ModifyVpcFirewallConfigure - Cloud Firewall - Alibaba Cloud Documentation Center

Modifies the configuration of a VPC firewall that protects traffic between two VPCs connected by an Express Connect circuit.

Operation description

This operation modifies the configuration of a VPC firewall that protects traffic between two VPCs connected by an Express Connect circuit. Before you call this operation, you must create a VPC firewall by calling the CreateVpcFirewallConfigure operation.

Limits

The queries per second (QPS) limit for this operation is 10 for each Alibaba Cloud account. If you exceed the limit, your API calls are throttled, which may affect your business. We recommend that you plan your calls to stay within this limit.

Try it now

Try this API in OpenAPI Explorer, no manual signing needed. Successful calls auto-generate SDK code matching your parameters. Download it with built-in credential security for local usage.

Test

RAM authorization

No authorization for this operation. If you encounter issues with this operation, contact technical support.

Request parameters

Parameter	Type	Required	Description	Example
Lang	string	No	The language of the request and response. Valid values: zh (default): Chinese. en: English.	zh
VpcFirewallId	string	Yes	The instance ID of the VPC firewall. Note You can call the DescribeVpcFirewallList operation to query the instance IDs of VPC firewalls.	vfw-m5e7dbc4y****
VpcFirewallName	string	Yes	The instance name of the VPC firewall.	测试环境防火墙
LocalVpcCidrTableList	string	Yes	The CIDR block information for the local VPC, in JSON format. The value contains the following parameters: RouteTableId: The ID of the route table for the local VPC. RouteEntryList: The route entries, in JSON format. The value contains DestinationCidr (the destination CIDR block for the local VPC) and NextHopInstanceId (the next hop instance ID for the local VPC). Note You can call the DescribeVpcFirewallDetail operation to query the CIDR block information of the local VPC for the VPC firewall.	[{"RouteTableId":"vtb-1234","RouteEntryList":[{"DestinationCidr":"192.168.XX.XX/24","NextHopInstanceId":"vrt-m5eb5me6c3l5sezae**"}]},{"RouteTableId":"vtb-1235","RouteEntryList":[{"DestinationCidr":"192.168.XX.XX/24","NextHopInstanceId":"vrt-m5eb5me6c3l5sezae**"}]}]
PeerVpcCidrTableList	string	Yes	The CIDR block information for the peer VPC, in JSON format. The value contains the following parameters: RouteTableId: The ID of the route table for the peer VPC. RouteEntryList: The route entries, in JSON format. The value contains DestinationCidr (the destination CIDR block for the peer VPC) and NextHopInstanceId (the next hop instance ID for the peer VPC). Note You can call the DescribeVpcFirewallDetail operation to query the CIDR block information of the peer VPC for the VPC firewall.	[{"RouteTableId":"vtb-1234","RouteEntryList":[{"DestinationCidr":"192.168.XX.XX/24","NextHopInstanceId":"vrt-m5eb5me6c3l5sezae**"}]},{"RouteTableId":"vtb-1235","RouteEntryList":[{"DestinationCidr":"192.168.XX.XX/24","NextHopInstanceId":"vrt-m5eb5me6c3l5sezae**"}]}]
MemberUid	string	No	The UID of the member account.	258039427902****

Response elements

Element	Type	Description	Example
	object
RequestId	string	The ID of the request.	850A84D6-0DE4-4797-A1E8-00090125k6f8

Examples

Success response

JSON format

{
  "RequestId": "850A84D6-0DE4-4797-A1E8-00090125k6f8"
}

Error codes

HTTP status code	Error code	Error message	Description
400	ErrorAliUid	The aliuid is invalid.	The aliuid is invalid.
400	ErrorVpcFirewallNotFound	The specified VPC firewall does not exist. Please select again.	The specified VPC firewall does not exist. Enter another value.
400	ErrorDBSelectError	A database select error occurred.	The error message returned because an internal error has occurred in querying the database.
400	ErrorUnmarshalJSON	An error occurred while parsing JSON.	An error occurred while decoding JSON.
400	ErrorDBTxError	A database transaction error occurred.	The error message returned because an internal error has occurred in the database transaction.
400	ErrorDBUpdateError	A database update error occurred.
400	ErrorRecordLog	An error occurred while updating the operation log.	An error occurred while updating the operation log.
400	ErrorInvalidMemberUid	Member uid is invalid	The member is invalid.
400	ErrorFirewallId	Firewall ID is invalid.	The ID of the firewall is invalid.
400	ErrorFirewallName	Firewall name invalid.	Firewall name error, please re-enter.
400	ErrorDestCidrError	The destination CIDR block is invalid.	The specified destination CIDR block is invalid. Enter another value.
400	ErrorDestCidrEmpty	The target network segment is empty and cannot be created	The destination CIDR block is not specified. The firewall cannot be created.
400	ErrorVpcFirewallExist	Vpc firewall already exist.	The firewall is already configured and cannot be configured repeatedly.
400	ErrorFirewallStatusCannotModify	Current firewall status, configuration not allowed	You cannot configure the firewall because the status of the firewall is invalid.
400	ErrorSameCidrIp	The same network segment cannot be configured repeatedly. Please reselect the network segment.	The CIDR block is already in use. Specify another CIDR block.
400	ErrorCustomRouteEntryMax	The number of target network segments exceeds the maximum limit. Please reduce the number of network segments	The number of destination CIDR blocks exceeds the upper limit. Reduce the number of CIDR blocks.
400	ErrorCidrFormat	Cidr ip format error.	CIDR format error, please re-select
400	ErrorCidrIpAddress	Target network segment error, please reselect	The destination CIDR block is invalid. Specify another value.

See Error Codes for a complete list.

Release notes

See Release Notes for a complete list.