After configuring and publishing a Security Policy, users can then apply the Security Policy to a Profile or an Edge through the use of a Business Policy. Business Policies may be configured at either the Profile or Edge level.
To create a Business Policy rule at the Profile level and apply a Security Policy, follow the steps below:
Procedure
- From the SD-WAN Orchestrator Enterprise portal, go to Configure > Profiles. The Profiles page displays the existing Profiles.
- Click the link to a Profile.
- Click the Business Policy tab. From the Profiles page, users can navigate to the Business Policy page directly by clicking the View link in the Biz. Pol column of the Profile.
- Under the Configure Business Policy area, click +ADD. The Add Rule dialog box appears.
- In the Rule Name box, enter a unique name for the rule.
- Under the Match area, configure the match conditions for the traffic flow by defining the matching criteria for the Source and Destination traffic.
- Under the Action area, configure the actions for the rule as follows:
- Set the Network Service to Internet Backhaul.
- Click the VMware Cloud Web Security Gateway network service and select a published Security Policy to be applied to the Business policy rule.
- Click Create. The selected Security Policy is applied for the selected profile, and it appears under the Business Policy Rules area of the Profile Business Policy page.