Class pol:Def (ABSTRACT)

Class ID:4595
Encrypted: false - Exportable: true - Persistent: true - Configurable: true - Subject to Quota: Disabled - Abstraction Layer: Concrete Model - APIC NX Processing: Disabled
Write Access: []
Read Access: [admin]
Creatable/Deletable: derived (see Container Mos for details)
Possible Semantic Scopes: Common, EPG, Infra, Fabric,
Semantic Scope Evaluation Rule: Subclasses
Monitoring Policy Source: Parent
Monitoring Flags : [ IsObservable: false, HasStats: false, HasFaults: false, HasHealth: false, HasEventRules: false ]

Represents self-contained policy document.

Naming Rules


DN FORMAT: 

                


Diagram

Super Mo: pol:Obj,
Sub Mos: aaa:AuthRealm, aaa:CtrlrFipsState, aaa:Definition, aaa:DomainRolesTuple, aaa:FipsState, analytics:ACfgSrv, analytics:ACluster, ap:ContainerPol, ap:DockerContr, ap:PluginContr, ap:PluginPol, ap:PluginPolContr, ap:UiInfo, auth:BaseUsrAccP, bd:EnforceExceptIp, bd:EnforceExceptionCont, bd:EnforceExpCont, bd:EnforceExpIp, cap:Def, cloud:AAwsFlowLogPol, cloud:AAwsLogGroup, cloud:ABgpPeerP, cloud:ACidr, cloud:ACtxProfile, cloud:ADomP, cloud:AExtNetworkP, cloud:AHostBootstrapPol, cloud:AHostIfP, cloud:AHostRouterPol, cloud:AIntNetworkP, cloud:AIpSecTunnelIfP, cloud:AIpv4AddrP, cloud:AL3IfP, cloud:AL3TunnelIfP, cloud:AOspfAreaP, cloud:AOspfIfP, cloud:AProvider, cloud:ARouterP, cloud:ARuleAction, cloud:ARuleCondition, cloud:ASvcPol, cloud:AVpnGwPol, cloud:AbsNodeRef, cloud:Bookeeping, cloud:CtxDefCont, cloud:CtxHolder, cloud:DefCont, cloud:Depl, cloud:DeplBy, cloud:DirectConnIfP, cloud:DomPHolder, cloud:SvcDefCont, cloud:SvcPolicyDef, cloud:TenantSvcDef, cloud:VpnIfP, cloudsec:ACapability, cloudsec:AControl, cloudsec:ASaKeyP, cloudsec:ASaKeyStatus, cloudsec:PreSharedKey, cloudsec:RekeyInfo, cloudsec:SaKeyUsage, cloudtemplate:RemoteSite, cloudtemplate:RemoteSitePeer, comm:Definition, comm:Pol, comp:APltfmP, comp:AccessP, compat:Cat, condition:RetP, copp:AProfile, datetime:APol, datetime:Format, dbg:OngoingAcMode, dbgac:AFilter, dbgac:EpSummary, dbgac:EpgSummary, dbgac:TenantSpaceCmn, dhcp:BootStrapLoader, dhcp:OptionPol, dhcp:ProvAddrDef, eqptdiagp:GrpTests, eqptdiagp:Pol, eqptdiagp:TestSet, equipment:FlashConfigPol, fabric:AONodeS, fabric:APathS, fabric:APolGrp, fabric:AProfile, fabric:AProtPol, fabric:Def, fabric:DeployPol, fabric:ExtPol, fabric:ExtRoutableMcastIp, fabric:ExtRoutableSubnetCont, fabric:ExtRoutableUcastIp, fabric:MaintPol, fabric:NodeControl, fabric:NodeIdentPol, fabric:ProtChainP, fabric:ProtoPol, fabric:SetupPol, fc:AEncapCont, fc:APinningLbl, fc:APinningP, fc:AllocEncapBlkDef, fc:ResPolCont, fc:VsanAttrP, fcpr:Consumer, fcpr:Holder, fcpr:PostponedRequest, fhs:ABDPol, fhs:ARaGuardPol, fhs:ATrustCtrlPol, firmware:AFwP, firmware:RepoP, fmcast:SystemGIPoPol, fmcast:TreePol, fv:AAKeyChainPol, fv:AAKeyPol, fv:AAREpPRequestor, fv:AAREpPUpdate, fv:AFabricExtConnP, fv:AIntersiteConnP, fv:AIntersiteConnPDef, fv:APathAtt, fv:APathEpDef, fv:APeeringP, fv:AREpPBootStrap, fv:AREpPCtrct, fv:AREpPRequestorCont, fv:AREpPUpd, fv:AVip, fv:AccP, fv:AppCtxRef, fv:AppEpGCons, fv:AppEpGPol, fv:AppEpGRef, fv:BDHolder, fv:BDPublicSubnetHolder, fv:ByDom, fv:ByHv, fv:ConnInstrPol, fv:CtrlrIpDef, fv:EPgCont, fv:EpCP, fv:EpTaskAggrCont, fv:ExtRoutableMcastIpDef, fv:ExtRoutableUcastIpDef, fv:FailedXlate, fv:GipoCont, fv:GipoInfo, fv:GipoRequestor, fv:GipoTaskAggr, fv:ICMPProbe, fv:IPSLAMonitoringPol, fv:InProgressUpdCont, fv:L3SubInterface, fv:NodeAREpPUpd, fv:NonStretchedCont, fv:PasswordConfig, fv:PasswordConfigDef, fv:PeerContextDefDn, fv:PeerContextDn, fv:PodDhcpServerInfo, fv:PolDeliveryStatus, fv:PolMod, fv:PostponedUpdCont, fv:PullRecover, fv:PulledPolicy, fv:RemoteId, fv:RemotePolHolder, fv:RtdEpPInfoCont, fv:RtdEpPInfoHolder, fv:ShardedAREpPUpd, fv:SiteAssociated, fv:SlaDef, fv:StretchedCont, fv:TCPProbe, fv:TrackList, fv:TrackMember, fv:UnkMacUcastActMod, fv:UsegSrc, fv:VStaticEp, fv:VStaticEpCont, geo:Site, hcloud:AwsVpnTunnelInfo, hcloud:TechSup, hcloud:TechSupDone, hcplatform:License, health:EvalP, health:LevelsP, hostprot:APol, hostprot:ARemoteIp, hostprot:ARule, hostprot:ASubj, iacl:AProfile, ident:Ns, infra:CPMtuPol, infra:ClusterPol, infra:DRRPol, infra:ImplicitSetPol, infra:PortTrackPol, infra:SetPol, infrazone:ZoneP, ipsec:AIsakmpPhase1Pol, ipsec:AIsakmpPhase2Pol, isakmp:GlobalPol, isakmp:Keyring, isakmp:Policy, isakmp:Profile, l3ext:CtxRef, l3ext:CtxRtdOutRef, l3ext:ProvLblDefCont, l3ext:RequestedBy, l3ext:RtdOutCont, l3ext:RtdOutDef, l3ext:RtdOutDefRef, l3ext:VrfValidationPol, latency:OngoingMode, mgmt:ConnectivityPrefs, mock:Counter, mock:MockRoot, mock:MockSession, mock:Stats, mon:MonObjDn, mon:Pol, netflow:ExporterPolHolder, netflow:MonitorPolHolder, netflow:NodePol, netflow:PolDefCont, opflex:EncapCont, opflex:EpPDIDEpRefCont, opflex:IDEpRefCont, opflex:IDEpScope, opflex:IDEpScopeCont, opflex:ODevRefCont, opflex:OeHupTrigger, opflex:PathAtt, opflex:ScopeCont, opflex:UsegInfoCont, opflex:VtepRefCont, opflexp:HupTrigger, pim:Capability, pim:RouteMapPolDefCont, pki:Definition, planner:ACIConfigFilter, planner:ConfigTmpl, planner:ExistingTopoDeplPref, planner:ImportACIConfig, planner:PlacementAlgorithm, planner:ResourceCapPct, planner:Snapshot, planner:Tenant, planner:TenantAny, pol:AConfIssues, pol:ConsElem, pol:DefRoot, pol:Ns, pool:Pool, pres:RegdPod, pres:RegdPodCont, qos:ADppPolHolder, qos:ADscpTrans, qos:Class, qos:CustomPol, qos:CustomPolDef, qos:DppPolDefCont, qos:InstPol, qos:PfcIfPol, qos:PfcPol, qos:SdIfPol, resolution:RemotePolicyMgr, rtctrl:EpPRef, rtctrl:Profile, rtsum:ARtSummPol, rtsum:ARtSummPolDef, rule:Definition, snmp:APol, span:ASrc, stp:AEncapBlkDef, stp:AEncapCont, svccore:Pol, synthetic:LocalPol, synthetic:Policy, sysmgrp:Def, tag:ASelector, telemetry:AFlowServers, telemetry:AServer, telemetry:AServerP, telemetry:AServerPol, telemetry:FlowCollectorP, telemetry:FlowServerP, telemetry:FltPolGrp, telemetry:MatchedSelector, telemetry:Provider, telemetry:VipP, throttler:ASub, throttler:InProgressCont, throttler:NodeCont, throttler:PostponedCont, throttler:SubCont, topoctrl:FastLinkFailoverInstPol, topoctrl:FwdScaleProfilePol, traceroutep:TrEpSummary, traceroutep:TrExtSummary, traceroutep:TrP, trig:Inst, trig:RoProxyCont, trig:SchedP, trig:Triggerable, ui:Settings, useg:AUsegEPg, useg:BaseEPg, vns:AConn, vns:AConnection, vns:AGraph, vns:ANode, vns:AVNode, vns:AbsDevCfg, vns:AbsFuncCfg, vns:AbsFuncProf, vns:AbsFuncProfContr, vns:AbsFuncProfGrp, vns:AbsFuncProfNormalized, vns:AbsGrpCfg, vns:BDDef, vns:CfgDef, vns:Chassis, vns:CloudSvcEPgDef, vns:DevMgr, vns:EPgDef, vns:EpgDefXlate, vns:GraphIdCntnr, vns:MscGraphXlateCont, vns:NodeInstIdCntnr, vns:RedirectHealthGroup, vns:RtrCfg, vns:SvcEPgPol, vns:SvcGraphVersion, vns:SvcRedirectPol, vns:SvcRelnCons, vz:ACollection, vz:ACollectionDef, vz:AContDef, vz:AFilterable, vz:AnyREpPCtrct, vz:FltTaskAggrCont, vz:GraphCont, vz:GraphDef, vz:ResPcTagCont,


Inheritance
[V] naming:NamedObject An abstract base class for an object that contains a name.
 ├
[V] pol:Obj Represents a generic policy object.
 
 ├
[V] pol:Def Represents self-contained policy document.
 
 
 ├
[V] aaa:AuthRealm An authentication realm provides authentication to verify the identity of an entity (person or device) accessing fabric devices. The authentication is based on the user ID and password combination provided by the entity trying to access the fabric. Authentication can be performed locally, using the local lookup database, or by remote, using one or more RADIUS or TACACS+ servers.
 
 
 ├
[V] aaa:CtrlrFipsState 
 
 
 ├
[V] aaa:Definition The AAA policy definition. This is an abstract class and cannot be instantiated.
 
 
 
 ├
[V] aaa:ADomainRef This object is generated and used only by internal processes.
 
 
 
 
 ├
[V] aaa:DomainRef A reference to the domain that the parent object belongs to.
 
 
 
 
 ├
[V] aaa:IDomainRef This object is generated and used only by internal processes.
 
 
 
 ├
[V] aaa:AProvider An abstract class that is the superclass for the Radius/Tacacs/Ldap provider classes.
 
 
 
 
 ├
[V] aaa:LdapProvider An LDAP provider is a remote server supporting the LDAP protocol that will be used for authentication.
 
 
 
 
 ├
[V] aaa:RadiusProvider A RADIUS provider is a remote server supporting the RADIUS protocol that will be used for authentication.
 
 
 
 
 ├
[V] aaa:RsaProvider 
 
 
 
 
 ├
[V] aaa:SamlProvider 
 
 
 
 
 ├
[V] aaa:TacacsPlusProvider A TACACS+ provider is a remote server supporting the TACACS+ protocol that will be used for authentication.
 
 
 
 ├
[V] aaa:ARbacRule This is generated and used only by internal processes.
 
 
 
 
 ├
[V] aaa:IPRbacRule  IPRbacRule mos are created under aaaRbacEp as a side-effect of the creation of PRbacRule under fv:Tenant
 
 
 
 
 ├
[V] aaa:IRbacRule This is generated and used only by internal processes.
 
 
 
 
 ├
[V] aaa:RbacRule A role based access control (RBAC) rule allows users from a security domain to read the subtree starting at a specific object.
 
 
 
 ├
[V] aaa:ActiveUserSession 
 
 
 
 ├
[V] aaa:Banner An abstract class that contains login banners and cannot be instantiated.
 
 
 
 
 ├
[V] aaa:PreLoginBanner A GUI banner is the informational banner to be displayed before user login authentication.
 
 
 
 ├
[V] aaa:Config The generic security authentication configuration. This is an abstract class and cannot be instantiated.
 
 
 
 
 ├
[V] aaa:AuthMethod The generic security authentication method. This is an abstract class and cannot be instantiated.
 
 
 
 
 
 ├
[V] aaa:ConsoleAuth The authentication configuration for console login.
 
 
 
 
 
 ├
[V] aaa:DefaultAuth The default authentication configuration for all login methods.
 
 
 
 
 
 ├
[V] aaa:DomainAuth The authentication configuration for a domain login.
 
 
 
 ├
[V] aaa:DeletedUserSession 
 
 
 
 ├
[V] aaa:Domain An AAA domain is the AAA security method for processing authentication requests.
 
 
 
 ├
[V] aaa:Ep The base class for an AAA endpoint is an abstract class and cannot be instantiated.
 
 
 
 
 ├
[V] aaa:KafkaEp 
 
 
 
 
 ├
[V] aaa:LdapEp The global security management properties for LDAP endpoints and LDAP provider groups.
 
 
 
 
 ├
[V] aaa:PingEp 
 
 
 
 
 ├
[V] aaa:RadiusEp The RADIUS endpoint policy is the global security management properties for RADIUS endpoints and RADIUS provider groups.
 
 
 
 
 ├
[V] aaa:RsaEp 
 
 
 
 
 ├
[V] aaa:SamlEp 
 
 
 
 
 ├
[V] aaa:TacacsPlusEp The TACACS+ endpoint policy is the global security management properties for TACACS+ endpoints and TACACS+ provider groups.
 
 
 
 ├
[V] aaa:FabricSec 
 
 
 
 ├
[V] aaa:FactoryRole 
 
 
 
 ├
[V] aaa:KafkaAcl 
 
 
 
 ├
[V] aaa:KafkaTopic 
 
 
 
 ├
[V] aaa:LdapGroupMap  The MO represents an LDAP Group Map
 
 
 
 ├
[V] aaa:LdapGroupMapRule  The MO represents an LDAP Group Map Rule The actual Map consisting of Domains and Roles
 
 
 
 ├
[V] aaa:LdapGroupMapRuleRef  The MO points to actual Ldap Rules
 
 
 
 ├
[V] aaa:LoginDomain An AAA login domain for authentication and authorization. The AAA configuration can be configured per domain.
 
 
 
 ├
[V] aaa:PartialRbacRule 
 
 
 
 ├
[V] aaa:ProviderGroup A provider group is a set of providers that will be used by the system during the authentication process. During authentication, all the providers within a provider group are tried in order. If all of the configured servers are unavailable or unreachable, the system manager automatically falls back to the local authentication method using the local username and password.
 
 
 
 
 ├
[V] aaa:LdapProviderGroup An LDAP provider group is a group of remote servers supporting the LDAP protocol for authentication.
 
 
 
 
 ├
[V] aaa:RadiusProviderGroup A RADIUS provider group is a group of remote servers supporting the RADIUS protocol for authentication.
 
 
 
 
 ├
[V] aaa:RsaProviderGroup  This MO represents a group of AAA RSA servers.
 
 
 
 
 ├
[V] aaa:SamlProviderGroup  This MO represents a group of AAA SAML servers.
 
 
 
 
 ├
[V] aaa:TacacsPlusProviderGroup A TACACS+ provider group is a group of remote servers supporting the TACACS+ protocol for authentication.
 
 
 
 ├
[V] aaa:ProviderRef A member of an AAA provider group.
 
 
 
 ├
[V] aaa:PwdProfile The password profile contains the information about password constraints that apply to all local users.
 
 
 
 ├
[V] aaa:PwdStrengthProfile 
 
 
 
 ├
[V] aaa:RbacEp This is generated and used only by internal processes.
 
 
 
 ├
[V] aaa:Realm The AAA realm is the security method for processing authentication and authorization requests. The realm allows the protected resources on the associated server to be partitioned into a set of protection spaces, each with its own authentication authorization database. This is an abstract class and cannot be instantiated.
 
 
 
 ├
[V] aaa:Role An AAA role is a set of attributes and privileges that describe what a user is authorized to perform.
 
 
 
 ├
[V] aaa:SamlEncCert 
 
 
 
 ├
[V] aaa:SshAuth A user's public key in PEM format used for certificate-based login.
 
 
 
 ├
[V] aaa:SystemUser The base class for a system user. This is an abstract class and cannot be instantiated.
 
 
 
 
 ├
[V] aaa:AppUser 
 
 
 
 
 ├
[V] aaa:RemoteUser The remote user login account.
 
 
 
 
 ├
[V] aaa:User A locally-authenticated user account.
 
 
 
 ├
[V] aaa:UserCert An AAA user certificate in X.509 format. This certificate is the RSA public key used for certificate-based REST API calls.
 
 
 
 ├
[V] aaa:UserConf 
 
 
 
 ├
[V] aaa:UserData This object is managed internally and should not be modified by the user.
 
 
 
 ├
[V] aaa:UserDomain The AAA domain to which the user belongs.
 
 
 
 ├
[V] aaa:UserEp A user endpoint is a local user. A user is assigned a role determines the user's privileges, and belongs to a security domain, which determines the user's scope of control
 
 
 
 ├
[V] aaa:UserPreferences  User preferences
 
 
 
 ├
[V] aaa:UserProfile  User profile
 
 
 
 ├
[V] aaa:UserRole The privilege bitmask of a user domain.
 
 
 
 ├
[V] aaa:UserSelf 
 
 
 
 ├
[V] aaa:UserSessionEp  User Login tracking & logout
 
 
 
 ├
[V] aaa:VMMCertificateRule 
 
 
 ├
[V] aaa:DomainRolesTuple This object is managed internally and should not be modified by the user.
 
 
 ├
[V] aaa:FipsState 
 
 
 ├
[V] analytics:ACfgSrv 
 
 
 
 ├
[V] analytics:CfgSrv 
 
 
 ├
[V] analytics:ACluster 
 
 
 
 ├
[V] analytics:Cluster 
 
 
 ├
[V] ap:ContainerPol 
 
 
 ├
[V] ap:DockerContr  Docker Container
 
 
 ├
[V] ap:PluginContr  Plugin Container
 
 
 ├
[V] ap:PluginPol  Plugin Policy Info
 
 
 ├
[V] ap:PluginPolContr  Plugin Policy Container
 
 
 ├
[V] ap:UiInfo 
 
 
 ├
[V] auth:BaseUsrAccP 
 
 
 
 ├
[V] auth:UsrAccP 
 
 
 ├
[V] bd:EnforceExceptIp 
 
 
 ├
[V] bd:EnforceExceptionCont 
 
 
 ├
[V] bd:EnforceExpCont 
 
 
 ├
[V] bd:EnforceExpIp 
 
 
 ├
[V] cap:Def A base class for capabilities.
 
 
 
 ├
[V] eqptcap:AMfgDef The manufacturing-related properties such as PID and SKU.
 
 
 
 
 ├
[V] eqptcap:MfgDef The manufacturing-related properties such as PID and SKU.
 
 
 
 
 ├
[V] eqptcap:SfpMfgDef The small form-factor pluggable transceiver (SFP) manufacturing-related properties.
 
 
 
 ├
[V] eqptcap:PhysicalDef Physical properties such as maximum temperature and removal conditions.
 
 
 
 ├
[V] eqptcap:System The system capability provider.
 
 
 ├
[V] cloud:AAwsFlowLogPol 
 
 
 
 ├
[V] cloud:AwsFlowLogPol 
 
 
 
 ├
[V] cloud:AwsFlowLogPolDef 
 
 
 ├
[V] cloud:AAwsLogGroup 
 
 
 
 ├
[V] cloud:AwsLogGroup 
 
 
 
 ├
[V] cloud:AwsLogGroupDef 
 
 
 ├
[V] cloud:ABgpPeerP 
 
 
 
 ├
[V] cloud:BgpPeerP 
 
 
 
 ├
[V] cloud:BgpPeerPDef 
 
 
 ├
[V] cloud:ACidr 
 
 
 
 ├
[V] cloud:Cidr 
 
 
 
 ├
[V] cloud:CidrDef 
 
 
 ├
[V] cloud:ACtxProfile 
 
 
 
 ├
[V] cloud:CtxProfile 
 
 
 
 ├
[V] cloud:CtxProfileDef 
 
 
 ├
[V] cloud:ADomP  Cloud Abstract Domain Profile Def
 
 
 
 ├
[V] cloud:DomP  SHIV TODO: Need to find a propert Super class SHASHANK TODO: Need to add other roles/access besides admin
 
 
 
 ├
[V] cloud:DomPDef  Cloud Domain Profile Def
 
 
 ├
[V] cloud:AExtNetworkP 
 
 
 
 ├
[V] cloud:ExtNetworkP 
 
 
 
 ├
[V] cloud:ExtNetworkPDef 
 
 
 ├
[V] cloud:AHostBootstrapPol 
 
 
 ├
[V] cloud:AHostIfP 
 
 
 
 ├
[V] cloud:HostIfP 
 
 
 
 ├
[V] cloud:HostIfPDef 
 
 
 ├
[V] cloud:AHostRouterPol 
 
 
 
 ├
[V] cloud:HostRouterPol 
 
 
 
 ├
[V] cloud:HostRouterPolDef 
 
 
 ├
[V] cloud:AIntNetworkP 
 
 
 
 ├
[V] cloud:IntNetworkP 
 
 
 
 ├
[V] cloud:IntNetworkPDef 
 
 
 ├
[V] cloud:AIpSecTunnelIfP 
 
 
 
 ├
[V] cloud:IpSecTunnelIfP 
 
 
 
 ├
[V] cloud:IpSecTunnelIfPDef 
 
 
 ├
[V] cloud:AIpv4AddrP 
 
 
 
 ├
[V] cloud:Ipv4AddrP 
 
 
 
 ├
[V] cloud:Ipv4AddrPDef 
 
 
 ├
[V] cloud:AL3IfP 
 
 
 
 ├
[V] cloud:L3IfP 
 
 
 
 ├
[V] cloud:L3IfPDef 
 
 
 ├
[V] cloud:AL3TunnelIfP  IPSec tunnel running on the NIC. The outer tunnel desination address is on-prem IPN router's public address. The tunnel source address is parent interface's primary address.
 
 
 
 ├
[V] cloud:L3TunnelIfP 
 
 
 
 ├
[V] cloud:L3TunnelIfPDef 
 
 
 ├
[V] cloud:AOspfAreaP 
 
 
 
 ├
[V] cloud:OspfAreaP 
 
 
 
 ├
[V] cloud:OspfAreaPDef 
 
 
 ├
[V] cloud:AOspfIfP  Underlay OSPF configuration.
 
 
 
 ├
[V] cloud:OspfIfP 
 
 
 
 ├
[V] cloud:OspfIfPDef 
 
 
 ├
[V] cloud:AProvider  Cloud Providers Super-Class
 
 
 
 ├
[V] cloud:AAwsProvider  Cloud Abstract Aws Provider
 
 
 
 
 ├
[V] cloud:AwsProvider  only one provider per tenant
 
 
 
 
 ├
[V] cloud:AwsProviderDef 
 
 
 ├
[V] cloud:ARouterP 
 
 
 
 ├
[V] cloud:RouterP 
 
 
 
 ├
[V] cloud:RouterPDef 
 
 
 ├
[V] cloud:ARuleAction 
 
 
 
 ├
[V] cloud:RuleAction 
 
 
 
 ├
[V] cloud:RuleActionDef 
 
 
 
 ├
[V] cloud:RuleActionRef 
 
 
 ├
[V] cloud:ARuleCondition 
 
 
 
 ├
[V] cloud:RuleCondition 
 
 
 
 ├
[V] cloud:RuleConditionDef 
 
 
 
 ├
[V] cloud:RuleConditionRef 
 
 
 ├
[V] cloud:ASvcPol 
 
 
 
 ├
[V] cloud:SvcPolicy 
 
 
 
 ├
[V] cloud:SvcPolicyRef 
 
 
 ├
[V] cloud:AVpnGwPol  Shiv TODO uncomment for next release mo name="DirectConnPol" concrete="yes" super="pol:Def" access="admin" label="Cloud Direct Connect Policy" > ...
 
 
 
 ├
[V] cloud:VpnGwPol 
 
 
 
 ├
[V] cloud:VpnGwPolDef 
 
 
 ├
[V] cloud:AbsNodeRef 
 
 
 ├
[V] cloud:Bookeeping 
 
 
 ├
[V] cloud:CtxDefCont 
 
 
 ├
[V] cloud:CtxHolder  Mo that will be used to pull cloudCtxProfileDef from PM to cPE
 
 
 ├
[V] cloud:DefCont  Container for all the cloud:DefCont, under top, to have them neatly organized
 
 
 ├
[V] cloud:Depl 
 
 
 ├
[V] cloud:DeplBy 
 
 
 ├
[V] cloud:DirectConnIfP 
 
 
 ├
[V] cloud:DomPHolder 
 
 
 ├
[V] cloud:SvcDefCont 
 
 
 ├
[V] cloud:SvcPolicyDef 
 
 
 ├
[V] cloud:TenantSvcDef 
 
 
 ├
[V] cloud:VpnIfP 
 
 
 ├
[V] cloudsec:ACapability  Cloudsec Site Capability exchanged with MSC
 
 
 
 ├
[V] cloudsec:CapabilityLocal  Cloudsec Local Site Capability exchanged with MSC
 
 
 
 ├
[V] cloudsec:CapabilityRemote  Cloudsec Peer Site Capability received from MSC
 
 
 ├
[V] cloudsec:AControl  Cloudsec Site Control exchanged with MSC
 
 
 
 ├
[V] cloudsec:Control  Cloudsec Site Control sent by MSC
 
 
 
 ├
[V] cloudsec:ControlDef  Internal Mo for Resolved Cloudsec Site Control
 
 
 ├
[V] cloudsec:ASaKeyP  Cloudsec Site SaKey Profile exchanged with MSC
 
 
 
 ├
[V] cloudsec:ASaKeyPLocal  Cloudsec Site Local SaKey Profile exchanged with MSC
 
 
 
 
 ├
[V] cloudsec:SaKeyPLocal 
 
 
 
 ├
[V] cloudsec:ASaKeyPRemote  Cloudsec Site Remote SaKey Profile exchanged with MSC
 
 
 
 
 ├
[V] cloudsec:RxSaKeyDef  Internal Mo Resolved Rx SaKey associated to remote site
 
 
 
 
 ├
[V] cloudsec:SaKeyPRemote 
 
 
 ├
[V] cloudsec:ASaKeyStatus  Cloudsec Site SaKey status exchanged with MSC
 
 
 
 ├
[V] cloudsec:ASaKeyStatusLocal  Cloudsec Site Local SaKey status exchanged with MSC
 
 
 
 
 ├
[V] cloudsec:ASpKeySt  Internal Mo for tracking rx key status on spine
 
 
 
 
 
 ├
[V] cloudsec:SpRxKeySt 
 
 
 
 
 
 ├
[V] cloudsec:SpTxKeySt  Internal Mo for tracking tx key status on spine
 
 
 
 
 ├
[V] cloudsec:FabricSpRxKeySt  Internal Mo for tracking rx key status on spine
 
 
 
 
 ├
[V] cloudsec:FabricSpTxKeySt  Internal Mo for tracking tx key status on spine
 
 
 
 
 ├
[V] cloudsec:SaKeyStatusLocal 
 
 
 
 
 ├
[V] cloudsec:SiteRxKeySt  Internal Mo for tracking rx key status on site
 
 
 
 
 ├
[V] cloudsec:SiteTxKeySt  Internal Mo for tracking tx key status on site
 
 
 
 ├
[V] cloudsec:ASaKeyStatusRemote  Cloudsec Site Local SaKey status exchanged with MSC
 
 
 
 
 ├
[V] cloudsec:SaKeyStatusRemote 
 
 
 
 
 ├
[V] cloudsec:TxSaKeyDef  Internal Mo for Resolved Tx SaKey associated to remote site
 
 
 ├
[V] cloudsec:PreSharedKey  Internal Mo for Cloudsec Preshared Key
 
 
 ├
[V] cloudsec:RekeyInfo  Internal MO used to keep track of the information for rekeying
 
 
 ├
[V] cloudsec:SaKeyUsage  Cloudsec Key Usage MO used locally. For internal use, not sent to MSC
 
 
 ├
[V] cloudtemplate:RemoteSite 
 
 
 ├
[V] cloudtemplate:RemoteSitePeer 
 
 
 ├
[V] comm:Definition Definition
 
 
 ├
[V] comm:Pol The communication policy contains the service configuration for various services.
 
 
 ├
[V] comp:APltfmP 
 
 
 
 ├
[V] comp:AVmmPltfmP 
 
 
 
 
 ├
[V] comp:AVmmSecP 
 
 
 
 
 
 ├
[V] vmm:SecP 
 
 
 ├
[V] comp:AccessP An abstract base class for policies related to access credentials.
 
 
 
 ├
[V] comp:UsrAccP The policies for user account credentials.
 
 
 
 
 ├
[V] vmm:UsrAccP The user account profile is used to access a VM provider account.
 
 
 ├
[V] compat:Cat Compatibility Catalog
 
 
 ├
[V] condition:RetP The condition log record retention policy specifies the maximum number of log records to be retained and the maximum number of log records to be deleted in a 30-second period.
 
 
 
 ├
[V] aaa:ARetP The audit log retention policy specifies the maximum number of audit log records to be retained and the maximum number of audit log records to be deleted in a 30-second period. Note that this is an abstract class and cannot be instantiated.
 
 
 
 
 ├
[V] aaa:CtrlrRetP The controller audit log retention policy specifies the maximum number of controller audit log records to be retained and the maximum number of controller audit log records to be deleted in a 30-second period.
 
 
 
 
 ├
[V] aaa:SwRetP The switch AAA audit log retention policy specifies the maximum number of AAA audit log records to be retained and the maximum number of AAA audit log records to be deleted in a 30-second period.
 
 
 
 ├
[V] event:ARetP The event record retention policy, which specifies the maximum number of event history records to be retained on the node or controller and the maximum number of event history records to be deleted in a 30-second period. Note that this is an abstract class and cannot be instantiated.
 
 
 
 
 ├
[V] event:CtrlrRetP The controller event record retention policy, which specifies the maximum number of controller event records to be retained and the maximum number of controller event records to be deleted in a 30-second period.
 
 
 
 
 ├
[V] event:SwRetP The switch event retention policy specifies the maximum number of event records to be retained and the maximum number of event records to be deleted in a 30-second period.
 
 
 
 ├
[V] fault:ARetP The fault record retention policy specifies the maximum number of fault history records to be retained on the node or controller and the maximum number of fault history records to be deleted in a 30-second period. Note that this is an abstract class and cannot be instantiated.
 
 
 
 
 ├
[V] fault:CtrlrRetP The controller fault record retention policy specifies the maximum number of controller fault records to be retained and the maximum number of controller fault records to be deleted in a 30-second period.
 
 
 
 
 ├
[V] fault:SwRetP Specifies the maximum number of fault records to be retained and the maximum number of fault records to be deleted in a 30-second period. These settings can be changed either by creating a custom policy or editing the default policy.
 
 
 
 ├
[V] health:ARetP The health score history record retention policy, which specifies the maximum health score history record count to delete in a 30-second period. Note that this is an abstract class and cannot be instantiated.
 
 
 
 
 ├
[V] health:CtrlrRetP The controller health score history record retention policy, which specifies the maximum number of controller health score history records to be retained and the maximum number of controller health score history records to be deleted in a 30-second period.
 
 
 
 
 ├
[V] health:SwRetP The switch health retention policy specifies the maximum number of health score history records to be retained and the maximum number of health score history records to be deleted in a 30-second period.
 
 
 ├
[V] copp:AProfile  Abstract class for all the profiles for CoPP that can be applied at the node level
 
 
 
 ├
[V] copp:LeafProfile  CoPP policy that can be applied at LEAF nodes
 
 
 
 ├
[V] copp:SpineProfile  CoPP policy that can be applied at SPINE nodes
 
 
 ├
[V] datetime:APol The date time policy is based on international time zones and a defined NTP server. Before configuring a date and time policy under a domain group, this policy must first be created. Policies under the Domain Groups root were already created by the system and ready to configure.
 
 
 
 ├
[V] datetime:ClkPol Represents the date/time clock policy information.
 
 
 
 ├
[V] datetime:Pol The date time policy is based on international time zones and a defined NTP server. Before configuring a date and time policy under a domain group, this policy must first be created. Policies under the Domain Groups root were already created by the system and ready to configure.
 
 
 ├
[V] datetime:Format The date/time format policy defines the time-zone for the entire fabric.
 
 
 ├
[V] dbg:OngoingAcMode 
 
 
 ├
[V] dbgac:AFilter The abstract atomic counter filter.
 
 
 
 ├
[V] dbgac:Filter The filter properties of the client-defined end point attached to the network.
 
 
 
 ├
[V] dbgac:FilterSummary The filter summary.
 
 
 ├
[V] dbgac:EpSummary The atomic counter endpoint summary.
 
 
 
 ├
[V] dbgac:FromEpSummary From endpoint summary.
 
 
 
 ├
[V] dbgac:ToEpSummary The atomic counter destination endpoint summary.
 
 
 ├
[V] dbgac:EpgSummary The atomic counter endpoint group summary managed object.
 
 
 
 ├
[V] dbgac:FromEpgSummary From endpoint group summary.
 
 
 
 ├
[V] dbgac:ToEpgSummary The atomic counter destination endpoint group summary.
 
 
 ├
[V] dbgac:TenantSpaceCmn Tenant Space common policy definition.
 
 
 
 ├
[V] dbgac:EpgCmn The endpoint group common.
 
 
 
 
 ├
[V] dbgac:FromEpgCmn The abstract object with the Source Endpoint Group.
 
 
 
 
 
 ├
[V] dbgac:EpgToEp The endpoint group-to-endpoint atomic counter policy detects drops and misrouting in the fabric to enable quick debugging and isolation of application connectivity issues.
 
 
 
 
 
 ├
[V] dbgac:EpgToEpg The endpoint group-to-endpoint group atomic counter policy detects drops and misrouting in the fabric to enable quick debugging and isolation of application connectivity issues.
 
 
 
 
 
 ├
[V] dbgac:EpgToIp The endpoint group-to-IP atomic counter policy detects drops and misrouting in the fabric to enable quick debugging and isolation of application connectivity issues
 
 
 
 
 ├
[V] dbgac:ToEpgCmn The abstract object with a destination endpoint group.
 
 
 
 
 
 ├
[V] dbgac:EpToEpg The endpoint-to-endpoint group atomic counter policy detects drops and misrouting in the fabric to enable quick debugging and isolation of application connectivity issues.
 
 
 
 
 
 ├
[V] dbgac:IpToEpg The IP-to-endpoint group atomic counter policy detects drops and misrouting in the fabric and enables quick debugging and isolation of application connectivity issues.
 
 
 
 ├
[V] dbgac:FromEpCmn From endpoint common.
 
 
 
 
 ├
[V] dbgac:EpToAny The endpoint-to-any atomic counter policy which detects drops and misrouting in the fabric to enable quick debugging and isolation of application connectivity issues.
 
 
 
 
 ├
[V] dbgac:EpToEp The endpoint-to-endpoint atomic counter policy detects drops and misrouting in the fabric to enable quick debugging and isolation of application connectivity issues.
 
 
 
 
 ├
[V] dbgac:EpToExt The endpoint-to-external IP address atomic counter policy detects drops and misrouting in the fabric to enable quick debugging and isolation of application connectivity issues.
 
 
 
 ├
[V] dbgac:IpToIp  IP Addr to IP policy Defn. Used for an external host identified by its IP address to another IP address
 
 
 
 ├
[V] dbgac:TenantSpaceCmnDef The tenant space common definition. This atomic counter managed object is used internally for managing Epg/Epp source and destination policies.
 
 
 
 ├
[V] dbgac:ToEpCmn The abstract object for atomic counter with a destination endpoint.
 
 
 
 
 ├
[V] dbgac:AnyToEp Atomic counters detect drops and misrouting in the fabric enables quick debugging and isolation of application connectivity issues.
 
 
 
 
 ├
[V] dbgac:ExtToEp The external host-to-endpoint atomic counter policy detects drops and misrouting in the fabric to enable quick debugging and isolation of application connectivity issues.
 
 
 ├
[V] dhcp:BootStrapLoader 
 
 
 ├
[V] dhcp:OptionPol The DHCP option policy, which defines lease duration, gateway routers, and other configuration parameters in what are called DHCP options. Every DHCP server must have one or more policies defined for it. The policies are especially useful if you have multiple scopes because you only need to define a policy once and apply it to the multiple scopes. You can define named policies with specific option definitions or you can use system defaults. Note...
 
 
 ├
[V] dhcp:ProvAddrDef The Provider Address Definition.
 
 
 ├
[V] eqptdiagp:GrpTests The diagnostic group to diagnostic test mappings.
 
 
 ├
[V] eqptdiagp:Pol The abstract diagnostic policy for fabric nodes.
 
 
 
 ├
[V] eqptdiagp:BootPol The bootup policy information.
 
 
 
 ├
[V] eqptdiagp:HealthPol The health tests statistics.
 
 
 
 
 ├
[V] eqptdiagp:CardHealthPol The card health tests.
 
 
 
 
 ├
[V] eqptdiagp:NodeHealthPol The node health tests.
 
 
 
 
 ├
[V] eqptdiagp:PortHealthPol The port health tests.
 
 
 ├
[V] eqptdiagp:TestSet An abstract diagnostics policy for fabric nodes.
 
 
 
 ├
[V] eqptdiagp:TestSetBoot A bootup abstract diagnostic policy for fabric nodes.
 
 
 
 
 ├
[V] eqptdiagp:LeTsBtEcc The diagnostic test set for leaf fabric nodes to run at bootup on extended chassis cards (FEXes).
 
 
 
 
 ├
[V] eqptdiagp:LeTsBtLc The diagnostic test set for leaf fabric nodes to run at bootup on line cards (I/O cards).
 
 
 
 
 ├
[V] eqptdiagp:LeTsBtSc The diagnostic test set for leaf fabric nodes to run at bootup on supervisor cards.
 
 
 
 
 ├
[V] eqptdiagp:PortTestSetBt The boot abstract diagnostic policy for ports.
 
 
 
 
 
 ├
[V] eqptdiagp:TsBtExtChFP 
 
 
 
 
 
 ├
[V] eqptdiagp:TsBtExtChHP 
 
 
 
 
 
 ├
[V] eqptdiagp:TsBtFabP The diagnostic tests for fabric ports at bootup.
 
 
 
 
 
 ├
[V] eqptdiagp:TsBtLeafP The diagnostic test set for leaf fabric ports to run at bootup on line cards (I/O cards).
 
 
 
 
 ├
[V] eqptdiagp:SpTsBtFc The diagnostic test set to run at bootup on spine fabric cards.
 
 
 
 
 ├
[V] eqptdiagp:SpTsBtLc The diagnostic test set to run at bootup on spine line cards (I/O cards).
 
 
 
 
 ├
[V] eqptdiagp:SpTsBtSc The diagnostic test set to run at bootup on spine supervisor cards.
 
 
 
 
 ├
[V] eqptdiagp:SpTsBtScc The diagnostic test set to run at bootup on spine system controller cards.
 
 
 
 
 ├
[V] eqptdiagp:TestSetOd An on-demand abstract diagnostic policy for fabric nodes.
 
 
 
 
 
 ├
[V] eqptdiagp:CardTestSetOd The on-demand abstract diagnostic policy for cards.
 
 
 
 
 
 
 ├
[V] eqptdiagp:ExtChCardTsOd An on-demand diagnostic policy for extended chassis cards.
 
 
 
 
 
 
 
 ├
[V] eqptdiagp:LeTsOdEcc The diagnostic test set for leaf fabric nodes to run on extended chassis cards (FEXes).
 
 
 
 
 
 
 ├
[V] eqptdiagp:FcTsOd An on-demand abstract diagnostic policy for fabric cards.
 
 
 
 
 
 
 
 ├
[V] eqptdiagp:SpTsOdFc The diagnostic on-demand test set to run on spine fabric cards.
 
 
 
 
 
 
 ├
[V] eqptdiagp:LcTsOd An on-demand abstract diagnostic policy for line cards.
 
 
 
 
 
 
 
 ├
[V] eqptdiagp:LeTsOdLc The diagnostic on-demand test set for leaf fabric nodes to run on line cards (I/O cards).
 
 
 
 
 
 
 
 ├
[V] eqptdiagp:SpTsOdLc The diagnostic on-demand test set to run on spine line cards (I/O cards).
 
 
 
 
 
 
 ├
[V] eqptdiagp:SupCTsOd The on-demand abstract diagnostic policy for supervisor cards.
 
 
 
 
 
 
 
 ├
[V] eqptdiagp:LeTsOdSc The diagnostic on-demand test set for leaf fabric nodes to run on supervisor cards.
 
 
 
 
 
 
 
 ├
[V] eqptdiagp:SpTsOdSc The diagnostic on-demand test set for leaf fabric nodes to run on spine supervisor cards.
 
 
 
 
 
 
 ├
[V] eqptdiagp:SysCTsOd The on-demand abstract diagnostic policy for system controller cards.
 
 
 
 
 
 
 
 ├
[V] eqptdiagp:SpTsOdScc The diagnostic on-demand test set to run on spine system controller cards.
 
 
 
 
 
 ├
[V] eqptdiagp:PortTestSetOd The abstract classes for port-level diagnostic policies.
 
 
 
 
 
 
 ├
[V] eqptdiagp:FpTsOd The on-demand abstract diagnostic policy for fabric ports.
 
 
 
 
 
 
 
 ├
[V] eqptdiagp:TsOdFabP The diagnostic on-demand test set for fabric ports.
 
 
 
 
 
 
 ├
[V] eqptdiagp:LpTsOd An on-demand abstract diagnostic policy for leaf ports.
 
 
 
 
 
 
 
 ├
[V] eqptdiagp:TsOdLeafP The diagnostic on-demand test set to run on leaf fabric ports.
 
 
 
 ├
[V] eqptdiagp:TestSetHealth An abstract health diagnostic policy for fabric nodes.
 
 
 
 
 ├
[V] eqptdiagp:LeTsHlEcc The diagnostic test set for leaf fabric nodes to run on extended chassis cards (FEXes).
 
 
 
 
 ├
[V] eqptdiagp:LeTsHlLc The diagnostic ongoing health test set for leaf fabric nodes to run on line cards (I/O cards).
 
 
 
 
 ├
[V] eqptdiagp:LeTsHlSc The ongoing diagnostic health test set for leaf fabric nodes to run on supervisor cards.
 
 
 
 
 ├
[V] eqptdiagp:PortTestSetHl The health abstract diagnostic policy for ports.
 
 
 
 
 
 ├
[V] eqptdiagp:TsHlExtChFP 
 
 
 
 
 
 ├
[V] eqptdiagp:TsHlExtChHP 
 
 
 
 
 
 ├
[V] eqptdiagp:TsHlFabP The ongoing diagnostic health test set for fabric ports.
 
 
 
 
 
 ├
[V] eqptdiagp:TsHlLeafP The ongoing diagnostic tests for leaf fabric ports.
 
 
 
 
 ├
[V] eqptdiagp:SpTsHlFc The ongoing diagnostic health test set to run at bootup on spine fabric cards.
 
 
 
 
 ├
[V] eqptdiagp:SpTsHlLc The ongoing diagnostic health test set to run at bootup on spine line cards (I/O cards).
 
 
 
 
 ├
[V] eqptdiagp:SpTsHlSc The ongoing diagnostic health test set to run at bootup on spine supervisor cards.
 
 
 
 
 ├
[V] eqptdiagp:SpTsHlScc The ongoing diagnostic health test set to run at bootup on spine system controller cards.
 
 
 ├
[V] equipment:FlashConfigPol 
 
 
 ├
[V] fabric:AONodeS  Abstract Override Node Override Selector
 
 
 
 ├
[V] fabric:OLeafS  Override Leaf Selector
 
 
 
 ├
[V] fabric:OSpineS  Override Spine Selector
 
 
 
 ├
[V] infra:AONodeS  Abstract Override Node Override Selector
 
 
 
 
 ├
[V] infra:OLeafS  Override Leaf Selector
 
 
 
 
 ├
[V] infra:OSpineS  Override Spine Selector @@@ Its not configurable because theres no spine policy group in infra.
 
 
 ├
[V] fabric:APathS 
 
 
 
 ├
[V] fabric:LFPathS 
 
 
 
 ├
[V] fabric:SFPathS 
 
 
 
 ├
[V] infra:APathS  Leaf & FEX Host Path Selector
 
 
 
 
 ├
[V] infra:HPathS 
 
 
 
 
 ├
[V] infra:SHPathS  Spine Host Path Selector
 
 
 ├
[V] fabric:APolGrp An abstraction of a policy group.
 
 
 
 ├
[V] fabric:PolGrp A policy group.
 
 
 
 
 ├
[V] fabric:ACardPGrp An abstraction of card policy groups
 
 
 
 
 
 ├
[V] fabric:LeCardPGrp A leaf card policy group enables you to apply policies to a group of leaf cards.
 
 
 
 
 
 ├
[V] fabric:SpCardPGrp A spine card policy group enables you to apply policies to a group of spine cards.
 
 
 
 
 ├
[V] fabric:ANodePGrp An abstraction of node policy groups.
 
 
 
 
 
 ├
[V] fabric:LeNodePGrp A leaf node policy group enables you to apply policies to a group of leaf nodes.
 
 
 
 
 
 ├
[V] fabric:SpNodePGrp A spine node policy group enables you to apply policies to a group of spine nodes.
 
 
 
 
 ├
[V] fabric:APortPGrp An abstraction of the port policy groups.
 
 
 
 
 
 ├
[V] fabric:LeAPortPGrp A base class for leaf port policy group.
 
 
 
 
 
 
 ├
[V] fabric:LeBrkoutPortGrp  Leaf Fabric Breakout Port Group
 
 
 
 
 
 
 ├
[V] fabric:LePortPGrp The leaf port policy group enables you to apply policies to a group of leaf ports.
 
 
 
 
 
 ├
[V] fabric:SpAPortPGrp A base class for a spine port policy group. This is used for specifying policies to be applied to the spine ports consuming this policy group.
 
 
 
 
 
 
 ├
[V] fabric:SpBrkoutPortGrp  Spine Fabric Breakout Port Group
 
 
 
 
 
 
 ├
[V] fabric:SpPortPGrp A spine port policy group enables you to apply policies to a group of spine ports.
 
 
 
 
 ├
[V] fabric:CtrlrPGrp The controller policy group enables you to apply policies to a group of controllers.
 
 
 
 
 ├
[V] fabric:PodPGrp A POD policy group enables you to apply policies to the leaf nodes that are part of this POD.
 
 
 
 ├
[V] infra:PolGrp An infra policy group.
 
 
 
 
 ├
[V] infra:AccBaseGrp An abstraction of the access policy group.
 
 
 
 
 
 ├
[V] infra:AAccGrp  Abstraction of AccGrp
 
 
 
 
 
 
 ├
[V] infra:AccGrp An abstraction of the port functions.
 
 
 
 
 
 
 
 ├
[V] infra:AAccBndlGrp 
 
 
 
 
 
 
 
 
 ├
[V] infra:AccBndlGrp The bundle interface group enables you to specify the interface policy you want to use.
 
 
 
 
 
 
 
 
 ├
[V] infra:AccBndlPolGrp 
 
 
 
 
 
 
 
 ├
[V] infra:AccPortGrp The interface policy group enables you to specify the interface policies you want to use.
 
 
 
 
 
 
 ├
[V] infra:SpAccGrp  Used for respresenting the spine port functions
 
 
 
 
 
 
 
 ├
[V] infra:SpAccPortGrp  Used for respresting the spine singular ports
 
 
 
 
 
 ├
[V] infra:AccBndlSubgrp The access bundle subgroup enables you to specify (override) a different LACP member policy name for some of the interfaces that are part of an access bundle group.
 
 
 
 
 
 ├
[V] infra:BrkoutPortGrp  Leaf Breakout Port Group
 
 
 
 
 
 ├
[V] infra:FcAccGrp  Used for respresenting the leaf FC port functions
 
 
 
 
 
 
 ├
[V] infra:AFcAccBndlGrp  Used for representing the leaf FC port-channel functions
 
 
 
 
 
 
 
 ├
[V] infra:FcAccBndlGrp  Used for representing leaf FC port-channels
 
 
 
 
 
 
 
 ├
[V] infra:FcAccBndlPolGrp  Used for FC Port Channel overrides
 
 
 
 
 
 
 ├
[V] infra:FcAccPortGrp  Used for representing leaf singular FC ports
 
 
 
 
 
 ├
[V] infra:FexGrp An abstraction of a FEX policy group.
 
 
 
 
 
 
 ├
[V] infra:FexBndlGrp The fabric extender bundled ports.
 
 
 
 
 ├
[V] infra:AccCardPGrp The module policy group enables you to specify the module policies you want to use.
 
 
 
 
 ├
[V] infra:AccNodePGrp The node policy group enables you to specify the node policies you want to use.
 
 
 
 
 ├
[V] infra:SpineAccNodePGrp  Used for Spine grouping node policies
 
 
 ├
[V] fabric:AProfile An abstraction of a profile.
 
 
 
 ├
[V] fabric:Profile A profile.
 
 
 
 
 ├
[V] fabric:CardP The template used for deploying card fabric configuration.
 
 
 
 
 
 ├
[V] fabric:LeCardP The leaf card profile is a template used for deploying the card fabric configuration on a leaf.
 
 
 
 
 
 ├
[V] fabric:SpCardP A spine card profile is used for deploying the card configuration on the spine.
 
 
 
 
 ├
[V] fabric:CtrlrP The controller profile. This object represents the template used for deploying controller-level configuration.
 
 
 
 
 ├
[V] fabric:FuncP The port functions.
 
 
 
 
 ├
[V] fabric:NodeP The node profile. This is the template used for deploying node fabric configuration.
 
 
 
 
 
 ├
[V] fabric:LeafP The leaf profile is a template used for deploying the leaf fabric configuration. It contains leaf selectors and associates to card and port profiles.
 
 
 
 
 
 ├
[V] fabric:SpineP The spine profile is a template used for deploying the leaf fabric configuration. It contains spine selectors and associates to card and port profiles.
 
 
 
 
 ├
[V] fabric:PodP A POD profile. This is a template used for deploying POD level configuration.
 
 
 
 
 ├
[V] fabric:PortP A port policy.
 
 
 
 
 
 ├
[V] fabric:LePortP The leaf fabric port profile contains leaf port selectors that can associate with their respective policy groups.
 
 
 
 
 
 ├
[V] fabric:SpPortP A spine port profile contains leaf port selectors that can associate with their respective policy groups.
 
 
 
 ├
[V] infra:Profile An abstraction of the access policy group.
 
 
 
 
 ├
[V] infra:ANodeP  Node Profile: It represents the template used for deploying node fabric configuration
 
 
 
 
 
 ├
[V] infra:NodeP The node profile enables you to specify which nodes (Example: a leaf) to configure.
 
 
 
 
 
 ├
[V] infra:SpineP  Spine Profile Spine Access Policy: It represents the template used for deploying node access configuration (ex. Configuration for connecting hypervisor, Fex, External network )
 
 
 
 
 ├
[V] infra:AccCardP The module profile enables you to specify the modules you want to configure.
 
 
 
 
 ├
[V] infra:AttEntityP The attached entity profile provides a template to deploy hypervisor policies on a large set of leaf ports. This also provides the association of a Virtual Machine Management (VMM) domain and the physical network infrastructure.
 
 
 
 
 ├
[V] infra:FexP The FEX profile enables you to configure FEX interfaces.
 
 
 
 
 ├
[V] infra:FuncP The hypervisor management function provides the policies used for hypervisor management and connectivity. For example, an endpoint group and encap VLAN.
 
 
 
 
 ├
[V] infra:PodP  Pod Profile: It represents the template used for deploying POD level configuration
 
 
 
 
 ├
[V] infra:PortP  Interface Profile
 
 
 
 
 
 ├
[V] infra:AccPortP The interface profile enables you to specify the interface you want to configure.
 
 
 
 
 
 ├
[V] infra:SpAccPortP  Spine Interface Profile
 
 
 ├
[V] fabric:AProtPol An abstraction of the protection policy.
 
 
 
 ├
[V] fabric:IPV4ProtPol The spine IPV4 protection policy.
 
 
 
 ├
[V] fabric:IPV6ProtPol The spine IPV6 protection policy.
 
 
 
 ├
[V] fabric:MACProtPol The spine MAC protection policy.
 
 
 
 ├
[V] fabric:ProtPol The VPC protection policy is a container of VPC protection groups; it enables you to select a pairing type for creating the protection groups
 
 
 ├
[V] fabric:Def A base class for fabric policies.
 
 
 
 ├
[V] fabric:ACardS An abstraction of the fabric card selector.
 
 
 
 
 ├
[V] fabric:CardS An abstraction of a fabric card selector.
 
 
 
 
 
 ├
[V] fabric:LeCardS The leaf card selector policy information.
 
 
 
 
 
 ├
[V] fabric:SpCardS A card selector. This is a range of cards on the spine.
 
 
 
 
 ├
[V] infra:CardS The module selector enables you to select the modules to configure and the configuration method.
 
 
 
 ├
[V] fabric:Selector An abstraction of selectors.
 
 
 
 
 ├
[V] fabric:ANodeS An abstraction of the fabric node and access node selectors.
 
 
 
 
 
 ├
[V] fabric:NodeGrp A node group.
 
 
 
 
 
 
 ├
[V] condition:NodePolGrp The node policy group is a group of nodes to which Fault, Event, Audit, or Health record retention policies can be applied.
 
 
 
 
 
 
 ├
[V] firmware:FwGrp A firmware group is a set of nodes to which a firmware policy may be applied.
 
 
 
 
 
 
 ├
[V] maint:MaintGrp The maintenance group is a set of nodes to which a maintenance policy may be applied. The maintenance policy determines the pre-defined action to take when there is a disruptive change made to the service profile associated with the node group.
 
 
 
 
 
 
 ├
[V] telemetry:FlowServerGrp  Telemtry Flow Server Group. A set of nodes to which a telemetry filter policy may be applied.
 
 
 
 
 
 
 ├
[V] telemetry:LogServerGrp  Telemtry Log Group. A set of nodes to which a telemetry log policy may be applied.
 
 
 
 
 
 
 ├
[V] telemetry:StatsServerGrp  Telemtry Log Group. A set of nodes to which a telemetry log policy may be applied.
 
 
 
 
 
 ├
[V] fabric:NodeS An abstraction of fabric node selector
 
 
 
 
 
 
 ├
[V] fabric:LeafS The leaf selector. This enables you to select all or a range of leaves.
 
 
 
 
 
 
 ├
[V] fabric:SpineS The spine selector. This enables you to select all or a range of spines.
 
 
 
 
 
 ├
[V] infra:ANodeS An abstraction of an infra node selector.
 
 
 
 
 
 
 ├
[V] infra:ConnNodeS The connectivity selector is used for grouping ports between the FEX and the host (such as hypervisor).
 
 
 
 
 
 
 ├
[V] infra:NodeGrp The node group.
 
 
 
 
 
 
 
 ├
[V] dhcp:NodeGrp The DHCP Node Group.
 
 
 
 
 
 
 
 ├
[V] infrazone:NodeGrp  Infrastructure Zone Node Group: Used for listing member nodes of the zone
 
 
 
 
 
 
 
 ├
[V] mgmt:NodeGrp The managed node group captures the set of nodes that will participate in the management network. All the nodes, a range of nodes, or a specific node can be selected to participate in a given managed node group.
 
 
 
 
 
 
 ├
[V] infra:NodeS  Node Selector
 
 
 
 
 
 
 
 ├
[V] infra:LeafS The leaf selector enables you to select the interface to configure.
 
 
 
 
 
 
 
 ├
[V] infra:SpineS  Spine Selector
 
 
 
 
 ├
[V] fabric:APodS  Abstract POD Selector
 
 
 
 
 
 ├
[V] fabric:PodGrp  Node Group
 
 
 
 
 
 
 ├
[V] condition:PodPolGrp  A set of PODs to which a set of Fault/Event/Audit/Health policies may be applied.
 
 
 
 
 
 
 ├
[V] firmware:PodFwGrp  POD Firmware Group. A set of PODS to which a firmware policy may be applied.
 
 
 
 
 
 
 ├
[V] maint:PodMaintGrp  POD Maintenance Group. A set of PODs to which a maintenance policy may be applied.
 
 
 
 
 
 
 ├
[V] telemetry:PodLogServerGrp  POD Telemetry Group. A set of PODs to which a telemetry log policy may be applied.
 
 
 
 
 
 ├
[V] fabric:PodS The POD selector enables you to select all or a range of PODs.
 
 
 
 
 
 ├
[V] infra:PodGrp  Abstract Infra Pod Group
 
 
 
 
 
 
 ├
[V] dhcp:PodGrp  DHCP POD Group
 
 
 
 
 
 
 ├
[V] infrazone:PodGrp  POD Group
 
 
 
 
 
 
 ├
[V] mgmt:PodGrp 
 
 
 
 
 
 ├
[V] infra:PodS  POD Selector
 
 
 
 
 ├
[V] fabric:APortS An abstraction of the fabric port selector and access port selector.
 
 
 
 
 
 ├
[V] fabric:PortS An abstraction of a fabric port selector.
 
 
 
 
 
 
 ├
[V] fabric:LFPortS The leaf fabric port selector. This object enables you to specify leaf fabric ports with your leaf fabric port profile.
 
 
 
 
 
 
 ├
[V] fabric:SFPortS The spine fabric port selector. This enables you to specify spine fabric ports with your spine fabric port profile.
 
 
 
 
 
 ├
[V] infra:PortS An abstraction of access interface selectors.
 
 
 
 
 
 
 ├
[V] infra:ConnFexS The Connectivity FEX selector is used for grouping ports between the FEX and the host (such as a hypervisor).
 
 
 
 
 
 
 ├
[V] infra:HConnPortS The host connectivity port selector is used for grouping ports between the node and the host (such as hypervisor).
 
 
 
 
 
 
 ├
[V] infra:HPortS The Host Port Selector is used for grouping ports between the node and the host (such as hypervisor).
 
 
 
 
 
 
 ├
[V] infra:SHPortS  Spine Host/Access Port Selector. This selector is used for applying infrastructure policies on selected ports
 
 
 
 
 ├
[V] fabric:CtrlrS The fabric controller group is made up of a core and a tech support export policy.
 
 
 
 ├
[V] hvs:ExtPol The extended policies, which are common policies for VM interfaces. For example, when implementing VMware, this represents the distributed virtual port group.
 
 
 
 ├
[V] hvs:StdExtPol  Represents standard port group in vmware
 
 
 ├
[V] fabric:DeployPol  Deployment Policy
 
 
 ├
[V] fabric:ExtPol The configuration of the extended fabric equipment, such as FEX.
 
 
 ├
[V] fabric:ExtRoutableMcastIp 
 
 
 ├
[V] fabric:ExtRoutableSubnetCont 
 
 
 ├
[V] fabric:ExtRoutableUcastIp 
 
 
 ├
[V] fabric:MaintPol The maintenance policy. This is used for listing blacklisted or inactive devices.
 
 
 
 ├
[V] fabric:BlacklistPol The blacklist policy.
 
 
 
 ├
[V] fabric:OOServicePol The service policy. This is used for listing equipment under maintenance.
 
 
 ├
[V] fabric:NodeControl  Fabric Node Control: It represents if the type is digital monitoring
 
 
 ├
[V] fabric:NodeIdentPol A container for the node identity profile.
 
 
 ├
[V] fabric:ProtChainP A node proxy IP profile. This is an implicit profile used for managing spine proxy IP addresses.
 
 
 ├
[V] fabric:ProtoPol A base class for protocol policies.
 
 
 
 ├
[V] fabric:IntfPol An abstraction of the interface policy.
 
 
 
 
 ├
[V] fabric:HIfPol The host interface policy specifies the layer 1 parameters of host facing ports.
 
 
 
 ├
[V] fabric:L2ProtoPol A base class for layer 2 protocol policies.
 
 
 
 ├
[V] fabric:L3ProtoPol A base class for layer 3 protocol policies.
 
 
 
 
 ├
[V] bgp:APeerPfxPol The abstraction of a peer prefix policy.
 
 
 
 
 
 ├
[V] bgp:PeerPfxPol The peer prefix policy defines how many prefixes can be received from a neighbor and the action to take when the number of allowed prefixes is exceeded. This feature is commonly used for external BGP peers, but can also be applied to internal BGP peers.
 
 
 
 
 ├
[V] bgp:ARtTarget  Abstraction of BGP Route Target
 
 
 
 
 
 ├
[V] bgp:RtTarget  BGP Route Target
 
 
 
 
 
 ├
[V] bgp:RtTargetDef  BGP Route Target Definition
 
 
 
 
 ├
[V] bgp:ARtTargetInstrP  Abstracttion of BGP Route Target Instrumentation Profile
 
 
 
 
 
 ├
[V] bgp:RtTargetInstrP  BGP Route Target Instrumentation Profile
 
 
 
 
 
 ├
[V] bgp:RtTargetInstrPDef  BGP Route Target Instrumentation Profile Definition
 
 
 
 
 ├
[V] bgp:ARtTargetP  Abstraction of BGP Route Target Profile
 
 
 
 
 
 ├
[V] bgp:AutoRtTargetPDef  BGP Automatic Route Target Profile Definition
 
 
 
 
 
 ├
[V] bgp:RtTargetP  BGP Route Target Profile
 
 
 
 
 
 ├
[V] bgp:RtTargetPDef  BGP Route Target Profile Definition
 
 
 
 
 ├
[V] coop:Pol The COOP policy contains groups of Oracles nodes and COOP repositories.
 
 
 
 
 ├
[V] l3ext:AFabricExtRoutingP  Abstraction of Fabric External Routing Profile
 
 
 
 
 
 ├
[V] l3ext:FabricExtRoutingP  Fabric External Routing Profile
 
 
 
 
 
 ├
[V] l3ext:FabricExtRoutingPDef  Fabric External Routing Profile Definition
 
 
 
 
 ├
[V] l3ext:ARouteTagPol The route tag policy.
 
 
 
 
 
 ├
[V] l3ext:RouteTagDef Definition of Route Tag Policy
 
 
 
 
 
 ├
[V] l3ext:RouteTagPol A route tag is used to assign a number to identify the policy.
 
 
 
 ├
[V] fabric:ProtoDomPol A base class for context-level protocol policies.
 
 
 
 
 ├
[V] fabric:L2DomPol A base class for layer 2 context-level policies.
 
 
 
 
 
 ├
[V] fv:AEpRetPol Abstract of an endpoint retention policy.
 
 
 
 
 
 
 ├
[V] fv:EpRetDef An endpoint retention definition.
 
 
 
 
 
 
 ├
[V] fv:EpRetPol The endpoint retention policy provides the parameters for the lifecycle of the endpoints.
 
 
 
 
 
 ├
[V] igmp:ASnoopPol Restricts flooding of multicast traffic by sending multicast traffic only to the bridge domains that are subscribed to a particular multicast group.
 
 
 
 
 
 
 ├
[V] igmp:SnoopDef The process of listening to Internet Group Management Protocol (IGMP) network traffic. The feature allows a network switch to listen in on the IGMP conversation between hosts and routers. By listening to these conversations the switch maintains a map of which links need which IP multicast streams.
 
 
 
 
 
 
 ├
[V] igmp:SnoopPol The IGMP snooping policy streamlines multicast traffic handling for VLANs. By examining (snooping) IGMP membership report messages from interested hosts, multicast traffic is limited to the subset of VLAN interfaces on which the hosts reside.
 
 
 
 
 
 ├
[V] mld:ASnoopPol  MLD Snoop policy Per BD
 
 
 
 
 
 
 ├
[V] mld:SnoopDef The process of listening to Multicast Listener Discovery (MLD) network traffic. The feature allows a network switch to listen in on the IGMP conversation between hosts and routers. By listening to these conversations the switch maintains a map of which links need which IP multicast streams.
 
 
 
 
 
 
 ├
[V] mld:SnoopPol The MLD snooping policy streamlines multicast traffic handling for VLANs. By examining (snooping) MLD membership report messages from interested hosts, multicast traffic is limited to the subset of VLAN interfaces on which the hosts reside.
 
 
 
 
 ├
[V] fabric:L3DomPol A base class for layer 3 context-level policies.
 
 
 
 
 
 ├
[V] fabric:L3CtxPol A base class for layer 3 context-level policies.
 
 
 
 
 
 
 ├
[V] bgp:ACtxAfPol The BGP address family context policy.
 
 
 
 
 
 
 
 ├
[V] bgp:CtxAfDef The BGP address family context definition.
 
 
 
 
 
 
 
 ├
[V] bgp:CtxAfPol 
 
 
 
 
 
 
 ├
[V] bgp:ACtxPol The context-level BGP policy.
 
 
 
 
 
 
 
 ├
[V] bgp:CtxDef An internal object for the BGP context-level policy definition.
 
 
 
 
 
 
 
 ├
[V] bgp:CtxPol The BGP timers policy uses timers to control periodic activities such as the frequency keepalive messages that are sent to its peer, the amount of time the system waits to declare a peer dead after keepalive messages stop being received, and the amount of time before restarting a dead peer. The BGP timer policy enables you to specify the intervals for the periodic activities and supplies two options for graceful restart control: the graceful rest...
 
 
 
 
 
 
 
 ├
[V] bgp:NodeCtxDef  Node-level bgp definition
 
 
 
 
 
 
 ├
[V] eigrp:ACtxAfPol The abstraction of the context-level EIGRP policy, which contains the configuration for an address family on a context on the node. The EIGRP policy is configured under the tenant protocol policies and can be applied to one or more contexts (private domains) under the tenant. The EIGRP context policy can be enabled on a context through a relation in the context per address family. If there is no relation to a given address family, or the EIGRP c...
 
 
 
 
 
 
 
 ├
[V] eigrp:CtxAfDef The context-level EIGRP address family definition.
 
 
 
 
 
 
 
 ├
[V] eigrp:CtxAfPol An EIGRP context policy can be applied on one or more contexts under the tenant. EIGRP context policies can be enabled on a context through a relation in the context per address family. If there is no relation to a given address family such as IPv6 or the EIGRP context policy mentioned in the relation doesn't exist, then the default context policy created under Tenant Common will be used for that address family.
 
 
 
 
 
 
 ├
[V] hsrp:AGroupPol  hsrp group abstraction policy
 
 
 
 
 
 
 
 ├
[V] hsrp:GroupPol  Hsrp Group Policy
 
 
 
 
 
 
 ├
[V] ipmc:ACtxPol  Abstraction of Context-level Routed Multicast policy
 
 
 
 
 
 
 
 ├
[V] igmp:CtxDef  Context-level IGMP definition
 
 
 
 
 
 
 
 ├
[V] igmp:CtxP  Context-level IGMP policy
 
 
 
 
 
 
 ├
[V] ospf:ACtxPol The OSPF policy information.
 
 
 
 
 
 
 
 ├
[V] ospf:CtxDef The context-level OSPF definition.
 
 
 
 
 
 
 
 ├
[V] ospf:CtxDefAf The context-level OSPF definition per address family.
 
 
 
 
 
 
 
 ├
[V] ospf:CtxPol The context-level OSPF timer policy provides the Hello timer and Dead timer intervals configuration.
 
 
 
 
 
 
 ├
[V] rtdmc:ACtxPol  Abstraction of Context-level Routed Multicast policy
 
 
 
 
 
 
 
 ├
[V] pim:CtxDef Context-level PIM definition.
 
 
 
 
 
 
 
 ├
[V] pim:CtxP Context-level PIM policy.
 
 
 
 
 
 
 
 ├
[V] pim:IPV6CtxDef  Context-level PIM definition
 
 
 
 
 
 
 
 ├
[V] pim:IPV6CtxP  Context-level PIM policy
 
 
 
 
 
 ├
[V] isis:DomPol The domain policy is used to configure IS-IS domain specific properties.
 
 
 
 ├
[V] fabric:ProtoIfPol A base class for interface-level protocol policies.
 
 
 
 
 ├
[V] fabric:L1IfPol 
 
 
 
 
 
 ├
[V] stormctrl:IfPol The storm control interface policy. A traffic storm occurs when packets flood the LAN, creating excessive traffic and degrading network performance. You can use the traffic storm control feature to prevent disruptions on ports by a broadcast, multicast, or unknown unicast traffic storm on physical interfaces.
 
 
 
 
 ├
[V] fabric:L2IfPol A base class for layer 2 interface-level policies.
 
 
 
 
 
 ├
[V] cdp:AIfPol The CDP Interface Policy parameters. CDP is primarily used to obtain protocol addresses of neighboring devices and discover the platform of those devices. CDP can also be used to display information about the interfaces your router uses. CDP is media- and protocol-independent, and runs on all Cisco-manufactured equipment including routers, bridges, access servers, and switches.
 
 
 
 
 
 
 ├
[V] cdp:IfPol The CDP interface policy, which is primarily used to obtain protocol addresses of neighboring devices and discover the platform of those devices. CDP can also be used to display information about the interfaces your router uses. CDP is media- and protocol-independent, and runs on all Cisco-manufactured equipment including routers, bridges, access servers, and switches.
 
 
 
 
 
 
 ├
[V] cdp:IfPolDef The read only copy of CDP interface policy.
 
 
 
 
 
 ├
[V] copp:IfPol  Per interface per protocol CoPP policy
 
 
 
 
 
 ├
[V] copp:ProtoClassP 
 
 
 
 
 
 ├
[V] dwdm:AOptChnlIfPol  Abstract class for all the profiles for DWDM C optic channel that can be applied
 
 
 
 
 
 
 ├
[V] dwdm:FabIfPol 
 
 
 
 
 
 
 ├
[V] dwdm:IfPol DWDM policy that can be applied at interface level
 
 
 
 
 
 ├
[V] extdev:SDWanPolCont  SDWAN policy Container
 
 
 
 
 
 ├
[V] fc:IfPol  interface FC policy
 
 
 
 
 
 ├
[V] l2:IfPol 
 
 
 
 
 
 ├
[V] l2:LoadBalancePol 
 
 
 
 
 
 ├
[V] l2:PortAuthPol 
 
 
 
 
 
 ├
[V] lacp:ALagPol The abstract LACP policy definition.
 
 
 
 
 
 
 ├
[V] lacp:LagPol The PortChannel policy enables you to bundle several physical ports together to form a single port channel. LACP enables a node to negotiate an automatic bundling of links by sending LACP packets to the peer node.
 
 
 
 
 
 
 ├
[V] lacp:LagPolDef Read-only copy of LACP policy.
 
 
 
 
 
 ├
[V] lacp:IfPol The PortChannel interface policy defines a common configuration that will apply to one or more LACP interfaces.
 
 
 
 
 
 ├
[V] lldp:AIfPol A summary of the interface policy. We recommend you include information about where and when the policy should be used. The abstraction can be up to 128 characters.
 
 
 
 
 
 
 ├
[V] lldp:IfPol The LLDP interface policy, which defines a common configuration that will apply to one or more LLDP interfaces. LLDP uses the logical link control (LLC) services to transmit and receive information to and from other LLDP agents.
 
 
 
 
 
 
 ├
[V] lldp:IfPolDef Read-only copy of the LLDP interface policy.
 
 
 
 
 
 ├
[V] macsec:AAIfPol  Abstraction of MACSEC Interface Policy
 
 
 
 
 
 
 ├
[V] macsec:AIfPol  Access MACSEC Policy
 
 
 
 
 
 
 
 ├
[V] macsec:IfPol  Infra MACSEC Policy
 
 
 
 
 
 
 ├
[V] macsec:FabIfPol  Fabric MACSEC Infra Policy
 
 
 
 
 
 ├
[V] macsec:AAKeyChainPol  MACSEC Abstract KeyChain Policy
 
 
 
 
 
 
 ├
[V] macsec:AKeyChainPol  MACSEC Access Abstract KeyChain Policy
 
 
 
 
 
 
 
 ├
[V] macsec:KeyChainPol  MACSEC KeyChain Policy
 
 
 
 
 
 ├
[V] macsec:AAKeyPol  MACSEC Abstract Key Policy
 
 
 
 
 
 
 ├
[V] macsec:AKeyPol  MACSEC Access Abstract Key Policy
 
 
 
 
 
 
 
 ├
[V] macsec:KeyPol  MACSEC Key Policy
 
 
 
 
 
 ├
[V] macsec:AAParamPol  Abstraction of MACSEC Interface Policy
 
 
 
 
 
 
 ├
[V] macsec:AParamPol  MACSEC Parameters Policy
 
 
 
 
 
 
 
 ├
[V] macsec:ParamPol  MACSEC Access Parameters Policy
 
 
 
 
 
 
 ├
[V] macsec:FabParamPol  MACSEC Fab Parameter Policy
 
 
 
 
 
 ├
[V] mcp:AIfPol 
 
 
 
 
 
 
 ├
[V] mcp:IfPol 
 
 
 
 
 
 ├
[V] netflow:AFabExporterPol Abstarct Fabric Netflow Exporter
 
 
 
 
 
 
 ├
[V] netflow:AExporterPol  Abstract Netflow Exporter
 
 
 
 
 
 
 
 ├
[V] netflow:ExporterPol  Exporter information for bootstrapping the netflow Collection agent
 
 
 
 
 
 
 
 ├
[V] netflow:ExporterPolDef  Define the Netflow Exporter Policy MO which contains internal information needed to program the leaf
 
 
 
 
 
 
 ├
[V] netflow:VmmExporterPol 
 
 
 
 
 
 
 ├
[V] netflow:VmmExporterPolDef  Read only copy of VMM Netflow Exporter policy
 
 
 
 
 
 ├
[V] netflow:AMonitorPol 
 
 
 
 
 
 
 ├
[V] netflow:MonitorPol 
 
 
 
 
 
 
 ├
[V] netflow:MonitorPolDef  Define the Netflow Monitor Policy MO which contains internal information needed to program the leaf
 
 
 
 
 
 ├
[V] netflow:ARecordPol  Abstract Flow Record
 
 
 
 
 
 
 ├
[V] netflow:RecordPol  Flow Record
 
 
 
 
 
 
 ├
[V] netflow:RecordPolDef  Define the Netflow Record Policy MO which contains internal information needed to program the leaf
 
 
 
 
 
 ├
[V] poe:AIfPol  Abstraction of POE Interface Policy
 
 
 
 
 
 
 ├
[V] poe:IfPol  POE Interface Policy
 
 
 
 
 
 ├
[V] qos:ADppPol  Define a Data Plane Policing policy. User is supposed to use this in scenarios where the incoming traffic need to be policed to certain levels
 
 
 
 
 
 
 ├
[V] qos:DppPol  Define a Data Plane Policing policy. User is supposed to use this in scenarios where the incoming traffic need to be policed to certain levels
 
 
 
 
 
 
 ├
[V] qos:DppPolDef  Define the Data Plane Policing MO which contains internal information needed to program the leaf
 
 
 
 
 
 ├
[V] stp:AIfPol An abstraction of an spanning-tree protocol interface policy. This is applicable to leaf ports and n1000v distributed virtual switches. Extended chassis ports have BPDU guard filter enabled by default.
 
 
 
 
 
 
 ├
[V] stp:IfPol The Spanning-Tree Protocol (STP) interface policy defines a common configuration that will apply to one or more interfaces. STP prevents loops from being formed when the interfaces are interconnected via multiple paths. Spanning-Tree Protocol implements the 802.1D IEEE algorithm by exchanging BPDU messages with other switches to detect loops, and then removes the loop by shutting down selected bridge interfaces. This algorithm guarantees that th...
 
 
 
 
 
 
 ├
[V] stp:IfPolDef The read-only copy of the spanning-tree protocol interface policy.
 
 
 
 
 ├
[V] fabric:L2PortSecurityPol 
 
 
 
 
 
 ├
[V] l2:PortSecurityPol  Port Security Policy
 
 
 
 
 
 ├
[V] l2:PortSecurityPolDef  Port Security Policy
 
 
 
 
 ├
[V] fabric:L3IfPol A base class for layer 3 interface-level policies.
 
 
 
 
 
 ├
[V] arp:AIfPol  This object holds arp information that is operated at a interface level
 
 
 
 
 
 
 ├
[V] arp:IfPol 
 
 
 
 
 
 
 ├
[V] arp:IfPolDef 
 
 
 
 
 
 ├
[V] bfd:AIfPol  Interface-level bfd abstraction policy
 
 
 
 
 
 
 ├
[V] bfd:IfPol  Interface-level bfd policy
 
 
 
 
 
 ├
[V] cloudsec:IfPol  Internal Mo for Cloudsec Policy
 
 
 
 
 
 ├
[V] eigrp:IfPol The EIGRP interface policy, which defines a common configuration that will apply to one or more EIGRP interfaces.
 
 
 
 
 
 ├
[V] hsrp:AIfPol  Interface-level hsrp abstraction policy
 
 
 
 
 
 
 ├
[V] hsrp:IfPol  Interface-level hsrp policy
 
 
 
 
 
 ├
[V] ipmc:AIfPol  Interface-level ipmc policy
 
 
 
 
 
 
 ├
[V] igmp:IfDef 
 
 
 
 
 
 
 ├
[V] igmp:IfPol  Interface-level IGMP policy
 
 
 
 
 
 ├
[V] l3:IfPol  L3 Interface Policy
 
 
 
 
 
 ├
[V] nd:AIfPol The neighbor discovery interface policy defines a common configuration that will apply to one or more neighbor discovery interfaces.
 
 
 
 
 
 
 ├
[V] nd:IfPol The neighbor discovery interface policy defines a common configuration that will apply to one or more neighbor discovery interfaces.
 
 
 
 
 
 
 ├
[V] nd:IfPolDef The read only copy of the neighbor discovery interface policy.
 
 
 
 
 
 ├
[V] nd:APfxPol The neighbor discovery prefix policy.
 
 
 
 
 
 
 ├
[V] nd:PfxPol The neighbor discovery prefix policy.
 
 
 
 
 
 
 ├
[V] nd:PfxPolDef The neighbor discovery prefix policy definition.
 
 
 
 
 
 ├
[V] ospf:IfPol The OSPF interface-level policy information.
 
 
 
 
 
 ├
[V] rtdmc:AIfPol  Interface-level rtdmc-SM policy
 
 
 
 
 
 
 ├
[V] pim:IfDef PIM interface definition.
 
 
 
 
 
 
 ├
[V] pim:IfPol Interface-level PIM-SM (sparse mode) policy.
 
 
 
 
 
 ├
[V] rtdmc:AIfPolCont  Interface-level rtdmc
 
 
 
 
 
 
 ├
[V] rtdmc:IPV6McastIfDefCont  Interface Policy Container
 
 
 
 
 
 
 ├
[V] rtdmc:McastIfDefCont  Interface Policy Container
 
 
 
 
 
 ├
[V] rtdmc:ARtMapPol  Route Map Policy
 
 
 
 
 
 
 ├
[V] pim:RouteMapDef PIM route map definition
 
 
 
 
 
 
 ├
[V] pim:RouteMapPol PIM route map policy
 
 
 
 
 ├
[V] fabric:L4IfPol 
 
 
 
 
 
 ├
[V] nws:AFwPol  Firewall Policy Definition
 
 
 
 
 
 
 ├
[V] nws:FwPol 
 
 
 
 
 
 
 ├
[V] nws:FwPolDef  read only copy of lacp policy
 
 
 
 
 ├
[V] fabric:QinqIfPol 
 
 
 
 ├
[V] fabric:ProtoInstPol A base class for instance-level protocol policies.
 
 
 
 
 ├
[V] dns:AProfile The DNS Profile.
 
 
 
 
 
 ├
[V] dns:Prof The DNS instance information.
 
 
 
 
 
 ├
[V] dns:Profile The DNS profile defines a set of DNS providers and can be deployed to a switch for tenant contexts. To deploy a DNS profile on a switch, the appropriate label has to be defined for the context deployed on switch.
 
 
 
 
 ├
[V] dnsepg:ADomain  DNS Abstract Domain
 
 
 
 
 
 ├
[V] dnsepg:Domain  DNS Domain
 
 
 
 
 ├
[V] dnsepg:ZoneDB  DNS Zone DB
 
 
 
 
 ├
[V] dnsepg:ZoneEntry  DNS Zone Entry
 
 
 
 
 ├
[V] fabric:L2InstPol A base class for layer 2 interface-level policies.
 
 
 
 
 
 ├
[V] cdp:InstPol Specifies the node-level CDP policy.
 
 
 
 
 
 ├
[V] edr:ErrDisRecoverPol The error disabled recovery policy specifies the policy for re-enabling a port that was disabled due to one or more pre-defined error conditions.
 
 
 
 
 
 ├
[V] ep:ControlP  Endpoint Control Policy
 
 
 
 
 
 ├
[V] ep:IpAgingP 
 
 
 
 
 
 ├
[V] ep:LoopProtectP The endpoint loop protection policy specifies how loops detected by frequent mac moves are handled.
 
 
 
 
 
 ├
[V] fc:FabricPol 
 
 
 
 
 
 ├
[V] fc:InstPol 
 
 
 
 
 
 ├
[V] l2:AInstPol A fabric-wide L2 policy.
 
 
 
 
 
 
 ├
[V] l2:InstPol The Layer 2 instance policy is used for configuring fabric-wide layer 2 settings. Currently, this policy contains only fabric MTU and management MTU configuration.
 
 
 
 
 
 
 ├
[V] l2:InstPolDef A read-only copy of the fabric MTU policy.
 
 
 
 
 
 ├
[V] l2:NodeAuthPol 
 
 
 
 
 
 ├
[V] lldp:InstPol The node level LLDP policy.
 
 
 
 
 
 ├
[V] mcp:InstPol 
 
 
 
 
 
 ├
[V] poe:InstPol  Node level poe policy
 
 
 
 
 
 ├
[V] span:ADest The abstraction of an SPAN destination. The SPAN destination is where network traffic is sent for analysis by a network analyzer. A SPAN destination can be local or remote (ERSPAN). When you create a traffic monitoring session, you must select a SPAN source and a SPAN destination. The type of session (Tenant, Access, or Fabric) determines the allowed types of SPAN sources and destinations. The destination can be either a port or an endpoint group...
 
 
 
 
 
 
 ├
[V] span:AVDest The abstraction of a VSPAN destination. The VSPAN destination is where network traffic is sent for analysis by a network analyzer. A VSPAN destination can be local or remote (VERSPAN). When you create a traffic monitoring session, you must select a VSPAN source and a VSPAN destination. The type of session (Tenant, Access, or Fabric) determines the allowed types of VSPAN sources and destinations. The destination can be either a port or an endpoint...
 
 
 
 
 
 
 
 ├
[V] span:VDest The VSPAN destination is where network traffic is sent for analysis by a network analyzer. A VSPAN destination can be local or remote (VERSPAN). When you create a traffic monitoring session, you must select a VSPAN source and a VSPAN destination. The type of session (tenant, access, or fabric) determines the allowed types of VSPAN sources and destinations. The destination can be either a port or an endpoint group. If the destination is a port, it...
 
 
 
 
 
 
 
 ├
[V] span:VDestDef The VLAN-based SPAN (VSPAN) destination definition.
 
 
 
 
 
 
 ├
[V] span:Dest The SPAN destination is where network traffic is sent for analysis by a network analyzer. A SPAN destination can be local or remote (ERSPAN). When you create a traffic monitoring session, you must select a SPAN source and a SPAN destination. The type of session (Tenant, Access, or Fabric) determines the allowed types of SPAN sources and destinations. The destination can be either a port or an endpoint group. If the destination is a port, it shoul...
 
 
 
 
 
 ├
[V] span:ASrcGrp The abstraction of a SPAN source group. The SPAN source group can contain a group of SPAN sources, which is where network traffic is sampled. A SPAN source can be an endpoint group (EPG), one or more ports, or port traffic filtered by an EPG (Access SPAN), a Layer 2 bridge domain, or a Layer 3 context (Fabric SPAN). When you create a traffic monitoring session, you must select a SPAN source group and a SPAN destination. The type of session (Tenan...
 
 
 
 
 
 
 ├
[V] span:SrcGrp The SPAN source group can contain a group of SPAN sources. A SPAN source is where network traffic is sampled. A SPAN source can be an endpoint group (EPG), one or more ports, or port traffic filtered by an EPG (access SPAN), a Layer 2 bridge domain, or a Layer 3 context (Fabric SPAN). When you create a traffic monitoring session, you must select a SPAN source group and a SPAN destination. The type of session (Tenant, Access, or Fabric) determines...
 
 
 
 
 
 
 ├
[V] span:SrcGrpDef The SPAN source group definitions. The SPAN source is where traffic is sampled. A SPAN source can be an endpoint group (EPG), one or more ports, or port traffic filtered by an EPG (access SPAN), a Layer 2 bridge domain, or a Layer 3 context (fabric SPAN). When you create a traffic monitoring session, you must select a SPAN source and a SPAN destination. The type of session (Tenant, Access or fabric) determines the allowed types of SPAN sources an...
 
 
 
 
 
 ├
[V] span:AVDestGrp The abstraction of a VSPAN destination group. The VSPAN destination group can contain a group of VSPAN destinations. A VSPAN destination is where network traffic is sent for analysis by a network analyzer. A VSPAN destination can be local or remote (VERSPAN). When you create a traffic monitoring session, you must select a VSPAN source and a VSPAN destination. The type of session (Tenant, Access, or Fabric) determines the allowed types of VSPAN so...
 
 
 
 
 
 
 ├
[V] span:VDestGrp The VSPAN destination group contains a group of VSPAN destinations. A VSPAN destination is where network traffic is sent for analysis by a network analyzer. A VSPAN destination can be local or remote (VERSPAN). When you create a traffic monitoring session, you must select a VSPAN source and a VSPAN destination. The type of session (tenant, access, or fabric) determines the allowed types of VSPAN sources and destinations. The destination can be ei...
 
 
 
 
 
 
 ├
[V] span:VDestGrpDef VSPAN destination group used for configuring VSPAN source group definitions.
 
 
 
 
 
 ├
[V] span:AVSrcGrp The abstraction of a VSPAN source group. The VSPAN source group can contain a group of VSPAN sources. A VSPAN source is where network traffic is sampled. A VSPAN source can be an endpoint group (EPG), one or more ports, or port traffic filtered by an EPG (Access VSPAN), a Layer 2 bridge domain, or a Layer 3 context (Fabric VSPAN). When you create a traffic monitoring session, you must select a VSPAN source group and a VSPAN destination. The type ...
 
 
 
 
 
 
 ├
[V] span:VSrcGrp The VSPAN source group can contain a group of VSPAN sources. A VSPAN source is where network traffic is sampled. A VSPAN source can be an endpoint group (EPG), one or more ports; or port traffic filtered by an EPG (access VSPAN), a Layer 2 bridge domain, or a Layer 3 context (fabric VSPAN). When you create a traffic monitoring session, you must select a VSPAN source group and a VSPAN destination. The type of session (tenant, access, or fabric) de...
 
 
 
 
 
 
 ├
[V] span:VSrcGrpDef The VSPAN source group definition.
 
 
 
 
 
 ├
[V] span:DestGrp The SPAN destination group contains a group of SPAN destinations. A SPAN destination is where network traffic is sent for analysis by a network analyzer. A SPAN destination can be local or remote (ERSPAN). When you create a traffic monitoring session, you must select a SPAN source and a SPAN destination. The type of session (Tenant, Access, or Fabric) determines the allowed types of SPAN sources and destinations. The destination can be either a p...
 
 
 
 
 
 ├
[V] span:SpanProv The SPAN destination provider is used for configuring SPAN destination provider parameters.
 
 
 
 
 
 ├
[V] span:SrcTargetShadow The SPAN source to EPG information.
 
 
 
 
 
 ├
[V] span:SrcTargetShadowBD The SPAN source to bridge domain (BD) information.
 
 
 
 
 
 ├
[V] span:SrcTargetShadowCtx The SPAN source to Ctx information.
 
 
 
 
 
 ├
[V] span:SrcTargetShadowL3If  Holds span src to l3 itnerface related information
 
 
 
 
 
 ├
[V] span:TaskParam The SPAN source to EPG task information.
 
 
 
 
 
 ├
[V] span:VSpanProv The VSPAN destination provider is used for configuring VSPAN destination provider parameters.
 
 
 
 
 
 ├
[V] stp:InstPol The spanning Tree Protocol (STP) instance policy, which enables you to set the bridge protocol data unit (BPDU) guard policy or filter. BDPUs are packets that run the STP protocol. The specification for STP is IEEE 802.1D. The main purpose of STP is to ensure that you do not create loops when you have redundant paths in your network. Loops are deadly to a network.
 
 
 
 
 
 ├
[V] vpc:InstPol The node-level vPC domain policy, which is used to specify a vPC domain and is applied to both vPC peer devices, the vPC peer keepalive link, the vPC peer link, and all the PortChannels in the vPC domain connected to the downstream device. You can have only one vPC domain ID on each device.
 
 
 
 
 ├
[V] fabric:L3InstPol A base class for layer 3 instance-level policies.
 
 
 
 
 
 ├
[V] bfd:AInstPol  Global BFD policy
 
 
 
 
 
 
 ├
[V] bfd:Ipv4InstPol 
 
 
 
 
 
 
 ├
[V] bfd:Ipv6InstPol 
 
 
 
 
 
 ├
[V] bgp:InstPol The BGP Instance level policy is used to configure MP-BGP policies inside the fabric.
 
 
 
 
 
 ├
[V] dhcp:ARelayP The abstract DHCP Relay profile, which is used for configuring relay parameters per bridge domain (BD).
 
 
 
 
 
 
 ├
[V] dhcp:RelayP The DHCP relay profile, with one or more helper addresses in it, configures a DHCP relay agent for forwarding DHCP packets to a remote server.
 
 
 
 
 ├
[V] fabric:UtilInstPol A base class for policies.
 
 
 
 
 
 ├
[V] psu:InstPol The power redundancy policy is for all power supply units on the fabric nodes (leaves and spines) that are consuming the power supply policy through their respective selector profile policy.
 
 
 
 
 ├
[V] fabric:VxlanInstPol 
 
 
 
 
 
 ├
[V] l4:AVxlanInstPol 
 
 
 
 
 
 
 ├
[V] l4:VxlanInstPol 
 
 
 
 
 
 
 ├
[V] l4:VxlanInstPolDef 
 
 
 
 
 ├
[V] twamp:ResponderPol TWAMP Responder Policy.
 
 
 
 
 ├
[V] twamp:ServerPol  Node level TWAMP policy
 
 
 
 ├
[V] lbp:Pol The load balancing policy options for balancing traffic among the available uplink ports. Static hash load balancing is the traditional load balancing mechanism used in networks where each flow is allocated to an uplink based on a hash of its 5-tuple. This load balancing gives a distribution of flows across the available links that is roughly even. Usually, with a large number of flows, the even distribution of flows results in an even distributi...
 
 
 ├
[V] fabric:SetupPol 
 
 
 ├
[V] fc:AEncapCont 
 
 
 
 ├
[V] fc:AllocEncapCont  Represents the container object used for managing Fibre Channel Encap Block
 
 
 ├
[V] fc:APinningLbl  Fiber Channel Pinning Label. Its used for pinning host interfaces to uplink interfaces. This label should match with the name of a fc:PinningP configured this tenant or tenant-commmon. Once this label is configured under a fv:RsFcPathAtt, that host interface will get pinned to the uplink interfaces specified in the Pinning profile.
 
 
 
 ├
[V] fc:PinningLbl 
 
 
 
 ├
[V] fc:PinningLblDef 
 
 
 ├
[V] fc:APinningP  Abstract Fiber Channel Pinning Profile. Its used for pinning host interfaces to uplink interfaces.
 
 
 
 ├
[V] fc:PinningP  Fiber Channel Pinning Profile. Its used for pinning host interfaces to uplink interfaces.
 
 
 
 ├
[V] fc:PinningPDef  Fiber Channel Pinning Profile Definition. Its used for pinning host interfaces to uplink interfaces.
 
 
 ├
[V] fc:AllocEncapBlkDef 
 
 
 ├
[V] fc:ResPolCont  Container for resolved Fiber Channel policies in node
 
 
 ├
[V] fc:VsanAttrP 
 
 
 ├
[V] fcpr:Consumer 
 
 
 ├
[V] fcpr:Holder 
 
 
 ├
[V] fcpr:PostponedRequest 
 
 
 ├
[V] fhs:ABDPol 
 
 
 
 ├
[V] fhs:BDDef 
 
 
 
 ├
[V] fhs:BDPol 
 
 
 ├
[V] fhs:ARaGuardPol 
 
 
 
 ├
[V] fhs:RaGuardDef 
 
 
 
 ├
[V] fhs:RaGuardPol 
 
 
 ├
[V] fhs:ATrustCtrlPol 
 
 
 
 ├
[V] fhs:TrustCtrlDef 
 
 
 
 ├
[V] fhs:TrustCtrlPol 
 
 
 ├
[V] firmware:AFwP The firmware policy specifies the desired firmware version.
 
 
 
 ├
[V] firmware:AnalyticsAgentFwP  Firmware policy specification for analytics agent.
 
 
 
 ├
[V] firmware:CatFwP The catalog firmware policy version.
 
 
 
 ├
[V] firmware:CatFwPInternal  Internal Catalog Policy. Fields will be populated internally.
 
 
 
 ├
[V] firmware:CtrlrFwP The firmware policy specification for the controller.
 
 
 
 ├
[V] firmware:FwP The firmware specification policy for a node.
 
 
 ├
[V] firmware:RepoP The firmware repository population and maintenance information.
 
 
 ├
[V] fmcast:SystemGIPoPol  Used for enabling usage of configured system GIPo in the fabric (includes all the PODs). @@@ In previous releases system GIPo was hardcoded and was not usable for Multipod scenarios. @@@ In Congo, PE/APIC changes were done for configuring new system GIPo value but NXOS changes @@@ were slipped out of Congo. Now we are introducing this knob to start using configured system @@@ ...
 
 
 ├
[V] fmcast:TreePol The Multicast Tree policy parameters..
 
 
 ├
[V] fv:AAKeyChainPol  Abstract KeyChain Policy
 
 
 
 ├
[V] fv:AKeyChainPol  Abstract Tenant KeyChain Policy
 
 
 
 
 ├
[V] fv:KeyChainPol  KeyChain Policy
 
 
 
 
 ├
[V] fv:KeyChainPolDef  Resolved KeyChain Policy
 
 
 ├
[V] fv:AAKeyPol  Abstract Key Policy
 
 
 
 ├
[V] fv:AKeyPol  Abstract Key Policy
 
 
 
 
 ├
[V] fv:KeyPol  Key Policy
 
 
 
 
 ├
[V] fv:KeyPolDef  Resolved Key Policy
 
 
 ├
[V] fv:AAREpPRequestor 
 
 
 
 ├
[V] fv:GenericEpPRequestor 
 
 
 
 ├
[V] fv:UsegEpPRequestor 
 
 
 ├
[V] fv:AAREpPUpdate  Represent an AREpP Update
 
 
 
 ├
[V] fv:InProgressUpd  In-Progress AREpP Update
 
 
 
 ├
[V] fv:PostponedUpd  Postponed AREpP Update
 
 
 ├
[V] fv:AFabricExtConnP  Abstract Site Connectivity Profile
 
 
 
 ├
[V] fv:FabricExtConnP  Site Connectivity Profile
 
 
 
 ├
[V] fv:FabricExtConnPDef  Site Connectivity Profile Definition @@@ PE will pull FabricExtConnPDef. An Outside pushed to spine will pull it.
 
 
 ├
[V] fv:AIntersiteConnP  Abstract Class Container for Connectivity Information for MultiSite deployments
 
 
 
 ├
[V] fv:ExtRoutableUcastConnP  Container for Unicast Connectivity Information for MultiSite deployments
 
 
 
 ├
[V] fv:IntersiteConnP  Container for Unicast Connectivity Information for MultiSite deployments
 
 
 
 ├
[V] fv:IntersiteMcastConnP  Container for Multisite Connectivity Information for MultiSite deployments
 
 
 ├
[V] fv:AIntersiteConnPDef  Abstract Class Container Def for Connectivity Information for MultiSite deployments
 
 
 
 ├
[V] fv:ExtRoutableUcastConnPDef 
 
 
 
 ├
[V] fv:IntersiteConnPDef 
 
 
 
 ├
[V] fv:IntersiteMcastConnPDef  Container for Local Multisite Connectivity Information for MultiSite deployments
 
 
 ├
[V] fv:APathAtt An abstraction of the path the endpoint group configuration will be deployed on.
 
 
 
 ├
[V] fv:AttEntityPathAtt An attachable entity path attachment on the EPG configuration.
 
 
 
 ├
[V] fv:DyPathAtt A dynamic path attachment.
 
 
 
 ├
[V] fv:ExtStPathAtt The path the endpoint group configuration will be deployed on.
 
 
 
 ├
[V] fv:StPathAtt The path the endpoint group configuration is deployed on.
 
 
 
 ├
[V] fv:VNodeAtt  Represent a Path on whom the EPG configuration will be deployed. It represents Virtual Node Attachment. If only this type of attachement is present under an EpP then the EpP will not get instrumented on that node. But together with VNodeAtt if any other type of PathAtt is present then EpP will get instrumented as usual
 
 
 ├
[V] fv:APathEpDef The abstract path endpoint definition.
 
 
 
 ├
[V] fv:ExtPathEpDef An external path endpoint definition.
 
 
 
 ├
[V] fv:PathEpDef The node and interface, or a group of interfaces, that the endpoint group is deployed on. This is an internal object used for tracking static endpoint group deployment.
 
 
 ├
[V] fv:APeeringP  Abstract Peering Profile
 
 
 
 ├
[V] fv:IntersitePeeringDef  Peering Profile Definition
 
 
 
 ├
[V] fv:IntersitePeeringP  Intersite Peering Profile
 
 
 
 ├
[V] fv:PeeringDef  Peering Profile Definition
 
 
 
 ├
[V] fv:PeeringP  Peering Profile
 
 
 ├
[V] fv:AREpPBootStrap 
 
 
 ├
[V] fv:AREpPCtrct A contract for a remote endpoint profile.
 
 
 
 ├
[V] fv:REpPCtrct A contract for a remote endpoint profile.
 
 
 
 ├
[V] fv:UtilizedCtrct 
 
 
 ├
[V] fv:AREpPRequestorCont 
 
 
 ├
[V] fv:AREpPUpd 
 
 
 ├
[V] fv:AVip  Abstraction of Virtual IP address
 
 
 
 ├
[V] fv:Vip  Virtual IP address
 
 
 
 ├
[V] fv:VipDef  Virtual IP address definition
 
 
 
 ├
[V] vns:SvcVip  Virtual IP address
 
 
 
 ├
[V] vns:SvcVipDef  Implicit instance of Svc VIP
 
 
 ├
[V] fv:AccP The bridge domain (BD) access profile. When created over a BD, contracts are not enforced for the BD, and the encap will be applied to all endpoint groups on this BD.
 
 
 ├
[V] fv:AppCtxRef  App Context Reference
 
 
 ├
[V] fv:AppEpGCons  App EpG Consumer
 
 
 ├
[V] fv:AppEpGPol  App EpG Policy
 
 
 ├
[V] fv:AppEpGRef  App EpG Reference
 
 
 ├
[V] fv:BDHolder The bridge domain (BD) holder contains bridge domain related information. For example, in a same shared service scenario, when a context is deployed on a node, the PE needs to get all subnets of all the associated BDs. In this case, the private Layer 3 network context contains DNs of all associated BDs, and with that info, the node pulls down the corresponding bridge domain holders of each of the associated BDs. The bridge domain holder contai...
 
 
 ├
[V] fv:BDPublicSubnetHolder This MO is used to hold all the public subnets under a BD that are consumed by l3 out
 
 
 ├
[V] fv:ByDom 
 
 
 ├
[V] fv:ByHv 
 
 
 ├
[V] fv:ConnInstrPol Every endpoint group should have a relation set to its bridge domain. If not set by the user, then the relation is set to the default Bridge Domain and the Connectivity Instrumentation Policy determines whether or not traffic will be allowed to flow to/from that EPG. This applies to all EPGs regardless of use (VMM, baremetal, L2ext, L3ext). There is also a relation from the Bridge Domain to the VRF. If this is not set by the user, then the defaul...
 
 
 ├
[V] fv:CtrlrIpDef  POD Specific Controller Definition
 
 
 ├
[V] fv:EPgCont An endpoint group container is an internal object that represents endpoint groups.
 
 
 
 ├
[V] fv:AEPgCont An abstract container class for endpoint groups. This is an abstract class and cannot be instantiated
 
 
 
 ├
[V] fv:EPgDef An internal object that represents endpoint groups is used for deployment.
 
 
 
 
 ├
[V] fv:AEPgDef Abstract representation of an endpoint group definition.
 
 
 
 
 
 ├
[V] dhcp:ProvDhcp Internal object that points to the provider details of a DHCP relay profile.
 
 
 
 
 
 ├
[V] fv:AEpP Abstract representation of an endpoint profile.
 
 
 
 
 
 
 ├
[V] fv:AREpP Abstract representation of the resolvable endpoint profile. This is an abstract class and cannot be instantiated.
 
 
 
 
 
 
 
 ├
[V] cloud:EpP 
 
 
 
 
 
 
 
 ├
[V] fv:AMgmtEpP Abstract representation of the management endpoint policy for a fabric node management endpoint group. This is an abstract class and cannot be instantiated.
 
 
 
 
 
 
 
 
 ├
[V] fv:InBEpP An in-band management endpoint profile for a fabric node management endpoint group.
 
 
 
 
 
 
 
 
 ├
[V] fv:InstPEpP Instance Profile Management EpP for the Fabric Node Management EPG. This EpP is created per external management entity instance profile (InstP EPg).
 
 
 
 
 
 
 
 
 ├
[V] fv:OoBEpP An out-of-band management endpoint profile for a fabric node management endpoint group.
 
 
 
 
 
 
 
 ├
[V] fv:EpP An endpoint profile.
 
 
 
 
 
 
 
 ├
[V] fv:ExtEpP Abstraction of a profile created for an endpoint connected to an external router or switch.
 
 
 
 
 
 
 
 
 ├
[V] fv:BrEpP The bridge endpoint profile represents L2 outside present under a tenant.
 
 
 
 
 
 
 
 
 ├
[V] fv:RtdEpP A target relation to an L3 routed outside present under a tenant.
 
 
 
 
 
 
 
 ├
[V] fv:SvcEpP Abstract representation of a service endpoint profile, such as an endpoint profile created per node in the service graph.
 
 
 
 
 
 
 
 ├
[V] fv:TnlEpP 
 
 
 
 
 
 ├
[V] fv:EPgSummaryDef 
 
 
 
 
 
 ├
[V] span:ADestSummary The abstraction of a SPAN destination information summary, which is used for configuring the SPAN destination information summary.
 
 
 
 
 
 
 ├
[V] span:AEpgSummary The abstraction of a SPAN destination endpoint group (EPG) summary, which stores EPG information for SPAN.
 
 
 
 
 
 
 
 ├
[V] span:EpgSummary The SPAN destination Epg summary.
 
 
 
 
 
 
 
 ├
[V] span:VEpgSummary The VEpg summary.
 
 
 
 
 
 
 
 ├
[V] span:VEpgSummaryDef The VSPAN EpgSummaryDef is used for VERSPAN definitions.
 
 
 
 
 
 ├
[V] vns:AdjacencyDefCont 
 
 
 
 
 
 ├
[V] vns:CopyAdjacencyDef 
 
 
 
 
 
 ├
[V] vz:ACtrctEpgDef An endpoint group associated with a contract can be provider or consumer.
 
 
 
 
 
 
 ├
[V] vz:ConsDef A consumer definition.
 
 
 
 
 
 
 ├
[V] vz:CtrctEntityDef The contract entity definition.
 
 
 
 
 
 
 ├
[V] vz:IntraSecurityDef  Represent an EPg with Intra EPg security enabled
 
 
 
 
 
 
 ├
[V] vz:ProvDef A provider definition.
 
 
 
 
 
 ├
[V] vz:AToEPg 
 
 
 
 
 
 
 ├
[V] vz:ToEPg The destination endpoint group.
 
 
 
 
 
 
 ├
[V] vz:ToEPgAny 
 
 
 
 
 ├
[V] fv:ProtEPg An endpoint group associated with a taboo policy in a given context. This is an internal object.
 
 
 
 
 ├
[V] vz:FromEPg The endpoint group that traffic originates from.
 
 
 
 ├
[V] vz:CtrctEPgCont A container for a contract endpoint group.
 
 
 ├
[V] fv:EpCP A container to hold criterion definition objects for an endpoint group.
 
 
 ├
[V] fv:EpTaskAggrCont A container for the endpoint task aggregator.
 
 
 ├
[V] fv:ExtRoutableMcastIpDef 
 
 
 ├
[V] fv:ExtRoutableUcastIpDef 
 
 
 ├
[V] fv:FailedXlate 
 
 
 ├
[V] fv:GipoCont 
 
 
 ├
[V] fv:GipoInfo 
 
 
 ├
[V] fv:GipoRequestor 
 
 
 ├
[V] fv:GipoTaskAggr 
 
 
 ├
[V] fv:ICMPProbe 
 
 
 ├
[V] fv:IPSLAMonitoringPol 
 
 
 ├
[V] fv:InProgressUpdCont  Container for AREpP Updates Currently in Progress
 
 
 ├
[V] fv:L3SubInterface 
 
 
 ├
[V] fv:NodeAREpPUpd  Manager for AREpP Updates for a given Node
 
 
 ├
[V] fv:NonStretchedCont 
 
 
 ├
[V] fv:PasswordConfig  BGP password config
 
 
 ├
[V] fv:PasswordConfigDef  BGP Password config definition
 
 
 ├
[V] fv:PeerContextDefDn  Used to store Peer (provider or consumer) Context DNs
 
 
 ├
[V] fv:PeerContextDn  Used to store Peer (provider or consumer) Context DNs
 
 
 ├
[V] fv:PodDhcpServerInfo  Dhcp Server info of the Virtual Pod
 
 
 ├
[V] fv:PolDeliveryStatus Status of policy deployment indicates if APIC has delivered/is delivering policy to node - Policy to node cannot be delivered (node is a spine).
 
 
 ├
[V] fv:PolMod A bridge domain policy modifier that can override the desired state of the bridge domain.
 
 
 ├
[V] fv:PostponedUpdCont  Container for AREpP Updates Currently Postponed
 
 
 ├
[V] fv:PullRecover 
 
 
 ├
[V] fv:PulledPolicy 
 
 
 ├
[V] fv:RemoteId 
 
 
 ├
[V] fv:RemotePolHolder A container existing on each node to efficiently download policies to the node. For example: filters, bridge domain, and taboo policies. This is an internal object.
 
 
 ├
[V] fv:RtdEpPInfoCont A container for target relations that point to a Layer 3 routed outside and present under a tenant.
 
 
 ├
[V] fv:RtdEpPInfoHolder A container for target relations to a Layer 3 routed outside and present under a tenant.
 
 
 ├
[V] fv:ShardedAREpPUpd 
 
 
 ├
[V] fv:SiteAssociated  Used to store ID mappings
 
 
 ├
[V] fv:SlaDef  IPSLA Policy Definition @@@ PE will pull IPSLA Def Mo
 
 
 ├
[V] fv:StretchedCont 
 
 
 ├
[V] fv:TCPProbe 
 
 
 ├
[V] fv:TrackList 
 
 
 ├
[V] fv:TrackMember 
 
 
 ├
[V] fv:UnkMacUcastActMod This is the bridge domain (BD) Policy Modifier for UnkMacUcastAct. In special cases, the BD Policy Modifier can override the desired state of BD.
 
 
 ├
[V] fv:UsegSrc 
 
 
 ├
[V] fv:VStaticEp 
 
 
 ├
[V] fv:VStaticEpCont 
 
 
 ├
[V] geo:Site The geographical site of the fabric node.
 
 
 ├
[V] hcloud:AwsVpnTunnelInfo 
 
 
 ├
[V] hcloud:TechSup 
 
 
 ├
[V] hcloud:TechSupDone 
 
 
 ├
[V] hcplatform:License  License Definition
 
 
 ├
[V] health:EvalP The health score evaluation policy indicates the severity of the fault in percentages.
 
 
 ├
[V] health:LevelsP The severity of a health score, such as healthy, fair, or poor.
 
 
 ├
[V] hostprot:APol 
 
 
 
 ├
[V] hostprot:Pol 
 
 
 
 ├
[V] hostprot:PolDef 
 
 
 ├
[V] hostprot:ARemoteIp 
 
 
 
 ├
[V] hostprot:RemoteIp 
 
 
 
 ├
[V] hostprot:RemoteIpDef 
 
 
 ├
[V] hostprot:ARule 
 
 
 
 ├
[V] hostprot:Rule 
 
 
 
 ├
[V] hostprot:RuleDef 
 
 
 ├
[V] hostprot:ASubj 
 
 
 
 ├
[V] hostprot:Subj 
 
 
 
 ├
[V] hostprot:SubjDef 
 
 
 ├
[V] iacl:AProfile  Abstract class for all the profiles for CoPP Prefilters that can be applied at the node level
 
 
 
 ├
[V] iacl:LeafProfile  CoPP Prefilter policy that can be applied at LEAF nodes
 
 
 
 ├
[V] iacl:SpineProfile  CoPP Prefilter policy that can be applied at SPINE nodes
 
 
 ├
[V] ident:Ns The identity namespace.
 
 
 ├
[V] infra:CPMtuPol 
 
 
 ├
[V] infra:ClusterPol The cluster policy is used to set the size of the cluster.
 
 
 ├
[V] infra:DRRPol 
 
 
 ├
[V] infra:ImplicitSetPol 
 
 
 ├
[V] infra:PortTrackPol 
 
 
 ├
[V] infra:SetPol 
 
 
 ├
[V] infrazone:ZoneP  Infrastructure Zoning Profile: This profile can be used for carving out policy deployment zones in the fabric. With zones, user can push policies to different zones at different times to prevent or minimize fabric downtime
 
 
 ├
[V] ipsec:AIsakmpPhase1Pol  Holds Ipsec ISAKMP Phase 1 Policy
 
 
 
 ├
[V] ipsec:IsakmpPhase1Pol 
 
 
 
 ├
[V] ipsec:IsakmpPhase1PolDef 
 
 
 ├
[V] ipsec:AIsakmpPhase2Pol  Holds Ipsec ISAKMP Phase 2 Policy
 
 
 
 ├
[V] ipsec:IsakmpPhase2Pol 
 
 
 
 ├
[V] ipsec:IsakmpPhase2PolDef 
 
 
 ├
[V] isakmp:GlobalPol  Holds Isakmp Cloud Router-Level Common Policy
 
 
 ├
[V] isakmp:Keyring 
 
 
 ├
[V] isakmp:Policy  Holds Isakmp Policy information
 
 
 ├
[V] isakmp:Profile 
 
 
 ├
[V] l3ext:CtxRef  L3 Outside Ctx Reference
 
 
 ├
[V] l3ext:CtxRtdOutRef  L3 Outside Ctx Reference
 
 
 ├
[V] l3ext:ProvLblDefCont  Represents Logical Outside Profile Label Definition Container
 
 
 ├
[V] l3ext:RequestedBy 
 
 
 ├
[V] l3ext:RtdOutCont  Container of RtdOutDef
 
 
 ├
[V] l3ext:RtdOutDef  Contains information related to RtdOutDef.
 
 
 ├
[V] l3ext:RtdOutDefRef  Reference to the Routed Out Definition associated with this RtdEpP. Existence of this mo under RtdEpP is also used as an indicator that the RtdEpP is version 2 (i.e. pruned) RtdEpP.
 
 
 ├
[V] l3ext:VrfValidationPol  VRF Validation knobs
 
 
 ├
[V] latency:OngoingMode 
 
 
 ├
[V] mgmt:ConnectivityPrefs  ConnectivityPrefs has the information about routing interface(oob/inb)
 
 
 ├
[V] mock:Counter This is generated and used only by internal processes
 
 
 ├
[V] mock:MockRoot This is generated and used only by internal processes
 
 
 ├
[V] mock:MockSession This is generated and used only by internal processes
 
 
 ├
[V] mock:Stats This is generated and used only by internal processes
 
 
 ├
[V] mon:MonObjDn 
 
 
 ├
[V] mon:Pol The base monitoring policy model.
 
 
 
 ├
[V] mon:CommonPol The monitoring policy model for the common semantic scope, which is used when there is no corresponding policy under the more specific infra or tenant scopes. In such cases, these policies are used throughout the fabric except for objects attached to their own specific policies.
 
 
 
 ├
[V] mon:EPGPol Creates a container for monitoring policies associated with the tenant. This allows you to apply tenant-specific policies related to Stats Collection, Stats Export, Callhome/SNMP/Syslog, Event Severities, Fault Severities, and Fault Lifecycles.
 
 
 
 ├
[V] mon:FabricPol Creates a policy which acts as a container for associated fabric monitoring policies. These can include policies related to Event/Fault severity, the Fault lifecycle, and other such monitoring policies.
 
 
 
 ├
[V] mon:InfraPol Creates a policy which acts as a container for associated fabric monitoring policies. These can include policies related to Event/Fault severity, the Fault lifecycle, and other such monitoring policies.
 
 
 ├
[V] netflow:ExporterPolHolder  Mo that will be attached to retrieve the DN of the NetflowExporterPolDef that should be downloaded on the leaf in order to program the leaf
 
 
 ├
[V] netflow:MonitorPolHolder  Mo that will be attached to retrieve the DN of the NetflowMonitorPolDef that should be downloaded on the leaf in order to program the leaf
 
 
 ├
[V] netflow:NodePol 
 
 
 ├
[V] netflow:PolDefCont  Container for all the Netflow Def MOs
 
 
 ├
[V] opflex:EncapCont 
 
 
 ├
[V] opflex:EpPDIDEpRefCont  IDEp ref container under the EpPD
 
 
 ├
[V] opflex:IDEpRefCont  IDEp ref container under the controller
 
 
 ├
[V] opflex:IDEpScope 
 
 
 ├
[V] opflex:IDEpScopeCont 
 
 
 ├
[V] opflex:ODevRefCont  ODev ref container under the topSys for the leaf
 
 
 ├
[V] opflex:OeHupTrigger 
 
 
 ├
[V] opflex:PathAtt 
 
 
 ├
[V] opflex:ScopeCont  Scope container under the controller
 
 
 ├
[V] opflex:UsegInfoCont  container to keep track of tenants with vm-attr useg
 
 
 ├
[V] opflex:VtepRefCont  Vtep ref container under the topSys for the leaf
 
 
 ├
[V] opflexp:HupTrigger 
 
 
 ├
[V] pim:Capability PIM capability.
 
 
 ├
[V] pim:RouteMapPolDefCont  Container for route-map Def MO under top level
 
 
 ├
[V] pki:Definition This is an abstract class and cannot be instantiated.
 
 
 
 ├
[V] opflex:CloudSvmInfo  Cloud SVM(AVE) cert info
 
 
 
 ├
[V] opflex:ODevEp 
 
 
 
 ├
[V] pki:CsyncElement The file pattern, the type of pattern (include or exclude), and the symbolic name of the pattern.
 
 
 
 ├
[V] pki:CsyncPolicy Used to control csync timeout and enable/disable.
 
 
 
 ├
[V] pki:CsyncSharedKey Used to distribute the key to all IFC nodes.
 
 
 
 ├
[V] pki:DebugPluginChallenge The debug plugin challenge.
 
 
 
 ├
[V] pki:Ep The PKI configuration, which includes key rings and certificate authority (CA) credentials. Components of the PKI are used to establish secure communications between two devices.
 
 
 
 ├
[V] pki:ExportEncryptionKey  Config Export Encryption Key policies
 
 
 
 ├
[V] pki:FabricCommunicationEp  IFM SSL Fabric policies
 
 
 
 ├
[V] pki:FabricIssuedSSLCertificate  Object representing x509 certificates issued by the APIC for a node in the Fabric This object is implicitly created and cannot be deleted or exported in the configuration
 
 
 
 ├
[V] pki:FabricNodeSSLCertificate  Object representing a Cisco issued x509 certificate for a node in the Fabric This object is implicitly created and cannot be deleted or exported in the configuration
 
 
 
 ├
[V] pki:FabricNodeSSLCertificateRef  References from serial number to node
 
 
 
 ├
[V] pki:FabricSelfCAEp  IFM SSL Self Signed Generated Certificates
 
 
 
 ├
[V] pki:Item This is an abstract class and cannot be instantiated.
 
 
 
 
 ├
[V] opflex:ODevKeyRing 
 
 
 
 
 ├
[V] opflexp:OpflexpClientKeyRing 
 
 
 
 
 ├
[V] opflexp:OpflexpKeyRing 
 
 
 
 
 ├
[V] pki:KeyRing A keyring to create and hold an SSL certificate. The SSL certificate contains the public RSA key and signed identity information of a PKI device. The PKI device holds a pair of RSA encryption keys, one kept private and one made public, stored in an internal key ring. The keyring certificate merges into the PKI device keyring to create a trusted relationship.
 
 
 
 
 ├
[V] pki:TP A trustpoint (certificate authority/CA), which issues and validates (signs) digital certificates. When participating in secure communications using the public key infrastructure (PKI), a participant can verify the identity of the other party through the CA that signed the other party's public key.
 
 
 
 
 ├
[V] pki:TbkKey 
 
 
 
 ├
[V] pki:SchedulerCert 
 
 
 
 ├
[V] pki:SchedulerToken 
 
 
 
 ├
[V] pki:SvmInfo  SVM cert info
 
 
 
 ├
[V] pki:WebTokenData The cryptographic data used for generating and verifying web tokens.
 
 
 ├
[V] planner:ACIConfigFilter 
 
 
 ├
[V] planner:ConfigTmpl 
 
 
 ├
[V] planner:ExistingTopoDeplPref 
 
 
 ├
[V] planner:ImportACIConfig 
 
 
 ├
[V] planner:PlacementAlgorithm 
 
 
 ├
[V] planner:ResourceCapPct 
 
 
 ├
[V] planner:Snapshot 
 
 
 ├
[V] planner:Tenant 
 
 
 ├
[V] planner:TenantAny 
 
 
 ├
[V] pol:AConfIssues The policy configuration issues.
 
 
 
 ├
[V] datetime:ConfIssues 
 
 
 
 ├
[V] dns:ConfIssues  DNS Policy Configuration Policy Issues
 
 
 
 ├
[V] fabric:AConfIssues The infrastructure configuration issues.
 
 
 
 
 ├
[V] fabric:ASelectorIssues An abstraction of selector issues.
 
 
 
 
 
 ├
[V] fabric:SelectorIssues Ths selector issues.
 
 
 
 
 
 ├
[V] infra:SelectorIssues An object that reports configuration issues related to infra selector.
 
 
 
 
 ├
[V] infra:AConfIssues An abstraction of configuration issues.
 
 
 
 
 
 ├
[V] infra:NsIssues An object indicating namespace configuration issues.
 
 
 
 
 
 ├
[V] infra:ProfileIssues Infrastructure Profile Configuration Issues. The delegatable class is infra:Profile, which should be a super class of all infra profiles such as Attachable Profile, Node Profile, Port Profile, Function Profile, etc.
 
 
 
 ├
[V] fabric:APathIssues An object used for reporting path-related configuration issues.
 
 
 
 
 ├
[V] fabric:OosPathIssues An object used for reporting configuration issues related to port out-of-service policy.
 
 
 
 ├
[V] fv:AConfIssues The configuration issues found during the endpoint profile instrumentation in the node. This is an abstract class and cannot be instantiated.
 
 
 
 
 ├
[V] fv:AEpPConfIssues Configuration issues on an endpoint profile.
 
 
 
 
 
 ├
[V] fv:CompIssues The compute configuration issues for each endpoint profile.
 
 
 
 
 
 ├
[V] fv:NwIssues The network configuration issues for each endpoint profile.
 
 
 
 
 
 ├
[V] fv:StorageIssues Represents the storage configuration issues for each endpoint profile.
 
 
 
 
 ├
[V] fv:BDConfigIssues The network bridge domain configuration issues.
 
 
 
 
 ├
[V] fv:CtxConfigIssues The context configuration issues.
 
 
 
 ├
[V] snmp:ConfIssues SNMP policy configuration policy issues.
 
 
 ├
[V] pol:ConsElem Represents a policy consumption qualifier element.
 
 
 
 ├
[V] pol:If Represents an interface exposed or consumed by a policy.
 
 
 
 
 ├
[V] pol:ConsIf Represents a consumer interface.
 
 
 
 
 ├
[V] pol:ProvIf Represents a function or service provider interface.
 
 
 
 
 ├
[V] vz:AIf The abstraction of an interface. A contract interface and bundle interface inherits from this class.
 
 
 
 
 
 ├
[V] vz:CPIf A contract interface is used as a contract consumption interface when a consumer consumes the contract by associating it to a consumption interface provided by the provider in the consumer's domain. A consumer can associate with the contract consumption interface when it is provided by the provider in the consumer's domain. Note that a contract consumption interface represents one or more subjects defined under the contract. By associating...
 
 
 
 ├
[V] pol:Lbl Represents a policy label.
 
 
 
 
 ├
[V] dhcp:ALbl The identification of the DHCP provider. If the owner is the tenant, then the label is matched with the DHCP label present under the bridge domain (BD). If the owner is the infra, then the label is matched with the DHCP label present under the infra (and associated with the node). If n providers match the label, then all of them get configured as relay.
 
 
 
 
 
 ├
[V] dhcp:Lbl A DHCP relay label contains a name for the label, the scope, and a DHCP option policy. The scope is the owner of the relay server and the DHCP option policy supplies DHCP clients with configuration parameters such as domain, nameserver, and subnet router addresses.
 
 
 
 
 
 ├
[V] dhcp:LblDef Definition of the label.
 
 
 
 
 ├
[V] dns:ALbl The DNS profile identifier.
 
 
 
 
 
 ├
[V] dns:Lbl The network domain name label. Labels enable classifying which objects can and cannot communicate with one another.
 
 
 
 
 
 ├
[V] dns:LblDef The Label definition.
 
 
 
 
 ├
[V] extnw:ALIfP An abstract logical interface profile. This object defines the characteristics that will be applied to resources that match with the profile name.
 
 
 
 
 
 ├
[V] l2ext:AIfP The abstraction of an interface profile.
 
 
 
 
 
 
 ├
[V] l2ext:LIfP The logical interface profile defines a common configuration that can be applied to one or more interfaces.
 
 
 
 
 
 
 ├
[V] l2ext:LIfPDef The interface identifiers attached to the node profile.
 
 
 
 
 
 ├
[V] l3ext:AIfP An abstract interface profile. This encapsulates common behavior / configuration that will apply to one or more L3 external interfaces.
 
 
 
 
 
 
 ├
[V] l3ext:LIfP The logical interface profile, which defines a common configuration that can be applied to one or more interfaces.
 
 
 
 
 
 
 ├
[V] l3ext:LIfPDef The interface identifiers attached to the node profile.
 
 
 
 
 ├
[V] extnw:ALNodeP An abstract logical interface profile.
 
 
 
 
 
 ├
[V] l2ext:ALNodeP An abstract logical node profile. This defines the characteristics to be applied to resources that match with the profile name.
 
 
 
 
 
 
 ├
[V] l2ext:LNodeP The logical node profile defines a common configuration that can be applied to one or more leaf nodes.
 
 
 
 
 
 
 ├
[V] l2ext:LNodePDef The logical node profile definition. This defines the characteristics to be applied to resources that match with the profile name.
 
 
 
 
 
 ├
[V] l3ext:AConsLbl  Represents Abstraction of Logical Outside Profile Consumer Label. Defines the characteristics that will be applied to Layer3 Outside that matches with the label name
 
 
 
 
 
 
 ├
[V] l3ext:ConsLbl  Represents Logical Outside Profile Consumer Label. Defines the characteristics that will be applied to Layer3 Outside that matches with the label name
 
 
 
 
 
 
 ├
[V] l3ext:ConsLblDef  Represents Logical Outside Profile Consumer Label Definition. Defines the characteristics that will be applied to Layer3 Outside that matches with the label name
 
 
 
 
 
 ├
[V] l3ext:ALNodeP An abstract logical node profile. This defines the characteristics to be applied to resources that match with the profile name.
 
 
 
 
 
 
 ├
[V] l3ext:LNodeP The logical node profile defines a common configuration that can be applied to one or more leaf nodes.
 
 
 
 
 
 
 ├
[V] l3ext:LNodePDef The logical node profile definition. This defines the characteristics to be applied to resources that match with the profile name.
 
 
 
 
 
 ├
[V] rtctrl:LNodeP The node classification criteria for the route control context.
 
 
 
 
 
 ├
[V] rtctrl:LNodePDef The local node policy definition.
 
 
 
 
 ├
[V] infra:Lbl The tenant or provider characteristics of the port.
 
 
 
 
 
 ├
[V] infra:IfLblDef The tenant/provider's external connection characteristics of the port.
 
 
 
 
 
 ├
[V] infra:NodeLblDef The tenant or provider's external connection characteristics of the port.
 
 
 
 
 ├
[V] l3ext:AProvLbl  Represents Abstraction of Logical Outside Profile Provider Label. Defines the characteristics that will be applied to Layer3 Outside that matches with the label name
 
 
 
 
 
 ├
[V] l3ext:ProvLbl  Represents Logical Outside Profile Provider Label. Defines the characteristics that will be applied to Layer3 Outside that matches with the label name
 
 
 
 
 
 ├
[V] l3ext:ProvLblDef  Represents Logical Outside Profile Label Definition. Defines the characteristics that will be applied to Layer3 Outside that matches with the label name
 
 
 
 
 ├
[V] pol:ConsLbl Represents a consumer label
 
 
 
 
 
 ├
[V] vsvc:AConsLbl This is generated and used only by internal processes.
 
 
 
 
 
 
 ├
[V] dhcp:ConsLbl The consumer label.
 
 
 
 
 
 
 ├
[V] vsvc:ConsLbl A service consumer label.
 
 
 
 
 ├
[V] pol:ProvLbl Represents a function or service provider label.
 
 
 
 
 
 ├
[V] vsvc:AProvLbl An abstraction of the provider label.
 
 
 
 
 
 
 ├
[V] dhcp:ProvLbl The provider label.
 
 
 
 
 
 
 ├
[V] vsvc:ProvLbl A service provider label.
 
 
 
 
 ├
[V] span:ASpanLbl The abstraction of a SPAN label.
 
 
 
 
 
 ├
[V] span:SpanLbl The SPAN label is used for SPAN label parameters.
 
 
 
 
 
 ├
[V] span:SpanLblDef The SPAN label definition.
 
 
 
 
 ├
[V] vz:ALbl The labels for filtering subjects.
 
 
 
 
 
 ├
[V] vz:ACompLbl An abstraction of a complement label.
 
 
 
 
 
 
 ├
[V] vz:ACompLblDef An abstraction of a complement label definition.
 
 
 
 
 
 
 
 ├
[V] vz:ConsSubjLblDef A consumer subject label definition.
 
 
 
 
 
 
 
 ├
[V] vz:ProvLblDef A provider label definition.
 
 
 
 
 
 
 
 ├
[V] vz:ProvSubjLblDef A provider subject label definition. A subject label is used as a classification criteria for subjects being consumed/provided by the endpoint groups (EPGs) participating in the contract. The label identifies a subject being consumed by a consumer. It can be parented by 2 different methods. The first method is the relation between the consumer EPG and the contract that is used for filtering the subjects. A label should match either the subject na...
 
 
 
 
 
 
 ├
[V] vz:ConsSubjLbl A consumer subject label. In general, a subject label is used as a classification criteria for subjects being consumed/provided by the endpoint groups (EPGs) participating in the contract. The label identifies a subject being consumed by a consumer. It can be parented by 2 different methods. The first method is the relation between the consumer EPG and the contract that is used for filtering the subjects. A label should match either the subject n...
 
 
 
 
 
 
 ├
[V] vz:ProvLbl A label used by a provider for specifying its identity. The parent can be either the provider endpoint group or the relation between the provider endpoint group and a contract. A consumer with no label will consume from all the providers of the contract regardless of the provider label. A consumer with a specific label can only consume from providers matching the label.
 
 
 
 
 
 
 ├
[V] vz:ProvSubjLbl A subject label is used as classification criteria for subjects being consumed/provided by the endpoint groups (EPGs) participating in the contract. The label identifies a subject being provided by a provider. It can be parented by 2 different methods. The first method is the relation between the provider EPG and the contract that is used for filtering the subjects. A label should match either the subject name or the label present under the subje...
 
 
 
 
 
 ├
[V] vz:ALblDef An abstraction of a label definition.
 
 
 
 
 
 
 ├
[V] vz:ConsCtrctLblDef A consumer contract label definition.
 
 
 
 
 
 
 ├
[V] vz:ConsLblDef A consumer label definition.
 
 
 
 
 
 
 ├
[V] vz:ProvCtrctLblDef A provider contract label definition.
 
 
 
 
 
 ├
[V] vz:ConsCtrctLbl A consumer contract label. A contract label can be parented by the relation between an endpoint group (EPG) and security group. The EPG is associated with a group and lists all contracts it provides out of the group, as well as, optionally, contracts that it chooses to consume. If no consumption contracts are indicated, all contracts are consumed. If no provider contracts are identified, the EPG provides no contracts out of this group.
 
 
 
 
 
 ├
[V] vz:ConsLbl A label used by consumers to filter the providers. The label can be parented as follows: By the consumer endpoint group. By the relation between the consumer endpoint group and contract. By the relation between the contract interface and contract. By the relation between the consumer endpoint group and contract interface. A consumer with no label will consume from all the providers of the contract with no labels. A consumer with a specific label...
 
 
 
 
 
 ├
[V] vz:ProvCtrctLbl A label identifying a contract. A contract label can be parented by the relation between an endpoint group (EPG) and security group. The EPG is associated with a group and lists all contracts it provides out of the group, as well as, optionally, contracts that it chooses to consume. If no consumption contracts are indicated, all contracts are consumed. If no provider contracts are identified, the EPG provides no contracts out of this group.
 
 
 ├
[V] pol:DefRoot Represents the policy definition's subtree root.
 
 
 
 ├
[V] fv:Def An abstraction of the fabric virtualization policy definition.
 
 
 
 
 ├
[V] fv:AClassifier An abstraction of an endpoint group classifier.
 
 
 
 
 
 ├
[V] fv:ACrRule 
 
 
 
 
 
 
 ├
[V] fv:AACrtrn  Abstraction of Classifier used for Virtual Devices
 
 
 
 
 
 
 
 ├
[V] fv:ACrtrn An abstraction of the classifier used for virtual devices.
 
 
 
 
 
 
 
 
 ├
[V] fv:Crtrn A criterion.
 
 
 
 
 
 
 
 
 ├
[V] fv:CrtrnDef A definition object for a criterion.
 
 
 
 
 
 
 
 
 ├
[V] opflex:CrtrnDefRef  Ctrierion
 
 
 
 
 
 
 ├
[V] fv:ASCrtrn  Abstract class for a sub-criterion
 
 
 
 
 
 
 
 ├
[V] fv:SCrtrn  Sub-Criterion
 
 
 
 
 
 
 
 ├
[V] fv:SCrtrnDef  Definition object for Sub-Criterion
 
 
 
 
 ├
[V] fv:AUsegAssocBD 
 
 
 
 
 
 ├
[V] fv:UsegAssocBD 
 
 
 
 
 
 ├
[V] fv:UsegAssocBDDef 
 
 
 
 
 ├
[V] fv:Attr The attributes in the criterion.
 
 
 
 
 
 ├
[V] fv:ADnsAttr  DNS based Attributes
 
 
 
 
 
 
 ├
[V] fv:DnsAttr 
 
 
 
 
 
 ├
[V] fv:ADyAttr  Abstract Dynamic Member of the useg
 
 
 
 
 
 
 ├
[V] fv:DyMacAttrDef 
 
 
 
 
 
 ├
[V] fv:AIdAttr  Identity based Attributes
 
 
 
 
 
 
 ├
[V] fv:IdGroupAttr 
 
 
 
 
 
 
 ├
[V] fv:IdGroupAttrContDef  definition for the container which has all the group attributes
 
 
 
 
 
 ├
[V] fv:AStAttr  Abstract Static Member of the useg
 
 
 
 
 
 
 ├
[V] fv:AIpAttr An IP based attribute.
 
 
 
 
 
 
 
 ├
[V] fv:IpAttr The IP based attributes.
 
 
 
 
 
 
 
 ├
[V] fv:IpAttrDef The definition for an IP attribute.
 
 
 
 
 
 
 
 ├
[V] opflex:IpAttrDefRef  Definition object for IP attribute
 
 
 
 
 
 
 ├
[V] fv:AMacAttr The MAC-based attribute.
 
 
 
 
 
 
 
 ├
[V] fv:MacAttr A MAC based attribute.
 
 
 
 
 
 
 
 ├
[V] fv:MacAttrDef The definition for a MAC attribute.
 
 
 
 
 
 
 
 ├
[V] opflex:MacAttrDefRef  Definition object for Mac attribute
 
 
 
 
 
 
 ├
[V] fv:AProtoAttr Layer 4 protocol attributes in the criterion.
 
 
 
 
 
 
 
 ├
[V] fv:ProtoAttr The Layer 4 protocol attributes in the criterion.
 
 
 
 
 
 
 
 ├
[V] fv:ProtoAttrDef The definition object for a protocol attribute.
 
 
 
 
 
 
 ├
[V] fv:AVmAttr The virtual attributes in the criterion.
 
 
 
 
 
 
 
 ├
[V] fv:VmAttr The virtual attributes in the criterion.
 
 
 
 
 
 
 
 ├
[V] fv:VmAttrDef Definition object for VM attribute
 
 
 
 
 ├
[V] fv:Dom A virtual fabric domain.
 
 
 
 
 
 ├
[V] fv:L2Dom A private layer 2 domain.
 
 
 
 
 
 
 ├
[V] fv:ABD An abstract representation of a private layer 2 network context that belongs to a specific tenant or context, or is shared. This is an abstract class and cannot be instantiated.
 
 
 
 
 
 
 
 ├
[V] fv:ABDPol Abstract representation of a bridge domain policy.
 
 
 
 
 
 
 
 
 ├
[V] fv:BD A bridge domain is a unique layer 2 forwarding domain that contains one or more subnets. Each bridge domain must be linked to a context.
 
 
 
 
 
 
 
 
 ├
[V] fv:SvcBD A service bridge domain.
 
 
 
 
 
 
 
 ├
[V] fv:BDDef A private layer 2 network context that belongs to a specific tenant or context, or is shared.
 
 
 
 
 
 ├
[V] fv:L3Dom The private layer 3 domain.
 
 
 
 
 
 
 ├
[V] fv:ACtx A private L3 network context belonging to a specific tenant.
 
 
 
 
 
 
 
 ├
[V] fv:Ctx The private layer 3 network context that belongs to a specific tenant or is shared.
 
 
 
 
 
 
 
 ├
[V] fv:CtxDef A private L3 network context belonging to a specific tenant. This is an internal representation of the context.
 
 
 
 
 
 
 
 ├
[V] fv:TnlCtx 
 
 
 
 
 ├
[V] fv:Np An abstraction representing a set of requirements a group of entities has on the virtualizable fabric.
 
 
 
 
 
 ├
[V] cloud:App  Cloud Ap
 
 
 
 
 
 ├
[V] extnw:Out An abstraction of a policy controlling connectivity to outside such as another fabric or WAN.
 
 
 
 
 
 
 ├
[V] l2ext:Out The L2 outside policy controls connectivity to the outside.
 
 
 
 
 
 
 ├
[V] l3ext:Out The L3 outside policy controls connectivity to the outside.
 
 
 
 
 
 
 ├
[V] l3ext:OutDef The L4-L7 services route peering.
 
 
 
 
 
 ├
[V] fv:Ap The application profile is a set of requirements that an application instance has on the virtualizable fabric. The policy regulates connectivity and visibility among endpoints within the scope of the policy.
 
 
 
 
 
 ├
[V] fv:Up A set of requirements for datacenter utility functions on virtualized fabric.
 
 
 
 
 
 
 ├
[V] fabric:Pol The fabric policy.
 
 
 
 
 
 
 
 ├
[V] fabric:InfrP An abstraction of the fabric infrastructure-level policy for either fabric internal or external behaviors
 
 
 
 
 
 
 
 
 ├
[V] fabric:InfrExP An abstraction of the set of rules pertaining to external fabric behavior
 
 
 
 
 
 
 
 
 
 ├
[V] infra:ExP An abstraction of an external profile.
 
 
 
 
 
 
 
 
 
 
 ├
[V] infra:ClP The infrastructure client profile object.
 
 
 
 
 
 
 
 
 
 
 ├
[V] infra:ProvP The infrastructure provider profile.
 
 
 
 
 
 
 
 
 ├
[V] fabric:InfrFP A set of rules pertaining to internal fabric behavior.
 
 
 
 
 
 
 
 
 ├
[V] mgmt:MgmtP The in-band and out-of-band management endpoint groups consists of switches (leaves/spines) and APICs. Each node in the group is assigned an IP address that is dynamically allocated from the address pool associated with the corresponding in-band or out-of-band management zone.
 
 
 
 
 
 ├
[V] infra:AIpP An abstraction of a resolvable infrastructure profile.
 
 
 
 
 
 
 ├
[V] infra:IpP A resolvable hypervisor infrastructure profile.
 
 
 
 
 
 ├
[V] mgmt:ExtMgmtEntity The external entity management. The external entities (hosts) can communicate with nodes that are part of the out-of-band (OOB) management endpoint group. To enable this communication, hosts are connected to the OOB management port of the nodes.
 
 
 
 ├
[V] test:Rule An abstract class for a test rule.
 
 
 
 
 ├
[V] eqptdiag:ARule 
 
 
 
 
 
 ├
[V] eqptdiag:OnDRule 
 
 
 
 
 
 ├
[V] eqptdiag:Rule 
 
 
 ├
[V] pol:Ns Represents a policy namespace.
 
 
 
 ├
[V] fvns:AAddrInstP The abstract policy for address namespaces.
 
 
 
 
 ├
[V] fvns:AddrInst The IP address namespace/IP address range contains unicast and multicast address blocks.
 
 
 
 
 ├
[V] fvns:McastAddrInstDef The multicast address instance definition.
 
 
 
 
 ├
[V] fvns:McastAddrInstP The multicast address namespace policy defines the multicast IP address ranges. These addresses can be used for various purposes, such as VxLAN encapsulation.
 
 
 
 
 ├
[V] vns:AddrInst 
 
 
 
 ├
[V] fvns:AInstP The namespace policy is used for managing the Encap (VXLAN, NVGRE, VLAN) ranges.
 
 
 
 
 ├
[V] fc:EncapInstDef 
 
 
 
 
 ├
[V] fvns:AVlanInstP  Namespace Policy for VLAN ranges
 
 
 
 
 
 ├
[V] fvns:VlanInstDef 
 
 
 
 
 
 ├
[V] fvns:VlanInstP The VLAN range namespace policy defines for ID ranges used for VLAN encapsulation.
 
 
 
 
 ├
[V] fvns:AVsanInstP  Namespace Policy for VSAN ranges
 
 
 
 
 
 ├
[V] fvns:VsanInstP 
 
 
 
 
 ├
[V] fvns:AVxlanInstP The abstract class for Namespace Policy for VxLAN ranges.
 
 
 
 
 
 ├
[V] fvns:VxlanInstDef The VxLAN instance definition.
 
 
 
 
 
 ├
[V] fvns:VxlanInstP The VxLAN range namespace policy defines for ID ranges used for VLAN encapsulation
 
 
 
 
 ├
[V] stp:EncapInstDef The spanning-tree protocol encap instance profile definition. The segment IDs calculated using this profile are for spanning tree BPDU flooding within the fabric. It is implicitly managed by the IFC.
 
 
 ├
[V] pool:Pool An abstraction of a shared resource pool.
 
 
 ├
[V] pres:RegdPod 
 
 
 ├
[V] pres:RegdPodCont 
 
 
 ├
[V] qos:ADppPolHolder  Mo that will be attached to retrieve the DN of the qosDppPolDef that should be downloaded on the leaf in order to program the leaf
 
 
 
 ├
[V] qos:EgressDppPolHolder  DppPolHolder for Egress direction
 
 
 
 ├
[V] qos:IngressDppPolHolder  DppPolHolder for Ingress direction
 
 
 ├
[V] qos:ADscpTrans 
 
 
 
 ├
[V] qos:DscpTransDef 
 
 
 
 ├
[V] qos:DscpTransPol 
 
 
 ├
[V] qos:Class The QoS classification traffic descriptor and specifications are used to categorize a packet within a specific group and making the packet accessible for QoS handling in the network.
 
 
 ├
[V] qos:CustomPol The custom QoS policy enables different levels of service to be assigned to network traffic, including specifications for the Differentiated Services Code Point (DSCP) value(s), and the 802.1p Dot1p priority.
 
 
 ├
[V] qos:CustomPolDef The definition class for a custom QOS policy. Note that this is an internal object.
 
 
 ├
[V] qos:DppPolDefCont  Container for all the qos:DppPolDef, under top, to have them neatly organized
 
 
 ├
[V] qos:InstPol A QOS instance policy, which is a container for QOS class objects.
 
 
 ├
[V] qos:PfcIfPol  interface priority flow control
 
 
 ├
[V] qos:PfcPol 
 
 
 ├
[V] qos:SdIfPol  Slow drain policy
 
 
 ├
[V] resolution:RemotePolicyMgr 
 
 
 ├
[V] rtctrl:EpPRef  Routed EpP Reference
 
 
 ├
[V] rtctrl:Profile The route control profile specifies policies for external networks. The layer 3 networks outside the fabric, and reachable by a Tenant's applications, route to external networks.
 
 
 ├
[V] rtsum:ARtSummPol  TODO: exclude from tenant autoconfigs Route Summarization
 
 
 
 ├
[V] bgp:ARtSummPol  Route summarization policy for BGP
 
 
 
 
 ├
[V] bgp:RtSummPol 
 
 
 
 
 ├
[V] bgp:RtSummPolDef  Route summarization internal policy for BGP
 
 
 
 ├
[V] eigrp:ARtSummPol  Route summarization policy
 
 
 
 
 ├
[V] eigrp:RtSummPol 
 
 
 
 
 ├
[V] eigrp:RtSummPolDef  Route summarization internal policy
 
 
 
 ├
[V] ospf:ARtSummPol  External Route summarization abstract policy
 
 
 
 
 ├
[V] ospf:RtSummPol  External Route summarization abstract policy
 
 
 
 
 ├
[V] ospf:RtSummPolDef  External Route summarization internal policy
 
 
 ├
[V] rtsum:ARtSummPolDef 
 
 
 ├
[V] rule:Definition 
 
 
 ├
[V] snmp:APol An abstract representation of a policy. A profile contains site info and general protocol config parameters (such as version and traps vs. informs).
 
 
 
 ├
[V] snmp:Inst A container for each SNMP instance.
 
 
 
 ├
[V] snmp:Pol The SNMP policy enables you to monitor client group, v3 user, and/or community SNMP policies. SNMP is an application-layer protocol that provides a message format for communication between SNMP managers and agents. SNMP provides a standardized framework and a common language used for the monitoring and management of devices in a network.
 
 
 ├
[V] span:ASrc The abstraction of an SPAN source. The SPAN source is where traffic is sampled. A source can be an endpoint group (EPG), one or more ports, or port traffic filtered by an EPG (Access SPAN), a Layer 2 bridge domain, or a Layer 3 context (Fabric SPAN). When you create a traffic monitoring session, you must select a SPAN source and a SPAN destination. The type of session (Tenant, Access or fabric) determines the allowed types of SPAN sources and de...
 
 
 
 ├
[V] span:AVSrc The abstraction of a VSPAN source. The VSPAN source is where traffic is sampled. A VSPAN source can an endpoint group (EPG), one or more ports, or port traffic filtered by an EPG (Access VSPAN), a Layer 2 bridge domain, or a Layer 3 context (Fabric VSPAN). When you create a traffic monitoring session, you must select a VSPAN source and a VSPAN destination. The type of session (Tenant, Access or fabric) determines the allowed types of span sources...
 
 
 
 
 ├
[V] span:VSrc The VSPAN source, which is where traffic is sampled. A VSPAN source can be an endpoint group (EPG), one or more ports, or port traffic filtered by an EPG (Access VSPAN), a Layer 2 bridge domain, or a Layer 3 context (Fabric VSPAN). When you create a traffic monitoring session, you must select a VSPAN source and a VSPAN destination. The type of session (Tenant, Access, or Fabric) determines the allowed types of VSPAN sources and destinations. The ...
 
 
 
 
 ├
[V] span:VSrcDef The VSPAN VSrcDef is used for VSPAN source definitions.
 
 
 
 ├
[V] span:Src The SPAN or ERSPAN source is where traffic is sampled. A source can be an endpoint group (EPG), one or more ports, or port traffic filtered by an EPG (access SPAN), a Layer 2 bridge domain, or a Layer 3 context (fabric SPAN). When you create a traffic monitoring session, you must select a source and a destination. The type of session (tenant, access, or fabric) determines the allowed types of sources and destinations. The destination can be eithe...
 
 
 
 ├
[V] span:SrcDef The SPAN source definitions. The SPAN source is where traffic is sampled. A SPAN source can be an endpoint group (EPG), one or more ports, or port traffic filtered by an EPG (Access SPAN), a Layer 2 bridge domain, or a Layer 3 context (Fabric SPAN). When you create a traffic monitoring session, you must select a SPAN source and a SPAN destination. The type of session (tenant, access or fabric) determines the allowed types of SPAN sources and dest...
 
 
 ├
[V] stp:AEncapBlkDef An abstraction of a spanning tree encap block.
 
 
 
 ├
[V] stp:AllocEncapBlkDef The spanning-tree protocol encap block definition for allocated IDs and the base segment ID used for the range. These segment IDs are used for spanning tree BPDU flooding within the fabric. It is implicitly managed by the IFC.
 
 
 
 ├
[V] stp:UnAllocEncapBlkDef The spanning-tree protocol encap block definition for un-allocated IDs and the base Segment ID used for the range. These segment IDs are used for spanning tree BPDU flooding within the fabric. It is implicitly managed by the IFC.
 
 
 ├
[V] stp:AEncapCont An abstraction of a container for managing the spanning tree flooding segment ID range.
 
 
 
 ├
[V] stp:AllocEncapCont A container for managing the spanning tree flooding segment ID range.
 
 
 
 ├
[V] stp:UnAllocEncapCont The container for managing the spanning tree flooding segment ID range.
 
 
 ├
[V] svccore:Pol A core policy.
 
 
 
 ├
[V] svccore:CtrlrPol A controller core retention policy.
 
 
 
 ├
[V] svccore:NodePol The core collection policy contains the system or component failure information. You can configure the policy to export a copy of the core file to a location on an external TFTP server as soon as the core file is created.
 
 
 ├
[V] synthetic:LocalPol 
 
 
 ├
[V] synthetic:Policy 
 
 
 ├
[V] sysmgrp:Def Abstract class for all QoS policy definitions.
 
 
 
 ├
[V] sysmgrp:Cores Represents a container for a cores policy.
 
 
 ├
[V] tag:ASelector 
 
 
 
 ├
[V] cloud:AEPSelector  Base Class for Cloud Endpoint Selectors
 
 
 
 
 ├
[V] cloud:AEPSelectorDef  Base Class for Cloud Endpoint Selectors Resolved model MOs
 
 
 
 
 
 ├
[V] cloud:EPSelectorDef  Cloud Endpoint Selector, to decide which endpointss belong to the EPGs based on several parameters, different selectors will be considered as OR
 
 
 
 
 
 ├
[V] cloud:ExtEPSelectorDef  Cloud Endpoint Selector, to decide which endpointss belong to the EPGs based on several parameters, different selectors will be considered as OR
 
 
 
 
 ├
[V] cloud:EPSelector  Cloud Endpoint Selector, to decide which endpointss belong to the EPGs based on several parameters, different selectors will be considered as OR
 
 
 
 
 ├
[V] cloud:ExtEPSelector  Cloud Endpoint Selector, to decide which endpointss belong to the EPGs based on several parameters, different selectors will be considered as OR
 
 
 
 ├
[V] cloud:AEPgSelector  EPG Selector to correlate the cloudEPg with the corresponding fvAEPg from which it can inherit all the security policies. This is optional
 
 
 
 ├
[V] telemetry:Selector 
 
 
 ├
[V] telemetry:AFlowServers 
 
 
 
 ├
[V] telemetry:FlowServers 
 
 
 ├
[V] telemetry:AServer 
 
 
 
 ├
[V] telemetry:LogServer 
 
 
 
 ├
[V] telemetry:StatsServer 
 
 
 ├
[V] telemetry:AServerP 
 
 
 
 ├
[V] telemetry:LogServerP 
 
 
 
 ├
[V] telemetry:Server 
 
 
 
 ├
[V] telemetry:StatsServerP 
 
 
 ├
[V] telemetry:AServerPol 
 
 
 ├
[V] telemetry:FlowCollectorP 
 
 
 ├
[V] telemetry:FlowServerP 
 
 
 ├
[V] telemetry:FltPolGrp 
 
 
 ├
[V] telemetry:MatchedSelector 
 
 
 ├
[V] telemetry:Provider  Node to which we need to create a static route
 
 
 ├
[V] telemetry:VipP 
 
 
 ├
[V] throttler:ASub  Abstract Subscription Request
 
 
 
 ├
[V] throttler:InProgress  In-Progress Subscription
 
 
 
 ├
[V] throttler:Postponed  Postponed Subscription
 
 
 ├
[V] throttler:InProgressCont  Container for In-progress subscriptions
 
 
 ├
[V] throttler:NodeCont 
 
 
 ├
[V] throttler:PostponedCont  Container for postponed subscriptions
 
 
 ├
[V] throttler:SubCont 
 
 
 ├
[V] topoctrl:FastLinkFailoverInstPol 
 
 
 ├
[V] topoctrl:FwdScaleProfilePol 
 
 
 ├
[V] traceroutep:TrEpSummary  Traceroute EP summary MO
 
 
 
 ├
[V] traceroutep:FromEpExtSummary  Traceroute Source EPEXT summary MO
 
 
 
 ├
[V] traceroutep:FromEpSummary  Traceroute Source EP summary MO
 
 
 
 ├
[V] traceroutep:ToEpSummary  Traceroute Dest EP summary MO
 
 
 
 ├
[V] traceroutep:ToExtEpSummary  Traceroute Dest ExtEP summary MO
 
 
 ├
[V] traceroutep:TrExtSummary  Traceroute External summary MO
 
 
 
 ├
[V] traceroutep:FromExtEpSummary  Traceroute Source External for ExtEp summary MO
 
 
 
 ├
[V] traceroutep:FromExtExtSummary  Traceroute Source External for ExtExt summary MO
 
 
 ├
[V] traceroutep:TrP ***************** MOs *******************
 
 
 
 ├
[V] traceroutep:TrEp The traceroute source is the endpoint source information of the traceroute connected to ToR.
 
 
 
 ├
[V] traceroutep:TrEpExt 
 
 
 
 ├
[V] traceroutep:TrExtEp  Traceroute an External IP address from an End Point learned as being connected to ToR
 
 
 
 ├
[V] traceroutep:TrExtExt  Traceroute an External IP address from an External IP
 
 
 
 ├
[V] traceroutep:TrNode The traceroute for a ToR node allows you to determine the path a packet takes to get to a destination from a given source by returning the sequence of hops the packet traversed.
 
 
 ├
[V] trig:Inst An abstraction of a generalized system trigger.
 
 
 
 ├
[V] trig:Meta The meta scheduler.
 
 
 
 ├
[V] trig:Sched A generic scheduler.
 
 
 ├
[V] trig:RoProxyCont 
 
 
 ├
[V] trig:SchedP The scheduler policy enables you to schedule a recurring or one-time window for the execution of a task. Multiple scheduler policies can be created for the same time period.
 
 
 ├
[V] trig:Triggerable A container for a triggerable object.
 
 
 
 ├
[V] trig:SingleTriggerable A triggerable object that can be triggered only once for each instance of a scheduler window.
 
 
 
 
 ├
[V] callhome:InvTrig When you manually trigger an inventory alert group message and do not specify a destination profile name, a message is sent to all active profiles that have either a normal or periodic subscription to the specified alert group.
 
 
 
 
 ├
[V] config:ExportJobTrig The export job trigger.
 
 
 
 
 ├
[V] config:ImportIdJobTrig 
 
 
 
 
 ├
[V] config:ImportJobTrig The import job trigger.
 
 
 
 
 ├
[V] config:RollbackJobTrig 
 
 
 
 
 ├
[V] config:SnapshotMgrJobTrig 
 
 
 
 
 ├
[V] dbgexp:TechSupTrig This object is managed internally and should not be modified by the user.
 
 
 
 
 ├
[V] maint:MaintTrig Triggerable object on which the scheduler triggers a callback for maintenance.
 
 
 
 
 ├
[V] recovery:ReconcileConfigJobTrig 
 
 
 
 
 ├
[V] troubleshoot:SessionTrigger  Trigger on which the scheduler issues a callback. For internal use only.
 
 
 
 ├
[V] trig:Test An internal object for testing if an object can be triggered.
 
 
 ├
[V] ui:Settings 
 
 
 ├
[V] useg:AUsegEPg 
 
 
 
 ├
[V] useg:UsegEPg 
 
 
 
 ├
[V] useg:UsegEPgDef 
 
 
 ├
[V] useg:BaseEPg 
 
 
 ├
[V] vns:AConn A connector.
 
 
 
 ├
[V] vns:AFuncConn A function connector.
 
 
 
 
 ├
[V] vns:AbsFuncConn An abstract function node connector is used to map a service graph interface with the device interface.
 
 
 
 
 ├
[V] vns:FuncConnInst A function connector instance.
 
 
 
 ├
[V] vns:ATermConn A terminal node connector.
 
 
 
 
 ├
[V] vns:AbsTermConn An abstract terminal node connector.
 
 
 
 
 ├
[V] vns:TermConnInst A connector instance.
 
 
 
 ├
[V] vns:CopyConnector  CopyConnector is deprecated
 
 
 ├
[V] vns:AConnection A connection.
 
 
 
 ├
[V] vns:AbsConnection An abstract connection connects two abstract connectors. These connections can either be between two abstract nodes or between an abstract node and an abstract terminal node.
 
 
 
 ├
[V] vns:ConnectionInst A connection instance.
 
 
 ├
[V] vns:AGraph A service graph is an ordered set of function nodes between a set of terminals, which identifies a set of network service functions that are required by an application. Service functions within a graph are automatically provisioned on a service device that is based on an application's requirements.
 
 
 
 ├
[V] vns:AbsGraph The abstract graph is made up of abstract nodes and used to define the traffic flow through a service function such as load balancing, SSL offload, and firewall. Abstract nodes are comprised of service nodes such as a service node balancer (SLB) or firewall (FW), abstract term nodes (the nodes that are connected to endpoint groups), and connections.
 
 
 
 ├
[V] vns:GraphInst The instance of a service graph. All instance objects are implicit.
 
 
 ├
[V] vns:ANode A node.
 
 
 
 ├
[V] vns:AFuncNode A function node.
 
 
 
 
 ├
[V] vns:ANodeInst The abstraction of a node instance.
 
 
 
 
 
 ├
[V] vns:NodeInst An instance of a function node. A service graph consists of multiple function nodes..
 
 
 
 
 
 ├
[V] vns:NodeInstDef An instance of the service node. This is an internal object.
 
 
 
 
 ├
[V] vns:AbsNode An abstract node represents a service node such as a server load balancer (SLB) or firewall (FW). An abstract node is contained in an abstract graph.
 
 
 
 ├
[V] vns:ATermNode A terminal node.
 
 
 
 
 ├
[V] vns:AbsTermNode An abstract terminal node. Abstract terminal nodes are typically attached to the endpoint groups, and are connected to the abstract graph (AbsGraph) through an abstract connection (AbsConnection).
 
 
 
 
 
 ├
[V] vns:AbsTermNodeCon An abstract terminal node connected to a contract consumer.
 
 
 
 
 
 ├
[V] vns:AbsTermNodeProv An abstract terminal node connected to contract provider.
 
 
 
 
 ├
[V] vns:TermNodeInst A terminal node instance.
 
 
 ├
[V] vns:AVNode A virtual node.
 
 
 
 ├
[V] vns:LegVNode A classic mode or legacy virtual node.
 
 
 
 ├
[V] vns:StsVNode A VNode. Holds the resources allocated to render a node instance on a specific Cdev.
 
 
 
 ├
[V] vns:VNodeDef The virtual node definition. This object is used internally.
 
 
 ├
[V] vns:AbsDevCfg A shared configuration for a logical device in the L4-L7 device cluster. This configuration can be shared across multiple logical devices.
 
 
 ├
[V] vns:AbsFuncCfg The configuration for a function. This configuration can be shared across multiple functions.
 
 
 ├
[V] vns:AbsFuncProf An abstract function profile includes the abstract device configuration, the abstract group configuration, and the abstract function configuration. These are analogous to the function configuration, group configuration, and device configuration within a device.
 
 
 ├
[V] vns:AbsFuncProfContr A function profile group container.
 
 
 ├
[V] vns:AbsFuncProfGrp A function profile group.
 
 
 ├
[V] vns:AbsFuncProfNormalized  Normalized Abs Function Profile
 
 
 ├
[V] vns:AbsGrpCfg The shared configuration for a function group. This configuration can be shared across multiple logical groups.
 
 
 ├
[V] vns:BDDef A bridge domain definition for tracking allocated bridge domains. This is an internally used object.
 
 
 ├
[V] vns:CfgDef GraphInst contains a copy of the per logical device shared configuration.
 
 
 
 ├
[V] vns:DevCfgInst GraphInst contains a copy of the per logical device shared configuration.
 
 
 
 ├
[V] vns:FuncCfgInst A per function configuration instance.
 
 
 
 ├
[V] vns:GrpCfgInst A per function group shared configuration.
 
 
 ├
[V] vns:Chassis 
 
 
 ├
[V] vns:CloudSvcEPgDef  Internal Use only - Used to track allocated epgs
 
 
 ├
[V] vns:DevMgr 
 
 
 ├
[V] vns:EPgDef An object used to track allocated endpoint groups. This object is used internally.
 
 
 ├
[V] vns:EpgDefXlate 
 
 
 ├
[V] vns:GraphIdCntnr Contains an ID consumer for the IDs needed by the graph.
 
 
 ├
[V] vns:MscGraphXlateCont Explicit Mo to configure pctag translation for internal EPgs>
 
 
 ├
[V] vns:NodeInstIdCntnr 
 
 
 ├
[V] vns:RedirectHealthGroup 
 
 
 ├
[V] vns:RtrCfg 
 
 
 ├
[V] vns:SvcEPgPol 
 
 
 ├
[V] vns:SvcGraphVersion The version of the entire service graph model. This is validated against the device script APIC model version. This number is of the form x.y, where x represents the major version number and y represents the minor version number of the service graph model. Guidelines: 1. The minor version is increased whenever a backward compatible change is made. This could include adding new properties or managed objects in the service graph model. It is expect...
 
 
 ├
[V] vns:SvcRedirectPol 
 
 
 ├
[V] vns:SvcRelnCons 
 
 
 ├
[V] vz:ACollection The abstraction of a contract collection. A collection can be a single contract, a collection of all contracts associated with a bundle, or a collection of all contracts associated with a group.
 
 
 
 ├
[V] vz:ACtrct An abstraction of a resolvable contract.
 
 
 
 
 ├
[V] vz:ABrCP An abstraction of a binary contract profile.
 
 
 
 
 
 ├
[V] vz:BrCP A contract is a logical container for the subjects which relate to the filters that govern the rules for communication between endpoint groups (EPGs). Without a contract, the default forwarding policy is to not allow any communication between EPGs but all communication within an EPG is allowed.
 
 
 
 
 
 ├
[V] vz:OOBBrCP An out-of-band binary contract profile can only be provided by an out-of-band endpoint group and can only be consumed by the external prefix set. A regular endpoint group cannot provide or consume an out-of-band contract profile.
 
 
 
 
 ├
[V] vz:Taboo A Taboo contract provides a way for an endpoint group to specify the subjects on which communication is not allowed.
 
 
 ├
[V] vz:ACollectionDef An abstraction of a collection definition. A collection is a contract
 
 
 
 ├
[V] vz:CollectionDef A collection definition.
 
 
 
 ├
[V] vz:TabooDef A taboo definition.
 
 
 ├
[V] vz:AContDef An abstraction of a container definition.
 
 
 
 ├
[V] vz:DirAssDef A direct association definition for a collection. A collection is a contract.
 
 
 
 ├
[V] vz:EpgAnyDef Any endpoint group definition.
 
 
 
 ├
[V] vz:InheritedDef 
 
 
 
 ├
[V] vz:IntDef An interface definition.
 
 
 
 ├
[V] vz:IntraEPgDef 
 
 
 
 ├
[V] vz:SubjDef A subject definition.
 
 
 ├
[V] vz:AFilterable An abstraction of a filter object. The filter object is a filter.
 
 
 
 ├
[V] vz:AFilterableUnit An abstraction of a filterable unit.
 
 
 
 
 ├
[V] actrl:Flt The filter rules identifying a group of filter entries.
 
 
 
 
 ├
[V] vz:AFilter An abstraction of a filter. A filter is a group of resolvable filter entries. Each filter entry is a combination of network traffic classification properties. Note that this relation is an internal object.
 
 
 
 
 
 ├
[V] vz:Filter A filter policy is a group of resolvable filter entries. Each filter entry is a combination of network traffic classification properties.
 
 
 
 
 
 ├
[V] vz:RFltP A remote filter profile.
 
 
 
 
 ├
[V] vz:ERFltP 
 
 
 ├
[V] vz:AnyREpPCtrct 
 
 
 ├
[V] vz:FltTaskAggrCont A container for a filter task aggregator.
 
 
 ├
[V] vz:GraphCont The graph container.
 
 
 ├
[V] vz:GraphDef A graph definition.
 
 
 ├
[V] vz:ResPcTagCont 


Events
                


Faults
                


Fsms
                


Properties Summary
Defined in: pol:Def
naming:Descr
          string:Basic
descr  (pol:Def:descr)
           Specifies a description of the policy definition.
naming:Descr
          string:Basic
ownerKey  (pol:Def:ownerKey)
           The key for enabling clients to own their data for entity correlation.
naming:Descr
          string:Basic
ownerTag  (pol:Def:ownerTag)
           A tag for enabling clients to add their own data. For example, to indicate who created this object.
Defined in: pol:Obj
naming:Name
          string:Basic
name  (pol:Obj:name)
           Overrides:naming:NamedObject:name
           null
Defined in: naming:NamedObject
naming:NameAlias
          string:Basic
nameAlias  (naming:NamedObject:nameAlias)
           NO COMMENTS
Defined in: mo:TopProps
mo:ModificationChildAction
          scalar:Bitmask32
childAction  (mo:TopProps:childAction)
           Delete or ignore. For internal use only.
reference:BinRef dn  (mo:TopProps:dn)
           A tag or metadata is a non-hierarchical keyword or term assigned to the fabric module.
reference:BinRN rn  (mo:TopProps:rn)
           Identifies an object from its siblings within the context of its parent object. The distinguished name contains a sequence of relative names.
mo:ModificationStatus
          scalar:Bitmask32
status  (mo:TopProps:status)
           The upgrade status. This property is for internal use only.
Properties Detail

childAction

Type: mo:ModificationChildAction
Primitive Type: scalar:Bitmask32

Units: null
Encrypted: false
Access: implicit
Category: TopLevelChildAction
    Comments:
Delete or ignore. For internal use only.
Constants
deleteAll 16384u deleteAll NO COMMENTS
ignore 4096u ignore NO COMMENTS
deleteNonPresent 8192u deleteNonPresent NO COMMENTS
DEFAULT 0 --- This type is used to





descr

Type: naming:Descr
Primitive Type: string:Basic

Like: naming:Described:descr
Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Range:  min: "0"  max: "128"
        Allowed Chars:
            Regex: [a-zA-Z0-9\\!#$%()*,-./:;@ _{|}~?&+]+
    Comments:
Specifies a description of the policy definition.



dn

Type: reference:BinRef

Units: null
Encrypted: false
Access: implicit
Category: TopLevelDn
    Comments:
A tag or metadata is a non-hierarchical keyword or term assigned to the fabric module.



name

Type: naming:Name
Primitive Type: string:Basic

Overrides:naming:NamedObject:name
Units: null Encrypted: false Access: admin Category: TopLevelRegular Property Validators: Range: min: "0" max: "64" Allowed Chars: Regex: [a-zA-Z0-9_.:-]+
    Comments:
null



nameAlias

Type: naming:NameAlias
Primitive Type: string:Basic

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Range:  min: "0"  max: "63"
        Allowed Chars:
            Regex: [a-zA-Z0-9_.-]+
    Comments:
NO COMMENTS



ownerKey

Type: naming:Descr
Primitive Type: string:Basic

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Range:  min: "0"  max: "128"
        Allowed Chars:
            Regex: [a-zA-Z0-9\\!#$%()*,-./:;@ _{|}~?&+]+
    Comments:
The key for enabling clients to own their data for entity correlation.



ownerTag

Type: naming:Descr
Primitive Type: string:Basic

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Range:  min: "0"  max: "64"
        Allowed Chars:
            Regex: [a-zA-Z0-9\\!#$%()*,-./:;@ _{|}~?&+]+
    Comments:
A tag for enabling clients to add their own data. For example, to indicate who created this object.



rn

Type: reference:BinRN

Units: null
Encrypted: false
Access: implicit
Category: TopLevelRn
    Comments:
Identifies an object from its siblings within the context of its parent object. The distinguished name contains a sequence of relative names.



status

Type: mo:ModificationStatus
Primitive Type: scalar:Bitmask32

Units: null
Encrypted: false
Access: implicit
Category: TopLevelStatus
    Comments:
The upgrade status. This property is for internal use only.
Constants
created 2u created In a setter method: specifies that an object should be created. An error is returned if the object already exists.
In the return value of a setter method: indicates that an object has been created.
modified 4u modified In a setter method: specifies that an object should be modified
In the return value of a setter method: indicates that an object has been modified.
deleted 8u deleted In a setter method: specifies that an object should be deleted.
In the return value of a setter method: indicates that an object has been deleted.
DEFAULT 0 --- This type controls the life cycle of objects passed in the XML API.

When used in a setter method (such as configConfMo), the ModificationStatus specifies whether an object should be created, modified, deleted or removed.
In the return value of a setter method, the ModificationStatus indicates the actual operation that was performed. For example, the ModificationStatus is set to "created" if the object was created. The ModificationStatus is not set if the object was neither created, modified, deleted or removed.

When invoking a setter method, the ModificationStatus is optional:
If a setter method such as configConfMo is invoked and the ModificationStatus is not set, the system automatically determines if the object should be created or modified.