Neutron Security Group Rule

Media Type
[application/vnd.org.midonet.neutron.SecurityGroupRule-v1+json]
Collection Media Type
[application/vnd.org.midonet.neutron.SecurityGroupRules-v1+json]
GET     /neutron/security_group_rules
GET     /neutron/security_group_rules/:securityGroupRuleId
POST    /neutron/security_group_rules
DELETE  /neutron/security_group_rules/:securityGroupRuleId
Field NameTypePOST/PUTRequiredDescription

id

UUID

POST

No

A unique identifier of the resource. If this field is omitted in the POST request, a random UUID is generated.

direction

String

POST

Yes

The traffic direction to match. The value can be ingress or egress.

tenant_id

String

POST

Yes

The identifier of the tenant that owns the security group rule.

security_group_id

UUID

POST

Yes

The identifier of the security group to which the rule belongs.

ethertype

String

POST

No

The ethertype to match. Supported types are ipv4, ipv6 and arp.

name

String

POST

No

The security group rule name.

port_range_min

Integer

POST

No

The start protocol port number to match.

port_range_max

Integer

POST

No

The end protocol port number to match.

protocol

String

POST

No

The protocol to match. It could be specified in either string or numerical value. Supported protocols are ICMP (1), ICMPv6 (58), TCP (6) and UDP (17).

remote_group_id

UUID

POST

No

The identifier of the security group against which to match.

remote_ip_prefix

String

POST

No

The IP address in the CIDR format x.x.x.x/y to match.

If you want to match on a particular port number, specify that number for both port_range_min and port_range_max.

Questions? Discuss on Mailing Lists or Chat.
Found an error? Report a bug.