Network ACLs

List all network ACLs

get

Returns the list of Network ACLs belonging to a specific VPC. A Network ACL is created automatically for a subnet. To configure the Network ACL, use the network ACL name you defined during the network setup process to find the corresponding network ACL ID.

Path parameters

vpc_idstringRequired

The unique identifier of the VPC where the Network ACL belongs.

Query parameters

pageintegerOptional

The order number of pages for pagination.

Default: 1

page_sizeintegerOptional

The number of items per page.

Default: 25

Responses

200

Successful response - returns the list of Network ACLs.

application/json

totalintegerOptional

Total number of NACLs is created within a VPC.

Example: 4

get

/api/v2/vmware/vpc/{vpc_id}/hpc/network-acls

GET /api/v2/vmware/vpc/{vpc_id}/hpc/network-acls HTTP/1.1
Accept: */*

200

Successful response - returns the list of Network ACLs.

{
  "data": [
    {
      "id": "e20b0f28-a814-4af1-b85c-c0998a8c3393",
      "name": "Subnet-test",
      "description": "",
      "subnet": "Subnet-test (10.100.38.0/24)",
      "number_of_inbound_rules": 0,
      "number_of_outbound_rules": 1,
      "status": "Active",
      "created_at": "2025-06-06T02:04:59",
      "updated_at": "2025-06-06T02:04:59"
    }
  ],
  "total": 4
}

Get a network ACL details

get

Returns the details of a specific Network ACL belonging to a given VPC.

Path parameters

vpc_idstringRequired

The unique identifier of the VPC where the Network ACL belongs.

network_acl_idstringRequired

The unique identifier of the network acl come from list network acls

Responses

200

Successful response - returns the details of the Network ACL.

application/json

statusbooleanOptionalExample: true

get

/api/v2/vmware/vpc/{vpc_id}/hpc/network-acls/{network_acl_id}

GET /api/v2/vmware/vpc/{vpc_id}/hpc/network-acls/{network_acl_id} HTTP/1.1
Accept: */*

200

Successful response - returns the details of the Network ACL.

{
  "status": true,
  "data": {
    "id": "e20b0f28-a814-4af1-b85c-c0998a8c3393",
    "name": "Subnet-test",
    "description": "",
    "subnet": "Subnet-test (10.100.38.0/24)",
    "status": "Active",
    "created_at": "2025-06-06T02:04:59",
    "updated_at": "2025-06-06T02:04:59"
  }
}

Update a network ACL

patch

Update name or description of a Network ACL.

Path parameters

vpc_idstringRequired

The unique identifier of the VPC where the Network ACL belongs.

network_acl_idstringRequired

The unique identifier of the network acl come from list network acls

Body

namestringRequired

The new name for the Network ACL that you want to update.

Example: Subnet-test-2

descriptionstringOptional

The new description for the Network ACL that you want to update.

Responses

200

Successful response - Returns a network ACL with updated description.

application/json

statusbooleanOptionalExample: true

patch

/api/v2/vmware/vpc/{vpc_id}/hpc/network-acls/{network_acl_id}

PATCH /api/v2/vmware/vpc/{vpc_id}/hpc/network-acls/{network_acl_id} HTTP/1.1
Content-Type: application/json
Accept: */*
Content-Length: 45

{
  "name": "Subnet-test-2",
  "description": "text"
}

200

Successful response - Returns a network ACL with updated description.

{
  "status": true,
  "data": {
    "id": "0f111886-423f-4116-91cc-09abb6e6a249",
    "name": "test123",
    "description": "",
    "vpc_id": "dff01d39-956b-4da9-8aef-a385bb725e8e",
    "status": "Active",
    "created_at": "2025-08-28T08:31:57",
    "updated_at": "2025-08-28T15:41:29"
  }
}

List all rule groups of a Network ACL

get

Each Network ACL comprises 2 rule groups (or firewall policies):

Inbound (ingress) rules: An inbound rule permits servers to receive traffic.
Outbound (egress) rules: An outbound rule permits servers to send traffic out. You need to obtain the 'firewall_group_id' here to update the rules.

Path parameters

vpc_idstringRequired

The unique identifier of the VPC where the Network ACL belongs.

network_acl_idstringRequired

The unique identifier of the network ACL comes from the "List all network ACLs" API.

Responses

200

Successful response—returns all rule groups of Network ACL.

application/json

totalintegerOptional

The number of rule groups.

Example: 2

get

/api/v2/vmware/vpc/{vpc_id}/hpc/network-acls/{network_acl_id}/firewall-policies

GET /api/v2/vmware/vpc/{vpc_id}/hpc/network-acls/{network_acl_id}/firewall-policies HTTP/1.1
Accept: */*

200

Successful response—returns all rule groups of Network ACL.

{
  "data": [
    {
      "id": "6e0c2ff2-4760-47f9-adba-8898f72c07d4",
      "name": "egress-policy-e20b0f28-a814-4af1-b85c-c0998a8c3393",
      "description": "Firewall policy egress for network acl Subnet-test",
      "firewall_group_id": "6cf4d02c-dbe9-4586-879a-1297772b2968",
      "type": "EGRESS",
      "status": "Active",
      "created_at": "2025-06-05T15:08:13",
      "updated_at": "2025-06-05T15:08:13"
    }
  ],
  "total": 2
}

Update a rule of a network ACL

put

Create a new rule or modify existing rules Components of a Network ACL Rule: *Priority: Rules are processed in ascending order by priority number. Once a rule matches the traffic, it is applied, even if higher-numbered priority rules conflict with it. The system automatically increments the priority number, but the user can change it as long as it does not duplicate an existing number. *Type: Specifies the type of traffic, such as HTTP, HTTPS, or ALL. Protocol: NACL supports TCP, UDP, ICMP, or any protocols. *Port: The specific port of the traffic is targeted from 1 to 65535. *Source: For inbound rules, this specifies the origin of the traffic (CIDR range). *Destination: For outbound rules, this specifies the target of the traffic (CIDR range). *Traffic Action: The specified traffic is permitted with Allow or Deny.

Path parameters

vpc_idstringRequired

The unique identifier of the VPC where the Network ACL belongs.

network_acl_idstringRequired

The unique identifier of the network ACL comes from the "List all network ACLs" API.

firewall_policy_idstringRequired

The unique ID of the policy (Obtain this ID by "List all rule groups of a Network ACL" API).

Body

Responses

200

Successful response - Returns all rules of a Network ACL which have been updated.

application/json

totalintegerOptional

The number of rules.

Example: 1

put

/api/v2/vmware/vpc/{vpc_id}/hpc/network-acls/{network_acl_id}/firewall-policies/{firewall_policy_id}/firewall-rules

PUT /api/v2/vmware/vpc/{vpc_id}/hpc/network-acls/{network_acl_id}/firewall-policies/{firewall_policy_id}/firewall-rules HTTP/1.1
Content-Type: application/json
Accept: */*
Content-Length: 123

{
  "rules": [
    {
      "rule_number": 1,
      "type": "All",
      "protocol": "All",
      "port": "All",
      "traffic_action": "Allow",
      "source_cidr": "0.0.0.0/0"
    }
  ]
}

200

Successful response - Returns all rules of a Network ACL which have been updated.

{
  "data": [
    {
      "id": "b45468c2-8dae-4775-80a1-09660f3937ac",
      "rule_number": 1,
      "firewall_policy_id": "f828d29c-8207-4dbe-bd49-f2469785ed6f",
      "firewall_group_id": "6cf4d02c-dbe9-4586-879a-1297772b2968",
      "osp_firewall_rule_id": null,
      "type": "All",
      "protocol": "All",
      "port": "All",
      "source_cidr": "0.0.0.0/0",
      "destination_cidr": null,
      "traffic_action": "Allow",
      "is_default": null,
      "status": "Creating",
      "created_at": "2025-06-06T02:19:31.573417+00:00",
      "updated_at": "2025-06-06T02:19:31.573422+00:00"
    }
  ],
  "total": 1
}

PreviousSubnets NextImages

Last updated 3 months ago

Was this helpful?

hashtagList all network ACLs

hashtagGet a network ACL details

hashtagUpdate a network ACL

hashtagList all rule groups of a Network ACL

hashtagUpdate a rule of a network ACL

List all network ACLs

Get a network ACL details

Update a network ACL

List all rule groups of a Network ACL

Update a rule of a network ACL