Create firewall policy
Creates a firewall policy.
URI
/v2.0/fw/firewall_policies
HTTP method
POST
Request parameter
| Key | Description | Type | Required/optional |
|---|---|---|---|
| audited | When this is set to "True" by the policy owner, it indicates that the firewall policy has been audited. This attribute is used in the audit workflow for firewall policies. As this attribute is set to "False" whenever changes are made to a firewall policy or a related firewall rule, it is necessary to explicitly set it to "True" using an update operation. CAUTION: The "auditid" parameter is a flag function that can be used to confirm whether the firewall policy has been audited. It has no effect on the operation of the firewall.
|
xsd:bool | Optional |
| description | Description of the firewall policy (Up to 255 characters) | xsd:string | Optional |
| firewall_rules | List indicating the order of firewall rule ID application. The rules of firewalls are applied in the order they are displayed in this list. | xsd:list | Optional |
| name | Name of the firewall policy (Up to 255 characters) It is not required to be unique. |
xsd:string | Optional |
| availability_zone | Availability zone name If the security group is omitted, the resource will be created in the default availability zone. |
xsd:string | Optional |
Example request
{
"firewall_policy": {
"firewall_rules": [
"8722e0e0-9cc9-4490-9660-8c9a5732fbb0"
],
"name": "test-policy",
"availability_zone": "AZ1"
}
}
Response status
| Status code | Description |
|---|---|
| 201 | Normal response codes |
| Unauthorized (401) | Error response codes |
Response body (normal status)
{
"firewall_policy": {
"audited": false,
"description": "",
"firewall_rules": [
"8722e0e0-9cc9-4490-9660-8c9a5732fbb0"
],
"id": "c69933c1-b472-44f9-8226-30dc4ffd454c",
"name": "test-policy",
"shared": false,
"tenant_id": "45977fa2dbd7482098dd68d0d8970117",
"availability_zone": "AZ1"
}
}
Description of response body (normal status)
| Item | Description |
|---|---|
| audited | When this is set to "True" by the policy owner, it indicates that the firewall policy has been audited. This attribute is used in the audit workflow for firewall policies. As this attribute is set to "False" whenever changes are made to a firewall policy or a related firewall rule, it is necessary to explicitly set it to "True" using an update operation. |
| description | Description of the firewall policy (Up to 1024 characters) |
| firewall_rules | List indicating the order of firewall rule ID application. The rules of firewalls are applied in the order they are displayed in this list. |
| id | Firewall policy ID |
| name | Name of the firewall policy (Up to 255 characters). It is not required to be unique. |
| shared | Indicates whether to share this firewall rule among all projects. This value is always "False". |
| tenant_id | Owner of the firewall policy. The only person who can specify a project identifier other than that of their own project is an administrator. |
| availability_zone | Availability zone name |