VMware VSHIELD MANAGER 4.1.0 UPDATE 1 - API Bedienungsanleitung PDF herunterladen (Seite 31)

VMware, Inc. 31

Chapter 5 vShield Edge Management

Example:

GET /api/1.0/network/network-244/dnat/rules HTTP/1.1

Authorization: Basic YWRtaW46ZGVmYXVsdA==

Host: localhost

Post a DNAT Rule Set

YoucanpostaDNATrulesetforavShieldEdge.

ThevShieldManagerprocessesthepostedXMLfileasacompleterulesetforthespecificvShieldEdge.The

currentrulesetisreplacedwiththisnewsetofrules.

Example 5-20. Post a DNAT Rule Set on a vShield Edge

Request:

POST <vshield_manager-uri>/api/1.0/network/<internal-portgroup-vc-moref-id>/dnat/rules

<internalIpAddress>see_below</internalIpAddress>

<internalPort>see_below</internalPort>

<externalIpAddress>see_below</externalIpAddress>

<externalPort>see_below</externalPort>

</NATRule>

</NATConfig>

</VShieldEdgeConfig>

Rules:

 YoucanaddmultipleDNATrulesbyenteringmultiple<NATRule></NATRule>sectionsinthebody.

 For<protocol />optionstcpandudp,youmustspecifyinternalPortandexternalPortelements.

Foroptionsicmpandany,theinternalPortandexternalPortelementsarenotexpected.

 Youmustadd<icmpType />ifyouconfigureicmpastheprotocol.

 Loggingisdisabledbydefault.Toenablelogging,adda<log />elementwithin<NATRule />.

 TheexternalIpAddressandinternalIpAddressparameterscanbeenteredineitheroftheseformats.

<ipAddress>IpOrAny</ipAddress>

<rangeStart>low_ip_address</rangeStart>

<rangeEnd>high_ip_address</rangeEnd>

</IpRange>



TheexternalPortandinternalPortparameterscanbeenteredineitheroftheseformats.

<port>PortOrAny</port>

</PortRange>

1 2 ... 26 27 28 29 30 31 32 33 34 35 36 ... 89 90

Keine Kommentare

VMware VSHIELD MANAGER 4.1.0 UPDATE 1 - API Bedienungsanleitung Seite 31