Adding a Network ACL Rule (Default Priorities)
Scenarios
You can add inbound and outbound rules to a network ACL to control the traffic in and out of a subnet.
When you perform the following operations to add a rule, the system generates a priority based on the sequence when the rule is added. You cannot specify a priority.
As shown in Table 1, there are two custom inbound rules (rule A and rule B) and one default rule. The priority of rule A is 1 and that of rule B is 2. The default rule has the lowest priority. If rule C is added, the system sets its priority to 3, which has lower priority than rules A and B and higher priority than the default rule.
Priorities (Rules A and B) |
Priorities (Rules A, B, and C) |
||
---|---|---|---|
Custom rule A |
1 |
Custom rule A |
1 |
-- |
-- |
Custom rule B |
2 |
Custom rule B |
2 |
Custom rule C |
3 |
Default rule |
* |
Default rule |
* |
If the default priorities do not meet your requirements, you can customize the priorities by referring to Adding a Network ACL Rule (Custom Priorities).
Notes and Constraints
A network ACL can contain up to 100 rules in one direction, or performance will deteriorate.
Procedure
- Log in to the management console.
- Click in the upper left corner and select the desired region and project.
- Click in the upper left corner and choose Networking > Virtual Private Cloud.
The Virtual Private Cloud page is displayed.
- In the navigation pane on the left, choose Access Control > Network ACLs.
The network ACL list is displayed.
- In the network ACL list, locate the target network ACL and click its name.
The network ACL summary page is displayed.
- On the Inbound Rules or Outbound Rules tab, click Add Rule.
The Add Inbound Rule or Add Outbound Rule dialog box is displayed.
- Configure required parameters.
- Click to add more rules.
- Locate the row that contains the network ACL rule and click Replicate in the Operation column to replicate an existing rule.
- Click OK.
Return to the rule list to check the new rule.
- The system generates priorities based on the sequence when rules are added. The rule that is added earlier is preferentially matched.
- If the status of the new rule is Enabled, the rule is applied.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot