查询ACL详情
更新时间:2021-12-22
接口描述
本接口用来查询ACL详情。
请求结构
GET /v1/vpc/acl/detail?vpcId={vpcId} HTTP/1.1
Host: bec.baidubce.com
Authorization: authorization string请求头域
除公共头域外,无其它特殊头域。
请求参数
| 参数名称 | 类型 | 是否必需 | 参数位置 | 描述 |
|---|---|---|---|---|
| vpcId | String | 否 | Query参数 | VPC ID |
返回头域
除公共头域,无其它特殊头域。
返回参数
| 参数名称 | 类型 | 描述 |
|---|---|---|
| acl | AclVo | ACL详情 |
请求示例
GET /v1/vpc/acl/detail?vpcId=vpc-djn3wxpu HTTP/1.1
Host: bec.baidubce.com
Authorization: bce-auth-v1/f81d3b34e48048fbb2634dc7882d7e21/2021-08-11T04:17:29Z/3600/host/74c506f68c65e26c633bfa104c863fffac5190fdec1ec24b7c03eb5d67d2e1de
返回示例
HTTP/1.1 200 OK
x-bce-request-id: 7e789a40-adac-414a-8bd4-916d6be61112
Date: Mon, 02 Apr 2018 08:14:25 GMT
Content-Type: application/json;charset=UTF-8
Server: BWS
{
"result":{
"acl":{
"aclEntrys":[
{
"aclRules":[
{
"aclId":"acl-vc07ez6b",
"aclRuleId":"ar-5tvhbeb5",
"action":"allow",
"description":"",
"destinationIpAddress":"192.168.0.0/16",
"destinationPort":"0-65535",
"direction":"ingress",
"etherType":"IPv4",
"isDefault":false,
"position":1,
"protocol":"all",
"sourceIpAddress":"0.0.0.0/0",
"sourcePort":"0-65535",
"subnetId":"sbn-lv6crppu",
"vpcId":"vpc-djn3wxpu"
},
{
"action":"allow",
"description":"默认",
"destinationIpAddress":"0.0.0.0/0",
"destinationPort":"0-65535",
"direction":"ingress",
"etherType":"IPv4",
"isDefault":true,
"position":32769,
"protocol":"all",
"sourceIpAddress":"0.0.0.0/0",
"sourcePort":"0-65535",
"subnetId":"sbn-lv6crppu"
},
{
"action":"allow",
"description":"默认",
"destinationIpAddress":"0.0.0.0/0",
"destinationPort":"0-65535",
"direction":"egress",
"etherType":"IPv4",
"isDefault":true,
"position":32769,
"protocol":"all",
"sourceIpAddress":"0.0.0.0/0",
"sourcePort":"0-65535",
"subnetId":"sbn-lv6crppu"
}
],
"subnetCidr":"192.168.0.0/16",
"subnetDescription":"",
"subnetId":"sbn-lv6crppu",
"subnetName":"subnet-test-hangzhou-m-230"
}
],
"aclId":"acl-vc07ez6b",
"aclName":"默认ACL",
"city":"HANGZHOU",
"region":"EAST_CHINA",
"regionId":"cn-hangzhou-cm",
"serviceProvider":"CHINA_MOBILE",
"vpcCidr":"192.168.0.0/16",
"vpcId":"vpc-djn3wxpu",
"vpcName":"vpc-test-hangzhou-m-156"
}
},
"success":true
}错误码
请参照错误返回章节的内容。
Model对象定义
AclVo
| 参数名称 | 类型 | 描述 |
|---|---|---|
| aclId | String | ACL ID |
| aclName | String | ACL名称 |
| vpcId | String | VPC ID |
| vpcName | String | VPC名称 |
| vpcCidr | String | VPC 网段及子网掩码CIDR |
| subnetCount | Integer | 子网数量 |
| region | String | 地域 |
| serviceProvider | String | 运营商 |
| city | String | 城市 |
| regionId | String | 节点ID |
| aclEntrys | List<AclEntryVo> | ACL的Entry列表 |
AclEntryVo
| 参数名称 | 类型 | 描述 |
|---|---|---|
| subnetId | String | 子网ID |
| subnetName | String | 子网名称 |
| subnetCidr | String | 子网CIDR |
| subnetDescription | String | 子网描述 |
| aclEntrys | List<AclRuleVo> | ACL规则集合 |
AclRuleVo
| 参数名称 | 类型 | 描述 |
|---|---|---|
| aclRuleId | String | ACL规则ID |
| aclId | String | ACL ID |
| vpcId | String | VPC ID |
| subnetId | String | 子网ID |
| description | String | ACL规则描述 |
| protocol | String | 协议,包括all、tcp、udp、icmp。all表示tcp、udp、icmp |
| sourceIpAddress | String | 源IP |
| destinationIpAddress | String | 目的IP |
| sourcePort | String | 源端口,取值范围0-65535。 可以是端口范围,例如1-65535,或单个端口,例如8080 |
| destinationPort | String | 目的端口,取值范围0-65535。 可以是端口范围,例如1-65535,或单个端口,例如8080 |
| position | Integer | 优先级,取值1-32768,且不能与已有条目重复。数值越小,优先级越高,规则匹配顺序为按优先级由高到低匹配 |
| direction | String | 方向。入站ingress,出站egress |
| etherType | String | IP类型,取值IPv4、IPv6 |
| action | String | 策略。允许allow,拒绝deny |
| isDefault | Boolean | 是否默认规则。是:true,否:false |