Security Group
Last Updated:2020-07-20
Create a Security Group
It is used to create the security group and security group rules:
def create_security_group(self):
client_token = generate_client_token()
# Set a security group name
security_group_name = 'your_security_group_name' + client_token
#Set Security Group Rules
security_group_rule = bcc_model.SecurityGroupRuleModel('rule_' + client_token,# Set remarks
'ingress',# Set inbound / outbound to get ingress or egress, the parameter is required.
portRange='1-65535',#Set the port range. The default time is 1-65535. You can specify a single port such as 80.
protocol='tcp',# Set a protocol type
sourceGroupId='',# Set a source security group ID
sourceIp='')# Set the source IP address. You cannot set the value at the same time as the sourceGroupId.
security_group_rule_list = []
security_group_rule_list.append(security_group_rule)
#vpc When the Id is null, it means the default VPC id
security_group_rule_vpc_id = 'your-vpc-id'
# Set security group description
security_group_desc = 'your_security_group_desc'
self.assertEqual( type(self.client.create_security_group(name=security_group_name, rules=security_group_rule_list,
vpc_id=security_group_rule_vpc_id,
desc=security_group_desc,
client_token=client_token)),
baidubce.bce_response.BceResponse)
Query the Security Group List
It is used to query the user's all security group information:
def list_security_groups(self):
# Start position of the query for getting list by batch
marker = 'your-marker'
# Maximum number of master instances per page
maxKeys = 100
# Instance ID used to query the security group list associated with the instance.
instance_id = 'your-instance-id'
#vpcid, query the security group list associated with the instance.
vpc_id = 'your-vpc-id'
self.assertEqual( type(self.client.list_security_groups(instance_id=instance_id,
vpc_id=vpc_id,
marker=marker,
max_keys=max_keys)),
baidubce.bce_response.BceResponse)
Delete a Security Group
It is used to delete a security group:
def delete_security_group(self):
# Security group ID to be deleted
security_group_id = 'your-security-group-id'
self.assertEqual(
type(self.client.delete_security_group(security_group_id)),
baidubce.bce_response.BceResponse)
Authorize Security Group Rules
It is used to authorize the new security group rules in the security group:
def authorize_security_group_rule(self):
client_token = generate_client_token()
# Set a security group ID
security_group_id = 'your-security-group-id'
#Set Security Group Rules
security_group_rule = bcc_model.SecurityGroupRuleModel(direction='ingress',# Set inbound / outbound to get ingress or egress, the parameter is required.
portRange='80-90', #Set the port range. The default time is 1-65535. You can specify a single port such as 80.
protocol='tcp')# Set a protocol type
self.assertEqual(
type(self.client.authorize_security_group_rule(security_group_id=security_group_id,
rule=security_group_rule,
client_token=client_token)),
baidubce.bce_response.BceResponse)
Cancel Security Group Rules
It is used to cancel the rules in the security group:
def revoke_security_group_rule(self):
client_token = generate_client_token()
#Security group rules to be revoke
security_group_id = 'your-security-group-id'
#Security group rules to be revoke
security_group_rule = bcc_model.SecurityGroupRuleModel(direction='ingress',# Set inbound / outbound to get ingress or egress, the parameter is required.
portRange='80-90', #Set the port range. The default time is 1-65535. You can specify a single port such as 80.
protocol='tcp')# Set a protocol type
self.assertEqual(
type(self.client.revoke_security_group_rule(security_group_id=security_group_id,
security_group_rule,
client_token=client_token)),
baidubce.bce_response.BceResponse)