Cisco Catalyst SD-WAN Policy Groups Configuration Guide, Releases 26.x and Later

PDF

Objects and profiles

Want to summarize with AI?

Log in

Introduces configurable policy objects and profiles used in match or action components, and guides you in creating new objects for policy groups. Notes terminology differences between releases, including the previous designation as Groups of Interest.


Objects and profiles provides a list of related policy objects that you can configure and call in the match or action components of a policy. Click Objects and Profiles to create new objects for the policy group.

In Cisco IOS XE Catalyst SD-WAN Release 17.18.x and earlier releases, Objects and Profiles is called Groups of Interest.


Configure objects and profiles

Procedure

1.

From the Cisco SD-WAN Manager menu, choose Configuration > Policy Groups.

2.

Click Objects and Profiles.

  1. Configure Application.

    From the Application/Application family list drop-down, choose the required applications or application families.

    A few application lists are preconfigured. You cannot edit or delete these lists.

    Microsoft_Apps: Includes Microsoft applications, such as Excel, Skype, and Xbox. To display a full list of Microsoft applications, click the list in the Entries column.

    Google_Apps: Includes Google applications, such as Gmail, Google Maps, and YouTube. To display a full list of Google applications, click the list in the Entries column.

  2. Configure Add App Probe Class.

    Field

    Description

    Probe Class Name

    Enter a name for the probe class.

    Forwarding Class

    Choose the forwarding class from the drop-down list.

    Color

    Choose the color from the drop-down list.

    DSCP

    Enter the DSCP value.

    You can add more entries if needed by clicking on + icon.

  3. Configure Color.

    Field

    Description

    Color List Name

    Enter a name for the list.

    Select Color

    Choose one or more color lists types from the drop-down list.

    To configure multiple colors in a single list, you can choose multiple colors from the drop-down list.

  4. Configure Community List.

    A community list is used to create groups of communities to use in a match clause of a route map. A community list can be used to control which routes are accepted, preferred, distributed, or advertised. You can also use a community list to set, append, or modify the communities of a route.

    Field

    Description

    Community List Name

    Enter a name of the community list.

    Add Community

    Enter one or more communities separated by commas.

    • aa : nn : Autonomous System (AS) number and network number. Each number is a 2-byte value with a range from 1 to 65535. For example, 65526.

    • internet : Routes in this community are advertised to the internet community. This community comprises all BGP-speaking networking devices.

    • local-as : Routes in this community are not advertised outside the local AS number.

    • no-advertise : Attaches the NO_ADVERTISE community to routes. Routes in this community are not advertised to other BGP peers.

    • no-export : Attaches the NO_EXPORT community to routes. Routes in this community are not advertised outside the local AS or outside a BGP confederation boundary. To configure multiple BGP communities in a single list, include multiple community options, specifying one community in each option.

  5. Configure Data Prefix and Data Prefix IPv6.

    Field

    Description

    Data Prefix List Name

    Enter a name for the data prefix list.

    Add Data Prefix

    Enter one or more data prefixes separated by commas.

    Does not support: 0.0.0.0/0

  6. Configure Expanded Community List.

    Field

    Description

    Community List Name

    Enter a name for the community list.

    Add Community

    Specify details of the expanded community list that is used to filter communities using a regular expression.

  7. Configure Forwarding Class.

    Field

    Description

    Forwarding Class

    Enter a name for the forwarding class.

    Queue

    Choose a value for the queue from the drop-down list.

  8. Add policer.

    Field

    Description

    Policer List Name

    Enter a name for the policer list.

    Burst (bytes)

    Enter the maximum traffic burst size. The range is from 15,000 to 10,000,000 bytes.

    Exceed

    Choose the action to take when the burst size or traffic rate is exceeded. The options are:

    • Drop: sets the packet loss priority (PLP) to low

    • Remark: sets the packet loss priority (PLP) to high

    Rate

    Enter the maximum traffic rate, a value from 8 through 10^11 bits per second (bps).

  9. Add preferred color group.

    Choose the color preference and path prefernce for the primary, secondary, and tertiary colors.

    Field

    Description

    Preferred Color Group Name

    Enter a name for the preferred color group.

    Color Preference

    Choose the color preference from the drop-down list.

    You can choose multiple colors.

    Path Preference

    Choose the path preference from the drop-down list. The options are:

    • Direct Path

    • Multi Hop Path

    • All Paths

  10. Add prefix list and prefix list IPv6.

    Field

    Description

    Prefix List Name

    Enter a name for the IPv4/IPv6 prefix list.

    Add Prefix

    Enter one or more IPv4/IPv6 prefixes separated by commas.

  11. Add SLA class.

    Field

    Description

    SLA Class List Name

    Enter a name of the SLA class list.

    Loss (%)

    Enter the maximum packet loss on the connection, a value from 0 through 100.

    Latency

    Enter the maximum packet latency on the connection, a value from 1 through 1,000 milliseconds.

    Jitter

    Enter the maximum jitter on the connection, a value from 1 through 1,000 milliseconds.

    App Probe Class

    Choose the app probe class from the drop-down list or click Create New to create one.

    Fallback Best Tunnel

    Choose this option to enable the best tunnel criteria.
  12. Add TLOC list.

    Field

    Description

    List Name

    Enter a name for the TLOC list.

    TLOC IP

    Specify the IP address for TLOC.

    Color

    Choose the color from the drop-down list.

    Encapsulation

    Choose the value from the drop-down list. The options are:

    • IPSec

    • GRE

    Preference

    Choose a preference to associate with the TLOC.

    The range is 0 to 4294967295.

3.

Click Save.