DescribeAclChecks - Cloud Firewall - Alibaba Cloud Documentation Center

Queries Access Control List (ACL) checks in batches.

Operation description

QPS limit

The queries per second (QPS) limit for a single user is 10 calls per second. If this limit is exceeded, your API calls are throttled. This may affect your business. We recommend that you plan your calls accordingly.

Try it now

Try this API in OpenAPI Explorer, no manual signing needed. Successful calls auto-generate SDK code matching your parameters. Download it with built-in credential security for local usage.

Test

RAM authorization

No authorization for this operation. If you encounter issues with this operation, contact technical support.

Request parameters

Parameter	Type	Required	Description	Example
Lang	string	No	The language. Valid values: en : English zh : Chinese	zh
AclType	string	Yes	The type of ACL check. Valid values: NAT : NAT Border AddressBook : Address book VPC : VPC Border Internet : Internet Border	VPC

Response elements

Element	Type	Description	Example
	object
RequestId	string	The request ID.	9AABB1B7-C81F-5158-9EF9-B2DD5D3D****
CheckRecords	object	The list of ACL check records.
AclType	string	The type of ACL check. Valid values: NAT : NAT Border AddressBook : Address book VPC : VPC Border Internet : Internet Border	Internet
Records	array<object>	The list of ACL check records.
	object	The ACL check record.
CheckName	string	The name of the ACL check. Valid values: PolicyDuplicate : Duplicate or redundant policy PolicyConflict : Policy that conflicts with business AddressBookIpSeparated : Duplicate, overlapping, or scattered IP address books DefaultPolicyNotDeny : The default policy is not a Deny All whitelist mechanism PolicySourceDestinationSame : Invalid policy where the source and destination are the same PolicyPortHighRisk : Risky policy that allows traffic on high-risk ports PolicyTooLoose : The control policy is too loose PolicyHitCountZero : Policy with no traffic hits AddressBookPortSeparated : Duplicate, overlapping, or scattered port address books AddressBookDomainValid : Validity check for domain name address books	AddressBookDomainValid
CheckStatus	string	The status of the ACL check item. Valid values: Checked : The item has been checked. Unchecked : The item is waiting to be checked. Checking : The item is being checked.	Checked
CheckType	string	The type of ACL check. Valid values: InvalidPolicy : Invalid policy AddressBookGather : Address book aggregation HighRisk : Threat reduction	AddressBookGather
LastCheckTime	string	The UNIX timestamp of the last check, in seconds.	1724982259
Level	string	The risk level. Valid values: High : High Low : Low Medium : Medium	Medium
AclPendingCount	integer	The number of pending ACL check tasks.	1
AclTotalCount	integer	The total number of ACL checks.	10
TaskId	string	The ID of the ACL check task.	task-c92d4544ef7b6a42

Examples

Success response

JSON format

{
  "RequestId": "9AABB1B7-C81F-5158-9EF9-B2DD5D3D****",
  "CheckRecords": {
    "AclType": "Internet",
    "Records": [
      {
        "CheckName": "AddressBookDomainValid",
        "CheckStatus": "Checked",
        "CheckType": "AddressBookGather",
        "LastCheckTime": "1724982259",
        "Level": "Medium",
        "AclPendingCount": 1,
        "AclTotalCount": 10,
        "TaskId": "task-c92d4544ef7b6a42"
      }
    ]
  }
}

Error codes

See Error Codes for a complete list.

Release notes

See Release Notes for a complete list.