NetworkAcl / Attribute / entries
The entries (rules) in the network ACL.
Describes an entry in a network ACL.
CidrBlock (string) –
The IPv4 network range to allow or deny, in CIDR notation.
Egress (boolean) –
Indicates whether the rule is an egress rule (applied to traffic leaving the subnet).
IcmpTypeCode (dict) –
ICMP protocol: The ICMP type and code.
Code (integer) –
The ICMP code. A value of -1 means all codes for the specified ICMP type.
Type (integer) –
The ICMP type. A value of -1 means all types.
Ipv6CidrBlock (string) –
The IPv6 network range to allow or deny, in CIDR notation.
PortRange (dict) –
TCP or UDP protocols: The range of ports the rule applies to.
From (integer) –
The first port in the range.
To (integer) –
The last port in the range.
Protocol (string) –
The protocol number. A value of “-1” means all protocols.
RuleAction (string) –
Indicates whether to allow or deny the traffic that matches the rule.
RuleNumber (integer) –
The rule number for the entry. ACL entries are processed in ascending order by rule number.