Non-corporate Public IP Addresses

The API sec_policy/rule_coverage supports non-domain interfaces.

Security Principals Methods	HTTP	URI
Get Security Principals	`POST`	`[api_version][org_href]/sec_policy/rule_coverage`

From release 22.3.0, thi API has a new property network and now accepts the network_href to correctly determine if the rule applies to a flow.

Parameter	Description
`source`	Specify labels,such as "href": "/orgs/14/labels/42" "href": "/orgs/14/labels/43"
`destination`	Specify an IP list, such as "href": "/orgs/14/sec_policy/active/ip_lists/14"
`network`	Where the source and destination are in, such as a `non-brn` network
`services`	Specify port and protocol

Parameter	Description
`rules`	The rules returned in the API response are rules with network_type (such as `non-brn`) that apply to the given input, such as: "0": { "href": "/orgs/14/sec_policy/draft/rule_sets/21/sec_rules/220" }, "1": { "href": "/orgs/14/sec_policy/draft/rule_sets/21/sec_rules/223" }, "2": { "href": "/orgs/14/sec_policy/draft/rule_sets/21/sec_rules/237" }
`edges`	[[["0", "1", "2"]]]

Parameter

Description

rules

The rules returned in the API response are rules with network_type (such as non-brn) that apply to the given input, such as:

"0": { "href": "/orgs/14/sec_policy/draft/rule_sets/21/sec_rules/220" },

"1": { "href": "/orgs/14/sec_policy/draft/rule_sets/21/sec_rules/223" },

"2": { "href": "/orgs/14/sec_policy/draft/rule_sets/21/sec_rules/237" }

edges

[[["0", "1", "2"]]]

REST APIs for 23.2