VPC支持审计的关键操作
通过云审计,您可以记录与虚拟私有云相关的操作事件,便于日后的查询、审计和回溯。
云审计支持的虚拟私有云操作列表如表1所示。
操作名称 | 资源类型 | 事件名称 |
|---|---|---|
修改Bandwidth | bandwidth | modifyBandwidth |
创建EIP | eip | createEip |
释放EIP | eip | deleteEip |
绑定EIP | eip | bindEip |
解绑定EIP | eip | unbindEip |
释放EIP(调用弹性公网IP V3删除接口) | publicip | deleteEip |
解绑定EIP(调用弹性公网IP V3解绑接口) | publicip | disassociateInstance |
绑定EIP(调用弹性公网IP V3绑定接口) | publicip | associateInstance |
创建PrivateIp | privateIps | createPrivateIp |
删除PrivateIp | privateIps | deletePrivateIp |
创建安全组 | security_groups | createSecurity-group |
更新安全组 | security_groups | updateSecurity-group |
删除安全组 | security_groups | deleteSecurity-group |
添加安全组规则 | security-group-rules | createSecurity-group-rule |
更新安全组规则 | security-group-rules | updateSecurity-group-rule |
删除安全组规则 | security-group-rules | deleteSecurity-group-rule |
创建子网 | subnet | createSubnet |
删除子网 | subnet | deleteSubnet |
修改子网 | subnet | modifySubnet |
创建VPC | vpc | createVpc |
删除VPC | vpc | deleteVpc |
修改VPC | vpc | modifyVpc |
创建路由器 | routers | createRouter |
更新路由器 | routers | updateRouter |
路由器添加接口 | routers | addRouterInterface |
路由器删除接口 | routers | removeRouterInterface |
创建端口 | ports | createPort |
更新端口 | ports | updatePort |
删除端口 | ports | deletePort |
创建Network | networks | createNetwork |
更新Network | networks | updateNetwork |
删除Network | networks | deleteNetwork |
批量创建和删除子网资源标签 | tag | batchUpdateTags |
批量创建和删除VPC资源标签 | tag | batchUpdateVpcTags |
创建路由表 | routetables | createRouteTable |
更新路由表 | routetables | updateRouteTable |
删除路由表 | routetables | deleteRouteTable |
创建VPC对等连接 | vpc-peerings | createVpcPeerings |
更新VPC对等连接 | vpc-peerings | updateVpcPeerings |
删除VPC对等连接 | vpc-peerings | deleteVpcPeerings |
创建网络ACL | firewall-groups | createFirewallGroup |
更新网络ACL | firewall-groups | updateFirewallGroup |
删除网络ACL | firewall-groups | deleteFirewallGroup |
创建网络ACL策略 | firewall-policies | createFirewallPolicy |
更新网络ACL策略 | firewall-policies | updateFirewallPolicy |
删除网络ACL策略 | firewall-policies | deleteFirewallPolicy |
插入网络ACL规则 | firewall-policies | insertFirewallPolicyRule |
移除网络ACL规则 | firewall-policies | removeFirewallPolicyRule |
创建网络ACL规则 | firewall-rules | createFirewallRule |
更新网络ACL规则 | firewall-rules | updateFirewallRule |
删除网络ACL规则 | firewall-rules | deleteFirewallRule |
创建IP地址组 | address_group | createAddress_group |
更新IP地址组 | address_group | updateAddress_group |
强制删除IP地址组 | address_group | force_deleteAddress_group |
删除IP地址组 | address_group | deleteAddress_group |
创建VPC流日志 | flowlogs | createFlowLog |
更新VPC流日志 | flowlogs | updateFlowLog |
删除VPC流日志 | flowlogs | deleteFlowLog |
创建公网NAT网关 | natgateways | createNatGateway |
修改公网NAT网关 | natgateways | updateNatGateway |
删除公网NAT网关 | natgateways | deleteNatGateway |
创建公网NAT网关DNAT规则 | dnatrules | createDnatRule |
修改公网NAT网关DNAT规则 | dnatrules | updateDnatRule |
删除公网NAT网关DNAT规则 | dnatrules | deleteDnatRule |
创建公网NAT网关SNAT规则 | snatrules | createSnatRule |
修改公网NAT网关SNAT规则 | snatrules | updateSnatRule |
删除公网NAT网关SNAT规则 | snatrules | deleteSnatRule |
