Updated on 2024-04-09 GMT+08:00

Checking the ACL Rule List

You can view the current access control information in the list, including the action, direction, and priority of the source and destination IP addresses.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. In the navigation pane on the left, click and choose Security & Compliance > Cloud Firewall. The Dashboard page will be displayed.
  4. (Optional) If the current account has only one firewall instance, the firewall details page is displayed. If there are multiple firewall instances, click View in the Operation column to go to the details page.
  5. In the navigation pane, choose Access Control > Access Policies. The Access Policies page is displayed. Click the Internet Boundaries or Inter-VPC Borders tab.

    Table 1 Protection rule parameters

    Parameter

    Description

    Priority

    Priority of the rule.

    NOTE:

    A smaller value indicates a higher priority.

    Name/Rule ID

    Custom rule name and ID

    Direction

    Traffic direction of the protection rule.

    Source

    Source of data packets in the access traffic.

    Destination

    Destination of data packets in the access traffic.

    Service

    • Its value can be TCP, UDP, ICMP, or Any.
    • Source Port: Source ports to be allowed or blocked. You can configure a single port or consecutive port groups (example: 80-443).
    • Destination Port: Destination ports to be allowed or blocked.

      You can configure a single port or consecutive port groups (example: 80-443).

    Action

    • Allow: Allow the traffic to pass through the firewall.
    • Block: Block the traffic from passing through the firewall.

    Hits

    Total number of actions that have been triggered by the rule (since the last reset). For details, see Access Control Logs.

    Status

    Status of the rule. It can be enabled or disabled.

    Tag

    Tag of a rule.

  6. (Optional) Select a direction and a protocol type from the drop-down list boxes.