GET /policy/api/v1/infra/flood-protection-profiles/<flood-protection-profile-id>/bindings
GET /policy/api/v1/global-infra/flood-protection-profiles/<flood-protection-profile-id>/bindings |
Read partner servicesRead all the partner services available for service insertion |
GET /policy/api/v1/infra/partner-services
|
Read partner service identified by provided nameRead the specific partner service identified by provided name. |
GET /policy/api/v1/infra/partner-services/<service-name>
|
List service chainsList all the service chains available for service insertion |
GET /policy/api/v1/infra/service-chains
|
Delete Service chainThis API can be user to delete service chain with given service-chain-id. |
DELETE /policy/api/v1/infra/service-chains/<service-chain-id>
|
Read service chainThis API can be used to read service chain with given service-chain-id. |
GET /policy/api/v1/infra/service-chains/<service-chain-id>
|
Create service chainCreate Service chain representing the sequence in which 3rd party services must be consumed. |
PATCH /policy/api/v1/infra/service-chains/<service-chain-id>
|
Create or update service chainCreate or update Service chain representing the sequence in which 3rd party services must be consumed. |
PUT /policy/api/v1/infra/service-chains/<service-chain-id>
|
List service referencesList all the partner service references available for service insertion |
GET /policy/api/v1/infra/service-references
|
Delete Service ReferenceThis API can be used to delete a service reference with the given service-reference-id. |
DELETE /policy/api/v1/infra/service-references/<service-reference-id>
|
Read service referenceThis API can be used to read service reference with the given service-reference-id. |
GET /policy/api/v1/infra/service-references/<service-reference-id>
|
Create service referenceCreate Service Reference representing the intent to consume a given 3rd party service. |
PATCH /policy/api/v1/infra/service-references/<service-reference-id>
|
Create service referenceCreate Service Reference representing the intent to consume a given 3rd party service. |
PUT /policy/api/v1/infra/service-references/<service-reference-id>
|
List service profilesList all the service profiles available for given service reference |
GET /policy/api/v1/infra/service-references/<service-reference-id>/service-profiles
|
Delete Service profileThis API can be used to delete service profile with given service-profile-id |
DELETE /policy/api/v1/infra/service-references/<service-reference-id>/service-profiles/<service-profile-id>
|
Read service profileThis API can be used to read service profile with given service-profile-id |
GET /policy/api/v1/infra/service-references/<service-reference-id>/service-profiles/<service-profile-id>
|
Create service profileCreate Service profile to specify vendor template attri- butes for a given 3rd party service. |
PATCH /policy/api/v1/infra/service-references/<service-reference-id>/service-profiles/<service-profile-id>
|
Create or update service profileCreate or update Service profile to specify vendor temp- late attributes for a given 3rd party service. |
PUT /policy/api/v1/infra/service-references/<service-reference-id>/service-profiles/<service-profile-id>
|
Get Groups used in Redirection rules for a given Service Profile.List of Groups used in Redirection rules for a given Service Profile. |
GET /policy/api/v1/infra/service-references/<service-reference-id>/service-profiles/<service-profile-id>/group-associations
|
List all service chain mappings for given service profile.List all service chain mappings in the system for the given service profile. If no explicit enforcement point is provided in the request, will return for default. Else, will return for specified points. |
GET /policy/api/v1/infra/service-references/<service-reference-id>/service-profiles/<service-profile-id>/service-chain-mappings
|
List Session Timer ProfilesAPI will list all Session Timer Profiles bindings. |
GET /policy/api/v1/infra/session-timer-profiles/<session-timer-profile-id>/bindings
GET /policy/api/v1/global-infra/session-timer-profiles/<session-timer-profile-id>/bindings |
List Firewall CPU Memory Thresholds Profile Binding MapsAPI will list all Firewall CPU Memory Thresholds Profile Binding Maps. |
GET /policy/api/v1/infra/settings/firewall/cpu-mem-thresholds-profile-binding-maps
GET /policy/api/v1/global-infra/settings/firewall/cpu-mem-thresholds-profile-binding-maps |
Delete Firewall CPU Memory Thresholds Profile BindingAPI will delete Firewall CPU Memory Thresholds Profile Binding. |
DELETE /policy/api/v1/infra/settings/firewall/cpu-mem-thresholds-profile-binding-maps/<cpu-mem-thresholds-profile-binding-map-id>
|
Get Firewall CPU Memory Thresholds Profile Binding MapAPI will get Firewall CPU Memory Thresholds Profile Binding Map. |
GET /policy/api/v1/infra/settings/firewall/cpu-mem-thresholds-profile-binding-maps/<cpu-mem-thresholds-profile-binding-map-id>
|
Create or update Firewall CPU Memory Thresholds Profile Binding MapAPI will create or update Firewall CPU Memory Thresholds Profile binding map. |
PATCH /policy/api/v1/infra/settings/firewall/cpu-mem-thresholds-profile-binding-maps/<cpu-mem-thresholds-profile-binding-map-id>
|
Update Firewall CPU Memory Thresholds Profile Binding MapAPI will update Firewall CPU Memory Thresholds Profile Binding Map. |
PUT /policy/api/v1/infra/settings/firewall/cpu-mem-thresholds-profile-binding-maps/<cpu-mem-thresholds-profile-binding-map-id>
|
List all CPU and memory thresholds profilesList all CPU and memory thresholds profiles. |
GET /policy/api/v1/infra/settings/firewall/cpu-mem-thresholds-profiles
GET /policy/api/v1/global-infra/settings/firewall/cpu-mem-thresholds-profiles |
Delete CPU and memory thresholds profileDelete CPU and memory thresholds profile. |
DELETE /policy/api/v1/infra/settings/firewall/cpu-mem-thresholds-profiles/<profile-id>
DELETE /policy/api/v1/global-infra/settings/firewall/cpu-mem-thresholds-profiles/<profile-id> |
Read the CPU and memory thresholds profileRead the CPU and memory thresholds profile. |
GET /policy/api/v1/infra/settings/firewall/cpu-mem-thresholds-profiles/<profile-id>
GET /policy/api/v1/global-infra/settings/firewall/cpu-mem-thresholds-profiles/<profile-id> |
Create or update CPU and memory thresholds profileCreate or update CPU and memory thresholds profile. |
PATCH /policy/api/v1/infra/settings/firewall/cpu-mem-thresholds-profiles/<profile-id>
PATCH /policy/api/v1/global-infra/settings/firewall/cpu-mem-thresholds-profiles/<profile-id> |
Create or update CPU and memory thresholds profileCreate or update CPU and memory thresholds profile. |
PUT /policy/api/v1/infra/settings/firewall/cpu-mem-thresholds-profiles/<profile-id>
PUT /policy/api/v1/global-infra/settings/firewall/cpu-mem-thresholds-profiles/<profile-id> |
List compute cluster idfw ConfigurationAPI will list all compute cluster wise identity firewall configuration |
GET /policy/api/v1/infra/settings/firewall/idfw/cluster
|
Read compute cluster idfw configurationRead compute cluster identity firewall configuration |
GET /policy/api/v1/infra/settings/firewall/idfw/cluster/<cluster-id>
|
Patch compute cluster idfw configurationPatch compute cluster identity firewall configuration. |
PATCH /policy/api/v1/infra/settings/firewall/idfw/cluster/<cluster-id>
|
Create or update compute cluster idfw configurationUpdate the compute cluster idfw configuration |
PUT /policy/api/v1/infra/settings/firewall/idfw/cluster/<cluster-id>
|
Read idfw configuration for standalone hostRead identity firewall configuration for standalone host |
GET /policy/api/v1/infra/settings/firewall/idfw/standalone-host-switch-setting
|
Patch idfw configuration for standalone hostPatch identity firewall configuration for standalone host |
PATCH /policy/api/v1/infra/settings/firewall/idfw/standalone-host-switch-setting
|
Create or update idfw configuration for standalone hostUpdate the idfw configuration for standalone host |
PUT /policy/api/v1/infra/settings/firewall/idfw/standalone-host-switch-setting
|
Get dfw firewall configurationGet the current dfw firewall configurations. |
GET /policy/api/v1/infra/settings/firewall/security
|
Update dfw firewall configurationUpdate dfw firewall related configurations. |
PATCH /policy/api/v1/infra/settings/firewall/security
|
Update dfw firewall configurationUpdate dfw firewall related configurations. |
PUT /policy/api/v1/infra/settings/firewall/security
|
Read security policy exclude listRead exclude list for firewall |
GET /policy/api/v1/infra/settings/firewall/security/exclude-list
|
Patch exclusion list for security policyPatch exclusion list for security policy. |
PATCH /policy/api/v1/infra/settings/firewall/security/exclude-list
|
Filter the firewall exclude listFilter the firewall exclude list by the given object, to check whether the object is a member of this exclude list. |
POST /policy/api/v1/infra/settings/firewall/security/exclude-list?action=filter
|
Create or update exclusion list for security policyUpdate the exclusion list for security policy |
PUT /policy/api/v1/infra/settings/firewall/security/exclude-list
|
Get IDS system settingsIntrusion detection system settings. |
GET /policy/api/v1/infra/settings/firewall/security/intrusion-services
|
Patch Intrusion detection system settingsIntrusion detection system settings. |
PATCH /policy/api/v1/infra/settings/firewall/security/intrusion-services
|
Update Intrusion detection system settingsIntrusion detection system settings. |
PUT /policy/api/v1/infra/settings/firewall/security/intrusion-services
|
List IDS cluster configsList intrusion detection system cluster configs. |
GET /policy/api/v1/infra/settings/firewall/security/intrusion-services/cluster-configs
|
Read IDS cluster config.Read intrusion detection system cluster config |
GET /policy/api/v1/infra/settings/firewall/security/intrusion-services/cluster-configs/<cluster-id>
|
Patch IDS config on cluster levelPatch intrusion detection system on cluster level. |
PATCH /policy/api/v1/infra/settings/firewall/security/intrusion-services/cluster-configs/<cluster-id>
|
create or update IDS config on cluster levelUpdate intrusion detection system on cluster level. |
PUT /policy/api/v1/infra/settings/firewall/security/intrusion-services/cluster-configs/<cluster-id>
|
Read IDS configRead intrusion detection system config of standalone hosts. |
GET /policy/api/v1/infra/settings/firewall/security/intrusion-services/ids-standalone-host-config
|
Patch IDS configurationPatch intrusion detection system configuration on standalone hosts. |
PATCH /policy/api/v1/infra/settings/firewall/security/intrusion-services/ids-standalone-host-config
|
Create or update IDS configurationUpdate intrusion detection system configuration on standalone hosts. |
PUT /policy/api/v1/infra/settings/firewall/security/intrusion-services/ids-standalone-host-config
|
List IDS profilesList intrusion detection profiles. |
GET /policy/api/v1/infra/settings/firewall/security/intrusion-services/profiles
|
Delete IDS profileDelete intrusion detection profile. |
DELETE /policy/api/v1/infra/settings/firewall/security/intrusion-services/profiles/<profile-id>
|
Get IDS profile.Read intrusion detection profile |
GET /policy/api/v1/infra/settings/firewall/security/intrusion-services/profiles/<profile-id>
|
Patch IDS profilePatch intrusion detection system profile. |
PATCH /policy/api/v1/infra/settings/firewall/security/intrusion-services/profiles/<profile-id>
|
create or update IDS profileUpdate intrusion detection profile. |
PUT /policy/api/v1/infra/settings/firewall/security/intrusion-services/profiles/<profile-id>
|
Get IDS signature versionsIntrusion detection system signature versions. |
GET /policy/api/v1/infra/settings/firewall/security/intrusion-services/signature-versions
|
Change the state of IDS Signature VersionMake this IDS Signature version as ACTIVE version and other versions as NOTACTIVE. |
POST /policy/api/v1/infra/settings/firewall/security/intrusion-services/signature-versions?action=make_active_version
|
List IDS signaturesList intrusion detection system signatures. |
GET /policy/api/v1/infra/settings/firewall/security/intrusion-services/signature-versions/<version-id>/signatures
|
Upload IDS signatures bundleUpload IDS signatures bundle |
POST /policy/api/v1/infra/settings/firewall/security/intrusion-services/signatures?action=upload_signatures
|
Download and update IDS signaturesTrigger the process to Download and update the IDS signatures manually. |
POST /policy/api/v1/infra/settings/firewall/security/intrusion-services/signatures?action=update_signatures
|
Get IDS signature statusIntrusion detection system signatures status. |
GET /policy/api/v1/infra/settings/firewall/security/intrusion-services/signatures/status
|
Reset firewall rule statisticsSets firewall rule statistics counter to zero. This operation is supported for given category, for example: DFW i.e. for all layer3 firewall (transport nodes only) rules or EDGE i.e. for all layer3 edge firewall (edge nodes only) rules. - no enforcement point path specified: On global manager, it is mandatory to give an enforcement point path. On local manager, reset of stats will be executed for each enforcement point. - {enforcement_point_path}: Reset of stats will be executed only for the given enforcement point. |
POST /policy/api/v1/infra/settings/firewall/stats?action=reset
POST /policy/api/v1/global-infra/settings/firewall/stats?action=reset |
Delete PolicyUrlCategorizationConfigDelete PolicyUrlCategorizationConfig. If deleted, the URL categorization will be disabled for that edge cluster. |
DELETE /policy/api/v1/infra/sites/<site-id>/enforcement-points/<enforcement-point-id>/edge-clusters/<edge-cluster-id>/url-categorization-configs/<url-categorization-config-id>
|
Get PolicyUrlCategorizationConfigGets a PolicyUrlCategorizationConfig. This returns the details of the config like whether the URL categorization is enabled or disabled, the id of the context profiles which are used to filter the categories, and the update frequency of the data from the cloud. |
GET /policy/api/v1/infra/sites/<site-id>/enforcement-points/<enforcement-point-id>/edge-clusters/<edge-cluster-id>/url-categorization-configs/<url-categorization-config-id>
|
Create or Update PolicyUrlCategorizationConfigCreates/Updates a PolicyUrlCategorizationConfig. Creating or updating the PolicyUrlCategorizationConfig will enable or disable URL categorization for the given edge cluster. If the context_profiles field is empty, the edge cluster will detect all the categories of URLs. If context_profiles field has any context profiles, the edge cluster will detect only the categories listed within those context profiles. The context profiles should have attribute type URL_CATEGORY. The update_frequency specifies how frequently in minutes, the edge cluster will get updates about the URL data from the URL categorization cloud service. If the update_frequency is not specified, the default update frequency will be 30 min. |
PATCH /policy/api/v1/infra/sites/<site-id>/enforcement-points/<enforcement-point-id>/edge-clusters/<edge-cluster-id>/url-categorization-configs/<url-categorization-config-id>
|
Create or Update PolicyUrlCategorizationConfigCreates/Updates a PolicyUrlCategorizationConfig. Creating or updating the PolicyUrlCategorizationConfig will enable or disable URL categorization for the given edge cluster. If the context_profiles field is empty, the edge cluster will detect all the categories of URLs. If context_profiles field has any context profiles, the edge cluster will detect only the categories listed within those context profiles. The context profiles should have attribute type URL_CATEGORY. The update_frequency specifies how frequently in minutes, the edge cluster will get updates about the URL data from the URL categorization cloud service. If the update_frequency is not specified, the default update frequency will be 30 min. |
PUT /policy/api/v1/infra/sites/<site-id>/enforcement-points/<enforcement-point-id>/edge-clusters/<edge-cluster-id>/url-categorization-configs/<url-categorization-config-id>
|
Get list of gateway policies with rules that belong to the specific Tier-0 logical router.Get filtered view of gateway rules associated with the Tier-0. The gateay policies are returned in the order of category and precedence. |
GET /policy/api/v1/infra/tier-0s/<tier-0-id>/gateway-firewall
GET /policy/api/v1/global-infra/tier-0s/<tier-0-id>/gateway-firewall |
Read all BYOD service instance objects under a tier-0Read all BYOD service instance objects under a tier-0 |
GET /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/byod-service-instances
|
Delete BYOD policy service instanceDelete BYOD policy service instance |
DELETE /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/byod-service-instances/<service-instance-id>
|
Read byod service instanceRead byod service instance |
GET /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/byod-service-instances/<service-instance-id>
|
Create service instanceCreate BYOD Service Instance which represent instance of service definition created on manager. |
PATCH /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/byod-service-instances/<service-instance-id>
|
Create service instanceCreate BYOD Service Instance which represent instance of service definition created on manager. |
PUT /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/byod-service-instances/<service-instance-id>
|
List all service instance endpointList all service instance endpoint |
GET /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/byod-service-instances/<service-instance-id>/service-instance-endpoints
|
Delete policy service instance endpointDelete policy service instance endpoint |
DELETE /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/byod-service-instances/<service-instance-id>/service-instance-endpoints/<service-instance-endpoint-id>
|
Read service instance endpointRead service instance endpoint |
GET /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/byod-service-instances/<service-instance-id>/service-instance-endpoints/<service-instance-endpoint-id>
|
Create service instance endpointCreate Service instance endpoint. |
PATCH /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/byod-service-instances/<service-instance-id>/service-instance-endpoints/<service-instance-endpoint-id>
|
Create service instance endpointCreate service instance endpoint with given request if not exist. Modification of service instance endpoint is not allowed. |
PUT /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/byod-service-instances/<service-instance-id>/service-instance-endpoints/<service-instance-endpoint-id>
|
List all virtual endpointsList all virtual endpoints |
GET /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/endpoints/virtual-endpoints
|
Delete virtual endpointDelete virtual endpoint |
DELETE /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/endpoints/virtual-endpoints/<virtual-endpoint-id>
|
Read virtual endpointRead virtual endpoint with given id under given Tier0. |
GET /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/endpoints/virtual-endpoints/<virtual-endpoint-id>
|
Create or update virtual endpointCreate or update virtual endpoint. |
PATCH /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/endpoints/virtual-endpoints/<virtual-endpoint-id>
|
Create or update virtual endpointCreate or update virtual endpoint. |
PUT /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/endpoints/virtual-endpoints/<virtual-endpoint-id>
|
Read all service instance objects under a tier-0Read all service instance objects under a tier-0 |
GET /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/service-instances
|
Delete policy service instanceDelete policy service instance |
DELETE /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/service-instances/<service-instance-id>
|
Read service instanceRead service instance |
GET /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/service-instances/<service-instance-id>
|
Create service instanceCreate Service Instance. Please note that, only display_name, description and deployment_spec_name are allowed to be modified in an exisiting entity. If the deployment spec name is changed, it will trigger the upgrade operation for the SVMs. |
PATCH /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/service-instances/<service-instance-id>
|
Create service instanceCreate service instance. Please note that, only display_name, description and deployment_spec_name are allowed to be modified in an exisiting entity. If the deployment spec name is changed, it will trigger the upgrade operation for the SVMs. |
PUT /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/service-instances/<service-instance-id>
|
Get statistics for all runtimes associated with this PolicyServiceInstanceGet statistics for all data NICs on all runtimes associated with this PolicyServiceInstance. |
GET /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-service-id>/service-instances/<service-instance-id>/statistics
|
Get list of gateway policies with rules that belong to the specific Tier-0 LocalServices.Get filtered view of Gateway Firewall rules associated with the Tier-0 Locale Services. The gateway policies are returned in the order of category and sequence number. |
GET /policy/api/v1/infra/tier-0s/<tier-0-id>/locale-services/<locale-services-id>/gateway-firewall
GET /policy/api/v1/global-infra/tier-0s/<tier-0-id>/locale-services/<locale-services-id>/gateway-firewall |
Delete Flood Protection Profile Binding for Tier-0 Logical RouterAPI will delete Flood Protection Profile Binding for Tier-0 Logical Router. |
DELETE /policy/api/v1/infra/tier-0s/<tier0-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
|
Get Flood Protection Profile Binding Map for Tier-0 Logical RouterAPI will get Flood Protection Profile Binding Map for Tier-0 Logical Router. |
GET /policy/api/v1/infra/tier-0s/<tier0-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
GET /policy/api/v1/global-infra/tier-0s/<tier0-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id> |
Create or update Flood Protection Profile Binding Map for Tier-0 Logical RouterAPI will create or update Flood Protection profile binding map for Tier-0 Logical Router. |
PATCH /policy/api/v1/infra/tier-0s/<tier0-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
|
Create or update Flood Protection Profile Binding Map for Tier-0 Logical RouterAPI will create or update Flood Protection profile binding map for Tier-0 Logical Router. |
PUT /policy/api/v1/infra/tier-0s/<tier0-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
|
Delete Flood Protection Profile Binding for Tier-0 Logical Router LocaleServicesAPI will delete Flood Protection Profile Binding for Tier-0 Logical Router LocaleServices. |
DELETE /policy/api/v1/infra/tier-0s/<tier0-id>/locale-services/<locale-services-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
|
Get Flood Protection Profile Binding Map for Tier-0 Logical Router LocaleServicesAPI will get Flood Protection Profile Binding Map for Tier-0 Logical Router LocaleServices. |
GET /policy/api/v1/infra/tier-0s/<tier0-id>/locale-services/<locale-services-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
GET /policy/api/v1/global-infra/tier-0s/<tier0-id>/locale-services/<locale-services-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id> |
Create or update Flood Protection Profile Binding Map for Tier-0 Logical Router LocaleServicesAPI will create or update Flood Protection profile binding map for Tier-0 Logical Router LocaleServices. |
PATCH /policy/api/v1/infra/tier-0s/<tier0-id>/locale-services/<locale-services-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
|
Create or update Flood Protection Profile Binding Map for Tier-0 Logical Router LocaleServicesAPI will create or update Flood Protection profile binding map for Tier-0 Logical Router LocaleServices. |
PUT /policy/api/v1/infra/tier-0s/<tier0-id>/locale-services/<locale-services-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
|
Delete Session Timer Profile Binding for Tier-0 Logical Router LocaleServicesAPI will delete Session Timer Profile Binding for Tier-0 Logical Router LocaleServices. |
DELETE /policy/api/v1/infra/tier-0s/<tier0-id>/locale-services/<locale-services-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
|
Get Session Timer Profile Binding Map for Tier-0 Logical Router LocaleServicesAPI will get Session Timer Profile Binding Map for Tier-0 Logical Router LocaleServices. |
GET /policy/api/v1/infra/tier-0s/<tier0-id>/locale-services/<locale-services-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
GET /policy/api/v1/global-infra/tier-0s/<tier0-id>/locale-services/<locale-services-id>/session-timer-profile-bindings/<session-timer-profile-binding-id> |
Create or update Session Timer Profile Binding Map for Tier-0 Logical Router LocaleServicesAPI will create or update Session Timer profile binding map for Tier-0 Logical Router LocaleServices. |
PATCH /policy/api/v1/infra/tier-0s/<tier0-id>/locale-services/<locale-services-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
|
Create or update Session Timer Profile Binding Map for Tier-0 Logical Router LocaleServicesAPI will create or update Session Timer profile binding map for Tier-0 Logical Router LocaleServices. |
PUT /policy/api/v1/infra/tier-0s/<tier0-id>/locale-services/<locale-services-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
|
Delete Session Timer Profile Binding for Tier-0 Logical RouterAPI will delete Session Timer Profile Binding for Tier-0 Logical Router. |
DELETE /policy/api/v1/infra/tier-0s/<tier0-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
|
Get Session Timer Profile Binding Map for Tier-0 Logical RouterAPI will get Session Timer Profile Binding Map for Tier-0 Logical Router. |
GET /policy/api/v1/infra/tier-0s/<tier0-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
GET /policy/api/v1/global-infra/tier-0s/<tier0-id>/session-timer-profile-bindings/<session-timer-profile-binding-id> |
Create or update Session Timer Profile Binding Map for Tier-0 Logical RouterAPI will create or update Session Timer profile binding map for Tier-0 Logical Router. |
PATCH /policy/api/v1/infra/tier-0s/<tier0-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
|
Create or update Session Timer Profile Binding Map for Tier-0 Logical RouterAPI will create or update Session Timer profile binding map for Tier-0 Logical Router. |
PUT /policy/api/v1/infra/tier-0s/<tier0-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
|
Get list of gateway policies with rules that belong to the specific Tier-1.Get filtered view of Gateway Firewall rules associated with the Tier-1. The gateway policies are returned in the order of category and sequence number. |
GET /policy/api/v1/infra/tier-1s/<tier-1-id>/gateway-firewall
GET /policy/api/v1/global-infra/tier-1s/<tier-1-id>/gateway-firewall |
Read all service instance objects under a tier-1Read all service instance objects under a tier-1 |
GET /policy/api/v1/infra/tier-1s/<tier-1-id>/locale-services/<locale-service-id>/service-instances
|
Delete Tier1 policy service instanceDelete Tier1 policy service instance |
DELETE /policy/api/v1/infra/tier-1s/<tier-1-id>/locale-services/<locale-service-id>/service-instances/<service-instance-id>
|
Read Tier1 service instanceRead Tier1 service instance |
GET /policy/api/v1/infra/tier-1s/<tier-1-id>/locale-services/<locale-service-id>/service-instances/<service-instance-id>
|
Create Tier1 service instanceCreate Tier1 Service Instance. Please note that, only display_name, description and deployment_spec_name are allowed to be modified in an exisiting entity. If the deployment spec name is changed, it will trigger the upgrade operation for the SVMs. |
PATCH /policy/api/v1/infra/tier-1s/<tier-1-id>/locale-services/<locale-service-id>/service-instances/<service-instance-id>
|
Create Tier1 service instanceCreate Tier1 service instance. Please note that, only display_name, description and deployment_spec_name are allowed to be modified in an exisiting entity. If the deployment spec name is changed, it will trigger the upgrade operation for the SVMs. |
PUT /policy/api/v1/infra/tier-1s/<tier-1-id>/locale-services/<locale-service-id>/service-instances/<service-instance-id>
|
Get statistics for all runtimes associated with this Tier1 PolicyServiceInstanceGet statistics for all data NICs on all runtimes associated with this Tier1 PolicyServiceInstance. |
GET /policy/api/v1/infra/tier-1s/<tier-1-id>/locale-services/<locale-service-id>/service-instances/<service-instance-id>/statistics
|
Get list of gateway policies with rules that belong to the specific Tier-1 LocalServices.Get filtered view of Gateway Firewall rules associated with the Tier-1 Locale Services. The gateway policies are returned in the order of category and sequence number. |
GET /policy/api/v1/infra/tier-1s/<tier-1-id>/locale-services/<locale-services-id>/gateway-firewall
GET /policy/api/v1/global-infra/tier-1s/<tier-1-id>/locale-services/<locale-services-id>/gateway-firewall |
Delete Flood Protection Profile Binding for Tier-1 Logical RouterAPI will delete Flood Protection Profile Binding for Tier-1 Logical Router. |
DELETE /policy/api/v1/infra/tier-1s/<tier1-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
|
Get Flood Protection Profile Binding Map for Tier-1 Logical RouterAPI will get Flood Protection Profile Binding Map for Tier-1 Logical Router. |
GET /policy/api/v1/infra/tier-1s/<tier1-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
GET /policy/api/v1/global-infra/tier-1s/<tier1-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id> |
Create or update Flood Protection Profile Binding Map for Tier-1 Logical RouterAPI will create or update Flood Protection profile binding map for Tier-1 Logical Router. |
PATCH /policy/api/v1/infra/tier-1s/<tier1-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
|
Create or update Flood Protection Profile Binding Map for Tier-1 Logical RouterAPI will create or update Flood Protection profile binding map for Tier-1 Logical Router. |
PUT /policy/api/v1/infra/tier-1s/<tier1-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
|
Delete Flood Protection Profile Binding for Tier-1 Logical Router LocaleServicesAPI will delete Flood Protection Profile Binding for Tier-1 Logical Router LocaleServices. |
DELETE /policy/api/v1/infra/tier-1s/<tier1-id>/locale-services/<locale-services-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
|
Get Flood Protection Profile Binding Map for Tier-1 Logical Router LocaleServicesAPI will get Flood Protection Profile Binding Map for Tier-1 Logical Router LocaleServices. |
GET /policy/api/v1/infra/tier-1s/<tier1-id>/locale-services/<locale-services-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
GET /policy/api/v1/global-infra/tier-1s/<tier1-id>/locale-services/<locale-services-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id> |
Create or update Flood Protection Profile Binding Map for Tier-1 Logical Router LocaleServicesAPI will create or update Flood Protection profile binding map for Tier-1 Logical Router LocaleServices. |
PATCH /policy/api/v1/infra/tier-1s/<tier1-id>/locale-services/<locale-services-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
|
Create or update Flood Protection Profile Binding Map for Tier-1 Logical Router LocaleServicesAPI will create or update Flood Protection profile binding map for Tier-1 Logical Router LocaleServices. |
PUT /policy/api/v1/infra/tier-1s/<tier1-id>/locale-services/<locale-services-id>/flood-protection-profile-bindings/<flood-protection-profile-binding-id>
|
Delete Session Timer Profile Binding for Tier-1 Logical Router LocaleServicesAPI will delete Session Timer Profile Binding for Tier-1 Logical Router LocaleServices. |
DELETE /policy/api/v1/infra/tier-1s/<tier1-id>/locale-services/<locale-services-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
|
Get Session Timer Profile Binding Map for Tier-1 Logical Router LocaleServicesAPI will get Session Timer Profile Binding Map for Tier-1 Logical Router LocaleServices. |
GET /policy/api/v1/infra/tier-1s/<tier1-id>/locale-services/<locale-services-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
GET /policy/api/v1/global-infra/tier-1s/<tier1-id>/locale-services/<locale-services-id>/session-timer-profile-bindings/<session-timer-profile-binding-id> |
Create or update Session Timer Profile Binding Map for Tier-1 Logical Router LocaleServicesAPI will create or update Session Timer profile binding map for Tier-1 Logical Router LocaleServices. |
PATCH /policy/api/v1/infra/tier-1s/<tier1-id>/locale-services/<locale-services-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
|
Create or update Session Timer Profile Binding Map for Tier-1 Logical Router LocaleServicesAPI will create or update Session Timer profile binding map for Tier-1 Logical Router LocaleServices. |
PUT /policy/api/v1/infra/tier-1s/<tier1-id>/locale-services/<locale-services-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
|
Delete Session Timer Profile Binding for Tier-1 Logical RouterAPI will delete Session Timer Profile Binding for Tier-1 Logical Router. |
DELETE /policy/api/v1/infra/tier-1s/<tier1-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
|
Get Session Timer Profile Binding Map for Tier-1 Logical RouterAPI will get Session Timer Profile Binding Map for Tier-1 Logical Router. |
GET /policy/api/v1/infra/tier-1s/<tier1-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
GET /policy/api/v1/global-infra/tier-1s/<tier1-id>/session-timer-profile-bindings/<session-timer-profile-binding-id> |
Create or update Session Timer Profile Binding Map for Tier-1 Logical RouterAPI will create or update Session Timer profile binding map for Tier-1 Logical Router. |
PATCH /policy/api/v1/infra/tier-1s/<tier1-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
|
Create or update Session Timer Profile Binding Map for Tier-1 Logical RouterAPI will create or update Session Timer profile binding map for Tier-1 Logical Router. |
PUT /policy/api/v1/infra/tier-1s/<tier1-id>/session-timer-profile-bindings/<session-timer-profile-binding-id>
|
Get the list of URL categories.Gets the list of categories. This will provide all the supported categories along with their ids. Few examples of these categories are Shopping, Social Networks, Streaming sites, etc. |
GET /policy/api/v1/infra/url-categories
|
Get the list of reputation severityGets the list of reputation severities. This will provide all the supported severities along with their ids, min and max reputaitons. The min_reputation and max_reputation specify the range of the reputations which belong to a particular severity. For instance, any reputation between 1 to 20 belongs to the severity 'High Risk'. Similary a reputation between 81 to 100 belong to the severity 'Trustworthy'. |
GET /policy/api/v1/infra/url-reputation-severities
|