%common;]>

The unique identifier of the security group.

The unique identifier of the security group rule.

The UUID of the instance.

Lists a summary of all OpenStack Networking security groups that the specified tenant can access. The list includes the unique ID for each security group. This operation does not require a request body. This operation returns a response body. Creates an OpenStack Networking security group. This operation requires a request body. The request body must include one or both of the following attributes: name. String. Specifies a symbolic name for the security group. Not required to be unique. description. String. Describes the security group. This operation creates a security group with default security group rules for the IPv4 and IPv6 ethertypes. The following attributes of a security group rule have a value of null: port_range_max port_range_min protocol remote_group_id remote_ip_prefix This operation returns a response body. Shows information for a specified security group. This operation does not require a request body. This operation returns a response body that contains the description, name, ID, and security group rules associated with the specified security group and tenant ID. Deletes an OpenStack Networking security group. This operation deletes an OpenStack Networking security group and its associated security group rules, provided that a port is not associated with the security group. This operation does not require a request body. This operation does not return a response body. Lists a summary of all OpenStack Networking security group rules that the specified tenant can access. The list provides the unique ID for each security group rule. This operation does not require a request body. This operation returns a response body. Creates an OpenStack Networking security group rule. This operation requires a request body. The following table describes the required and optional attributes in the request body:

Create Security Group Rule Request Attributes
Attribute	Required	Description
direction	Required	Ingress or egress: The direction in which the security group rule is applied. For a compute instance, an ‘ingress’ security group rule matches traffic that is incoming (ingress) for that instance. An ‘egress’ rule is applied to traffic leaving the instance.
security_group_id	Required	The security group ID to associate with this security group rule.
port_range_min	Optional	The minimum port number in the range that is matched by the security group rule. If the protocol is TCP or UDP, this value must be less than or equal to the value of the port_range_max attribute. If the protocol is ICMP, this value must be an ICMP type.
port_range_max	Optional	The maximum port number in the range that is matched by the security group rule. The port_range_min attribute constrains the port_range_max attribute. If the protocol is ICMP, this value must be an ICMP type.
protocol	Optional	The protocol that is matched by the security group rule. Valid values are null, tcp, udp, and icmp.
remote_group_id	Optional	The remote group ID to be associated with this security group rule. You can specify either remote_group_id or remote_ip_prefix in the request body.
remote_ip_prefix	Optional	The remote IP prefix to be associated with this security group rule. You can specify either remote_group_id or remote_ip_prefix in the request body. This attribute matches the specified IP prefix as the source IP address of the IP packet.

This operation returns a response body. Shows detailed information for a specified security group rule. This operation does not require a request body. This operation returns a response body, which contains the following information about the security group rule: direction. Either ingress or egress. ethertype. Either IPv4 or IPv6. The ID for the specified security group rule The min and max port ranges The protocol The tenant ID The remote group ID The remote IP prefix The security group ID for the security group with which the rule is associated The tenant ID Deletes a specified rule from a OpenStack Networking security group. This operation does not require a request body. This operation does not return a response body.