VPC支持审计的关键操作
通过云审计,您可以记录与虚拟私有云相关的操作事件,便于日后的查询、审计和回溯。
云审计支持的虚拟私有云操作列表如表1所示。
操作名称 |
资源类型 |
事件名称 |
---|---|---|
修改Bandwidth |
bandwidth |
modifyBandwidth |
创建EIP |
eip |
createEip |
释放EIP |
eip |
deleteEip |
绑定EIP |
eip |
bindEip |
解绑定EIP |
eip |
unbindEip |
释放EIP(调用弹性公网IP V3删除接口) |
publicip |
deleteEip |
解绑定EIP(调用弹性公网IP V3解绑接口) |
publicip |
disassociateInstance |
绑定EIP(调用弹性公网IP V3绑定接口) |
publicip |
associateInstance |
创建PrivateIp |
privateIps |
createPrivateIp |
删除PrivateIp |
privateIps |
deletePrivateIp |
创建安全组 |
security_groups |
createSecurity-group |
更新安全组 |
security_groups |
updateSecurity-group |
删除安全组 |
security_groups |
deleteSecurity-group |
添加安全组规则 |
security-group-rules |
createSecurity-group-rule |
更新安全组规则 |
security-group-rules |
updateSecurity-group-rule |
删除安全组规则 |
security-group-rules |
deleteSecurity-group-rule |
创建子网 |
subnet |
createSubnet |
删除子网 |
subnet |
deleteSubnet |
修改子网 |
subnet |
modifySubnet |
创建VPC |
vpc |
createVpc |
删除VPC |
vpc |
deleteVpc |
修改VPC |
vpc |
modifyVpc |
创建路由器 |
routers |
createRouter |
更新路由器 |
routers |
updateRouter |
路由器添加接口 |
routers |
addRouterInterface |
路由器删除接口 |
routers |
removeRouterInterface |
创建端口 |
ports |
createPort |
更新端口 |
ports |
updatePort |
删除端口 |
ports |
deletePort |
创建Network |
networks |
createNetwork |
更新Network |
networks |
updateNetwork |
删除Network |
networks |
deleteNetwork |
批量创建和删除子网资源标签 |
tag |
batchUpdateTags |
批量创建和删除VPC资源标签 |
tag |
batchUpdateVpcTags |
创建路由表 |
routetables |
createRouteTable |
更新路由表 |
routetables |
updateRouteTable |
删除路由表 |
routetables |
deleteRouteTable |
创建VPC对等连接 |
vpc-peerings |
createVpcPeerings |
更新VPC对等连接 |
vpc-peerings |
updateVpcPeerings |
删除VPC对等连接 |
vpc-peerings |
deleteVpcPeerings |
创建网络ACL |
firewall-groups |
createFirewallGroup |
更新网络ACL |
firewall-groups |
updateFirewallGroup |
删除网络ACL |
firewall-groups |
deleteFirewallGroup |
创建网络ACL策略 |
firewall-policies |
createFirewallPolicy |
更新网络ACL策略 |
firewall-policies |
updateFirewallPolicy |
删除网络ACL策略 |
firewall-policies |
deleteFirewallPolicy |
插入网络ACL规则 |
firewall-policies |
insertFirewallPolicyRule |
移除网络ACL规则 |
firewall-policies |
removeFirewallPolicyRule |
创建网络ACL规则 |
firewall-rules |
createFirewallRule |
更新网络ACL规则 |
firewall-rules |
updateFirewallRule |
删除网络ACL规则 |
firewall-rules |
deleteFirewallRule |
创建IP地址组 |
address_group |
createAddress_group |
更新IP地址组 |
address_group |
updateAddress_group |
强制删除IP地址组 |
address_group |
force_deleteAddress_group |
删除IP地址组 |
address_group |
deleteAddress_group |
创建VPC流日志 |
flowlogs |
createFlowLog |
更新VPC流日志 |
flowlogs |
updateFlowLog |
删除VPC流日志 |
flowlogs |
deleteFlowLog |
创建公网NAT网关 |
natgateways |
createNatGateway |
修改公网NAT网关 |
natgateways |
updateNatGateway |
删除公网NAT网关 |
natgateways |
deleteNatGateway |
创建公网NAT网关DNAT规则 |
dnatrules |
createDnatRule |
修改公网NAT网关DNAT规则 |
dnatrules |
updateDnatRule |
删除公网NAT网关DNAT规则 |
dnatrules |
deleteDnatRule |
创建公网NAT网关SNAT规则 |
snatrules |
createSnatRule |
修改公网NAT网关SNAT规则 |
snatrules |
updateSnatRule |
删除公网NAT网关SNAT规则 |
snatrules |
deleteSnatRule |