public static final class AuthorizeSecurityGroupEgressRequest.Permissions.Builder extends Object
| 构造器和说明 |
|---|
Builder() |
| 限定符和类型 | 方法和说明 |
|---|---|
AuthorizeSecurityGroupEgressRequest.Permissions |
build() |
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
description(String description)
The description of the security group rule.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
destCidrIp(String destCidrIp)
The destination IPv4 CIDR block for the security group rule.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
destGroupId(String destGroupId)
The ID of the destination security group.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
destGroupOwnerAccount(String destGroupOwnerAccount)
The Alibaba Cloud account that manages the destination security group when you set a security group rule across accounts.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
destGroupOwnerId(Long destGroupOwnerId)
The ID of the Alibaba Cloud account that manages the destination security group when you set a security group rule across accounts.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
destPrefixListId(String destPrefixListId)
The ID of the destination prefix list.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
ipProtocol(String ipProtocol)
The transport layer protocol.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
ipv6DestCidrIp(String ipv6DestCidrIp)
The destination IPv6 CIDR block for the security group rule.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
ipv6SourceCidrIp(String ipv6SourceCidrIp)
The source IPv6 CIDR block.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
nicType(String nicType)
The network interface controller (NIC) type of the security group rule when the security group is in the classic network.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
policy(String policy)
The authorization policy.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
portRange(String portRange)
The range of destination ports that correspond to the transport layer protocol for the security group rule.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
priority(String priority)
The priority of the security group rule.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
sourceCidrIp(String sourceCidrIp)
The source IPv4 CIDR block.
|
AuthorizeSecurityGroupEgressRequest.Permissions.Builder |
sourcePortRange(String sourcePortRange)
The range of source ports that correspond to the transport layer protocol for the security group rule.
|
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder description(String description)
Valid values of N: 1 to 100.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder destCidrIp(String destCidrIp)
Valid values of N: 1 to 100.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder destGroupId(String destGroupId)
* At least one of `DestGroupId`, `DestCidrIp`, `Ipv6DestCidrIp`, and `DestPrefixListId` must be specified. * If `DestGroupId` is specified but `DestCidrIp` is not specified, the `NicType` parameter must be set to intranet. * If both `DestGroupId` and `DestCidrIp` are specified, `DestCidrIp` takes precedence. Valid values of N: 1 to 100. When you call this operation, take note of the following items: * For advanced security groups, security groups cannot be used as authorization objects. * For each basic security group, a maximum of 20 security groups can be used as authorization objects.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder destGroupOwnerAccount(String destGroupOwnerAccount)
* If both `DestGroupOwnerAccount` and `DestGroupOwnerId` are not specified, the rule is created to control access to another security group within your Alibaba Cloud account. * If `DestCidrIp` is specified, `DestGroupOwnerAccount` is ignored. Valid values of N: 1 to 100.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder destGroupOwnerId(Long destGroupOwnerId)
* If both `DestGroupOwnerId` and `DestGroupOwnerAccount` are not specified, the rule is created to control access to another security group within your Alibaba Cloud account. * If you specify the `DestCidrIp` parameter, the `DestGroupOwnerId` parameter is ignored. Valid values of N: 1 to 100.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder destPrefixListId(String destPrefixListId)
Note: * If a security group is in the classic network, you cannot configure prefix lists in the security group rules. For information about the limits on security groups and prefix lists, see the "Security group limits" section in [Limits](~~25412#SecurityGroupQuota1~~). * If you specify `DestCidrIp`, `Ipv6DestCidrIp`, or `DestGroupId`, Permissions.N.DestPrefixListId is ignored. Valid values of N: 1 to 100.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder ipProtocol(String ipProtocol)
* TCP * UDP * ICMP * ICMPv6 * GRE * ALL: All protocols are supported. Valid values of N: 1 to 100.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder ipv6DestCidrIp(String ipv6DestCidrIp)
Valid values of N: 1 to 100. > The Permissions.N.Ipv6DestCidrIp parameter is valid only when the destination is ECS instances that reside in virtual private clouds (VPCs) and support IPv6 CIDR blocks. You cannot specify both this parameter and the `DestCidrIp` parameter.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder ipv6SourceCidrIp(String ipv6SourceCidrIp)
This parameter is specified to meet quintuple rules. For more information, see [Security group quintuple rules](~~97439~~). Valid values of N: 1 to 100. > The Permissions.N.Ipv6SourceCidrIp parameter is valid only when the source is ECS instances that reside in VPCs and support IPv6 CIDR blocks. You cannot specify this parameter and the `DestCidrIp` parameter at the same time.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder nicType(String nicType)
* internet: public NIC * intranet: internal NIC * If the security group is in a VPC, this parameter is set to intranet by default and cannot be changed. * If you specify only DestGroupId when you configure access between security groups, this parameter must be set to intranet. Default value: internet. Valid values of N: 1 to 100.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder policy(String policy)
* accept: allows access. * drop: denies access and returns no responses. In this case, the request times out or the connection cannot be established. Default value: accept. Valid values of N: 1 to 100.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder portRange(String portRange)
* When the Permissions.N.IpProtocol parameter is set to TCP or UDP, the port number range is 1 to 65535. Separate the start port number and the end port number with a forward slash (/). Example: 1/200. * When the Permissions.N.IpProtocol parameter is set to ICMP, the port number range is -1/-1, which indicates all ports. * When the Permissions.N.IpProtocol parameter is set to GRE, the port number range is -1/-1, which indicates all ports. * When the Permissions.N.IpProtocol parameter is set to ALL, the port number range is -1/-1, which indicates all ports. Valid values of N: 1 to 100.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder priority(String priority)
Default value: 1 Valid values of N: 1 to 100.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder sourceCidrIp(String sourceCidrIp)
This parameter is specified to meet quintuple rules. For more information, see [Security group quintuple rules](~~97439~~). Valid values of N: 1 to 100.
public AuthorizeSecurityGroupEgressRequest.Permissions.Builder sourcePortRange(String sourcePortRange)
* When the Permissions.N.IpProtocol parameter is set to TCP or UDP, the port number range is 1 to 65535. Separate the start port number and the end port number with a forward slash (/). Example: 1/200. * When the Permissions.N.IpProtocol parameter is set to ICMP, the port number range is -1/-1, which indicates all ports. * When the Permissions.N.IpProtocol parameter is set to GRE, the port number range is -1/-1, which indicates all ports. * When the Protocol parameter is set to ALL, the port number range is -1/-1, which indicates all ports. This parameter is specified to meet quintuple rules. For more information, see [Security group quintuple rules](~~97439~~). Valid values of N: 1 to 100.
public AuthorizeSecurityGroupEgressRequest.Permissions build()
Copyright © 2023. All rights reserved.