- 积分
- 11013
在线时间 小时
最后登录1970-1-1
|

楼主 |
发表于 2022-12-6 17:36:32
|
显示全部楼层
添加所有icmp规则出口
U. N- z1 x- D: \0 @" N. L7 x! U* [8 T/ J) q% A
openstack security group rule create --protocol icmp --egress 712025d7-6aa6-40e4-9104-4df6706b6697% x% `9 g+ u/ o
& j" m2 ]# ?% F/ D+ M$ k% h M
Copy
5 L9 P7 {$ }$ L6 f& K/ A[root@controller ~]# openstack security group rule create --protocol icmp --egress 712025d7-6aa6-40e4-9104-4df6706b6697
* L. ]% y( t3 l+ T; J+-------------------+--------------------------------------+) A4 x- T. ~- @5 v5 ~
| Field | Value |6 @, {0 s: R/ [- n1 j
+-------------------+--------------------------------------+/ c8 A( t' P" O9 F* N& s5 [$ ?- [
| created_at | 2022-04-30T21:27:42Z |, l" U" ~ ]* a# W: y
| description | |$ G2 J0 d3 U s: h' S
| direction | egress |2 q. q" E. ~- G
| ether_type | IPv4 |# D# w2 ~& f. w" z
| id | ede63376-0eeb-4a6b-9dd9-f3a63418c85b |
! R' C4 f7 Q7 B| name | None |
0 p7 n6 @( u$ p* }. U| port_range_max | None |
8 W5 t# `3 }8 a7 O| port_range_min | None |8 z4 ?8 \% w! u: b' F! l
| project_id | 0635fff1ca6c42ab983e8a05d533eda3 |
/ Q, X6 P* `$ @! r1 Q| protocol | icmp |4 s8 n, z# i) x% s( k
| remote_group_id | None |
( z5 q/ s& I9 j P| remote_ip_prefix | 0.0.0.0/0 |
$ o( n/ h5 i$ }1 [| revision_number | 0 |
6 Y5 v s2 L" ^; a) {+ ]2 e| security_group_id | 712025d7-6aa6-40e4-9104-4df6706b6697 |. O. |6 p! C* e) o5 l) b+ @
| updated_at | 2022-04-30T21:27:42Z |
- \5 n' m# e2 T1 ?' X/ x! V+-------------------+--------------------------------------+( h+ i8 e; ^0 s0 m( _, K
添加所有udp规则入口
: S4 O( ?; h" i0 d% T; v9 M: C0 B6 Y1 M. }
openstack security group rule create --protocol udp --ingress 712025d7-6aa6-40e4-9104-4df6706b6697" H/ g+ Y, E* X: C
+ F& v- J0 s" d' ]2 a+ i
添加所有udp规则出口 N' [- ?; H7 ^0 _: P
# l& e5 G- W' k8 b
openstack security group rule create --protocol udp --egress 712025d7-6aa6-40e4-9104-4df6706b6697, Q) w" A8 k2 ]5 f; |* T
8 V8 W. p" {$ z; J( F( ?: ?4 A( k添加所有tcp规则入口
& A/ _& w( p1 B, o4 e. N" E" b, j/ l4 `8 z
openstack security group rule create --protocol tcp --ingress 712025d7-6aa6-40e4-9104-4df6706b66971 n3 U4 o* b( [8 L2 L/ [ O
5 P% M. {# Y. `3 N
添加所有tcp规则出口8 z2 J9 x+ f" P/ ^6 ?& x( U$ k
r- x" K `: P8 [! h5 `% ~
openstack security group rule create --protocol tcp --egress 712025d7-6aa6-40e4-9104-4df6706b6697
& F b ^- u9 Z# y K8 @7 D7 w6 g1 [. p1 j8 F
查看安全组规则( s [ Q2 |5 ]
& } c/ R- p6 O+ I& J' u, q. u& ?
openstack security group rule list 712025d7-6aa6-40e4-9104-4df6706b6697
- ?4 U8 p& b4 Z0 p
3 m6 D" d, A2 @* U/ PCopy
% b( }$ H: Z ~( F! z% }6 ^[root@controller ~]# openstack security group rule list 712025d7-6aa6-40e4-9104-4df6706b6697
* `; O# c* E L+--------------------------------------+-------------+-----------+------------+-----------------------+8 _3 `, a; H' l1 z7 i. r
| ID | IP Protocol | IP Range | Port Range | Remote Security Group |
/ F ?7 V7 u6 j9 q( S+--------------------------------------+-------------+-----------+------------+-----------------------+
( E5 d$ _/ q- r: G8 B6 i| 869e67e5-5571-4c03-a21c-715e3dd51a5c | icmp | 0.0.0.0/0 | | None |
4 [" v; |; c5 \ a9 m0 G| 8a91bc8e-c9cd-4bf1-86ae-0c6d9eef67e7 | udp | 0.0.0.0/0 | | None |; z, ^ B0 x0 c+ s* p) U7 H
| b525b93f-ffb6-4b84-be99-fdfd6f0fad75 | tcp | 0.0.0.0/0 | | None |) w, y9 b! M% z$ U* P% T$ ~
| dfea0691-0903-4cdf-b775-297eb6858f0d | udp | 0.0.0.0/0 | | None |
: D- e3 Y" L& \' ^) i) {; Q! v| ede63376-0eeb-4a6b-9dd9-f3a63418c85b | icmp | 0.0.0.0/0 | | None |
6 ]/ F3 Q: ]! L* u' g; `: A2 @| f9371589-1b17-4e5b-9f8d-798055cdc662 | tcp | 0.0.0.0/0 | | None |
2 ~' \/ b. g* W3 I O F+--------------------------------------+-------------+-----------+------------+-----------------------+ |
|