网络ACL插入规则
功能介绍
网络ACL插入规则。
调试
您可以在API Explorer中调试该接口,支持自动认证鉴权。
URI
PUT /v3/{project_id}/vpc/firewalls/{firewall_id}/insert-rules
参数 |
是否必选 |
参数类型 |
描述 |
---|---|---|---|
firewall_id |
是 |
String |
网络ACL的唯一标识。 |
project_id |
是 |
String |
项目ID。 获取方式请参见获取项目ID。 |
请求参数
参数 |
是否必选 |
参数类型 |
描述 |
---|---|---|---|
firewall |
是 |
FirewallInsertRuleOption object |
插入ACL的入方向、出方向规则。 |
参数 |
是否必选 |
参数类型 |
描述 |
---|---|---|---|
ingress_rules |
否 |
Array of FirewallInsertRuleItemOption objects |
|
egress_rules |
否 |
Array of FirewallInsertRuleItemOption objects |
|
insert_after_rule |
否 |
String |
|
参数 |
是否必选 |
参数类型 |
描述 |
---|---|---|---|
name |
否 |
String |
|
description |
否 |
String |
|
action |
是 |
String |
|
protocol |
是 |
String |
|
ip_version |
是 |
Integer |
|
source_ip_address |
否 |
String |
|
destination_ip_address |
否 |
String |
|
source_port |
否 |
String |
|
destination_port |
否 |
String |
|
source_address_group_id |
否 |
String |
|
destination_address_group_id |
否 |
String |
|
enabled |
否 |
Boolean |
|
响应参数
状态码: 200
参数 |
参数类型 |
描述 |
---|---|---|
firewall |
FirewallDetail object |
ACL插入规则后的详情。 |
request_id |
String |
请求ID。 |
参数 |
参数类型 |
描述 |
---|---|---|
id |
String |
|
name |
String |
|
description |
String |
|
project_id |
String |
|
created_at |
String |
|
updated_at |
String |
|
admin_state_up |
Boolean |
|
status |
String |
|
enterprise_project_id |
String |
|
tags |
Array of ResourceTag objects |
|
associations |
Array of FirewallAssociation objects |
|
ingress_rules |
Array of FirewallRuleDetail objects |
|
egress_rules |
Array of FirewallRuleDetail objects |
|
参数 |
参数类型 |
描述 |
---|---|---|
key |
String |
最小长度:1 最大长度:128 |
value |
String |
最大长度:255 |
参数 |
参数类型 |
描述 |
---|---|---|
virsubnet_id |
String |
|
参数 |
参数类型 |
描述 |
---|---|---|
id |
String |
|
name |
String |
|
description |
String |
|
action |
String |
|
project_id |
String |
|
protocol |
String |
|
ip_version |
Integer |
|
source_ip_address |
String |
|
destination_ip_address |
String |
|
source_port |
String |
|
destination_port |
String |
|
source_address_group_id |
String |
|
destination_address_group_id |
String |
|
enabled |
Boolean |
|
请求示例
-
插入一条入方向规则到id为e9a7731d-5bd9-4250-a524-b9a076fd5629的网络ACL中,插入到规则e9a7731d-5bd9-4250-a524-b9a076fd5630后面。
PUT https://{Endpoint}/v3/{project_id}/vpc/firewalls/e9a7731d-5bd9-4250-a524-b9a076fd5629/insert-rules { "firewall" : { "ingress_rules" : [ { "name" : "network_acl_rule test", "description" : "network_acl_rule test", "action" : "allow", "protocol" : "tcp", "ip_version" : "4", "source_ip_address" : "192.168.3.0/24", "destination_ip_address" : "192.168.6.0/24", "source_port" : "30-40,60-90", "destination_port" : "40-60,70-90", "source_address_group_id" : null, "destination_address_group_id" : null } ], "insert_after_rule" : "e9a7731d-5bd9-4250-a524-b9a076fd5630" } }
-
插入一条出方向规则到id为e9a7731d-5bd9-4250-a524-b9a076fd5629的网络ACL中,插入到规则e9a7731d-5bd9-4250-a524-b9a076fd5630之后。
PUT https://{Endpoint}/v3/{project_id}/vpc/firewalls/e9a7731d-5bd9-4250-a524-b9a076fd5629/insert-rules { "firewall" : { "egress_rules" : [ { "name" : "network_acl_rule test", "description" : "network_acl_rule test", "action" : "allow", "protocol" : "tcp", "ip_version" : "4", "source_ip_address" : "192.168.3.0/24", "destination_ip_address" : "192.168.6.0/24", "source_port" : "30-40,60-90", "destination_port" : "40-60,70-90", "source_address_group_id" : null, "destination_address_group_id" : null } ], "insert_after_rule" : "e9a7731d-5bd9-4250-a524-b9a076fd5630" } }
响应示例
状态码: 200
PUT操作正常返回,更多状态码请参见状态码。
-
{ "firewall" : { "id" : "e9a7731d-5bd9-4250-a524-b9a076fd5629", "name" : "network_acl_test1", "description" : "network_acl_test1", "project_id" : "9476ea5a8a9849c38358e43c0c3a9e12", "created_at" : "2022-04-07T07:30:46.000+00:00", "updated_at" : "2022-04-07T07:30:46.000+00:00", "admin_state_up" : true, "enterprise_project_id" : "158ad39a-dab7-45a3-9b5a-2836b3cf93f9", "status" : "ACTIVE", "tags" : [ ], "ingress_rules" : [ { "id" : "e9a7731d-5bd9-4250-a524-b9a076fd5629", "name" : "network_acl_rule test", "description" : "network_acl_rule test", "action" : "allow", "project_id" : "9476ea5a8a9849c38358e43c0c3a9e12", "protocol" : "tcp", "ip_version" : 4, "source_ip_address" : "192.168.3.0/24", "destination_ip_address" : "192.168.6.0/24", "source_port" : "30-40,60-90", "destination_port" : "40-60,70-90" } ], "egress_rules" : [ { "id" : "f9a7731d-5bd9-4250-a524-b9a076fd5629", "name" : "network_acl_rule test", "description" : "network_acl_rule test", "action" : "allow", "project_id" : "9476ea5a8a9849c38358e43c0c3a9e12", "protocol" : "tcp", "ip_version" : 4, "source_ip_address" : "192.168.3.0/24", "destination_ip_address" : "192.168.6.0/24", "source_port" : "30-40,60-90", "destination_port" : "40-60,70-90" } ], "associations" : [ { "virsubnet_id" : "8359e5b0-353f-4ef3-a071-98e67a34a143" } ] } }
状态码
状态码 |
描述 |
---|---|
200 |
PUT操作正常返回,更多状态码请参见状态码。 |
错误码
请参见错误码。