Security Group - Feature Scope
Following are the Port types supported in Security Group (SG):
Port Types |
Details |
---|---|
VTF Ports |
|
OVS Ports |
Fully Supported |
Baremetal Ports and SRIOV Ports |
|
Security Group Features |
OVS |
VPP |
SR-IOV on Cisco Nexus 9000 |
BM on Cisco Nexus 9000 |
---|---|---|---|---|
Default SG without Remote SG |
Yes |
Yes |
Yes |
Yes |
Default SG with Remote SG |
Yes |
The default SG will be ignored. |
The default SG will be ignored. |
NA |
Custom SG without Remote SG |
Yes |
Yes |
Yes |
Yes |
Custom SG with Remote SG |
Yes |
The remote-sg rule will be ignored. |
The remote-sg rule will be ignored. |
NA |
Reflexive Policies |
Yes |
Yes |
No |
No |
Implicit DHCP allow |
Yes |
Yes |
Yes |
Yes |
Routed Traffic |
Egress/Ingress |
Egress/Ingress |
Egress/Ingress |
Egress/Ingress |
Bridged Traffic |
Egress/Ingress |
Egress/Ingress |
|
Egress Only for Inter-Compute |
Note |
|
Important |
Review the Security Groups feature specific information in the Limitations and Restrictions section of the Cisco VTS Release Notes before you create or attach security groups. |