Virtual Servers
A virtual server is similar to a workload. It can be assigned labels and has IP addresses, but does not report traffic to the Illumio Core. Each virtual server has only one VIP. The local IP addresses are used as a source IP address for connections to the pool members (backend servers) when the virtual server is operating in SNAT mode or Auto mode. These IP addresses are likely to be shared by multiple virtual servers on the server load balancer.
A discovered virtual server is a server load balancer (SLB) virtual server (IP address and port(s)) that the NEN has discovered when interrogating SLBs managed by the PCE.
For the topic overview and more details see the Security Policy Guide, Load Balancers and Virtual Servers.
Virtual Server Methods
There are two groups of methods used to manage virtual servers:
Methods for virtual servers
Methods for discovered virtual servers
Virtual Servers
Virtual Server Methods
Functionality | HTTP | URI |
|---|---|---|
Get a list of Virtual Servers |
|
|
Get a specified Virtual Server |
|
|
Create a Virtual Server object |
|
|
Modify the enforcement mode, labels, and backend/provider labels of a specified Virtual Server |
|
|
Parameters for Virtual Servers :
Parameter | Description | Type | Required |
|---|---|---|---|
| Organization | Integer | Yes |
| Security Policy Version | String | Yes |
| Virtual server UUID (to get a specific virtual server) | String | Yes |
| A unique identifier within the external data source | String | No |
| The data source from which a resource originates | String | No |
| 2D array of label URIs, encoded as a JSON string. Filter by virtual server labels. | String | Yes |
| Mode of the virtual server(s) to return | String | No |
| URI of discovered virtual server to filter by | String | No |
Properties for Virtual Servers
Parameter | Description | Type | Required |
|---|---|---|---|
| href of virtual server | String | Yes |
| The short friendly name of the virtual server | String | Yes |
| 2D array of label URIs, encoded as a JSON string. Filter by virtual server labels. "$ref": "../common/label_optional_key_value.schema.json" | Array | Yes |
| URI of associated service "$ref": "../common/href_object.schema.json" | Yes | |
| minItems: 0, label: "$ref": "../common/label_optional_key_value.schema.json" workload: "$ref": "../common/href_object.schema.json" | Array | Yes |
| Virtual server mode of operation", | String/Null | Yes |
| Corresponding discovered virtual server, server URI | String/Null | Yes |
| "$ref": "../common/sec_policy_update_type.schema.json" | Yes | |
| The time (rfc3339 timestamp) at which this virtual server was created | date/time | Yes |
| The time (rfc3339 timestamp) at which this virtual server was last updated | date/time | Yes |
| The time (rfc3339 timestamp) at which this virtual server was deleted | String/Null | Yes |
| The URI of the user who created this virtual server "$ref": "../common/href_object.schema.json" | Yes | |
| The URI of the user who last updated this virtual server "$ref": "../common/href_object.schema.json" | Yes | |
| The URI of the user who deleted this virtual server "$ref": "../common/nullable_href_object.schema.json" | Yes | |
| Virtual server UUID | String | Yes |
| Security Policy Version | String | Yes |
| A unique identifier within the external data source | String | No |
| The data source from which a resource originates | String/Null | No |
Discovered Virtual Servers
Discovered Virtual Servers Methods
You can use only three GET methods for discovered virtual servers
Functionality | HTTP | URI |
|---|---|---|
Get a list of Discovered Virtual Servers |
|
|
Get a specified Discovered Virtual Server |
|
|
Discovery on-demand: list the discovered virtual servers |
|
|
Discovered Virtual Server Parameters
Parameter | Description | Type | Required |
|---|---|---|---|
| Organization | Integer | Yes |
| NFC-generated unique identifier for discovered virtual server | String | Yes |
| Name of discovered virtual server(s) to return. Supports partial matches | String | No |
vip | Frontend (VIP) address of the discovered virtual server(s). Supports suffix-wildcard matches | String | No |
| Port of frontend VIP of the discovered virtual server(s) | Integer | No |
vip_proto | Protocol of frontend VIP of the discovered virtual server(s) | Integer | No |
| Local IPs of virtual server Format: ipv4 | String | Yes |
| Filter discovered virtual server(s) by virtual server mode. Requires usage of has_virtual_server: true | String | No |
| URI of SLB object to filter discovered virtual server(s) | String | No |
Discovered Virtual Server Properties
Parameter | Description | Type | Required |
|---|---|---|---|
| href of discovered virtual server | String | Yes |
| NFC-generated unique identifier for discovered virtual server | String | Yes |
| Configured name of virtual server "$ref": "../common/dvs_vip_port.schema.json" | String | Yes |
| VIP including protocol and port for discovered virtual server | Yes | |
| Local IPs of virtual server Format: ipv4 | String | Yes |
| Virtual server mode of operation | Yes | |
| URI of Service Load Balancer (SLB) object to filter discovered virtual server(s) "$ref": "../common/href_object.schema.json" | String | Yes |
| Yes | ||
| DEPRECATED AND REPLACED (USE 'network_enforcement_node' INSTEAD) URI of the NFC for this discovered virtual server "$ref": "../common/href_object.schema.json" | Yes | |
| The time (rfc3339 timestamp) at which this server load balancer was created | date/time | Yes |
| The time (rfc3339 timestamp) at which this server load balancer was last updated | date/time | Yes |
| "$ref": "../common/href_object.schema.json" | Yes | |
| "$ref": "../common/href_object.schema.json" | Yes | |
| URI of the Network Enforcement Node for this discovered virtual server "$ref": "../common/href_object.schema.json" | Yes | |
| SNAT source ip type | String | No |
| NAT source IPs of virtual server Format: ipv4 | String | No |
| The virtual server policy object corresponding to this discovered virtual server | Object | No |
| Filter discovered virtual server(s) by whether they are managed by a virtual server object "$ref": "../common/href_object.schema.json" | String | No |
| Labels for virtual server | String | No |