The following tables list API operations available for use in Cloud Firewall.

Firewall enabling and disabling

Operation Description
PutEnableFwSwitch Enables a firewall for the specified asset.
PutDisableFwSwitch Disables a firewall for the specified asset.
PutEnableAllFwSwitch Enables a firewall for all assets.
PutDisableAllFwSwitch Disables a firewall for all assets.

Access control

Operation Description
AddControlPolicy Creates an access control policy.
DescribeControlPolicy Queries the information about all access control policies.
DescribeDomainResolve Queries the DNS resolution result of a domain name.
DescribePolicyPriorUsed Queries the priority range of access control policies.
ModifyControlPolicy Modifies the configurations of an access control policy.
ModifyControlPolicyPosition Modifies the priority of an access control policy.
DeleteControlPolicy Deletes an access control policy.
DescribePolicyAdvancedConfig Queries the status of the strict mode for an access control policy.
ModifyPolicyAdvancedConfig Enables or disables the strict mode for an access control policy.

VPC firewalls

Operation Description
CreateVpcFirewallControlPolicy Creates an access control policy for the specified VPC firewall policy group.
DescribeVpcFirewallControlPolicy Queries the information about all access control policies of the specified VPC firewall.
DescribeVpcFirewallPolicyPriorUsed Queries the priority range of access control policies in the specified VPC firewall policy group.
DescribeVpcFirewallAclGroupList Queries the information about all access control policy groups of the VPC firewall.
ModifyVpcFirewallControlPolicy Modifies the configurations of an access control policy in the specified VPC firewall policy group.
ModifyVpcFirewallControlPolicyPosition Modifies the priority of an access control policy in the specified VPC firewall policy group.
ResetVpcFirewallRuleHitCount Clears the hits of an access control policy in the specified VPC firewall policy group.
DeleteVpcFirewallControlPolicy Deletes an access control policy in the specified VPC firewall policy group.

Address books

Operation Description
AddAddressBook Creates an access control address book, such as an IP address book, ECS tag address book, port address book, and domain address book.
DescribeAddressBook Queries details of an access control address book.
ModifyAddressBook Modifies an access control address book.
DeleteAddressBook Deletes an access control address book.