VPC支持审计的关键操作
通过云审计,您可以记录与虚拟私有云相关的操作事件,便于日后的查询、审计和回溯。
云审计支持的虚拟私有云操作列表如表1所示。
| 操作名称 | 资源类型 | 事件名称 |
|---|---|---|
| 修改Bandwidth | bandwidth | modifyBandwidth |
| 创建EIP | eip | createEip |
| 释放EIP | eip | deleteEip |
| 绑定EIP | eip | bindEip |
| 解绑定EIP | eip | unbindEip |
| 释放EIP(调用弹性公网IP V3删除接口) | publicip | deleteEip |
| 解绑定EIP(调用弹性公网IP V3解绑接口) | publicip | disassociateInstance |
| 绑定EIP(调用弹性公网IP V3绑定接口) | publicip | associateInstance |
| 创建PrivateIp | privateIps | createPrivateIp |
| 删除PrivateIp | privateIps | deletePrivateIp |
| 创建安全组 | security_groups | createSecurity-group |
| 更新安全组 | security_groups | updateSecurity-group |
| 删除安全组 | security_groups | deleteSecurity-group |
| 添加安全组规则 | security-group-rules | createSecurity-group-rule |
| 更新安全组规则 | security-group-rules | updateSecurity-group-rule |
| 删除安全组规则 | security-group-rules | deleteSecurity-group-rule |
| 创建子网 | subnet | createSubnet |
| 删除子网 | subnet | deleteSubnet |
| 修改子网 | subnet | modifySubnet |
| 创建VPC | vpc | createVpc |
| 删除VPC | vpc | deleteVpc |
| 修改VPC | vpc | modifyVpc |
| 创建路由器 | routers | createRouter |
| 更新路由器 | routers | updateRouter |
| 路由器添加接口 | routers | addRouterInterface |
| 路由器删除接口 | routers | removeRouterInterface |
| 创建端口 | ports | createPort |
| 更新端口 | ports | updatePort |
| 删除端口 | ports | deletePort |
| 创建Network | networks | createNetwork |
| 更新Network | networks | updateNetwork |
| 删除Network | networks | deleteNetwork |
| 批量创建和删除子网资源标签 | tag | batchUpdateTags |
| 批量创建和删除VPC资源标签 | tag | batchUpdateVpcTags |
| 创建路由表 | routetables | createRouteTable |
| 更新路由表 | routetables | updateRouteTable |
| 删除路由表 | routetables | deleteRouteTable |
| 创建VPC对等连接 | vpc-peerings | createVpcPeerings |
| 更新VPC对等连接 | vpc-peerings | updateVpcPeerings |
| 删除VPC对等连接 | vpc-peerings | deleteVpcPeerings |
| 创建网络ACL | firewall-groups | createFirewallGroup |
| 更新网络ACL | firewall-groups | updateFirewallGroup |
| 删除网络ACL | firewall-groups | deleteFirewallGroup |
| 创建网络ACL策略 | firewall-policies | createFirewallPolicy |
| 更新网络ACL策略 | firewall-policies | updateFirewallPolicy |
| 删除网络ACL策略 | firewall-policies | deleteFirewallPolicy |
| 插入网络ACL规则 | firewall-policies | insertFirewallPolicyRule |
| 移除网络ACL规则 | firewall-policies | removeFirewallPolicyRule |
| 创建网络ACL规则 | firewall-rules | createFirewallRule |
| 更新网络ACL规则 | firewall-rules | updateFirewallRule |
| 删除网络ACL规则 | firewall-rules | deleteFirewallRule |
| 创建IP地址组 | address_group | createAddress_group |
| 更新IP地址组 | address_group | updateAddress_group |
| 强制删除IP地址组 | address_group | force_deleteAddress_group |
| 删除IP地址组 | address_group | deleteAddress_group |
| 创建VPC流日志 | flowlogs | createFlowLog |
| 更新VPC流日志 | flowlogs | updateFlowLog |
| 删除VPC流日志 | flowlogs | deleteFlowLog |
| 创建公网NAT网关 | natgateways | createNatGateway |
| 修改公网NAT网关 | natgateways | updateNatGateway |
| 删除公网NAT网关 | natgateways | deleteNatGateway |
| 创建公网NAT网关DNAT规则 | dnatrules | createDnatRule |
| 修改公网NAT网关DNAT规则 | dnatrules | updateDnatRule |
| 删除公网NAT网关DNAT规则 | dnatrules | deleteDnatRule |
| 创建公网NAT网关SNAT规则 | snatrules | createSnatRule |
| 修改公网NAT网关SNAT规则 | snatrules | updateSnatRule |
| 删除公网NAT网关SNAT规则 | snatrules | deleteSnatRule |
