ves-io-schema-fast_acl-API-Create
On This Page:
Examples of creating fast_acl
Usecase:
Create acmecorp-fast-acl to allow access to all VIPs in site from white list
Request using vesctl:
vesctl configuration create fast_acl -i fast_acl.yaml
where file fast_acl.yaml has following contents (fast_acl.CreateRequest):
RequestJSON:
{
"metadata": {
"name": "acmecorp-fast-acl",
"namespace": "system"
},
"spec": {
"legacy_acl": {
"network_type": {
"site_local": {}
},
"destination_type": {
"vip_services": {}
},
"source_rules": [
{
"tenant": "acmecorp",
"namespace": "system",
"name": "fast-acl-rule-white-list"
}
]
}
}
}
vesctl yaml response:
ResponseJSON:
{
"metadata": {
"name": "acmecorp-fast-acl",
"namespace": "system",
"labels": {},
"annotations": {},
"description": "",
"disable": false
},
"system_metadata": {
"uid": "c1726259-3395-4f2b-a7e3-3903fd12d225",
"creation_timestamp": "2024-03-21T14:05:19.249060Z",
"deletion_timestamp": null,
"modification_timestamp": null,
"initializers": null,
"finalizers": [],
"tenant": "acmecorp",
"creator_class": "examplesvc",
"creator_id": "examplesvc",
"object_index": 0,
"owner_view": null,
"labels": {}
},
"spec": {
"protocol_policer": null
}
}
Request using curl:
curl -X 'POST' -d '{"metadata":{"name":"acmecorp-fast-acl","namespace":"system"},"spec":{"legacy_acl":{"network_type":{"site_local":{}},"destination_type":{"vip_services":{}},"source_rules":[{"tenant":"acmecorp","namespace":"system","name":"fast-acl-rule-white-list"}]}}}' -H 'Content-Type: application/json' -H 'X-Volterra-Useragent: v1/pgm=_var_folders_2__8qnt6fwd5dvglr1xqq6l8b7w0000gp_T_go-build3109416560_b001_apidocs.test/host=C02FN35BMD6R/svc=S:examplesvc/site=mytestce01' 'https://acmecorp.console.ves.volterra.io/api/config/namespaces/system/fast_acls'
curl response:
HTTP/1.1 200 OK
Content-Length: 643
Content-Type: application/json
Date: Thu, 21 Mar 2024 14:05:19 GMT
Vary: Accept-Encoding
{
"metadata": {
"name": "acmecorp-fast-acl",
"namespace": "system",
"labels": {
},
"annotations": {
},
"description": "",
"disable": false
},
"system_metadata": {
"uid": "c1726259-3395-4f2b-a7e3-3903fd12d225",
"creation_timestamp": "2024-03-21T14:05:19.249060Z",
"deletion_timestamp": null,
"modification_timestamp": null,
"initializers": null,
"finalizers": [
],
"tenant": "acmecorp",
"creator_class": "examplesvc",
"creator_id": "examplesvc",
"object_index": 0,
"owner_view": null,
"labels": {
}
},
"spec": {
"protocol_policer": null
}
}
Usecase:
Create fast-acl-1234vip to protect single destination IP
Request using vesctl:
vesctl configuration create fast_acl -i fast_acl.yaml
where file fast_acl.yaml has following contents (fast_acl.CreateRequest):
RequestJSON:
{
"metadata": {
"name": "fast-acl-1234vip",
"namespace": "system"
},
"spec": {
"legacy_acl": {
"network_type": {
"site_local": {}
},
"destination_type": {
"vip_services": {}
},
"source_rules": [
{
"tenant": "acmecorp",
"namespace": "system",
"name": "fast-acl-1234vip-rule1"
},
{
"tenant": "acmecorp",
"namespace": "system",
"name": "fast-acl-1234vip-rule2"
}
]
}
}
}
vesctl yaml response:
ResponseJSON:
{
"metadata": {
"name": "fast-acl-1234vip",
"namespace": "system",
"labels": {},
"annotations": {},
"description": "",
"disable": false
},
"system_metadata": {
"uid": "9394aa4a-e5bb-4253-9cc3-e7253cfc1ee0",
"creation_timestamp": "2024-03-21T14:05:19.273865Z",
"deletion_timestamp": null,
"modification_timestamp": null,
"initializers": null,
"finalizers": [],
"tenant": "acmecorp",
"creator_class": "examplesvc",
"creator_id": "examplesvc",
"object_index": 0,
"owner_view": null,
"labels": {}
},
"spec": {
"protocol_policer": null
}
}
Request using curl:
curl -X 'POST' -d '{"metadata":{"name":"fast-acl-1234vip","namespace":"system"},"spec":{"legacy_acl":{"network_type":{"site_local":{}},"destination_type":{"vip_services":{}},"source_rules":[{"tenant":"acmecorp","namespace":"system","name":"fast-acl-1234vip-rule1"},{"tenant":"acmecorp","namespace":"system","name":"fast-acl-1234vip-rule2"}]}}}' -H 'Content-Type: application/json' -H 'X-Volterra-Useragent: v1/pgm=_var_folders_2__8qnt6fwd5dvglr1xqq6l8b7w0000gp_T_go-build3109416560_b001_apidocs.test/host=C02FN35BMD6R/svc=S:examplesvc/site=mytestce01' 'https://acmecorp.console.ves.volterra.io/api/config/namespaces/system/fast_acls'
curl response:
HTTP/1.1 200 OK
Content-Length: 642
Content-Type: application/json
Date: Thu, 21 Mar 2024 14:05:19 GMT
Vary: Accept-Encoding
{
"metadata": {
"name": "fast-acl-1234vip",
"namespace": "system",
"labels": {
},
"annotations": {
},
"description": "",
"disable": false
},
"system_metadata": {
"uid": "9394aa4a-e5bb-4253-9cc3-e7253cfc1ee0",
"creation_timestamp": "2024-03-21T14:05:19.273865Z",
"deletion_timestamp": null,
"modification_timestamp": null,
"initializers": null,
"finalizers": [
],
"tenant": "acmecorp",
"creator_class": "examplesvc",
"creator_id": "examplesvc",
"object_index": 0,
"owner_view": null,
"labels": {
}
},
"spec": {
"protocol_policer": null
}
}