Managing Micro Edge Policies in ETM Dashboard: Objects
Overview
An Object is a grouping of one or more traits: IP addresses, interfaces, application identifications, user or VLAN tag groups, and so forth. Grouping these traits together enables the admin to refer to that grouping by its name in Policies and Rules rather. Once you've created an Object, you can re-use it without needing to re-create its conditions in every rule or policy.
Types of Objects
In Appliances > Micro Edge Policies > Objects, you'll see a listing of Object types along the left-hand side of the screen. These types are broken into three general categories.
Conditions & Condition Groups
These are the default type of Object: a set of complex conditions, such as
- traffic matched to Facebook applications, coming from 10.10.10.0/24
- traffic coming from remote locations across a WireGuard VPN tunnel and destined to a specific local server
- inbound TCP traffic destined to 192.168.10.15:25 (a mail server)
Conditions can be grouped together into a Condition Group, enabling you to refer to multiple Conditions by a single name.
Custom Object definitions
This section enables you to create an Object name to define something that isn't otherwise defined in Micro Edge already. Some examples might be:
- defining traffic using a specific port as associated with an application or protocol, such as an Object named 'SMTP Traffic' which refers to TCP traffic on port 25
- defining a Geo-IP location which is not present in Micro Edge's list of locations
- creating an IP Address List Object which lists the WAN IPs of all branch offices
AGNI & UNO definitions
This section enables you to create Objects using information gleaned from Arista's AGNI or UNO services.
Configuring an Object
Navigate to Appliances > Micro Edge Policies > Objects to begin configuring your Object(s). Select the appropriate entry along the left-hand side; for example, to create a manual hostname association, use Hostname.
- Click Create New
- Give your Object a name. This is the name which will be used in the UI to refer to your Object.
- Give it a Description so you know what the Object is intended for
- Each type of Object has different options, based on what details the Object will contain. For example, when creating an Application Object, you'll provide the port(s) and IP address(es) used by the application.
- Click Save to complete the Object
Editing an Object
You can click on an Object in the listing table to edit its conditions. You will also find a red Delete button in the edit menu, if the Object is no longer used.
Follow
Comments
0 comments
Please sign in to leave a comment.