finish Remove-VNVDTrafficRule, add Formats

Author: mtboren

Update-ThisModuleManifest.ps1

@@ -19,12 +19,12 @@ begin {
 		Copyright = "MIT License"
 		Description = "Module with functions for managing VMware vSphere Virtual Distributed Networking components like traffic filtering and marking"
 		# AliasesToExport = @()
-		FileList = Write-Output "${strModuleName}.psd1" "${strModuleName}_ModRoot.psm1" "en-US\about_${strModuleName}.help.txt" GetItems.ps1 NewItems.ps1 "${strModuleName}_SupportingFunctions.ps1"
-		# FormatsToProcess = "${strModuleName}.format.ps1xml"
-		FunctionsToExport = Write-Output Get-VNVDTrafficFilterPolicyConfig Get-VNVDTrafficRuleSet Get-VNVDTrafficRule Get-VNVDTrafficRuleQualifier New-VNVDTrafficRuleQualifier New-VNVDTrafficRuleAction New-VNVDTrafficRule
+		FileList = Write-Output "${strModuleName}.psd1" "${strModuleName}_ModRoot.psm1" "en-US\about_${strModuleName}.help.txt" GetItems.ps1 NewItems.ps1 RemoveItems.ps1 "${strModuleName}_SupportingFunctions.ps1" "${strModuleName}.format.ps1xml"
+		FormatsToProcess = "${strModuleName}.format.ps1xml"
+		FunctionsToExport = Write-Output Get-VNVDTrafficFilterPolicyConfig Get-VNVDTrafficRuleSet Get-VNVDTrafficRule Get-VNVDTrafficRuleQualifier New-VNVDTrafficRuleQualifier New-VNVDTrafficRuleAction New-VNVDTrafficRule Remove-VNVDTrafficRule
 		IconUri = "https://avatars0.githubusercontent.com/u/10615837"
 		LicenseUri = "https://github.com/vNugglets/vNuggletsPSMod_vDNetworking/blob/master/License"
-		NestedModules = Write-Output GetItems.ps1 NewItems.ps1 "${strModuleName}_SupportingFunctions.ps1"
+		NestedModules = Write-Output GetItems.ps1 NewItems.ps1 RemoveItems.ps1 "${strModuleName}_SupportingFunctions.ps1"
 		PowerShellVersion = [System.Version]"5.0"
 		ProjectUri = "https://github.com/vNugglets/vNuggletsPSMod_vDNetworking"
 		ReleaseNotes = "See release notes at https://github.com/vNugglets/vNuggletsPSMod_vDNetworking/blob/master/ChangeLog.md"

notes_SetCoSAndDSCPOnVDPG.md

@@ -0,0 +1,91 @@
+## Notes on Traffic Filtering and Marking code
+
+
+### Need to make:
+- `Get-VNVDTrafficRuleAction`
+- `Set-VNVDTrafficRuleSet -Enabled -Precedence -TrafficRuleset`
+    - define cmdlet `ConfirmImpact` to High
+- Examples/docs
+
+### Maybe eventually add:
+- `Copy-VNVDTrafficRule -Rule -Ruleset <rulesettowhichtocopy>`
+- `Set-VNVDTrafficRule` -- to update a rule, maybe? (like change qualifier/action?)
+- `New-VNVDTrafficRule`
+    - may need to add logic to ensure it meets requirement stated in API ref of, "There can be a maximum of 1 DvsIpNetworkRuleQualifier, 1 DvsMacNetworkRuleQualifier, and 1 DvsSystemTrafficNetworkRuleQualifier for a total of 3 qualifiers"
+- `Set-VNVDTrafficRuleSet -Enabled -Precedence -Rule -TrafficRuleset`
+    - to enable/disable the Ruleset, and maybe to allow for the overwriting of the rules in the ruleset with just the new Rule(s) specified
+- add `-RunAsync` to `New-VNVDTrafficRule`, `Remove-VNVDTrafficRule`, and any other cmdlet where it makes sense
+
+Done (to at least some extent -- some may have further features to implement):
+- `Get-VNVDTrafficFilterPolicyConfig`
+- `Get-VNVDTrafficRuleSet` (returns VNVDTrafficRuleSet object with VDPG property, too)
+- `Get-VNVDTrafficRule`
+- `Get-VNVDTrafficRuleQualifier`
+- `New-VNVDTrafficRuleQualifier`
+- `New-VNVDTrafficRuleAction`
+    - remaining Action types to implement: DvsCopyNetworkRuleAction, DvsGreEncapNetworkRuleAction, DvsLogNetworkRuleAction, DvsMacRewriteNetworkRuleAction, DvsPuntNetworkRuleAction, DvsRateLimitNetworkRuleAction
+- Ruleset object returned from `Get-VNVDTrafficRuleSet` should have property of "parent vDPG", to be used for vDPG reconfig task (need to add vDPG property to return from `Get-VNVDTrafficFilterPolicyConfig`, `Get-VNVDTrafficRuleSet`, and `Get-VNVDTrafficRule`)
+- `New-VNVDTrafficRule`
+    - adds rule to TrafficRuleset
+- `Remove-VNVDTrafficRule -Rule[]`
+    - define cmdlet `ConfirmImpact` to `High`
+    - removes a given rule from the associated ruleset on the given vDPortgroup
+    - implemented, but initially with a bug (now worked around):  cannot rely on TrafficRule object's `Key` property, as that changes with every vDPortgroup reconfig, apparently (so, if iterating through several Rules, after the removal of the 1st one, the keys for the rest in the pipeline are invalid)
+        - so, must do the `Process` differently so that all TrafficRule items per vDPortgroup are removed in one reconfig (or, other, less reliable ways, for which I did not opt)
+    - Operating with the understanding/observation that there is only ever one (1) `Config.DefaultPortConfig.FilterPolicy.FilterConfig` per vDPortgroup (and, so, one subsequent TrafficRuleset, since a FilterConfig has one TrafficRuleset), even though the `.FilterConfig` property is of type `VMware.Vim.DvsFilterConfig[]`; so, using single TrafficRuleset per group of TrafficRules to remove; may need revisited in the future
+
+## Get
+`Get-VDPortgroup | Get-VNVDTrafficRuleSet | Get-VNVDTrafficRule`
+
+## New traffic rule, (adding traffic rule to traffic ruleset)
+`Get-VDPortgroup someVdpg | Get-VNVDTrafficRuleSet | New-VNVDTrafficRule -Rule (New-VNVDTrafficRule -Direction blahh -Qualifier (New-VNVDTrafficRuleQualifier -ParmsHere))`
+
+## eventually? Set (overwrite) all rules in the ruleset (if any) with new rule(s) specified
+`Get-VDPortgroup someVdpg | Get-VNVDTrafficRuleSet | Set-VNVDTrafficRuleSet -Enabled -Rule (New-VNVDTrafficRule -Direction blahh -Qualifier (New-VNVDTrafficRuleQualifier -ParmsHere))`
+
+## Remove some traffic rules
+`Get-VDPortgroup someVdpg | Get-VNVDTrafficRuleSet | Get-VNVDTrafficRule -Name testRule0, otherRule* | Remove-VNVDTrafficRule`
+
+
+## Other
+- example core code, from https://communities.vmware.com/thread/493610?q=distributed%20switch%20traffic%20filter
+``` PowerShell
+$dvSwName = 'dvSw1'
+$dvPgNames = 'dvPg1'
+
+$dvSw = Get-VDSwitch -Name $dvSwName
+
+foreach($pg in (Get-View -Id  $dvSw.ExtensionData.Portgroup | Where {$dvPgNames -contains $_.Name})){
+    $spec = New-Object VMware.Vim.DVPortgroupConfigSpec
+    $spec.ConfigVersion = $pg.Config.ConfigVersion
+    $spec.DefaultPortConfig = New-Object VMware.Vim.VMwareDVSPortSetting
+    $spec.DefaultPortConfig.FilterPolicy = New-Object VMware.Vim.DvsFilterPolicy
+
+    $filter = New-Object VMware.Vim.DvsTrafficFilterConfig
+    $filter.AgentName = 'dvfilter-generic-vmware'
+
+    $ruleSet = New-Object VMware.Vim.DvsTrafficRuleset
+    $ruleSet.Enabled = $true
+
+    $rule =New-Object VMware.Vim.DvsTrafficRule
+    $rule.Description = 'Traffic Rule Name'
+    $rule.Direction = 'outgoingPackets'
+
+    $action = New-Object VMware.Vim.DvsUpdateTagNetworkRuleAction
+    $action.QosTag = 4
+
+    $rule.Action += $action
+
+    $ruleSet.Rules += $rule
+
+    $filter.TrafficRuleSet += $ruleSet
+
+    $spec.DefaultPortConfig.FilterPolicy.FilterConfig += $filter
+
+    $pg.ReconfigureDVPortgroup($spec)
+}
+```
+
+Other info:
+get VDTrafficFilterPolicyConfig:
+`$viewVDPG.Config.DefaultPortConfig.FilterPolicy.FilterConfig`

notes_SetCoSAndDSCPOnVDPG.ps1

@@ -130,9 +130,10 @@ function Get-VNVDTrafficRule {
 			$arrRulesOfInterest | Foreach-Object {
 				$oThisTrafficRule = $_
 				New-Object -Type VNVDTrafficRule -Property @{
-					TrafficRule = $oThisTrafficRule
 					Name = $oThisTrafficRule.Description
+					TrafficRule = $oThisTrafficRule
 					VDPortgroupView = $oThisTrafficRuleset.VDPortgroupView
+					VNVDTrafficRuleSet = $oThisTrafficRuleset
 				} ## end new-object
 			} ## end foreach-object
 		} ## end foreach-object

vNugglets.VDNetworking/GetItems.ps1

@@ -296,7 +296,7 @@ function New-VNVDTrafficRuleAction {
 
 function New-VNVDTrafficRule {
 <#	.Description
-	Make new Traffic Rule and adds its to the given Traffic Ruleset of a vDPortgroup traffic filter policy
+	Make new Traffic Rule and add it to the given Traffic Ruleset of a vDPortgroup traffic filter policy
 
 	.Example
 	Get-VDPortGroup myVDPG0 | Get-VNVDTrafficRuleSet | New-VNVDTrafficRule -Name "Allow vMotion from source network" -Action (New-VNVDTrafficRuleAction -Allow) -Qualifier (New-VNVDTrafficRuleQualifier -SystemTrafficType vMotion), (New-VNVDTrafficRuleQualifier -SourceIpAddress 10.0.0.0/8)

vNugglets.VDNetworking/NewItems.ps1

@@ -0,0 +1,55 @@
+function Remove-VNVDTrafficRule {
+<#	.Description
+	Remove a Traffic Rule from the given Traffic Ruleset of a vDPortgroup traffic filter policy
+
+	.Notes
+	Operating with the understanding/observation that there is only ever one (1) Config.DefaultPortConfig.FilterPolicy.FilterConfig per vDPortgroup (and, so, one subsequent TrafficRuleset, since a FilterConfig has one TrafficRuleset), even though the .FilterConfig property is of type VMware.Vim.DvsFilterConfig[] (an array)
+	This is based on testing to try to make a vDPortgroup with more than one FilterConfig, and only ever having a maximum of one
+
+	.Example
+	Get-VDSwitch -Name myVDSw0 | Get-VDPortGroup -Name myVDPG0 | Get-VNVDTrafficRuleSet | Get-VNVDTrafficRule -Name test* | Remove-VNVDTrafficRule
+	Get the TrafficRules named like "test*" from the TrafficRuleSet for the given vDPortGroup and delete them.
+
+	.Outputs
+	Null. Removes rule(s) as directed, returning nothing upon success.
+#>
+	[CmdletBinding(SupportsShouldProcess=$true, ConfirmImpact="High")]
+	param (
+		## The traffic ruleset rule(s) to remove from the traffic filter policy of associated virtual distributed portgroup
+		[parameter(Mandatory=$true, ValueFromPipeline=$true, ParameterSetName="ByTrafficRule")][VNVDTrafficRule[]]$TrafficRule
+	) ## end param
+
+	begin {
+		## arraylist to hold all of the TrafficRules to be removed (in one swell foop, since each upate/reconfig of the vDPortgroup results in new keys for the rule objects)
+		$arrlVNVDTrafficRulesToRemove = New-Object -TypeName System.Collections.ArrayList
+	} ## end begin
+
+	process {
+		## put each TrafficRule into the arraylist for later action (one reconfig per vDPortgroup)
+		$TrafficRule | Foreach-Object {$arrlVNVDTrafficRulesToRemove.Add($_) | Out-Null}
+	} ## end process
+
+	end {
+		## Group the TrafficRules by vDPortgroup (by grouping by MoRef per vCenter), then reconfig each vDPortgroup to remove the given Rule(s) for that vDPortgroup's sole TrafficRuleset all at once
+		$arrlVNVDTrafficRulesToRemove | Group-Object -Property @{e={$_.VDPortgroupView.MoRef}}, @{e={$_.VDPortgroupView.Client.ServiceUrl}} | Foreach-Object {
+			$oThisPSGroupInfoOfTrafficRules = $_
+			# The vDPortgroup with these TrafficRules (used in logging/reporting)
+			$oVDPG_TheseRules = $oThisPSGroupInfoOfTrafficRules.Group[0].VDPortgroupView
+			# The VNVDTrafficRuleSet for these TrafficRules, to be used to remove the given TrafficRule(s)
+			$oVNVDTrafficRuleset_TheseRules = $oThisPSGroupInfoOfTrafficRules.Group[0].VNVDTrafficRuleSet
+			## the VMware.Vim.DvsTrafficRule objects to remove from the given TrafficRuleset
+			$arrDvsTrafficRulesToRemove = $oThisPSGroupInfoOfTrafficRules.Group.TrafficRule
+
+			$strMsgForShouldProcess_Target = "Traffic ruleset '{0}' on vDPortgroup '{1}'" -f $oVNVDTrafficRuleset_TheseRules.TrafficRuleset.Key, $oVDPG_TheseRules.Name
+			$intNumDvsTrafficRulesToRemove = ($arrDvsTrafficRulesToRemove | Measure-Object).Count
+			$strMsgForShouldProcess_Action = "Remove {0} traffic rule{1} (of name{1} '{2}')" -f $intNumDvsTrafficRulesToRemove, $(if ($intNumDvsTrafficRulesToRemove -ne 1) {"s"}), ($arrDvsTrafficRulesToRemove.Description -join ", ")
+			if ($PSCmdlet.ShouldProcess($strMsgForShouldProcess_Target, $strMsgForShouldProcess_Action)) {
+				try {
+					## use the helper function to remove this TrafficRule from the TrafficRuleSet Rules array
+					$oUpdatedTrafficRuleset = _Set-VNVDTrafficRuleset_helper -TrafficRuleSet $oVNVDTrafficRuleset_TheseRules -TrafficRule $arrDvsTrafficRulesToRemove -Operation Remove
+				} ## end try
+				catch {Throw $_}
+			} ## end if
+		} ## end foreach-object
+	} ## end end
+} ## end fn

vNugglets.VDNetworking/RemoveItems.ps1

@@ -0,0 +1,25 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<Configuration>
+	<ViewDefinitions>
+		<View>
+			<Name>VNVDTrafficRule_items</Name>
+			<ViewSelectedBy><TypeName>VNVDTrafficRule</TypeName></ViewSelectedBy>
+			<TableControl>
+				<TableHeaders>
+					<TableColumnHeader></TableColumnHeader>
+					<TableColumnHeader></TableColumnHeader>
+					<TableColumnHeader></TableColumnHeader>
+				</TableHeaders>
+				<TableRowEntries>
+					<TableRowEntry>
+						<TableColumnItems>
+							<TableColumnItem><PropertyName>Name</PropertyName></TableColumnItem>
+							<TableColumnItem><PropertyName>TrafficRule</PropertyName></TableColumnItem>
+							<TableColumnItem><PropertyName>VDPortgroupView</PropertyName></TableColumnItem>
+						</TableColumnItems>
+					</TableRowEntry>
+				</TableRowEntries>
+			</TableControl>
+		</View>
+	</ViewDefinitions>
+</Configuration>

vNugglets.VDNetworking/vNugglets.VDNetworking.format.ps1xml

@@ -3,7 +3,7 @@
 #
 # Generated by: V2X5333
 #
-# Generated on: 12/22/2017
+# Generated on: 12/27/2017
 #
 
 @{
@@ -63,18 +63,19 @@ ScriptsToProcess = 'vNugglets.VDNetworking_ClassDefinition.ps1'
 # TypesToProcess = @()
 
 # Format files (.ps1xml) to be loaded when importing this module
-# FormatsToProcess = @()
+FormatsToProcess = 'vNugglets.VDNetworking.format.ps1xml'
 
 # Modules to import as nested modules of the module specified in RootModule/ModuleToProcess
-NestedModules = @('GetItems.ps1',
-               'NewItems.ps1',
+NestedModules = @('GetItems.ps1', 
+               'NewItems.ps1', 
+               'RemoveItems.ps1', 
                'vNugglets.VDNetworking_SupportingFunctions.ps1')
 
 # Functions to export from this module, for best performance, do not use wildcards and do not delete the entry, use an empty array if there are no functions to export.
-FunctionsToExport = 'Get-VNVDTrafficFilterPolicyConfig', 'Get-VNVDTrafficRuleSet',
-               'Get-VNVDTrafficRule', 'Get-VNVDTrafficRuleQualifier',
-               'New-VNVDTrafficRuleQualifier', 'New-VNVDTrafficRuleAction',
-               'New-VNVDTrafficRule'
+FunctionsToExport = 'Get-VNVDTrafficFilterPolicyConfig', 'Get-VNVDTrafficRuleSet', 
+               'Get-VNVDTrafficRule', 'Get-VNVDTrafficRuleQualifier', 
+               'New-VNVDTrafficRuleQualifier', 'New-VNVDTrafficRuleAction', 
+               'New-VNVDTrafficRule', 'Remove-VNVDTrafficRule'
 
 # Cmdlets to export from this module, for best performance, do not use wildcards and do not delete the entry, use an empty array if there are no cmdlets to export.
 CmdletsToExport = @()
@@ -92,10 +93,12 @@ AliasesToExport = @()
 # ModuleList = @()
 
 # List of all files packaged with this module
-FileList = 'vNugglets.VDNetworking.psd1',
-               'vNugglets.VDNetworking_ModRoot.psm1',
-               'en-US\about_vNugglets.VDNetworking.help.txt', 'GetItems.ps1',
-               'NewItems.ps1', 'vNugglets.VDNetworking_SupportingFunctions.ps1'
+FileList = 'vNugglets.VDNetworking.psd1', 
+               'vNugglets.VDNetworking_ModRoot.psm1', 
+               'en-US\about_vNugglets.VDNetworking.help.txt', 'GetItems.ps1', 
+               'NewItems.ps1', 'RemoveItems.ps1', 
+               'vNugglets.VDNetworking_SupportingFunctions.ps1', 
+               'vNugglets.VDNetworking.format.ps1xml'
 
 # Private data to pass to the module specified in RootModule/ModuleToProcess. This may also contain a PSData hashtable with additional module metadata used by PowerShell.
 PrivateData = @{
@@ -121,7 +124,7 @@ PrivateData = @{
         # ExternalModuleDependencies = ''
 
     } # End of PSData hashtable
-
+    
  } # End of PrivateData hashtable
 
 # HelpInfo URI of this module

vNugglets.VDNetworking/vNugglets.VDNetworking.psd1

@@ -41,4 +41,7 @@ class VNVDTrafficRule : VNVDBase {
 
 	## the full View object for the vDPG that is the "parent" of this object
 	[VMware.Vim.DistributedVirtualPortgroup]$VDPortgroupView
+
+	## the "parent" VNVDTrafficRuleSet to which this TrafficRule belongs
+	[VNVDTrafficRuleSet]$VNVDTrafficRuleSet
 } ## end class