Workload Rules
Illumio Segmentation for Data Centers has two types of rules:
Inbound Rules: Show all the services on the workload and the interface endpoints allowed to communicate with these services.
Outbound Rules: Show all the interface endpoints with which the services on that workload can communicate.
To apply rules to a workload, create a policy, and ensure that the policies and workloads share the same labels.
Note
The workload rules are listed against individual IP addresses in an ipset. The PCE limits the size of the returned data.
The PCE web console displays an error message whenever the PCE exceeds a certain number of rules, which is the number of peer-to-peer rules calculated for that workload.