referencing shared object within CPL / VPM

search cancel

referencing shared object within CPL / VPM

book

Article ID: 281030

calendar_today

Updated On:

Products

Cloud Secure Web Gateway - Cloud SWG

Issue/Introduction

Referencing shared object created within VPM within CPL layer

Environment

UPE policy enforcement

Cause

When referencing a shared object created in VPM from a CPL layer, you require two things.

First adding the include variable referencing your shared object: Example highlighted in bold ${include:yoursharedobjectname}
Second you need to add a condition=yoursharedobjectname when referencing from CPL Layer

Resolution

With the two ${include:mysharedobjectiplist} and condition=mysharedobjectiplist being added to CPL, the below example pushes to CloudSWG target successfully.
Example CPL layer referencing a shared IP object created in VPM named "mysharedobjectiplist" See highlights in bold required to reference a shared object created within VPM within CPL layer.

#if enforcement=wss
${include:mysharedobjectiplist}
<DNS-Proxy>
condition=mysharedobjectiplist dns.request.name=example.domain.com dns.respond(NXDOMAIN)
condition=mysharedobjectiplist dns.request.name=example.domain.com dns.respond(NXDOMAIN)
#endif

Feedback

thumb_up Yes

thumb_down No