Adding a Network ACL Rule
Scenarios
Add an inbound or outbound rule based on your network security requirements.
Notes and Constraints
A network ACL can contain no more than 20 rules in one direction, or performance will deteriorate.
Procedure
- Log in to the management console.
- Click in the upper left corner and choose Network > Virtual Private Cloud.
The Virtual Private Cloud page is displayed.
- In the navigation pane on the left, choose Access Control > Network ACLs.
- Locate the target network ACL and click its name to switch to the page showing details of that particular network ACL.
- On the Inbound Rules or Outbound Rules tab, click Add Rule to add an inbound or outbound rule.
- Click + to add more rules.
- Locate the row that contains the network ACL rule and click Replicate in the Operation column to replicate an existing rule.
Table 1 Parameter descriptions Parameter
Description
Example Value
Type
The network ACL type. This parameter is mandatory. You can select a value from the drop-down list. Currently, only IPv4 and IPv6 are supported.
IPv4
Action
The action in the network ACL. This parameter is mandatory. You can select a value from the drop-down list. Currently, the value can be Allow or Deny.
Allow
Protocol
The protocol supported by the network ACL. This parameter is mandatory. You can select a protocol from the drop-down list.
You can select TCP, UDP, ICMP, or All.
TCP
Source
The source from which the traffic is allowed. The source can be an IP address or IP address range.
- IP address:
- Single IP address: 192.168.10.10/32
- All IP addresses: 0.0.0.0/0
- IP address range: 192.168.1.0/24
0.0.0.0/0
Source Port Range
The source port number or port number range. The value ranges from 1 to 65535. For a port number range, enter two port numbers connected by a hyphen (-). For example, 1-100.
You must specify this parameter if TCP or UDP is selected for Protocol.
22, or 22-30
Destination
The destination to which the traffic is allowed. The destination can be an IP address or IP address range.
- IP address:
- Single IP address: 192.168.10.10/32
- All IP addresses: 0.0.0.0/0
- IP address range: 192.168.1.0/24
0.0.0.0/0
Destination Port Range
The destination port number or port number range. The value ranges from 1 to 65535. For a port number range, enter two port numbers connected by a hyphen (-). For example, 1-100.
You must specify this parameter if TCP or UDP is selected for Protocol.
22, or 22-30
Description
Supplementary information about the network ACL rule. This parameter is optional.
The description can contain a maximum of 255 characters and cannot contain angle brackets (< or >).
N/A
- Click OK.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot