ModifyNetworkAclEntries

Last updated: 2020-07-10 10:34:11

1. API Description

Domain name for API request: vpc.tencentcloudapi.com.

This API is used to modify (add or delete) the inbound and outbound rules of a network ACL.

A maximum of 20 requests can be initiated per second for this API.

Note: This API supports Finance regions. If the common parameter Region is a Finance region, a domain name with the Finance region needs to be specified, for example: vpc.ap-shanghai-fsi.tencentcloudapi.com

We recommend you to use API Explorer
Try it
API Explorer provides a range of capabilities, including online call, signature authentication, SDK code generation, and API quick search. It enables you to view the request, response, and auto-generated examples.

2. Input Parameters

The following request parameter list only provides API request parameters and some common parameters. For the complete common parameter list, see Common Request Parameters.

Parameter Name Required Type Description
Action Yes String Common parameter. The value used for this API: ModifyNetworkAclEntries.
Version Yes String Common parameter. The value used for this API: 2017-03-12.
Region Yes String Common parameter. For more information, please see the list of regions supported by the product.
NetworkAclId Yes String Network ACL instance ID. Example: acl-12345678.
NetworkAclEntrySet Yes NetworkAclEntrySet Network ACL rule set.

3. Output Parameters

Parameter Name Type Description
RequestId String The unique request ID, which is returned for each request. RequestId is required for locating a problem.

4. Example

Example1 Deleting inbound rules of a network ACL

This example shows you how to modify network ACL rules by only passing in the rule you want to retain and ignoring the rule you want to delete. For example, the acl-12345678 has two inbound rules:

  • Rule 1: TCP 192.168.1.0/24 80 Accept
  • Rule 2: TCP 192.168.1.0/24 443 Accept

    If you want to delete the inbound rule 2, pass in parameters shown in the example.

Input Example

https://vpc.tencentcloudapi.com/?Action=ModifyNetworkAclEntries
&Version=2017-03-12
&NetworkAclId=acl-12345678
&NetworkAclEntrySet.Ingress.0.Protocol=TCP
&NetworkAclEntrySet.Ingress.0.Port=80
&NetworkAclEntrySet.Ingress.0.CidrBlock=192.168.1.0/24
&NetworkAclEntrySet.Ingress.0.Action=Accept
&NetworkAclEntrySet.Ingress.0.Description=test
&<Common request parameters>

Output Example

{
  "Response": {
    "RequestId": "f23d1450-ed00-4442-98d4-be409e625e6c"
  }
}

Example2 Adding only inbound rules to a network ACL

Input Example

https://vpc.tencentcloudapi.com/?Action=ModifyNetworkAclEntries
&Version=2017-03-12
&NetworkAclId=acl-12345678
&NetworkAclEntrySet.Ingress.0.Protocol=TCP
&NetworkAclEntrySet.Ingress.0.Port=80
&NetworkAclEntrySet.Ingress.0.CidrBlock=192.168.1.0/24
&NetworkAclEntrySet.Ingress.0.Action=Accept
&NetworkAclEntrySet.Ingress.0.Description=test
&NetworkAclEntrySet.Ingress.1.Protocol=TCP
&NetworkAclEntrySet.Ingress.1.Port=442
&NetworkAclEntrySet.Ingress.1.CidrBlock=192.168.1.0/24
&NetworkAclEntrySet.Ingress.1.Action=Accept
&NetworkAclEntrySet.Ingress.1.Description=test
&<Common request parameters>

Output Example

{
  "Response": {
    "RequestId": "f23d1450-ed00-4442-98d4-be409e625e6c"
  }
}

Example3 Adding inbound and outbound rules to a network ACL

This example shows you how to delete an inbound rule. You need to pass in only the parameters of rules that you want to retain instead of specifying the rule to be deleted. For example, the instance acl-12345678 has 2 inbound rules:

  • Rule 1: TCP 192.168.1.0/24 80 Accept
  • Rule 2: TCP 192.168.1.0/24 443 Accept

    To delete Rule 2, specify the parameters as follows.

Input Example

https://vpc.tencentcloudapi.com/?Action=ModifyNetworkAclEntries
&Version=2017-03-12
&NetworkAclId=acl-12345678
&NetworkAclEntrySet.Ingress.0.Protocol=TCP
&NetworkAclEntrySet.Ingress.0.Port=80
&NetworkAclEntrySet.Ingress.0.CidrBlock=192.168.1.0/24
&NetworkAclEntrySet.Ingress.0.Action=Accept
&NetworkAclEntrySet.Ingress.0.Description=test
&NetworkAclEntrySet.Egress.0.Protocol=TCP
&NetworkAclEntrySet.Egress.0.Port=80
&NetworkAclEntrySet.Egress.0.CidrBlock=192.168.1.0/24
&NetworkAclEntrySet.Egress.0.Action=Accept
&NetworkAclEntrySet.Egress.0.Description=test
&<Common request parameters>

Output Example

{
  "Response": {
    "RequestId": "f23d1450-ed00-4442-98d4-be409e625e6c"
  }
}

5. Developer Resources

API Explorer

This tool allows online call, signature authentication, SDK code generation and quick search of APIs to greatly improve the efficiency of using TencentCloud APIs.

SDK

TencentCloud API 3.0 integrates SDKs that support various programming languages to make it easier for you to call APIs.

Command Line Interface

6. Error Code

The following only lists the error codes related to the API business logic. For other error codes, see Common Error Codes.

Error Code Description
InvalidParameter.Coexist The parameters cannot be specified at the same time.
InvalidParameterValue Invalid parameter value
InvalidParameterValue.Malformed Invalid input parameter format.
InvalidParameterValue.TooLong Invalid parameter value. The parameter value is too long.
LimitExceeded Quota limit is reached.
MissingParameter Parameter missing. A required parameter is missing in the request.
ResourceNotFound The resource does not exist.

Was this page helpful?

Was this page helpful?

  • Not at all
  • Not very helpful
  • Somewhat helpful
  • Very helpful
  • Extremely helpful
Send Feedback
Help