Starting with version 10.5, VMware Cloud Director supports configuration of virtual service policies that you can use to customize HTTP security, HTTP requests, and HTTP responses.
You can use virtual service HTTP policies to control security, client request attributes, and application response attributes.
A virtual service policy consists of match criteria and actions that function similarly to an if-then
statement. If match criteria are met, VMware Cloud Director performs the corresponding action.
Each policy that you configure for a virtual service includes one or more rules that are evaluated in the order that you specify. If a rule is successfully evaluated and applied, no further rules in the policy are evaluated.
You can apply HTTP rules only to a layer-7 virtual service.
- HTTP Request Rules
- You can use HTTP request rules to modify requests before they are either forwarded to the application, used as a basis for content switching, or discarded.
- HTTP Response Rules
- You can use HTTP response rules to evaluate and modify the response and response attributes that the application returns.
- HTTP Security Rules
- You can use HTTP security rules to configure allowing or denying certain requests, to close the TCP connection, to redirect a request to HTTPS, or to apply a rate limit.
After configuring the HTTP custom policies for a virtual service, you can reorder, update, and delete them, as needed.