Managing ACL Rules

Last updated: 2021-04-30 15:41:34

    The ACL Rule is an optional security layer at the subnet level. It is used to control the inbound and outbound data streams of subnets, which can be accurate to the protocol and port granularity, to achieve fine-control of subnet granularity traffic. You can associate the same network ACL for subnets that have the same network traffic control.
    This section describes how to bind, unbind, and change ACL rules via the VPC console.

    Directions

    1. Log in to the VPC console.

    2. Select Subnet in the left sidebar to go to the subnet management page.

    3. Click a subnet ID to go to its details page. You can perform the binding, unbinding, or changing of ACL in the following pages.

      • In the Associate ACL field under the Basic Information tab

      • Under the ACL Rules tab

    4. Perform the following operations based on the business needs.

    • If the current subnet is not bound with ACL rule, you can click Bind to select an appropriate ACL rule, and click OK to complete the binding. The binding will take effect immediately. At this time, only the inbound and outbound traffic of the subnet that the rule is Allow can pass through.

    • If the ACL rule bound to the current subnet does not meet business requirements, you can click Change to change the ACL rule, which will take effect immediately.

    • If the current subnet is bound with a ACL rule, but you no longer need to control the inbound and outbound traffic of the subnet, you can click Unbind to unbind the ACL rule. The unbinding will take effect immediately. At this time, there is no rule restriction on the inbound and outbound traffic of the subnet.