- 积分
- 16840
在线时间 小时
最后登录1970-1-1
|
楼主 |
发表于 2022-12-6 17:36:32
|
显示全部楼层
添加所有icmp规则出口
0 ]" m1 r+ x" Q: x- x! u( Z4 X1 ~% @1 R
openstack security group rule create --protocol icmp --egress 712025d7-6aa6-40e4-9104-4df6706b66977 h. y2 y3 ?3 e+ A' n7 {- i, A
5 F) x; o; V- Z: r: _2 ~
Copy
/ h+ n* E8 S, g[root@controller ~]# openstack security group rule create --protocol icmp --egress 712025d7-6aa6-40e4-9104-4df6706b6697
+ A: L; {& K9 W+ c/ z+-------------------+--------------------------------------+
: f0 }! h: |0 e8 k- `| Field | Value |
0 t5 e7 t9 R' M2 ]# b5 C$ D+-------------------+--------------------------------------+! R+ {0 R9 P2 [) S
| created_at | 2022-04-30T21:27:42Z |
0 M; C$ T9 O7 K* R| description | |
* M/ ^: X4 A" J8 B: ]1 A| direction | egress |, u2 d2 g# H) ] A1 n8 {! g
| ether_type | IPv4 |7 z& }1 [3 U) ~5 q/ c
| id | ede63376-0eeb-4a6b-9dd9-f3a63418c85b |/ ]4 L; m7 F- M& r7 ^1 p. ~
| name | None |
8 t/ l+ R/ F. ]4 K| port_range_max | None |
4 j8 @! H1 g' y0 ?3 s4 G* I| port_range_min | None |4 Z; h; C5 g1 b. h6 {- h3 v
| project_id | 0635fff1ca6c42ab983e8a05d533eda3 |
1 `( P+ E( q* b! H| protocol | icmp |& J" n$ L* W# f8 i2 y1 A( t) c
| remote_group_id | None |5 s3 E3 R- e6 I% H
| remote_ip_prefix | 0.0.0.0/0 |
$ {& \# i' f+ N: v| revision_number | 0 |+ k' u' d0 _& f3 P/ `9 c6 w
| security_group_id | 712025d7-6aa6-40e4-9104-4df6706b6697 |. w0 R/ e, f% m+ t) }4 g2 y6 u
| updated_at | 2022-04-30T21:27:42Z |
' I: y; Q& J& Z( [2 h4 s$ a+-------------------+--------------------------------------+
& D) c5 f1 L3 O% L: ]添加所有udp规则入口/ o' I7 c) k3 ?7 [4 G" W
3 u4 Y1 _! ]# m/ Sopenstack security group rule create --protocol udp --ingress 712025d7-6aa6-40e4-9104-4df6706b66978 a0 q; K7 Z- T2 v
8 }/ G" z9 N4 J; D8 \/ ~/ N% w添加所有udp规则出口
6 c- s& h$ _7 {' H `2 ?
' s8 P: E. j- uopenstack security group rule create --protocol udp --egress 712025d7-6aa6-40e4-9104-4df6706b6697, }8 J- C6 {, h0 U
' c; V1 g" r6 d/ E( w/ R添加所有tcp规则入口& Y& ?. v! y4 h* o9 M+ X f
N, }( H- }' p7 Uopenstack security group rule create --protocol tcp --ingress 712025d7-6aa6-40e4-9104-4df6706b6697
" s; Q+ N% _) q: ^: l/ |" I2 K( s
添加所有tcp规则出口
2 C, n! v9 v0 S. }! {5 F, s7 d, S4 L2 n% d2 `7 }6 z/ g( g
openstack security group rule create --protocol tcp --egress 712025d7-6aa6-40e4-9104-4df6706b6697
4 Q: _' R6 `& @, |: u8 I4 \/ F+ x) u; P' \
查看安全组规则
4 }' f$ O* X! y- D2 i( }9 a0 K
. v! Z+ P+ X9 x" Vopenstack security group rule list 712025d7-6aa6-40e4-9104-4df6706b6697
& y1 c/ C0 h$ z/ D1 z) V" N+ t- L
7 p6 |# l+ W8 L- P1 m6 H2 h7 V4 w6 }2 NCopy+ K" M# y/ ^4 |. E
[root@controller ~]# openstack security group rule list 712025d7-6aa6-40e4-9104-4df6706b6697, K v- e: o3 ^; \
+--------------------------------------+-------------+-----------+------------+-----------------------+1 ~9 F/ o4 ]! }. A$ ~
| ID | IP Protocol | IP Range | Port Range | Remote Security Group |
& Y3 w% B' N3 U& o+--------------------------------------+-------------+-----------+------------+-----------------------+
9 K8 G; W3 M2 ?$ V: G# w| 869e67e5-5571-4c03-a21c-715e3dd51a5c | icmp | 0.0.0.0/0 | | None |
; ]0 q: n, n& _0 Q" M| 8a91bc8e-c9cd-4bf1-86ae-0c6d9eef67e7 | udp | 0.0.0.0/0 | | None |& c" I8 u7 I$ y+ ?
| b525b93f-ffb6-4b84-be99-fdfd6f0fad75 | tcp | 0.0.0.0/0 | | None |
. l/ P/ l, A) D# Y+ S) V| dfea0691-0903-4cdf-b775-297eb6858f0d | udp | 0.0.0.0/0 | | None |
: k' A! k* R9 L5 W3 }) a| ede63376-0eeb-4a6b-9dd9-f3a63418c85b | icmp | 0.0.0.0/0 | | None |+ v8 ?3 u5 R+ `% Z5 i
| f9371589-1b17-4e5b-9f8d-798055cdc662 | tcp | 0.0.0.0/0 | | None |
* F5 o1 F6 q5 t; V+--------------------------------------+-------------+-----------+------------+-----------------------+ |
|
/4 
窥视卡
雷达卡
发表于 2022-12-6 17:35:26
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
千斤顶
照妖镜
