Service rule console for creating, viewing and updating template based service rules
First Claim
1. A non-transitory machine readable medium storing a program for managing service rules in a datacenter, the program comprising sets of instructions for:
- providing, for display on a display screen, a service rule management user interface (UI) comprising a service rule section for displaying service rules for processing by service nodes in the datacenter;
receiving a request to add service rules for data messages associated with network nodes that are deployed in the datacenter based on a deployment template;
in response to the request, adding a sub-section to the service rule section to display service rules associated with the deployment template in the displayed service rule management UI; and
to the sub-section, adding a service rule comprising a set of rule identifiers and a service parameter associated with a service to be performed on data messages that have attribute sets that match the rule identifier set.
1 Assignment
0 Petitions
Accused Products
Abstract
Some embodiments of the invention introduce cloud template awareness in the service policy framework. Some embodiments provide one or more service rule processing engines that natively support (1) template-specific dynamic groups and template-specific rules, and (2) dynamic security tag concepts. A service rule processing engine of some embodiments natively supports template-specific dynamic groups and rules as it can directly process service rules that are defined in terms of dynamic component groups, template identifiers, template instance identifiers, and/or template match criteria. Examples of such services can include any kind of middlebox services, such as firewalls, load balancers, network address translators, intrusion detection systems, intrusion prevention systems, etc.
-
Citations
21 Claims
-
1. A non-transitory machine readable medium storing a program for managing service rules in a datacenter, the program comprising sets of instructions for:
-
providing, for display on a display screen, a service rule management user interface (UI) comprising a service rule section for displaying service rules for processing by service nodes in the datacenter; receiving a request to add service rules for data messages associated with network nodes that are deployed in the datacenter based on a deployment template; in response to the request, adding a sub-section to the service rule section to display service rules associated with the deployment template in the displayed service rule management UI; and to the sub-section, adding a service rule comprising a set of rule identifiers and a service parameter associated with a service to be performed on data messages that have attribute sets that match the rule identifier set. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method for managing service rules in a datacenter, the method comprising:
-
providing, for display on a display screen, a service rule management user interface (UI) comprising a service rule section for displaying service rules for processing by service nodes in the datacenter; receiving a request to add service rules for data messages associated with network nodes that are deployed in the datacenter based on a deployment template; in response to the request, adding a sub-section to the service rule section to display service rules associated with the deployment template in the displayed service rule management UI; and to the sub-section, adding a service rule comprising a set of rule identifiers and a service parameter associated with a service to be performed on data messages that have attribute sets that match the rule identifier set. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21)
-
Specification