vrf policy deny
vrf policy deny
To enter virtual forwarding and routing instance (VRF) policy configuration mode for a user role, use thevrf
policy deny command. To revert to the default VRF policy for a user role, use the no form of this command.
vrf policy deny
no vrf policy deny
Syntax Description
This command has no arguments or keywords.
Command Default
All VRFs
Command Modes
User role configuration
Command History
Release
4.0(1)
Usage Guidelines
This command denies all VRFs to the user role except for those that you allow using thepermit vrf command
in user role VRF policy configuration mode.
This command does not require a license.
Examples
This example shows how to enter VRF policy configuration mode for a user role:
switch# configure t
switch(config)# role name MyRole
switch(config-role)# vrf policy deny
switch(config-role-vrf)#
This example shows how to revert to the default VRF policy for a user role:
switch# configure t
switch(config)# role name MyRole
switch(config-role)# no vrf policy deny
Related Commands
Command
vrf permit
role name
show role
Cisco Nexus 7000 Series Security Command Reference
990
Modification
This command was introduced.
Description
Permits VRFs in a user role VRF policy.
Creates or specifies a user role and enters user role
configuration mode.
Displays user role information.
V Commands