Cisco ACE 4700 Series Appliance Command Reference
Domain Configuration Mode Commands
Download this chapter
Domain Configuration Mode CommandsDomain Configuration Mode Commands
Download the complete book
Cisco 4700 Series Application Control Engine Appliance Command Reference, Book-Length PDF (Software Version A1(7))Cisco 4700 Series Application Control Engine Appliance Command Reference, Book-Length PDF (Software Version A1(7)) (PDF - 10 MB)
give_us_feedback

Table Of Contents

Domain Configuration Mode Commands

(config-domain) add-object


Domain Configuration Mode Commands

Domain configuration mode commands allow you to determine a user's domain (namespace in which the user operates). To create a domain and access domain configuration mode, use the domain command in configuration mode. The CLI prompt changes to (config-domain). For information about the commands in domain configuration mode, see the commands in this section.

Use the no form of this command to remove a domain from the configuration.

domain name

no domain name

Syntax Description

name

Unique identifier of a domain in a context. Enter an unquoted text string with no spaces and a maximum of 64 alphanumeric characters.


Command Modes

Configuration mode

Admin and user contexts

Command History

Release
Modification

A1(7)

This command was introduced.


Usage Guidelines

All commands in this mode require the context Admin user role. For details about role-based access control (RBAC) and user roles, see the Cisco 4700 Series Application Control Engine Appliance Virtualization Configuration Guide.

When you create a context, the ACE automatically creates a default domain (default-domain). You can create a maximum of 63 additional domains per ACE. A domain does not restrict the context configuration that you can display using the show running-config command. You can still display the running configuration for the entire context. However, a domain can restrict your access to the configurable objects within a context because only a limited subset of all the objects available to a context are added to the domain.

Examples

To create a domain named D1 and access domain configuration mode, enter: 

host1/Admin(config)# domain D1

host1/Admin(config-domain)#

To delete the D1 domain, enter: 

host1/Admin(config)# no domain D1

Related Commands

show domain
show running-config

(config-domain) add-object

To associate a configuration object with a domain, use the add-object command. Use the no form of the command to remove an object added to the domain.

add-object {access-list {ethertype | extended} name | action-list name | all | class-map name | interface {bvi number | vlan number} | object-group name | parameter-map name | policy-map name | probe name | rserver name | script name | serverfarm name | sticky name}

no add-object {access-list {ethertype | extended} name | action-list name | all | class-map name | interface {bvi number | vlan number} | object-group name | parameter-map name | policy-map name | probe name | rserver name | script name | serverfarm name | sticky name}

Syntax Description

access-list name

Specifies an existing access control list that you want to associate with the domain.

ethertype

Specifies an existing EtherType access control list that you want to associate with the domain.

extended

Specifies an existing extended access control list that you want to associate with the domain.

action-list name

Specifies an existing action list that you want to associate with the domain.

all

Specifies that all configuration objects in the context are added to the domain.

class-map name

Specifies an existing class map for flow classification that you want to associate with the domain.

interface

Specifies an existing interface—either a Bridge Group Virtual Interface or a VLAN—that you want to associate with the domain.

bvi number

Specifies the existing Bridge Group Virtual Interface that you want to associate with the domain. Enter an integer from 1 to 4094.

vlan number

Specifies the existing VLAN that you want to associate with the domain. Enter an integer from 2 to 4094.

object-group name

Specifies an existing object group that you want to associate with the domain.

parameter-map name

Specifies an existing parameter map that you want to associate with the domain.

policy-map name

Specifies an existing policy map that you want to associate with the domain.

probe name

Specifies an existing real server probe (keepalive) that you want to associate with the domain.

rserver name

Specifies an existing real server that you want to associate with the domain.

script name

Specifies an existing script file (created with the ACE TCL scripting language) that you want to associate with the domain.

serverfarm name

Specifies an existing server farm that you want to associate with the domain.

sticky name

Specifies an existing sticky group that you want to associate with the domain to maintain persistence with a server.

name

Identifier of the specified object. Enter an unquoted text string with no spaces and a maximum of 64 alphanumeric characters.


Command Modes

Domain configuration mode

Admin and user contexts

Command History

Release
Modification

A1(7)

This command was introduced.


Usage Guidelines

This command has no usage guidelines.

Examples

To associate an interface called VLAN 10 with a domain, enter: 

host1/Admin(config-domain)# add-object interface vlan 10

Related Commands

show domain