Enabling or Disabling a Network ACL Rule

Scenarios

After a rule is added, it is in the Enabled status. You can disable it if you need.

If all custom rules are disabled, they will become invalid but default rules are still applied. As a result, all traffic to and from the associated subnets is denied. Disabling all custom rules may interrupt network traffic. Be careful with this operation as it may interrupt services.
If a custom rule is enabled, it is applied. Enabling custom rules may affect how and where traffic is directed. Be careful with this operation as it may interrupt services.

To enable or disable a network ACL rule, see Enabling or Disabling a Network ACL Rule.

To enable or disable multiple network ACL rules at a time:

If there is small number of rules to be enabled or disabled, you can select these rules in the network ACL rule list on the console by referring to Enabling or Disabling Multiple Network ACL Rules Directly on the Console.
If there is a large number of rules to be enabled or disabled, you can export the rule list to a local Excel file, only keep the rules you want to enable or disable, and import the file to the console. The system then selects the rules to be processed based on the imported file. For details, see Enabling or Disabling Multiple Network ACL Rules Using an Excel File.

Notes and Constraints

Default network ACL rules cannot be modified or deleted.

Enabling or Disabling a Network ACL Rule

Click in the upper left corner and select the desired region and project.
Click in the upper left corner and choose Networking > Virtual Private Cloud.
The Virtual Private Cloud page is displayed.
In the navigation pane on the left, choose Access Control > Network ACLs.
The network ACL list is displayed.
In the network ACL list, locate the target network ACL and click its name.
The network ACL summary page is displayed.
Click the Inbound Rules or Outbound Rules tab as required.
The network ACL rule list is displayed.
In the rule list, perform the following operations to enable or disable a rule:
- Enabling a network ACL rule
  1. Locate the target network ACL rule and choose More > Enable in the Operation column.
    A confirmation dialog box is displayed.
  2. Confirm the information and click OK.
- Disabling a network ACL rule
  1. Locate the target network ACL rule and choose More > Disable in the Operation column.
    A confirmation dialog box is displayed.
  2. Confirm the information and click OK.

Enabling or Disabling Multiple Network ACL Rules Directly on the Console

Click in the upper left corner and select the desired region and project.
Click in the upper left corner and choose Networking > Virtual Private Cloud.
The Virtual Private Cloud page is displayed.
In the navigation pane on the left, choose Access Control > Network ACLs.
The network ACL list is displayed.
In the network ACL list, locate the target network ACL and click its name.
The network ACL summary page is displayed.
Click the Inbound Rules or Outbound Rules tab as required.
The network ACL rule list is displayed.
In the network ACL rule list, select multiple rules.
In the rule list, perform the following operations:
- Enabling multiple network ACL rules at a time
  1. In the upper part corner above the network ACL rule list, choose More > Enable.
    A confirmation dialog box is displayed.
  2. Confirm the information and click OK.
- Disabling multiple network ACL rules at a time
  1. In the upper part corner above the network ACL rule list, choose More > Disable.
    A confirmation dialog box is displayed.
  2. Confirm the information and click OK.

Enabling or Disabling Multiple Network ACL Rules Using an Excel File

Click in the upper left corner and select the desired region and project.
Click in the upper left corner and choose Networking > Virtual Private Cloud.
The Virtual Private Cloud page is displayed.
In the navigation pane on the left, choose Access Control > Network ACLs.
The network ACL list is displayed.
In the network ACL list, locate the target network ACL and click its name.
The network ACL summary page is displayed.
Click the Inbound Rules or Outbound Rules tab as required.
The network ACL rule list is displayed.
In the upper left corner above the network ACL rule list, click Batch Operations.
The Batch Operations dialog box is displayed.
Select either of the following methods:
- Method 1: Click Download Template to download the Excel file to your local PC and fill in the network ACL rules to be enabled or disabled in the file.
- Method 2: Export the existing rules to a local Excel file, filter the target rules and keep them as they are, and save the file.
After the Excel file is ready, take step 9. The system then automatically selects the target rules based on the imported file.
In the Batch Operations dialog box, click Select File.
The system starts to process and match the rules in the Excel file with the existing rule.
- If a rule in the Excel file matches an existing network ACL rule, Verified is displayed in the Result column. Only the matched rules can be enabled or disabled.
- If a rule fails to be matched, the causes will be displayed in the Result column. The possible causes are as follows:
  - There is no such rule in this network ACL.
  - Inconsistent rule direction. For example, you perform the operation on outbound rules on the Inbound tab, or the other way around.
  - Duplicate rules in the Excel file. The system automatically filters out the duplicate rules.
Confirm the rules and click OK.
The network ACL rule list page is displayed and the target rules are selected automatically.
In the rule list, perform the following operations:
- Enabling multiple network ACL rules at a time
  1. In the upper part corner above the network ACL rule list, choose More > Enable.
    A confirmation dialog box is displayed.
  2. Confirm the information and click OK.
- Disabling multiple network ACL rules at a time
  1. In the upper part corner above the network ACL rule list, choose More > Disable.
    A confirmation dialog box is displayed.
  2. Confirm the information and click OK.