All Products
Search

This Product

    Cloud Firewall:API overview

    Document Center

    Cloud Firewall:API overview

    Last Updated:Dec 18, 2025

    API standard and pre-built SDKs in multi-language

    The OpenAPI specification of this product (Cloudfw/2017-12-07) follows the RPC standard. Alibaba Cloud provides pre-built SDKs for popular programming languages to abstract low-level complexities such as request signing. This enables developers to call APIs using language-specific syntax without dealing with HTTP details directly.

    Custom signature

    If your specific needs, such as a customized signature, are not supported by the SDK, manually sign requests using the signature mechanism. Note that manual signing requires significant effort (usually about 5 business days). For support, join our DingTalk group (ID: 147535001692).

    Before you begin

    An Alibaba Cloud account has full administrative privileges. A compromised AccessKey pair exposes all associated resources to unauthorized access, posing a significant security risk. Create a Resource Access Management (RAM) user with API-only access and use RAM policies to apply the principle of least privilege (PoLP). Alibaba Cloud accounts are only used when explicitly required.

    To call APIs securely, configure the following:

    API list

    API

    Title

    Description
    AddAclBackupData AddAclBackupData Creates an access control list (ACL) backup.
    AddAddressBook AddAddressBook Creates an address book. You can create an IPv4 address book, an ECS tag-based address book, an IPv6 address book, a domain name address book, or an ACK address book.
    AddControlPolicy AddControlPolicy Adds an access control policy.
    AddDnsFirewallPolicy AddDnsFirewallPolicy Adds a DNS firewall Access Control List (ACL).
    AddDomainResolveRealtimeTask AddDomainResolveRealtimeTask Creates a real-time domain name resolution task.
    AddInstanceMembers AddInstanceMembers Adds member accounts to Cloud Firewall.
    AddPrivateDnsDomainName AddPrivateDnsDomainName Adds a private DNS domain name.
    BatchCopyVpcFirewallControlPolicy BatchCopyVpcFirewallControlPolicy Copies all policies from a source VPC firewall policy group to a destination VPC firewall policy group.
    BatchDeleteVpcFirewallControlPolicy BatchDeleteVpcFirewallControlPolicy Deletes access control policies for a VPC firewall in a batch.
    ClearLogStoreStorage ClearLogStoreStorage Clears the storage for firewall logs.
    CreateAckClusterConnector CreateAckClusterConnector Creates an ACK cluster connector.
    CreateAclCheck CreateAclCheck Creates an access control list (ACL) check.
    CreateDownloadTask CreateDownloadTask Creates a file download task.
    CreateInstanceSyncTask CreateInstanceSyncTask Creates a sync task for Internet assets.
    CreateIpsPrivateAssoc CreateIpsPrivateAssoc Creates an association for private IP traffic tracing with the Intrusion Prevention System (IPS).
    CreateNatFirewallControlPolicy CreateNatFirewallControlPolicy Creates an access control policy for the NAT firewall.
    CreateNatFirewallPreCheck CreateNatFirewallPreCheck Runs a precheck for NAT firewall creation.
    CreateNatFirewallSyncTask CreateNatFirewallSyncTask Creates a sync task for NAT firewall assets.
    CreatePrivateDnsEndpoint CreatePrivateDnsEndpoint Creates a private DNS endpoint.
    CreateSecurityProxy CreateSecurityProxy Creates a NAT firewall.
    CreateSlsLogDispatch CreateSlsLogDispatch Create Cloud Firewall SLS Log Delivery
    CreateTrFirewallV2 CreateTrFirewallV2 Creates a VPC firewall for a transit router.
    CreateTrFirewallV2RoutePolicy CreateTrFirewallV2RoutePolicy Creates a routing rule for a VPC firewall for a transit router.
    CreateVpcFirewallCenConfigure CreateVpcFirewallCenConfigure Creates a VPC firewall to protect traffic between a network instance in a Cloud Enterprise Network (CEN) and a specified VPC.
    CreateVpcFirewallCenManualConfigure CreateVpcFirewallCenManualConfigure Manually creates a VPC border firewall.
    CreateVpcFirewallConfigure CreateVpcFirewallConfigure Creates a VPC firewall to protect traffic between two Virtual Private Clouds (VPCs) that are connected by an Express Connect circuit.
    CreateVpcFirewallControlPolicy CreateVpcFirewallControlPolicy Adds an access control policy to a policy group for a specified VPC firewall.
    CreateVpcFirewallPrecheck CreateVpcFirewallPrecheck Creates a precheck task before you create a VPC firewall.
    CreateVpcFirewallTask CreateVpcFirewallTask Creates an asset sync task for a Virtual Private Cloud (VPC) firewall.
    DeleteAckClusterConnector DeleteAckClusterConnector Deletes an ACK cluster connector.
    DeleteAclBackupData DeleteAclBackupData Deletes an access control list (ACL) backup.
    DeleteAddressBook DeleteAddressBook Deletes an address book.
    DeleteControlPolicy DeleteControlPolicy Deletes an access control policy.
    DeleteControlPolicyTemplate DeleteControlPolicyTemplate Deletes an access control policy template.
    DeleteDnsFirewallPolicy DeleteDnsFirewallPolicy Deletes a DNS firewall policy.
    DeleteDownloadTask DeleteDownloadTask Deletes a file download task.
    DeleteFirewallV2RoutePolicies DeleteFirewallV2RoutePolicies Deletes a routing policy for a VPC firewall for a transit router.
    DeleteInstanceMembers DeleteInstanceMembers Deletes Cloud Firewall member accounts.
    DeleteIpsPrivateAssoc DeleteIpsPrivateAssoc Associate an IPS with a private network.
    DeleteNatFirewallControlPolicy DeleteNatFirewallControlPolicy Deletes an access control policy for a NAT firewall.
    DeleteNatFirewallControlPolicyBatch DeleteNatFirewallControlPolicyBatch Deletes a batch of access control policies for a NAT firewall.
    DeletePrivateDnsAllDomainName DeletePrivateDnsAllDomainName Deletes all private DNS domain names.
    DeletePrivateDnsDomainName DeletePrivateDnsDomainName Deletes private DNS domain names.
    DeletePrivateDnsEndpoint DeletePrivateDnsEndpoint Deletes a private DNS endpoint.
    DeleteSecurityProxy DeleteSecurityProxy Deletes the specified NAT firewall.
    DeleteTrFirewallV2 DeleteTrFirewallV2 Deletes a VPC firewall for a transit router.
    DeleteVpcFirewallCenConfigure DeleteVpcFirewallCenConfigure Deletes a VPC firewall that protects traffic between a network instance in a Cloud Enterprise Network (CEN) and a specified VPC.
    DeleteVpcFirewallConfigure DeleteVpcFirewallConfigure Deletes a VPC firewall that protects traffic between two VPCs that are connected by an Express Connect circuit.
    DeleteVpcFirewallControlPolicy DeleteVpcFirewallControlPolicy Deletes an access control policy from a specific VPC firewall policy group.
    DescribeACLProtectTrend DescribeACLProtectTrend Queries the trend of traffic blocked by Internet access control.
    DescribeAITrafficAnalysisStatus DescribeAITrafficAnalysisStatus Queries the enabling status of AI-powered traffic analysis.
    DescribeAccessInstanceRegionList DescribeAccessInstanceRegionList Queries the regions that contain synchronization nodes.
    DescribeAccessInstanceTask DescribeAccessInstanceTask Queries the progress of a synchronization task on a node.
    DescribeAccessInstanceVSwitchList DescribeAccessInstanceVSwitchList Queries the vSwitches for synchronization nodes.
    DescribeAccessInstanceVpcList DescribeAccessInstanceVpcList Queries the VPCs associated with synchronization nodes.
    DescribeAccessInstanceZoneList DescribeAccessInstanceZoneList Returns a list of available zones for access instances.
    DescribeAckClusterConnector DescribeAckClusterConnector Describes a specified ACK cluster connector.
    DescribeAckClusterConnectors DescribeAckClusterConnectors Queries multiple ACK cluster connectors.
    DescribeAckClusterNamespaces DescribeAckClusterNamespaces Queries the namespaces of an Alibaba Cloud Container Service for Kubernetes (ACK) cluster.
    DescribeAckClusterPodLabels DescribeAckClusterPodLabels Queries the pod labels in an Alibaba Cloud Container Service for Kubernetes (ACK) cluster.
    DescribeAckClusters DescribeAckClusters Queries for Container Service for Kubernetes (ACK) clusters based on specified conditions, such as cluster type and specifications.
    DescribeAclApps DescribeAclApps Queries multiple access control applications.
    DescribeAclBackupList DescribeAclBackupList Queries a list of backups for Access Control Lists (ACLs).
    DescribeAclCheck DescribeAclCheck Queries the details of an Access Control List (ACL) check.
    DescribeAclCheckQuota DescribeAclCheckQuota Queries the quota for access control list (ACL) checks.
    DescribeAclChecks DescribeAclChecks Queries Access Control List (ACL) checks in batches.
    DescribeAclRuleCount DescribeAclRuleCount Queries the total number of Access Control List (ACL) configurations.
    DescribeAclWhitelist DescribeAclWhitelist Queries the Access Control List (ACL) whitelist.
    DescribeAddressBook DescribeAddressBook Queries a list of address books.
    DescribeAssetList DescribeAssetList Queries information about assets that are protected by Cloud Firewall.
    DescribeAssetRiskList DescribeAssetRiskList Retrieves a list of asset risk levels.
    DescribeAssetStatistic DescribeAssetStatistic Queries statistics about assets protected by Cloud Firewall.
    DescribeAttackAppCategory DescribeAttackAppCategory Queries a list of attack categories.
    DescribeBatchSlsDispatchStatus DescribeBatchSlsDispatchStatus Queries the status of batch log delivery.
    DescribeCfwRiskLevelSummary DescribeCfwRiskLevelSummary Queries the threat level summary for Cloud Firewall.
    DescribeClearAuthInfo DescribeClearAuthInfo Queries information about cleared authorizations.
    DescribeConfiguredDestinationIP DescribeConfiguredDestinationIP Queries the list of destination IP addresses for outbound connections.
    DescribeConfiguredDomainNames DescribeConfiguredDomainNames Queries the configured domain names for outbound connections.
    DescribeControlPolicy DescribeControlPolicy Retrieves information about all access control policies.
    DescribeControlPolicyDomainResolve DescribeControlPolicyDomainResolve Queries the domain name resolution results for an access control policy.
    DescribeCreatedNatFirewall DescribeCreatedNatFirewall Retrieves a list of created NAT firewalls.
    DescribeCtrlInstanceMemberAccounts DescribeCtrlInstanceMemberAccounts Queries a list of member accounts.
    DescribeDefaultIPSConfig DescribeDefaultIPSConfig Provides Intrusion Prevention System (IPS) protection for internet traffic.
    DescribeDnsFirewallPolicy DescribeDnsFirewallPolicy Queries the list of access control lists (ACLs) for the DNS firewall.
    DescribeDomainResolve DescribeDomainResolve Retrieves the Domain Name System (DNS) resolution results for a domain name.
    DescribeDownloadTask DescribeDownloadTask Queries file download tasks and returns the task information and download URLs.
    DescribeDownloadTaskType DescribeDownloadTaskType Queries the types of download tasks. The returned values are valid for the `TaskType` field in other API operations for download tasks.
    DescribeFirewallDropStatistics DescribeFirewallDropStatistics Retrieves statistics on packets dropped by the firewall.
    DescribeFirewallTask DescribeFirewallTask Retrieves the details of a firewall task.
    DescribeFirewallVSwitch DescribeFirewallVSwitch Queries the vSwitches that are created by Cloud Firewall.
    DescribeFirewallVswitchResources DescribeFirewallVswitchResources Describes the vSwitch resources for a firewall.
    DescribeInstanceMembers DescribeInstanceMembers Queries information about the member accounts of Cloud Firewall.
    DescribeInstanceRdAccounts DescribeInstanceRdAccounts Queries the member accounts in a resource directory for a Cloud Firewall instance.
    DescribeInstanceRiskLevels DescribeInstanceRiskLevels Describes the risk levels of instances.
    DescribeInternetDropTrafficTrend DescribeInternetDropTrafficTrend Trends in internet security.
    DescribeInternetOpenDetail DescribeInternetOpenDetail Retrieves the details of assets exposed to the Internet.
    DescribeInternetOpenIp DescribeInternetOpenIp Retrieves the details of a Cloud Firewall access control policy group.
    DescribeInternetOpenPort DescribeInternetOpenPort Queries the ports that are open to the Internet.
    DescribeInternetOpenService DescribeInternetOpenService Queries services exposed to the Internet.
    DescribeInternetOpenStatistic DescribeInternetOpenStatistic Retrieves statistics about assets exposed to the Internet.
    DescribeInternetServiceNameList DescribeInternetServiceNameList Retrieves a list of Internet service names.
    DescribeInternetSlb DescribeInternetSlb Queries the details of Internet-facing Server Load Balancer (SLB) instances.
    DescribeInternetTimeTop DescribeInternetTimeTop Queries the top Internet traffic statistics over time.
    DescribeInternetTrafficTop DescribeInternetTrafficTop Queries the trend graph of top Internet traffic.
    DescribeInternetTrafficTrend DescribeInternetTrafficTrend Queries Internet traffic trends.
    DescribeInvadeEcsTrend DescribeInvadeEcsTrend Describes the trend of compromised ECS instances.
    DescribeInvadeEventDetail DescribeInvadeEventDetail Retrieves the details of a breach awareness event.
    DescribeInvadeEventList DescribeInvadeEventList Queries breach awareness events detected by Cloud Firewall.
    DescribeInvadeEventNameList DescribeInvadeEventNameList Retrieves a list of vulnerability names.
    DescribeInvadeEventStatistic DescribeInvadeEventStatistic Queries statistics about intrusion events.
    DescribeIpsPrivateAssoc DescribeIpsPrivateAssoc Queries a list of IPS Private IP Tracing entries.
    DescribeIspInfo DescribeIspInfo Queries information about Internet Service Providers (ISPs).
    DescribeLocationInfo DescribeLocationInfo Retrieves information about geographic locations.
    DescribeLogStoreInfo Get Log Service Information Queries the details of a Logstore in Simple Log Service.
    DescribeMemberInfo DescribeMemberInfo Describes member information.
    DescribeNatAclPageStatus DescribeNatAclPageStatus Queries the paging status of NAT firewall access control lists (ACLs).
    DescribeNatFirewallAclGroupList DescribeNatFirewallAclGroupList Queries the access control groups for NAT firewalls.
    DescribeNatFirewallControlPolicy DescribeNatFirewallControlPolicy Queries the details of all access control policies for NAT firewalls.
    DescribeNatFirewallDropTrafficTrend DescribeNatFirewallDropTrafficTrend Describes the trend of traffic blocked by the NAT firewall on the Overview page.
    DescribeNatFirewallList DescribeNatFirewallList Queries NAT firewall details.
    DescribeNatFirewallPolicyPriorUsed DescribeNatFirewallPolicyPriorUsed Queries the used priority range of access control policies for a NAT firewall.
    DescribeNatFirewallPrecheckDetail DescribeNatFirewallPrecheckDetail Queries the precheck results for a NAT firewall.
    DescribeNatFirewallQuota DescribeNatFirewallQuota Retrieves the quotas for a NAT firewall.
    DescribeNatFirewallTimeTop DescribeNatFirewallTimeTop Retrieves the top traffic data for a NAT firewall at a specified time.
    DescribeNatFirewallTrafficTrend DescribeNatFirewallTrafficTrend Overview: NAT Traffic Trend
    DescribeNetworkInstanceList DescribeNetworkInstanceList Queries a list of network instances.
    DescribeNetworkInstanceRelationList DescribeNetworkInstanceRelationList Queries the relationships between network instances.
    DescribeNetworkTrafficTopRatio DescribeNetworkTrafficTopRatio Queries the top network traffic ratios.
    DescribeOpenIpAccessSrcStat DescribeOpenIpAccessSrcStat Retrieves statistics about access sources for public IP addresses.
    DescribeOutgoingAssetList DescribeOutgoingAssetList Retrieves a list of assets with outbound connections.
    DescribeOutgoingDestination DescribeOutgoingDestination This operation queries outbound destinations.
    DescribeOutgoingDestinationCategory DescribeOutgoingDestinationCategory Queries the destination categories for outbound connections.
    DescribeOutgoingDestinationIP DescribeOutgoingDestinationIP Queries the destination IP addresses of outbound connections.
    DescribeOutgoingDestinationIPDetail DescribeOutgoingDestinationIPDetail Retrieves the details of an outbound destination IP address.
    DescribeOutgoingDomain DescribeOutgoingDomain Queries the information about the domain names in outbound connections.
    DescribeOutgoingDomainDetail DescribeOutgoingDomainDetail Retrieves details about an outbound domain.
    DescribeOutgoingRiskDomainAndIpCount DescribeOutgoingRiskDomainAndIpCount Queries the number of intrusion prevention threats.
    DescribeOutgoingRiskTrend DescribeOutgoingRiskTrend Queries the threat trend of outbound connections.
    DescribeOutgoingStatistic DescribeOutgoingStatistic Retrieves statistics about outbound connections.
    DescribeOutgoingTag DescribeOutgoingTag This operation queries the tags of outbound connections.
    DescribePageDocuments DescribePageDocuments Queries the frequently asked questions (FAQ) for a page.
    DescribePolicyAdvancedConfig DescribePolicyAdvancedConfig Queries the status of strict mode for access control policies.
    DescribePolicyPriorUsed DescribePolicyPriorUsed Queries the priority range of access control policies.
    DescribePostpayEnabledProtection DescribePostpayEnabledProtection Queries the status of pay-as-you-go protection.
    DescribePostpayTrafficDetail DescribePostpayTrafficDetail Queries the details of pay-as-you-go traffic.
    DescribePostpayTrafficTotal DescribePostpayTrafficTotal Queries the total pay-as-you-go traffic, which includes traffic from all border firewalls.
    DescribePostpayUserInternetStatus DescribePostpayUserInternetStatus Queries the status of the Internet Border firewall for a pay-as-you-go instance.
    DescribePostpayUserNatStatus DescribePostpayUserNatStatus Queries the NAT border firewall status for a pay-as-you-go Cloud Firewall.
    DescribePostpayUserVpcStatus DescribePostpayUserVpcStatus Queries the VPC border firewall status for a pay-as-you-go user.
    DescribePrefixLists DescribePrefixLists Queries prefix lists.
    DescribePrivateDnsDomainNameList DescribePrivateDnsDomainNameList Queries a list of private DNS domain names.
    DescribePrivateDnsEndpointDetail DescribePrivateDnsEndpointDetail Queries the details of a private DNS endpoint.
    DescribePrivateDnsEndpointList DescribePrivateDnsEndpointList Queries a list of private DNS endpoints.
    DescribePrivateDnsStatistics DescribePrivateDnsStatistics Returns statistics about private DNS.
    DescribeRegionInfo DescribeRegionInfo Queries information about regions.
    DescribeResourceTypeAutoEnable DescribeResourceTypeAutoEnable Queries the default traffic redirection settings for an asset type.
    DescribeRiskEventGroup DescribeRiskEventGroup Retrieves the details of intrusion prevention events.
    DescribeRiskEventPayload DescribeRiskEventPayload Queries the attack payloads of intrusion events.
    DescribeRiskEventStatistic DescribeRiskEventStatistic Queries statistics about intrusion prevention events.
    DescribeRiskEventTopAttackApp DescribeRiskEventTopAttackApp Queries the ranking of applications targeted by intrusion prevention attacks.
    DescribeRiskEventTopAttackAsset DescribeRiskEventTopAttackAsset Queries the top assets targeted by attacks.
    DescribeRiskEventTopAttackType DescribeRiskEventTopAttackType Retrieves a list of the top attack types for intrusion prevention events.
    DescribeRiskSecurityGroupDetail DescribeRiskSecurityGroupDetail Retrieves the details of a risk security group.
    DescribeSdlEventDetail DescribeSdlEventDetail Retrieves the details of a data leak event.
    DescribeSdlEventList DescribeSdlEventList Retrieves a list of data leak events.
    DescribeSdlEventSdList DescribeSdlEventSdList Retrieves the list of sensitive data from a data breach.
    DescribeSdlEventStatistic DescribeSdlEventStatistic Queries statistics about data leaks.
    DescribeSdlStatistic DescribeSdlStatistic Describes the details of sensitive data.
    DescribeSecurityMode DescribeSecurityMode Queries the status of the safe mode.
    DescribeSecurityProxy DescribeSecurityProxy Retrieves information about NAT firewalls.
    DescribeSecurityProxyResources DescribeSecurityProxyResources Queries the resources of a NAT firewall.
    DescribeSensitiveSwitch DescribeSensitiveSwitch Queries the status of the sensitive data detection switch.
    DescribeSignatureLibVersion DescribeSignatureLibVersion Queries information about signature library versions.
    DescribeSlrGrant DescribeSlrGrant Queries the authorization information for a service-linked role (SLR).
    DescribeSlsAnalyzeOpenStatus DescribeSlsAnalyzeOpenStatus Queries the enabled status of Log Service (SLS).
    DescribeThreatIntelligenceSwitch DescribeThreatIntelligenceSwitch Queries information about threat intelligence configurations.
    DescribeTrFirewallPolicyBackUpAssociationList DescribeTrFirewallPolicyBackUpAssociationList You can obtain an ACL backup for a VPC firewall for a transit router.
    DescribeTrFirewallV2RoutePolicyList DescribeTrFirewallV2RoutePolicyList Queries the list of routing policies for a VPC firewall for a transit router.
    DescribeTrFirewallsV2Detail DescribeTrFirewallsV2Detail Queries the details of a VPC firewall for a transit router.
    DescribeTrFirewallsV2List DescribeTrFirewallsV2List Queries the list of VPC firewalls for a transit router.
    DescribeTrFirewallsV2RouteList DescribeTrFirewallsV2RouteList Queries the route tables for a VPC firewall for a transit router.
    DescribeTrafficLog DescribeTrafficLog Queries log traffic information.
    DescribeTransitRouterResourcesList DescribeTransitRouterResourcesList Queries the list of Transit Router (TR) vSwitch resources.
    DescribeUnprotectedPortTrend DescribeUnprotectedPortTrend Describes the trend of unprotected ports.
    DescribeUnprotectedVulnTrend DescribeUnprotectedVulnTrend Queries the trend of unprotected vulnerabilities.
    DescribeUserAlarmConfig DescribeUserAlarmConfig Queries the alert configurations for a user.
    DescribeUserAssetIPTrafficInfo DescribeUserAssetIPTrafficInfo Queries the traffic information for a specified asset.
    DescribeUserBuyVersion DescribeUserBuyVersion Retrieves user version information.
    DescribeUserIPSWhitelist DescribeUserIPSWhitelist Queries the IP address whitelist used by the intrusion prevention system (IPS) for the Internet Border.
    DescribeVfwIPSConfigList DescribeVfwIPSConfigList Queries the intrusion prevention system (IPS) configurations for VPC firewalls.
    DescribeVpcFirewallAccessDetail DescribeVpcFirewallAccessDetail Queries the access details of a VPC firewall.
    DescribeVpcFirewallAclGroupList DescribeVpcFirewallAclGroupList Queries information about all access control policy groups for a VPC firewall.
    DescribeVpcFirewallAssetList DescribeVpcFirewallAssetList Retrieves a list of assets protected by the VPC firewall.
    DescribeVpcFirewallAssetRegionList DescribeVpcFirewallAssetRegionList Returns a list of regions in which the VPC firewall is enabled.
    DescribeVpcFirewallCenDetail DescribeVpcFirewallCenDetail Queries the details of a VPC firewall that protects traffic between a network instance in a Cloud Enterprise Network (CEN) and a specified VPC.
    DescribeVpcFirewallCenList DescribeVpcFirewallCenList Queries the details of VPC firewalls that protect traffic between a specified VPC and network instances in a Cloud Enterprise Network (CEN) instance.
    DescribeVpcFirewallCenSummaryList DescribeVpcFirewallCenSummaryList Queries a list of Cloud Enterprise Network (CEN) instances for a VPC.
    DescribeVpcFirewallControlPolicy DescribeVpcFirewallControlPolicy Queries all access control policies for a specified VPC firewall.
    DescribeVpcFirewallDefaultIPSConfig DescribeVpcFirewallDefaultIPSConfig Queries the intrusion prevention configuration of a specified VPC firewall.
    DescribeVpcFirewallDetail DescribeVpcFirewallDetail Queries the details of a VPC firewall that protects traffic between two VPCs connected by an Express Connect circuit.
    DescribeVpcFirewallDropTrafficTrend DescribeVpcFirewallDropTrafficTrend Queries the traffic drop trend for a VPC firewall.
    DescribeVpcFirewallIPSWhitelist DescribeVpcFirewallIPSWhitelist Describes the intrusion prevention system (IPS) whitelist for a VPC firewall.
    DescribeVpcFirewallList DescribeVpcFirewallList Queries information about a VPC firewall that protects traffic between two VPCs connected by an Express Connect circuit.
    DescribeVpcFirewallManualVSwitchList DescribeVpcFirewallManualVSwitchList Queries the vSwitches of a VPC firewall that operates in manual mode.
    DescribeVpcFirewallPolicyPriorUsed DescribeVpcFirewallPolicyPriorUsed Queries the effective priority range for access control policies in a specified VPC firewall policy group.
    DescribeVpcFirewallPrecheckDetail DescribeVpcFirewallPrecheckDetail Retrieves the details of a VPC firewall precheck.
    DescribeVpcFirewallSummaryInfo DescribeVpcFirewallSummaryInfo Queries the summary of VPC firewalls.
    DescribeVpcFirewallZone DescribeVpcFirewallZone Describes the available zones for a VPC firewall.
    DescribeVpcListLite DescribeVpcListLite Queries the list of VPCs.
    DescribeVpcZone DescribeVpcZone Queries the zones that are available for VPCs.
    DescribeVulnerabilityProtectedList DescribeVulnerabilityProtectedList Retrieves a list of vulnerabilities that Cloud Firewall can protect against.
    DisableSdlProtectedAsset DisableSdlProtectedAsset Disables sensitive data discovery for a protected asset.
    EnableSdlProtectedAsset EnableSdlProtectedAsset Enables data breach protection for assets.
    GetTlsInspectCertificateDownloadUrl GetTlsInspectCertificateDownloadUrl Retrieves the download path for the certificate of a Transport Layer Security (TLS) inspection policy.
    ListTlsInspectCACertificates ListTlsInspectCACertificates This operation lists the Transport Layer Security (TLS) inspection certificate authority (CA) certificates.
    ModifyAddressBook ModifyAddressBook Modifies an address book.
    ModifyControlPolicy ModifyControlPolicy Modifies the configurations of an access control policy.
    ModifyControlPolicyPosition ModifyControlPolicyPosition Modifies the priority of an IPv4 access control policy for an Internet firewall. The source and destination IP addresses in the policy must be in IPv4 format.
    ModifyControlPolicyPriority ModifyControlPolicyPriority Modifies the priority of an access control policy.
    ModifyDefaultIPSConfig ModifyDefaultIPSConfig Modifies the default intrusion prevention system (IPS) configuration.
    ModifyDnsFirewallPolicy ModifyDnsFirewallPolicy Modifies a DNS firewall rule.
    ModifyFirewallV2RoutePolicySwitch ModifyFirewallV2RoutePolicySwitch Enables or disables a routing policy.
    ModifyInstanceMemberAttributes ModifyInstanceMemberAttributes Updates the information about members in Cloud Firewall.
    ModifyIpsRules ModifyIpsRules Modifies Intrusion Prevention System (IPS) rules.
    ModifyIpsRulesToDefault ModifyIpsRulesToDefault Resets the IPS rules to their default settings.
    ModifyNatFirewallControlPolicy ModifyNatFirewallControlPolicy Modifies the configuration of an access control policy for a NAT firewall.
    ModifyNatFirewallControlPolicyPosition ModifyNatFirewallControlPolicyPosition Modifies the priority of an access control policy for a NAT firewall.
    ModifyObjectGroupOperation ModifyObjectGroupOperation Modifies an object group operation.
    ModifyPolicyAdvancedConfig ModifyPolicyAdvancedConfig Enables or disables the strict mode for access control policies.
    ModifyPrivateDnsEndpoint ModifyPrivateDnsEndpoint Modifies a private DNS endpoint.
    ModifyResourceTypeAutoEnable ModifyResourceTypeAutoEnable Modifies the automatic protection settings for new assets.
    ModifySensitiveSwitch ModifySensitiveSwitch Modifies the status of the sensitive data detection switch.
    ModifySlsDispatchStatus ModifySlsDispatchStatus Modifies the log delivery status for Simple Log Service (SLS).
    ModifyThreatIntelligenceSwitch ModifyThreatIntelligenceSwitch Modifies the threat intelligence configuration.
    ModifyTrFirewallV2Configuration ModifyTrFirewallV2Configuration Modifies the configuration of a VPC firewall for a transit router.
    ModifyTrFirewallV2RoutePolicyScope ModifyTrFirewallV2RoutePolicyScope Modifies the scope of a routing policy for a VPC firewall that is created for a Transit Router (TR).
    ModifyUserAlarmConfig ModifyUserAlarmConfig Modifies the alert configuration for a user.
    ModifyUserIPSWhitelist ModifyUserIPSWhitelist Modifies the intrusion prevention system (IPS) whitelist for the Internet Border.
    ModifyUserSlsLogStorageTime ModifyUserSlsLogStorageTime Modifies the storage duration of user logs.
    ModifyVpcFirewallAclEngineMode ModifyVpcFirewallAclEngineMode Modifies the ACL engine mode for a VPC firewall.
    ModifyVpcFirewallCenConfigure ModifyVpcFirewallCenConfigure Modifies the configuration of a VPC firewall that protects traffic between network instances in a Cloud Enterprise Network (CEN) and a specified VPC.
    ModifyVpcFirewallCenSwitchStatus ModifyVpcFirewallCenSwitchStatus Modifies the status of a VPC firewall that protects traffic between network instances in a Cloud Enterprise Network (CEN) and a specified VPC.
    ModifyVpcFirewallConfigure ModifyVpcFirewallConfigure Modifies the configuration of a VPC firewall that protects traffic between two VPCs connected by an Express Connect circuit.
    ModifyVpcFirewallControlPolicy ModifyVpcFirewallControlPolicy Modifies an access control policy in a policy group for a VPC firewall.
    ModifyVpcFirewallControlPolicyPosition ModifyVpcFirewallControlPolicyPosition Modifies the priority of an access control policy in a policy group for a VPC firewall.
    ModifyVpcFirewallDefaultIPSConfig ModifyVpcFirewallDefaultIPSConfig Modifies the intrusion prevention configuration of a VPC firewall.
    ModifyVpcFirewallIPSWhitelist ModifyVpcFirewallIPSWhitelist Modifies the intrusion prevention system (IPS) whitelist for a VPC firewall.
    ModifyVpcFirewallSwitchStatus ModifyVpcFirewallSwitchStatus Enables or disables a VPC firewall. A VPC firewall protects traffic between two VPCs that are connected by an Express Connect circuit.
    PutDisableAllFwSwitch PutDisableAllFwSwitch Disables all firewall switches.
    PutDisableFwSwitch PutDisableFwSwitch Disables a firewall switch.
    PutEnableAllFwSwitch PutEnableAllFwSwitch Enables all firewall switches.
    PutEnableFwSwitch PutEnableFwSwitch Enables the firewall.
    ReleaseExpiredInstance ReleaseExpiredInstance Releases an expired instance.
    ReleasePostInstance ReleasePostInstance Releases a pay-as-you-go firewall.
    ResetNatFirewallRuleHitCount ResetNatFirewallRuleHitCount Resets the hit count of a NAT firewall rule.
    ResetRuleHitCount ResetRuleHitCount Resets the hit count of a rule.
    ResetVpcFirewallRuleHitCount ResetVpcFirewallRuleHitCount Resets the hit count of an access control policy in a specified VPC firewall policy group to zero.
    SwitchSecurityProxy SwitchSecurityProxy Enables or disables a NAT firewall.
    UpdateAITrafficAnalysisStatus UpdateAITrafficAnalysisStatus Changes the enabling status of AI-powered traffic analysis.
    UpdateAckClusterConnector UpdateAckClusterConnector Updates an ACK cluster connector.
    UpdateAclCheckDetailStatus UpdateAclCheckDetailStatus Updates the status of an access control list (ACL) check detail.
    UpdatePostpayUserInternetStatus UpdatePostpayUserInternetStatus Updates the Internet Border firewall status for a pay-as-you-go user.
    UpdatePostpayUserNatStatus UpdatePostpayUserNatStatus Updates the status of a NAT border firewall for a pay-as-you-go instance.
    UpdatePostpayUserVpcStatus UpdatePostpayUserVpcStatus Updates the status of the VPC border firewall for a pay-as-you-go user.
    UpdateSecurityProxy UpdateSecurityProxy Updates a NAT firewall.
    UseAclBackupData UseAclBackupData Restores access control policies from a backup.