(CTTC) ACL support in gNMI/OpenConfig SBI is required

Proposers

• Shayan Hajipour (CTTC)
• Lluis Gifre (CTTC)

Description

ACL handler should be added to the gNMI/OpenConfig SBI driver. The handler should create OpenConfig-based configs for installing ACLs.

Demo or definition of done

The e2e flow from NBI's IETF ACL endpoint to an Arista cEOS should be done. In other words, an IETF ACL-based request is received in the NBI, the NBI creates the TFS config rules and passes the request to the device component. Then the device component's driver blocks the traffic based on the source and destination provided in the IETF ACL sample and accepts the rest.

Acknowledgements

This work is funded by the European Commission through the HORIZON-JU-SNS-2022 ACROSS project with Grant Agreement number 101097122.

References

1. [openconfig-acl.yang](https://github.com/openconfig/public/blob/master/release/models/acl/openconfig-acl.yang