- 积分
- 11080
在线时间 小时
最后登录1970-1-1
|
楼主 |
发表于 2022-12-6 17:36:32
|
显示全部楼层
添加所有icmp规则出口& t1 B" S9 ^2 D; l( a$ N- }
' L2 z! }8 k2 S1 m1 r% J3 Y" H
openstack security group rule create --protocol icmp --egress 712025d7-6aa6-40e4-9104-4df6706b6697
# K+ q" U; f- f& n9 v* b+ B' l
9 c8 t: j$ Q. [# U8 q$ {Copy. N- W' `, S% \. F' [/ g" o
[root@controller ~]# openstack security group rule create --protocol icmp --egress 712025d7-6aa6-40e4-9104-4df6706b6697
i6 M! [$ Y) R5 w. }+-------------------+--------------------------------------+
0 J) y, @" E9 n- A s| Field | Value |9 ?: @# M. K7 S+ z8 i6 d. k
+-------------------+--------------------------------------+
" C6 ]- f$ }0 z- {/ v| created_at | 2022-04-30T21:27:42Z |
% W9 i$ v6 r$ P* i- p+ t| description | |; Y9 _$ h: n8 Q7 V7 J' F, r
| direction | egress |1 l9 V; v3 h# \8 f
| ether_type | IPv4 |
+ H. F. R/ }* y9 g# t# s, p7 D- W| id | ede63376-0eeb-4a6b-9dd9-f3a63418c85b |
6 P! k; d0 n3 D4 t8 n0 O| name | None |
2 O+ \) f7 L8 B) L' || port_range_max | None |9 ^/ G# x7 K; i- C$ Q/ v9 l
| port_range_min | None |
' b0 T1 q( y( |( C( z| project_id | 0635fff1ca6c42ab983e8a05d533eda3 |9 A. f3 ^. f# b
| protocol | icmp |+ s$ L& H6 k* p4 i1 b5 N. u4 n" r0 x
| remote_group_id | None |
" K' R! Y- Z6 h% _| remote_ip_prefix | 0.0.0.0/0 |
x" m, e+ u1 T| revision_number | 0 |2 c' \' L& b$ K v
| security_group_id | 712025d7-6aa6-40e4-9104-4df6706b6697 |( q; K5 N' ]- E% d" e4 P1 {
| updated_at | 2022-04-30T21:27:42Z | z( }+ n! l( u" S: P: j7 b4 a$ @
+-------------------+--------------------------------------+4 ]% ^; G' y9 z$ g" S) t
添加所有udp规则入口" C" ~* C. x8 L+ H& ^, Y: V2 q7 a% [) P
/ }/ o0 p* n9 a* p
openstack security group rule create --protocol udp --ingress 712025d7-6aa6-40e4-9104-4df6706b6697
, S" I9 H& [* n* C6 [' R0 t! z6 O; I1 D P: n# {6 L2 t
添加所有udp规则出口
4 t. x' P# N( G" X+ O! l
" L. ^% [3 h6 a" ~% D7 Q) y7 \openstack security group rule create --protocol udp --egress 712025d7-6aa6-40e4-9104-4df6706b6697
& a# M5 l+ e% F/ C0 l2 s3 D
4 S$ D: {. N! Q6 _添加所有tcp规则入口
$ n5 Q O0 i X0 U, K$ [, o' \* R B2 ~+ z8 m+ S
openstack security group rule create --protocol tcp --ingress 712025d7-6aa6-40e4-9104-4df6706b66971 f- C5 X6 q, ?
% E3 `: \ f$ F. }3 p/ v3 M6 Y2 F
添加所有tcp规则出口' U1 V# F6 [+ b/ V) a
6 I3 H( n7 d' C- t9 _5 H2 T- h
openstack security group rule create --protocol tcp --egress 712025d7-6aa6-40e4-9104-4df6706b6697' K) L8 d6 n9 `% G' n
% i y9 \: ~( i; l% N
查看安全组规则: @( ~/ Z" K0 G; f% F
7 ]: Q, O. k& ~! h4 Gopenstack security group rule list 712025d7-6aa6-40e4-9104-4df6706b6697" h3 L; E) V) J# B2 I/ m
& t$ Y$ ]: q6 e8 E% _$ ]; Z7 z
Copy
+ ~- G* T; T$ r: O, k0 S9 q7 D- k[root@controller ~]# openstack security group rule list 712025d7-6aa6-40e4-9104-4df6706b6697
J* A; J+ f, t& ]& v8 v6 _# F4 P+--------------------------------------+-------------+-----------+------------+-----------------------+2 e) R3 Q5 p/ {7 h; a9 s6 z5 G: B
| ID | IP Protocol | IP Range | Port Range | Remote Security Group |
% {2 N6 i2 U/ j; ~1 F! C+--------------------------------------+-------------+-----------+------------+-----------------------+$ C; V# }( Q" U; M) j1 @* k
| 869e67e5-5571-4c03-a21c-715e3dd51a5c | icmp | 0.0.0.0/0 | | None |
9 W$ v7 |2 o$ v& Y| 8a91bc8e-c9cd-4bf1-86ae-0c6d9eef67e7 | udp | 0.0.0.0/0 | | None |& F! H' a! F1 |4 e% e6 Y
| b525b93f-ffb6-4b84-be99-fdfd6f0fad75 | tcp | 0.0.0.0/0 | | None |- W: J+ D+ p5 V" U5 `6 h
| dfea0691-0903-4cdf-b775-297eb6858f0d | udp | 0.0.0.0/0 | | None |
: l! f: [% y6 k% G- U9 k9 h| ede63376-0eeb-4a6b-9dd9-f3a63418c85b | icmp | 0.0.0.0/0 | | None |
3 e- ?6 M; x5 }' v4 A6 q7 b2 \$ d| f9371589-1b17-4e5b-9f8d-798055cdc662 | tcp | 0.0.0.0/0 | | None |9 B* {8 M3 R' v" q* ]5 D
+--------------------------------------+-------------+-----------+------------+-----------------------+ |
|
/4 
窥视卡
雷达卡
发表于 2022-12-6 17:35:26
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
千斤顶
照妖镜