openstack/python-openstackclient
Code Issues Proposed changes
668bc028d1
python-openstackclient/doc/source/command-objects/security-group-rule.rst
Richard Theis d0885e5d5a Doc: Add network resource descriptions 
Add descriptions to the network resource command documentation.

Change-Id: I547ffb48f8950311a5ee65d6b535846f2aca0efc
2016-04-25 06:46:12 -05:00

2.8 KiB
Raw Blame History

security group rule

A security group rule specifies the network access rules for servers and other resources on the network.

Compute v2, Network v2

security group rule create

Create a new security group rule

security group rule create

os security group rule create
    [--proto <proto>]
    [--src-ip <ip-address> | --src-group <group>]
    [--dst-port <port-range>]
    [--ingress | --egress]
    [--ethertype <ethertype>]
    [--project <project> [--project-domain <project-domain>]]
    <group>

--proto <proto>

IP protocol (icmp, tcp, udp; default: tcp)

--src-ip <ip-address>

Source IP address block (may use CIDR notation; default for IPv4 rule: 0.0.0.0/0)

--src-group <group>

Source security group (name or ID)

--dst-port <port-range>

Destination port, may be a single port or port range: 137:139 (only required for IP protocols tcp and udp)

--ingress

Rule applies to incoming network traffic (default)

Network version 2 only

--egress

Rule applies to outgoing network traffic

Network version 2 only

--ethertype <ethertype>

Ethertype of network traffic (IPv4, IPv6; default: IPv4)

Network version 2 only

--project <project>

Owner's project (name or ID)

Network version 2 only

--project-domain <project-domain>

Domain the project belongs to (name or ID). This can be used in case collisions between project names exist.

Network version 2 only

<group>

Create rule in this security group (name or ID)

security group rule delete

Delete a security group rule

security group rule delete

os security group rule delete
    <rule>

<rule>

Security group rule to delete (ID only)

security group rule list

List security group rules

security group rule list

os security group rule list
    [--all-projects]
    [--long]
    [<group>]

--all-projects

Display information from all projects (admin only)

Network version 2 ignores this option and will always display information for all projects (admin only).

--long

List additional fields in output

Compute version 2 does not have additional fields to display.

<group>

List all rules in this security group (name or ID)

security group rule show

Display security group rule details

security group rule show

os security group rule show
    <rule>

<rule>

Security group rule to display (ID only)