All Products
Search
Document Center

Resource Orchestration Service:ALIYUN::SLB::AccessControl

Last Updated:May 31, 2023

ALIYUN::SLB::AccessControl is used to create an access control list (ACL).

Syntax

{
  "Type": "ALIYUN::SLB::AccessControl",
  "Properties": {
    "AddressIPVersion": String,
    "AclName": String,
    "AclEntries": List,
    "Tags": List,
    "ResourceGroupId": String
  }
}

Properties

Property

Type

Required

Editable

Description

Constraint

AddressIPVersion

String

No

No

The IP version.

Valid values:

  • ipv4

  • ipv6

AclName

String

Yes

Yes

The name of the ACL.

None

ResourceGroupId

String

No

Yes

The ID of the resource group to which the ACL belongs.

None

AclEntries

List

No

No

The network ACL entries.

The list can contain up to 50 ACL entries.

For more information, see AclEntrys properties.

Tags

List

No

Yes

The tags of the ACL.

You can add up to 20 tags.

For more information, see Tags properties.

AclEntries syntax

"AclEntries": [
  {
    "comment": String,
    "entry": String
  }
]

AclEntries properties

Property

Type

Required

Editable

Description

Constraint

comment

String

No

No

The comments on ACL entries.

None

entry

String

Yes

No

The IP address or CIDR block.

None

Tags syntax

"Tags": [
  {
    "Key": String,
    "Value": String
  }
]  

Tags properties

Property

Type

Required

Editable

Description

Constraint

Key

String

Yes

No

The key of the tag.

The tag key must be 1 to 128 characters in length and cannot contain http:// or https://. The tag key cannot start with aliyun or acs:.

Value

String

No

No

The value of the tag.

The tag value can be up to 128 characters in length and cannot contain http:// or https://. The tag value cannot start with aliyun or acs:.

Return values

Fn::GetAtt

AclId: the ID of the ACL.

Examples

YAML format

ROSTemplateFormatVersion: '2015-09-01'
Parameters: {}
Resources:
  AccessControl:
    Type: ALIYUN::SLB::AccessControl
    Properties:
      AddressIPVersion: ipv4
      AclName:
        Ref: TestAcl
      AclEntrys:
        - entry: 0.0.0.0
Outputs:
  AclId:
    Description: The ID of the access control list.
    Value:
      Fn::GetAtt:
        - AccessControl
        - AclId

JSON format

{
  "ROSTemplateFormatVersion": "2015-09-01",
  "Parameters": {
  },
  "Resources": {
    "AccessControl": {
      "Type": "ALIYUN::SLB::AccessControl",
      "Properties": {
        "AddressIPVersion": "ipv4",
        "AclName": {
          "Ref": "TestAcl"
        },
        "AclEntrys": [
          {
            "entry": "0.0.0.0"
          }
        ]
      }
    }
  },
  "Outputs": {
    "AclId": {
      "Description": "The ID of the access control list.",
      "Value": {
        "Fn::GetAtt": [
          "AccessControl",
          "AclId"
        ]
      }
    }
  }
}