Rules

This table describes policy rules. Each rule is defined by a number of fields:

Field Description	Field Name
Rule. Description of the rule, e.g. rule purpose.	rule
Severity. Severity level of per-rule violation messages.	severity
Mode. There are two policy rule modes: File. In this mode Expression rule is applied against the whole configuration file. This is a default mode suitable for most cases. Line. In this mode Expression rule is applied against each line of a configuration file individually.	mode
Expression. An Iotellect expression that defines whether a configuration file or its individual line matches the rule. The expression must return a Boolean value: `true` output means that the configuration item matches the rule, `false` output means the contrary. Use `{env/configuration}` references to refer content of device configuration or its current line (depending on the Mode).	expression

	Variable Name	Value Type	Description
Policy Rule Expression Resolution Environment:
Default Context	Context of the device which configuration is being checked for policy violations.
Default Data Table	None.
Default Row	0
Environment Variables	Standard variables. Additional variables:
	configuration	String	Text of configuration or configuration line (depending on the rule's Mode) being validated.

DPF_EXPORT_V5.8.8 / TIME_1743710563 / 2025-04-03 20:02:43 / STRLEN_4229 / STRLEN_HTML_3608

{VERSION}

Was this page helpful?