Manage Account Settings

Table 1. Feature History

Feature Name

Release Information

Description
Support for Managing Predefined Inbound Rules

November 2022 Release

With this feature, you can specify trusted IP addresses, including prefixes, from which you can manage controller access. You can apply the predefined inbound rules to all of your overlays.

Information About Predefined Inbound Rules

You can specify predefined inbound rules for allowing trusted IP addresses, including prefixes, for managing controller access. The predefined rules apply to any existing or new overlay network created with the associated Smart Account.

You can add up to 200 rules per overlay network.

Benefits of Predefined Inbound Rules

  • Applies predefined inbound rules automatically to any overlay created with the associated Smart Account

  • Supports equivalent audit log entries for the allowed IP addresses

Use Case for Predefined Inbound Rules

Manage Predefined Inbound Rules

Before You Begin

  1. Create a Smart Account.

    For more information on creating a Smart Account, see Workflow for Smart Account and Virtual Accounts for Provisioning the Controllers.

  2. Create an overlay.

    For more information on creating a Cisco SD-WAN Cloud-Pro overlay network, see Create a Cisco SD-WAN Cloud-Pro Overlay Network.

Manage Predefined Inbound Rules

  1. From the Cisco Catalyst SD-WAN Portal menu, choose Admin Settings.

  2. Under Actions, click . . . and choose Manage Predefined Inbound Rules from the drop-down list.

  3. Click Add Predefined Inbound Rules to add a predefined inbound rule.

  4. Configure the following fields:

    Field

    Description

    Name

    Enter a name for the predefined inbound rule.

    Rule Type

    Choose one of the available options from the drop-down list.

    • All

    • SSH

    • HTTPS

    • Custom TCP rule

    • Custom UDP rule

    Protocol

    Protocol is automatically populated depending on which Rule Type you choose.

    Port Range

    Enter a port range.

    If you chose Custom TCP rule or Custom UDP rule, port range is automatically populated.

    Source

    Enter an IP address or an IP address prefix.

    Description

    Enter a description for the predefined inbound rule.

    Automatically add this rule to ALL overlays

    Check the Automatically add this rule to ALL overlays check box if you want to apply the predefined rules to all the overlays associated with your Smart Account.

    If you do not check Automatically add this rule to ALL overlays, the rule does not get added to your existing overlays.

  5. Click Add.