Queries the intrusion prevention configurations of a virtual private cloud (VPC) firewall.


You can call the DescribeVpcFirewallDefaultIPSConfig operation to query the intrusion prevention configurations of a VPC firewall.


You can call this operation up to 10 times per second per account. If the number of the calls per second exceeds the limit, throttling is triggered. As a result, your business may be affected. We recommend that you take note of the limit when you call this operation.


OpenAPI Explorer automatically calculates the signature value. For your convenience, we recommend that you call this operation in OpenAPI Explorer. OpenAPI Explorer dynamically generates the sample code of the operation for different SDKs.

Request parameters

Parameter Type Required Example Description
Action String Yes DescribeVpcFirewallDefaultIPSConfig

The operation that you want to perform. Set the value to DescribeVpcFirewallDefaultIPSConfig.

VpcFirewallId String Yes vfw-m5e7dbc4y****

The instance ID of the VPC firewall. Valid values:

  • If the VPC firewall protects mutual access traffic between a VPC and a specified network instance that is attached to a Cloud Enterprise Network (CEN) instance, the value of this parameter is the ID of the CEN instance. The network instance can be a VPC, a virtual border router (VBR), or a Cloud Connect Network (CCN) instance. You can call the DescribeVpcFirewallCenList operation to query the IDs of CEN instances.
  • If the VPC firewall protects traffic between two VPCs that are connected by using an Express Connect circuit, the value of this parameter is the instance ID of the VPC firewall. You can call the DescribeVpcFirewallList operation to query the instance IDs of VPC firewalls.
MemberUid String No 258039427902****

The UID of the member that is managed by your Alibaba Cloud account.

Response parameters

Parameter Type Example Description
RequestId String 850A84D6-0DE4-4797-A1E8-00090125adf1

The ID of the request.

RunMode Integer 0

The mode of the intrusion prevention system (IPS). Valid values:

  • 1: block mode
  • 0: monitor mode
EnableAllPatch Integer 1

Indicates whether virtual patching is enabled. Valid values:

  • 1: yes
  • 0: no
BasicRules Integer 1

Indicates whether basic policies is enabled. Valid values:

  • 1: yes
  • 0: no


Sample requests

&Common request parameters

Sample success responses

XML format

HTTP/1.1 200 OK


JSON format

HTTP/1.1 200 OK

  "RequestId" : "850A84D6-0DE4-4797-A1E8-00090125adf1",
  "RunMode" : 0,
  "EnableAllPatch" : 1,
  "BasicRules" : 1