|
|
楼主 |
发表于 2022-12-6 17:36:32
|
显示全部楼层
添加所有icmp规则出口0 G8 O4 `$ {* e& O0 C! Y8 s
( w+ L' a, b1 U: T- o% n7 n. E& wopenstack security group rule create --protocol icmp --egress 712025d7-6aa6-40e4-9104-4df6706b66975 z. W/ T9 h* L; L
2 J# d2 t( K( p2 ^
Copy
) r1 s# D6 H) Q[root@controller ~]# openstack security group rule create --protocol icmp --egress 712025d7-6aa6-40e4-9104-4df6706b6697
: H& C' `: a3 H! X7 D7 ^4 @+-------------------+--------------------------------------+% g6 h8 z( F7 ?0 K8 [6 d
| Field | Value |' w& N) _% g2 i: o6 B
+-------------------+--------------------------------------+; F2 a4 p/ U( p. {
| created_at | 2022-04-30T21:27:42Z |8 f+ j: |/ U# \% O' l% R K
| description | |+ P) T0 y$ S% J5 e' g
| direction | egress |' F: I2 l5 j% C d
| ether_type | IPv4 |" @+ \4 t/ f1 k- I- a
| id | ede63376-0eeb-4a6b-9dd9-f3a63418c85b |
, L$ K* w: `; B| name | None |9 Y) H4 p0 R3 U
| port_range_max | None |! H* ?1 a; `8 V$ x; a* F8 N
| port_range_min | None |
$ ~+ R3 S$ k* I! D$ L1 L1 i# a| project_id | 0635fff1ca6c42ab983e8a05d533eda3 |
8 {/ Z$ O+ ^) x. A9 k3 v9 c| protocol | icmp |
( H2 T' b& D3 W. v: a# Q| remote_group_id | None |2 G4 @$ v" D+ L: i4 D8 |
| remote_ip_prefix | 0.0.0.0/0 |
# m. b* Z% Q4 K: O| revision_number | 0 |
w0 t, Z3 N! X4 T| security_group_id | 712025d7-6aa6-40e4-9104-4df6706b6697 |
7 N9 h3 J% u! `$ U1 r4 r| updated_at | 2022-04-30T21:27:42Z |' q. k6 E7 e. L. y3 P* G4 r5 E
+-------------------+--------------------------------------+
' \8 D7 C) H* N6 e ~添加所有udp规则入口8 i8 X0 R# r9 H) S/ o
9 O5 S, Q1 l3 \: R
openstack security group rule create --protocol udp --ingress 712025d7-6aa6-40e4-9104-4df6706b6697
, h5 J0 {9 Q6 d7 |/ n/ |
1 U2 l+ n, @% d8 r7 U8 h添加所有udp规则出口
: m' V, p8 z- _+ ~# y) |' U" l) K1 W2 H# t1 ] x5 L3 G7 |
openstack security group rule create --protocol udp --egress 712025d7-6aa6-40e4-9104-4df6706b6697
3 Y9 Y" t4 ]( Z. k0 h
- V# F! M3 F2 X: }7 b8 V添加所有tcp规则入口( [2 h5 k) f9 G0 F1 ^
: o8 w# {2 n+ J3 G R5 e
openstack security group rule create --protocol tcp --ingress 712025d7-6aa6-40e4-9104-4df6706b66974 k, |: O2 A. R5 o* L8 m
$ F- Z' K* ~; h% l4 F3 m添加所有tcp规则出口
$ ~' |8 ~& T9 f# C2 ?/ B4 N' c' e7 F3 B) j) A
openstack security group rule create --protocol tcp --egress 712025d7-6aa6-40e4-9104-4df6706b6697; U5 }( F) U. y& Y5 m* w6 W f1 i/ Y
# d3 I6 H0 d1 g* g5 A
查看安全组规则2 \# F- v! j0 s
2 d% u0 |7 x; M/ Q- `
openstack security group rule list 712025d7-6aa6-40e4-9104-4df6706b6697
7 h" t) L8 H8 d" X* B
" E8 v6 W* I4 TCopy" ~! k8 S2 ^2 M, Z
[root@controller ~]# openstack security group rule list 712025d7-6aa6-40e4-9104-4df6706b6697
4 j% @9 y `9 _) j+--------------------------------------+-------------+-----------+------------+-----------------------+
; B! B% }! N4 ^| ID | IP Protocol | IP Range | Port Range | Remote Security Group |
; F s) w! ?2 q+--------------------------------------+-------------+-----------+------------+-----------------------+: g5 _% V* Q# F/ i1 |- |. x
| 869e67e5-5571-4c03-a21c-715e3dd51a5c | icmp | 0.0.0.0/0 | | None |
, K% K4 |7 m( u& K2 M$ ?+ z| 8a91bc8e-c9cd-4bf1-86ae-0c6d9eef67e7 | udp | 0.0.0.0/0 | | None |
1 f9 l! {( {: O7 F| b525b93f-ffb6-4b84-be99-fdfd6f0fad75 | tcp | 0.0.0.0/0 | | None |
3 A& \' W: p; `| dfea0691-0903-4cdf-b775-297eb6858f0d | udp | 0.0.0.0/0 | | None |
; g; x% g; U% @+ e' L2 ?| ede63376-0eeb-4a6b-9dd9-f3a63418c85b | icmp | 0.0.0.0/0 | | None |, P( q* w2 o$ i: L- |& F# E
| f9371589-1b17-4e5b-9f8d-798055cdc662 | tcp | 0.0.0.0/0 | | None |2 n+ f* h% ?% h1 _3 u
+--------------------------------------+-------------+-----------+------------+-----------------------+ |
|
发表于 2022-12-6 17:35:26