Richard Theis 96cc5eb354 Add support to list all security group rules
Both nova and neutron allow security group rules to be listed without
specifying the owning security group. This patch set makes the
group argument on 'os security group rule list' optional. Behavior
is unchanged when the argument is specified. When the argument is
not specified then all accessible security group rules will be listed.
The listing will include the owning security group for each rule.

Change-Id: I6914baecf70a65354e1e82dad92c6afbd32b4973
Related-Bug: #1519512
2015-12-17 12:49:13 -06:00

1.3 KiB

security group rule

Compute v2

security group rule create

Create a new security group rule

security group rule create

os security group rule create
    [--proto <proto>]
    [--src-ip <ip-address> | --src-group <group>]
    [--dst-port <port-range>]
    <group>

--proto <proto>

IP protocol (icmp, tcp, udp; default: tcp)

--src-ip <ip-address>

Source IP address block (may use CIDR notation; default: 0.0.0.0/0)

--src-group <group>

Source security group (ID only)

--dst-port <port-range>

Destination port, may be a range: 137:139 (default: 0; only required for proto tcp and udp)

<group>

Create rule in this security group (name or ID)

security group rule delete

Delete a security group rule

security group rule delete

os security group rule delete
    <rule>

<rule>

Security group rule to delete (ID only)

security group rule list

List security group rules

security group rule list

os security group rule list
    [<group>]

<group>

List all rules in this security group (name or ID)