- 积分
- 16844
在线时间 小时
最后登录1970-1-1
|
楼主 |
发表于 2022-12-6 17:36:32
|
显示全部楼层
添加所有icmp规则出口0 {6 V; D8 d" m& c4 b4 B
$ i0 N9 v& W5 \
openstack security group rule create --protocol icmp --egress 712025d7-6aa6-40e4-9104-4df6706b6697
6 N& Y- g- T6 B2 E( o' G0 F* H9 g# x9 ]" i0 w6 p
Copy
9 W- W* C: V$ c% R# b[root@controller ~]# openstack security group rule create --protocol icmp --egress 712025d7-6aa6-40e4-9104-4df6706b6697( Y- L* Y, q) Y
+-------------------+--------------------------------------+8 x! U, v9 M1 r7 \4 M; H
| Field | Value |
, R6 N Q; a/ w1 N6 H) H8 K( H+-------------------+--------------------------------------+! n" M, `5 |1 b7 I3 T7 l7 q1 c
| created_at | 2022-04-30T21:27:42Z |
- g1 {7 R: s" j' Q: S+ Y| description | |
r1 I! [5 u+ q+ a, L| direction | egress |
# c0 `- N- @8 T Y1 ^% T| ether_type | IPv4 |% P# F. M7 B. o) a1 s5 H9 b/ Y
| id | ede63376-0eeb-4a6b-9dd9-f3a63418c85b |3 d9 {! S. ~0 X- _
| name | None |+ d/ ]% I' } [: }4 p2 h
| port_range_max | None |1 W& P8 Y' [9 n2 b+ R- N* s& z
| port_range_min | None |
$ f/ y, W' W; H9 q| project_id | 0635fff1ca6c42ab983e8a05d533eda3 |5 {& i$ N7 n" F( r0 X, j" r
| protocol | icmp |- F6 e# ^/ U: z% {. ] U
| remote_group_id | None |
4 ?9 {$ }1 E% }( r1 Y) Y' a4 I1 n7 d| remote_ip_prefix | 0.0.0.0/0 |
6 i7 [0 z8 Y" a# D/ L$ g| revision_number | 0 |
$ B3 d- [. o: t1 d, L% ?$ f| security_group_id | 712025d7-6aa6-40e4-9104-4df6706b6697 |/ J" n9 A' R5 t+ x4 O% ?4 `
| updated_at | 2022-04-30T21:27:42Z |
?( Z& [$ J' n" p( f1 J3 [+-------------------+--------------------------------------+
- r- k4 @# T+ h添加所有udp规则入口; M6 B! \6 B2 o& z5 W) G! C& _
' G6 _# K& r4 h9 y! @0 F6 A7 O, G sopenstack security group rule create --protocol udp --ingress 712025d7-6aa6-40e4-9104-4df6706b6697& ]! M# j4 ?! j( f: d( R) R
: _7 M& W. V% h添加所有udp规则出口) `7 `) N6 u& k# J! c6 M9 I/ z
8 ~5 u* n# {8 s( ^- }4 ]7 Qopenstack security group rule create --protocol udp --egress 712025d7-6aa6-40e4-9104-4df6706b6697: ^% y: @! A# ~ Z! X; i0 S* }
/ \- ~+ P: d8 }9 W* e$ V添加所有tcp规则入口/ ~* M4 P! y% z
+ K6 I: `9 [2 r3 ^7 V' }! `openstack security group rule create --protocol tcp --ingress 712025d7-6aa6-40e4-9104-4df6706b6697$ Y F, W: }' b6 p! C8 e/ u# n
( b+ ], j5 @+ r- E: f1 h) X
添加所有tcp规则出口: ]1 a N- W j# n9 x2 p
1 W! Q# i' q% @5 ]
openstack security group rule create --protocol tcp --egress 712025d7-6aa6-40e4-9104-4df6706b6697* ^# P, D8 R7 ^; @# T J0 N7 g
5 X- @$ Z# r/ R4 v查看安全组规则
+ C- f) m: }$ \6 d$ d
9 V& ]: X. t6 v# K3 r4 x# ~, c- Fopenstack security group rule list 712025d7-6aa6-40e4-9104-4df6706b6697
$ J+ \3 W& t( q5 v* S5 l4 M
, K3 W5 V. k1 A& s+ _% C8 ?1 tCopy
/ E- i4 p6 A2 _[root@controller ~]# openstack security group rule list 712025d7-6aa6-40e4-9104-4df6706b66977 U8 `4 ]& R! @& r/ V
+--------------------------------------+-------------+-----------+------------+-----------------------+
3 k$ @/ x- n* `| ID | IP Protocol | IP Range | Port Range | Remote Security Group |% B6 B/ V: n+ S$ ^
+--------------------------------------+-------------+-----------+------------+-----------------------+
9 |$ x, H+ S+ P% A1 n' y% X| 869e67e5-5571-4c03-a21c-715e3dd51a5c | icmp | 0.0.0.0/0 | | None |
8 d: E" o. V' d, a& o/ n| 8a91bc8e-c9cd-4bf1-86ae-0c6d9eef67e7 | udp | 0.0.0.0/0 | | None |
. t b p& n9 W0 T1 g| b525b93f-ffb6-4b84-be99-fdfd6f0fad75 | tcp | 0.0.0.0/0 | | None |
o. H( ^* V4 ]" X' \3 \| dfea0691-0903-4cdf-b775-297eb6858f0d | udp | 0.0.0.0/0 | | None |
: ]( B1 g9 x5 B ]' }; @* L( z| ede63376-0eeb-4a6b-9dd9-f3a63418c85b | icmp | 0.0.0.0/0 | | None |/ _# S6 F/ ?1 Y3 k8 `& w6 t
| f9371589-1b17-4e5b-9f8d-798055cdc662 | tcp | 0.0.0.0/0 | | None |
z6 V9 A6 l1 w, E+--------------------------------------+-------------+-----------+------------+-----------------------+ |
|
/4 
|返回首页|Archiver|小黑屋|易陆发现技术论坛
( 蜀ICP备2026014127号-1 )
窥视卡
雷达卡
发表于 2022-12-6 17:35:26
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
千斤顶
照妖镜