Using the App¶
This document describes common use-cases and scenarios for this App.
General Usage¶
A detailed walkthrough is provided in the Introducing Nautobot Firewall Models blog post.
Assigning Policies¶
There are three primary ways of assigning policies (Policy
or NATPolicy
objects) to devices:
- Directly via the
assigned_devices
attribute on a policy object. - Dynamically by assigning an existing
DynamicGroup
object to theassigned_dynamic_groups
field on a policy object. - By creating a new
Relationship
specifying additional targets for policy association. This can be, for example, used to associate a policy with anInterface
object.- The use of a Relationship may limit future integrations with parsing or templating.
Although policies can be created without any rules it is recommended to create the required underlying objects first before moving to the policy definitions. Creation Order provides an ordered list of steps for creating and assigning, objects, needed for policy creation.
Use-cases and common workflows¶
For examples of REST and GraphQL API usage see the External Interactions page.
Should you wish to integrate Nautobot data with firewall configuration policies, please read the Capirca Integration page.