RouteBasedL3VpnSession

A Route Based L3Vpn is more flexible, more powerful and recommended over policy based. IP Tunnel subnet is created and all traffic routed through tunnel subnet is sent over tunnel. Routes can be learned through BGP. A route based L3Vpn is required when using redundant L3Vpn.


Properties

boolean
default_rule_logging Optional

Indicates if logging should be enabled for the default whitelisting rule for the VTI interface.


boolean
force_whitelisting Optional

The default firewall rule Action is set to DROP if true otherwise set to ALLOW.


string
resource_type Required
  • A Policy Based L3Vpn is a configuration in which protect rules to match local and remote subnet needs to be defined. Tunnel is established for each pair of local and remote subnet defined in protect rules.
  • A Route Based L3Vpn is more flexible, more powerful and recommended over policy based. IP Tunnel subnet is created and all traffic routed through tunnel subnet (commonly known as VTI) is sent over tunnel. Routes can be learned through BGP. A route based L3Vpn is required when using redundant L3Vpn.

Possible values are: PolicyBasedL3VpnSessionRouteBasedL3VpnSession


string
routing_config_path Optional

This is a deprecated field. Any specified value is not saved and will be ignored.


array of TunnelSubnet
tunnel_subnets Optional

Virtual tunnel interface (VTI) port IP subnets to be used to configure route-based L3Vpn session. A max of one tunnel subnet is allowed.

Extends

L3VpnSession

JSON Example

{
    "resource_type": "string"
}
Feedback

Was this page helpful?