A Policy-based L3Vpn session is a configuration in which a specific vpn tunnel is referenced in a policy whose action is set as tunnel.


resource_type Required
  • A Policy Based L3Vpn is a configuration in which protect rules to match local and remote subnet needs to be defined. Tunnel is established for each pair of local and remote subnet defined in protect rules.
  • A Route Based L3Vpn is more flexible, more powerful and recommended over policy based. IP Tunnel subnet is created and all traffic routed through tunnel subnet (commonly known as VTI) is sent over tunnel. Routes can be learned through BGP. A route based L3Vpn is required when using redundant L3Vpn.

Possible values are: PolicyBasedL3VpnSessionRouteBasedL3VpnSession

array of L3VpnRule
rules Optional

L3Vpn rules that are specific to the L3Vpn. Only L3Vpn rules with PROTECT action are supported.



JSON Example

    "resource_type": "string"

Was this page helpful?