public static class RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions
extends com.aliyun.tea.TeaModel
限定符和类型 | 字段和说明 |
---|---|
String |
description
The description of security group rule N.
|
String |
destCidrIp
The destination IPv4 CIDR block for security group rule N.
|
String |
destGroupId
The ID of the source security group that is referenced in security group rule N.
|
String |
destGroupOwnerAccount
The Alibaba Cloud account that manages the destination security group when you delete security group rules N across accounts.
|
String |
destGroupOwnerId
The Alibaba Cloud account that manages the destination security group when you delete security group rule N across accounts.
|
String |
destPrefixListId
The ID of the destination prefix list that is referenced in security group rule N.
|
String |
ipProtocol
The transport layer protocol of security group rule N.
|
String |
ipv6DestCidrIp
The destination IPv6 CIDR block for security group rule N.
|
String |
ipv6SourceCidrIp
The source IPv6 CIDR block for security group rule N.
|
String |
nicType
The network interface controller (NIC) type of security group rule N when the security group is in the classic network.
|
String |
policy
The action of security group rule N that determines whether to allow outbound access.
|
String |
portRange
The range of destination ports that correspond to the transport layer protocol for security group rule N.
|
String |
priority
The priority of security group rule N.
|
String |
sourceCidrIp
The source IPv4 CIDR block for security group rule N.
|
String |
sourcePortRange
The range of source ports that correspond to the transport layer protocol for security group rule N.
|
构造器和说明 |
---|
RevokeSecurityGroupEgressRequestPermissions() |
@NameInMap(value="Description") public String description
The description of security group rule N. The description must be 1 to 512 characters in length.
Valid values of N: 1 to 100.
@NameInMap(value="DestCidrIp") public String destCidrIp
The destination IPv4 CIDR block for security group rule N. CIDR blocks and IPv4 addresses are supported.
Valid values of N: 1 to 100.
@NameInMap(value="DestGroupId") public String destGroupId
The ID of the source security group that is referenced in security group rule N.
* At least one of `DestGroupId`, `DestCidrIp`, `Ipv6DestCidrIp`, and `DestPrefixListId` must be specified.
* If `DestGroupId` is specified but `DestCidrIp` is not specified, the `NicType` parameter must be set to intranet.
* If both `DestGroupId` and `DestCidrIp` are specified, `DestCidrIp` takes precedence.
Take note of the following items:
* For advanced security groups, security groups cannot be used as authorization objects.
* For each basic security group, a maximum of 20 security groups can be used as authorization objects.
Valid values of N: 1 to 100.
@NameInMap(value="DestGroupOwnerAccount") public String destGroupOwnerAccount
The Alibaba Cloud account that manages the destination security group when you delete security group rules N across accounts.
* If both `DestGroupOwnerAccount` and `DestGroupOwnerId` are not specified, the access control is revoked from another security group managed by your account.
* If `DestCidrIp` is specified, `DestGroupOwnerAccount` is ignored.
Valid values of N: 1 to 100.
@NameInMap(value="DestGroupOwnerId") public String destGroupOwnerId
The Alibaba Cloud account that manages the destination security group when you delete security group rule N across accounts.
* If both `DestGroupOwnerId` and `DestGroupOwnerAccount` are not specified, the access control is revoked from another security group managed by your account.
* If `DestCidrIp` is specified, `DestGroupOwnerId` is invalid.
Valid values of N: 1 to 100.
@NameInMap(value="DestPrefixListId") public String destPrefixListId
The ID of the destination prefix list that is referenced in security group rule N. You can call the [DescribePrefixLists](~~205046~~) operation to query the IDs of available prefix lists.
Take note of the following items:
* If a security group is in the classic network, you cannot reference prefix lists in the security group rules. For information about the limits on security groups and prefix lists, see the "Security group limits" section in [Limits](~~25412#SecurityGroupQuota1~~).
* If you specify `DestCidrIp`, `Ipv6DestCidrIp`, or `DestGroupId`, Permissions.N.DestPrefixListId is ignored.
Valid values of N: 1 to 100.
@NameInMap(value="IpProtocol") public String ipProtocol
The transport layer protocol of security group rule N. The value of this parameter is case-insensitive. Valid values:
* TCP
* UDP
* ICMP
* ICMPv6
* GRE
* ALL: All protocols are supported.
Valid values of N: 1 to 100.
@NameInMap(value="Ipv6DestCidrIp") public String ipv6DestCidrIp
The destination IPv6 CIDR block for security group rule N. CIDR blocks and IPv6 addresses are supported.
Valid values of N: 1 to 100.
> The Permissions.N.Ipv6DestCidrIp parameter is valid only when the destination is ECS instances that reside in virtual private clouds (VPCs) and that support IPv6 CIDR blocks. You cannot specify both this parameter and the `DestCidrIp` parameter.
@NameInMap(value="Ipv6SourceCidrIp") public String ipv6SourceCidrIp
The source IPv6 CIDR block for security group rule N. CIDR blocks and IPv6 addresses are supported.
This parameter is specified to meet quintuple rules. For more information, see [Security group quintuple rules](~~97439~~).
Valid values of N: 1 to 100.
> The Permissions.N.Ipv6SourceCidrIp parameter is valid only when the source is ECS instances that reside in VPCs and that support IPv6 CIDR blocks. You cannot specify both this parameter and the `DestCidrIp` parameter.
@NameInMap(value="NicType") public String nicType
The network interface controller (NIC) type of security group rule N when the security group is in the classic network. Valid values:
* internet: public NIC
* intranet: internal NIC
If the security group is in a VPC, this parameter is set to intranet by default and cannot be modified.
If you specify only `SourceGroupId` when you configure access between security groups, this parameter must be set to intranet.
Default value: internet.
Valid values of N: 1 to 100.
@NameInMap(value="Policy") public String policy
The action of security group rule N that determines whether to allow outbound access. Valid values:
* accept: allows access.
* drop: denies access and returns no responses. In this case, the request times out or the connection cannot be established.
Default value: accept.
Valid values of N: 1 to 100.
@NameInMap(value="PortRange") public String portRange
The range of destination ports that correspond to the transport layer protocol for security group rule N. Valid values:
* When the Permissions.N.IpProtocol parameter is set to TCP or UDP, the port number range is 1 to 65535. Specify a port range in the format of \
* When the Permissions.N.IpProtocol parameter is set to ICMP, the port number range is -1/-1, which indicates all ports.
* When the Permissions.N.IpProtocol parameter is set to GRE, the port number range is -1/-1, which indicates all ports.
* When the Permissions.N.IpProtocol parameter is set to ALL, the port number range is -1/-1, which indicates all ports.
Valid values of N: 1 to 100.
@NameInMap(value="Priority") public String priority
The priority of security group rule N. A smaller value indicates a higher priority. Valid values: 1 to 100.
Default value: 1.
Valid values of N: 1 to 100.
@NameInMap(value="SourceCidrIp") public String sourceCidrIp
The source IPv4 CIDR block for security group rule N. CIDR blocks and IPv4 addresses are supported.
This parameter is specified to meet quintuple rules. For more information, see [Security group quintuple rules](~~97439~~).
Valid values of N: 1 to 100.
@NameInMap(value="SourcePortRange") public String sourcePortRange
The range of source ports that correspond to the transport layer protocol for security group rule N. Valid values:
* When the Permissions.N.IpProtocol parameter is set to TCP or UDP, the port number range is 1 to 65535. Specify a port range in the format of \
* When the Permissions.N.IpProtocol parameter is set to ICMP, the port number range is -1/-1, which indicates all ports.
* When the Permissions.N.IpProtocol parameter is set to GRE, the port number range is -1/-1, which indicates all ports.
* When the Permissions.N.IpProtocol parameter is set to ALL, the port number range is -1/-1, which indicates all ports.
This parameter is specified to meet quintuple rules. For more information, see [Security group quintuple rules](~~97439~~).
Valid values of N: 1 to 100.
public RevokeSecurityGroupEgressRequestPermissions()
public static RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions build(Map<String,?> map) throws Exception
Exception
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setDescription(String description)
public String getDescription()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setDestCidrIp(String destCidrIp)
public String getDestCidrIp()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setDestGroupId(String destGroupId)
public String getDestGroupId()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setDestGroupOwnerAccount(String destGroupOwnerAccount)
public String getDestGroupOwnerAccount()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setDestGroupOwnerId(String destGroupOwnerId)
public String getDestGroupOwnerId()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setDestPrefixListId(String destPrefixListId)
public String getDestPrefixListId()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setIpProtocol(String ipProtocol)
public String getIpProtocol()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setIpv6DestCidrIp(String ipv6DestCidrIp)
public String getIpv6DestCidrIp()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setIpv6SourceCidrIp(String ipv6SourceCidrIp)
public String getIpv6SourceCidrIp()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setNicType(String nicType)
public String getNicType()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setPolicy(String policy)
public String getPolicy()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setPortRange(String portRange)
public String getPortRange()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setPriority(String priority)
public String getPriority()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setSourceCidrIp(String sourceCidrIp)
public String getSourceCidrIp()
public RevokeSecurityGroupEgressRequest.RevokeSecurityGroupEgressRequestPermissions setSourcePortRange(String sourcePortRange)
public String getSourcePortRange()
Copyright © 2023. All rights reserved.