Creates a virtual private cloud (VPC) firewall. The VPC firewall protects mutual access traffic between a VPC and a specified network instance that is attached to a Cloud Enterprise Network (CEN) instance.

Description

You can call the CreateVpcFirewallCenConfigure operation to create a VPC firewall. The VPC firewall protects mutual access traffic between a VPC and a specified network instance that is attached to a CEN instance. The network instance can be a VPC, a virtual border router (VBR), or a Cloud Connect Network (CCN) instance. The VPC firewall cannot protect mutual access traffic between VBRs, between CCN instances, or between VBRs and CCN instances. For more information, see VPC firewall limits.

Limits

You can call this operation up to 10 times per second per account. When the number of calls to this operation per second exceeds the limit, throttling is triggered. Throttling may affect your business. We recommend that you take note of the limit on this operation.

Debugging

OpenAPI Explorer automatically calculates the signature value. For your convenience, we recommend that you call this operation in OpenAPI Explorer. OpenAPI Explorer dynamically generates the sample code of the operation for different SDKs.

Request parameters

Parameter Type Required Example Description
Action String Yes CreateVpcFirewallCenConfigure

The operation that you want to perform. Set the value to CreateVpcFirewallCenConfigure.

Lang String No zh

The language of the content within the request and response. Valid values:

  • zh: Chinese (default)
  • en: English
VpcFirewallName String Yes Test instance

The instance name of the VPC firewall.

NetworkInstanceId String Yes vpc-bp10zlifxh6j0232w****

The ID of the VPC for which you want to create the VPC firewall.

VpcRegion String Yes cn-hangzhou

The ID of the region to which the VPC belongs.

Note For more information about the regions, see Supported regions.
FirewallSwitch String Yes open

Specifies whether to enable the VPC firewall. Valid values:

  • open: After you create the VPC firewall, the VPC firewall is automatically enabled. This is the default value.
  • close: After you create the VPC firewall, the VPC firewall is disabled. You can call the ModifyVpcFirewallCenSwitchStatus operation to manually enable the VPC firewall.
CenId String Yes cen-x5jayxou71ad73****

The ID of the CEN instance.

MemberUid String No 258039427902****

The UID of the member that is managed by your Alibaba Cloud account.

Response parameters

Parameter Type Example Description
VpcFirewallId String vfw-m5e7dbc4y****

The instance ID of the VPC firewall.

RequestId String 850A84D6-0DE4-4797-A1E8-00090125h4j6

The ID of the request.

Examples

Sample requests

http(s)://[Endpoint]/?Action=CreateVpcFirewallCenConfigure
&Lang=zh
&VpcFirewallName=Test instance
&NetworkInstanceId=vpc-bp10zlifxh6j0232w****
&VpcRegion=cn-hangzhou
&FirewallSwitch=open
&CenId=cen-x5jayxou71ad73****
&MemberUid=258039427902****
&Common request parameters

Sample success responses

XML format

HTTP/1.1 200 OK
Content-Type:application/xml

<CreateVpcFirewallCenConfigureResponse>
    <VpcFirewallId>vfw-m5e7dbc4y****</VpcFirewallId>
    <RequestId>850A84D6-0DE4-4797-A1E8-00090125h4j6</RequestId>
</CreateVpcFirewallCenConfigureResponse>

JSON format

HTTP/1.1 200 OK
Content-Type:application/json

{
  "VpcFirewallId" : "vfw-m5e7dbc4y****",
  "RequestId" : "850A84D6-0DE4-4797-A1E8-00090125h4j6"
}