public static class AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions
extends com.aliyun.tea.TeaModel
| 限定符和类型 | 字段和说明 |
|---|---|
String |
description
The description of the security group rule.
|
String |
destCidrIp
The destination IPv4 CIDR block for the security group rule.
|
String |
destGroupId
The ID of the destination security group.
|
String |
destGroupOwnerAccount
The Alibaba Cloud account that manages the destination security group when you set a security group rule across accounts.
|
Long |
destGroupOwnerId
The ID of the Alibaba Cloud account that manages the destination security group when you set a security group rule across accounts.
|
String |
destPrefixListId
The ID of the destination prefix list.
|
String |
ipProtocol
The transport layer protocol.
|
String |
ipv6DestCidrIp
The destination IPv6 CIDR block for the security group rule.
|
String |
ipv6SourceCidrIp
The source IPv6 CIDR block.
|
String |
nicType
The network interface controller (NIC) type of the security group rule when the security group is in the classic network.
|
String |
policy
The authorization policy.
|
String |
portRange
The range of destination ports that correspond to the transport layer protocol for the security group rule.
|
String |
priority
The priority of the security group rule.
|
String |
sourceCidrIp
The source IPv4 CIDR block.
|
String |
sourcePortRange
The range of source ports that correspond to the transport layer protocol for the security group rule.
|
| 构造器和说明 |
|---|
AuthorizeSecurityGroupEgressRequestPermissions() |
@NameInMap(value="Description") public String description
The description of the security group rule. The description must be 1 to 512 characters in length.
Valid values of N: 1 to 100.
@NameInMap(value="DestCidrIp") public String destCidrIp
The destination IPv4 CIDR block for the security group rule. CIDR blocks and IPv4 addresses are supported.
Valid values of N: 1 to 100.
@NameInMap(value="DestGroupId") public String destGroupId
The ID of the destination security group.
* At least one of `DestGroupId`, `DestCidrIp`, `Ipv6DestCidrIp`, and `DestPrefixListId` must be specified.
* If `DestGroupId` is specified but `DestCidrIp` is not specified, the `NicType` parameter must be set to intranet.
* If both `DestGroupId` and `DestCidrIp` are specified, `DestCidrIp` takes precedence.
Valid values of N: 1 to 100.
When you call this operation, take note of the following items:
* For advanced security groups, security groups cannot be used as authorization objects.
* For each basic security group, a maximum of 20 security groups can be used as authorization objects.
@NameInMap(value="DestGroupOwnerAccount") public String destGroupOwnerAccount
The Alibaba Cloud account that manages the destination security group when you set a security group rule across accounts.
* If both `DestGroupOwnerAccount` and `DestGroupOwnerId` are not specified, the rule is created to control access to another security group within your Alibaba Cloud account.
* If `DestCidrIp` is specified, `DestGroupOwnerAccount` is ignored.
Valid values of N: 1 to 100.
@NameInMap(value="DestGroupOwnerId") public Long destGroupOwnerId
The ID of the Alibaba Cloud account that manages the destination security group when you set a security group rule across accounts.
* If both `DestGroupOwnerId` and `DestGroupOwnerAccount` are not specified, the rule is created to control access to another security group within your Alibaba Cloud account.
* If you specify the `DestCidrIp` parameter, the `DestGroupOwnerId` parameter is ignored.
Valid values of N: 1 to 100.
@NameInMap(value="DestPrefixListId") public String destPrefixListId
The ID of the destination prefix list. You can call the [DescribePrefixLists](~~205046~~) operation to query the IDs of available prefix lists.
Note:
* If a security group is in the classic network, you cannot configure prefix lists in the security group rules. For information about the limits on security groups and prefix lists, see the "Security group limits" section in [Limits](~~25412#SecurityGroupQuota1~~).
* If you specify `DestCidrIp`, `Ipv6DestCidrIp`, or `DestGroupId`, Permissions.N.DestPrefixListId is ignored.
Valid values of N: 1 to 100.
@NameInMap(value="IpProtocol") public String ipProtocol
The transport layer protocol. The value of this parameter is case-insensitive. Valid values:
* TCP
* UDP
* ICMP
* ICMPv6
* GRE
* ALL: All protocols are supported.
Valid values of N: 1 to 100.
@NameInMap(value="Ipv6DestCidrIp") public String ipv6DestCidrIp
The destination IPv6 CIDR block for the security group rule. CIDR blocks and IPv6 addresses are supported.
Valid values of N: 1 to 100.
> The Permissions.N.Ipv6DestCidrIp parameter is valid only when the destination is ECS instances that reside in virtual private clouds (VPCs) and support IPv6 CIDR blocks. You cannot specify both this parameter and the `DestCidrIp` parameter.
@NameInMap(value="Ipv6SourceCidrIp") public String ipv6SourceCidrIp
The source IPv6 CIDR block. CIDR blocks and IPv6 addresses are supported.
This parameter is specified to meet quintuple rules. For more information, see [Security group quintuple rules](~~97439~~).
Valid values of N: 1 to 100.
> The Permissions.N.Ipv6SourceCidrIp parameter is valid only when the source is ECS instances that reside in VPCs and support IPv6 CIDR blocks. You cannot specify this parameter and the `DestCidrIp` parameter at the same time.
@NameInMap(value="NicType") public String nicType
The network interface controller (NIC) type of the security group rule when the security group is in the classic network. Valid values:
* internet: public NIC
* intranet: internal NIC
* If the security group is in a VPC, this parameter is set to intranet by default and cannot be changed.
* If you specify only DestGroupId when you configure access between security groups, this parameter must be set to intranet.
Default value: internet.
Valid values of N: 1 to 100.
@NameInMap(value="Policy") public String policy
The authorization policy. Valid values:
* accept: allows access.
* drop: denies access and returns no responses. In this case, the request times out or the connection cannot be established.
Default value: accept.
Valid values of N: 1 to 100.
@NameInMap(value="PortRange") public String portRange
The range of destination ports that correspond to the transport layer protocol for the security group rule. Valid values:
* When the Permissions.N.IpProtocol parameter is set to TCP or UDP, the port number range is 1 to 65535. Separate the start port number and the end port number with a forward slash (/). Example: 1/200.
* When the Permissions.N.IpProtocol parameter is set to ICMP, the port number range is -1/-1, which indicates all ports.
* When the Permissions.N.IpProtocol parameter is set to GRE, the port number range is -1/-1, which indicates all ports.
* When the Permissions.N.IpProtocol parameter is set to ALL, the port number range is -1/-1, which indicates all ports.
Valid values of N: 1 to 100.
@NameInMap(value="Priority") public String priority
The priority of the security group rule. A smaller value indicates a higher priority. Valid values: 1 to 100.
Default value: 1
Valid values of N: 1 to 100.
@NameInMap(value="SourceCidrIp") public String sourceCidrIp
The source IPv4 CIDR block. CIDR blocks and IPv4 addresses are supported.
This parameter is specified to meet quintuple rules. For more information, see [Security group quintuple rules](~~97439~~).
Valid values of N: 1 to 100.
@NameInMap(value="SourcePortRange") public String sourcePortRange
The range of source ports that correspond to the transport layer protocol for the security group rule. Valid values:
* When the Permissions.N.IpProtocol parameter is set to TCP or UDP, the port number range is 1 to 65535. Separate the start port number and the end port number with a forward slash (/). Example: 1/200.
* When the Permissions.N.IpProtocol parameter is set to ICMP, the port number range is -1/-1, which indicates all ports.
* When the Permissions.N.IpProtocol parameter is set to GRE, the port number range is -1/-1, which indicates all ports.
* When the Protocol parameter is set to ALL, the port number range is -1/-1, which indicates all ports.
This parameter is specified to meet quintuple rules. For more information, see [Security group quintuple rules](~~97439~~).
Valid values of N: 1 to 100.
public AuthorizeSecurityGroupEgressRequestPermissions()
public static AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions build(Map<String,?> map) throws Exception
Exceptionpublic AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setDescription(String description)
public String getDescription()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setDestCidrIp(String destCidrIp)
public String getDestCidrIp()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setDestGroupId(String destGroupId)
public String getDestGroupId()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setDestGroupOwnerAccount(String destGroupOwnerAccount)
public String getDestGroupOwnerAccount()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setDestGroupOwnerId(Long destGroupOwnerId)
public Long getDestGroupOwnerId()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setDestPrefixListId(String destPrefixListId)
public String getDestPrefixListId()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setIpProtocol(String ipProtocol)
public String getIpProtocol()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setIpv6DestCidrIp(String ipv6DestCidrIp)
public String getIpv6DestCidrIp()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setIpv6SourceCidrIp(String ipv6SourceCidrIp)
public String getIpv6SourceCidrIp()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setNicType(String nicType)
public String getNicType()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setPolicy(String policy)
public String getPolicy()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setPortRange(String portRange)
public String getPortRange()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setPriority(String priority)
public String getPriority()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setSourceCidrIp(String sourceCidrIp)
public String getSourceCidrIp()
public AuthorizeSecurityGroupEgressRequest.AuthorizeSecurityGroupEgressRequestPermissions setSourcePortRange(String sourcePortRange)
public String getSourcePortRange()
Copyright © 2023. All rights reserved.