Network¶
None
extensions¶
Shows details for an extension, by alias. The response shows the extension name and its alias. To show details for an extension, you specify the alias.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
extension |
body |
object |
An |
extension.alias |
body |
string |
The alias for the extension. For example “quotas” or “security-group”. |
extension.description |
body |
string |
The human-readable description for the resource. |
extension.name |
body |
string |
Human-readable name of the resource. |
extension.namespace |
body |
string |
A URL pointing to the namespace for this extension. |
extension.updated |
body |
string |
The date and timestamp when the extension was last updated. |
address-groups¶
Lists address groups that the project has access to.
Default policy settings return only the address groups owned by the project of the user submitting the request, unless the user has administrative role.
Use the fields
query parameter to control which fields are returned in the response body.
Additionally, you can filter results by using query string parameters.
For information, see Filtering and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates an address group.
Normal response codes: 201
Error response codes: 400, 401, 403, 404
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
address_group |
body |
object |
An |
address_group.id |
body |
string |
The ID of the address group. |
address_group.name |
body |
string |
Human-readable name of the resource. |
address_group.description |
body |
string |
A human-readable description for the resource. |
address_group.project_id |
body |
string |
The ID of the project. |
Shows information for an address group.
Use the fields
query parameter to control which fields are returned in the response body.
For information, see Filtering and Column Selection.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
address_group |
body |
object |
An |
address_group.id |
body |
string |
The ID of the address group. |
address_group.name |
body |
string |
Human-readable name of the resource. |
address_group.description |
body |
string |
A human-readable description for the resource. |
address_group.project_id |
body |
string |
The ID of the project. |
Updates an address group.
Normal response codes: 200
Error response codes: 400, 401, 403, 404, 412
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
address_group |
body |
object |
An |
address_group.id |
body |
string |
The ID of the address group. |
address_group.name |
body |
string |
Human-readable name of the resource. |
address_group.description |
body |
string |
A human-readable description for the resource. |
address_group.project_id |
body |
string |
The ID of the project. |
address-scopes¶
Lists address scopes that the project has access to.
Default policy settings return only the address scopes owned by the project of the user submitting the request, unless the user has administrative role.
Use the fields
query parameter to control which fields are returned in the response body.
Additionally, you can filter results by using query string parameters.
For information, see Filtering and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates an address scope.
Normal response codes: 201
Error response codes: 400, 401, 403, 404
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
address_scope |
body |
object |
An |
address_scope.id |
body |
string |
The ID of the address scope. |
address_scope.name |
body |
string |
Human-readable name of the resource. |
address_scope.tenant_id |
body |
string |
The ID of the project. |
address_scope.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this resource is shared across all projects. |
address_scope.ip_version |
body |
integer |
The IP protocol version. Valid value is |
Shows information for an address scope.
Use the fields
query parameter to control which fields are returned in the response body.
For information, see Filtering and Column Selection.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
address_scope |
body |
object |
An |
address_scope.id |
body |
string |
The ID of the address scope. |
address_scope.name |
body |
string |
Human-readable name of the resource. |
address_scope.tenant_id |
body |
string |
The ID of the project. |
address_scope.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this resource is shared across all projects. |
address_scope.ip_version |
body |
integer |
The IP protocol version. Valid value is |
Updates an address scope.
Normal response codes: 200
Error response codes: 400, 401, 403, 404, 412
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
address_scope |
body |
object |
An |
address_scope.id |
body |
string |
The ID of the address scope. |
address_scope.name |
body |
string |
Human-readable name of the resource. |
address_scope.tenant_id |
body |
string |
The ID of the project. |
address_scope.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this resource is shared across all projects. |
address_scope.ip_version |
body |
integer |
The IP protocol version. Valid value is |
networking-agents¶
Lists, shows details for, updates, and deletes agents.
Shows details for an agent.
Use the fields
query parameter to control which fields are
returned in the response body. For information, see Filtering and
Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Request of the agents:post operation
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
agent |
body |
object |
|
agent.id |
body |
string |
|
agent.agent_type |
body |
string |
|
agent.binary |
body |
string |
|
agent.topic |
body |
string |
|
agent.host |
body |
string |
|
agent.admin_state_up |
body |
[‘string’, ‘boolean’] |
|
agent.created_at |
body |
string |
|
agent.started_at |
body |
string |
|
agent.heartbeat_timestamp |
body |
string |
|
agent.alive |
body |
string |
|
agent.configurations |
body |
string |
|
agent.description |
body |
[‘string’, ‘null’] |
|
agent.resources_synced |
body |
string |
|
agent.availability_zone |
body |
string |
Shows details for an agent.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
agent |
body |
object |
An |
agent.id |
body |
string |
The ID of the resource. |
agent.agent_type |
body |
string |
The type of agent such as |
agent.binary |
body |
string |
The executable command used to start the agent such as
|
agent.topic |
body |
string |
The name of AMQP topic the agent is listening on such as
|
agent.host |
body |
string |
The hostname of the system the agent is running on. |
agent.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
agent.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
agent.started_at |
body |
string |
Time at which the agent was started. |
agent.heartbeat_timestamp |
body |
string |
Time at which the last heartbeat was received. |
agent.alive |
body |
string |
Indicates the agent is alive and running. |
agent.configurations |
body |
string |
An object containing configuration specific key/value pairs; the semantics of which are determined by the binary name and type. |
agent.description |
body |
[‘string’, ‘null’] |
A human-readable description for the resource. |
agent.resources_synced |
body |
string |
The value |
agent.availability_zone |
body |
string |
The availability zone of the agent. |
Updates an agent.
Normal response codes: 200
Error response codes: 400, 401, 403, 404
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
agent |
body |
object |
An |
agent.id |
body |
string |
The ID of the resource. |
agent.agent_type |
body |
string |
The type of agent such as |
agent.binary |
body |
string |
The executable command used to start the agent such as
|
agent.topic |
body |
string |
The name of AMQP topic the agent is listening on such as
|
agent.host |
body |
string |
The hostname of the system the agent is running on. |
agent.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
agent.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
agent.started_at |
body |
string |
Time at which the agent was started. |
agent.heartbeat_timestamp |
body |
string |
Time at which the last heartbeat was received. |
agent.alive |
body |
string |
Indicates the agent is alive and running. |
agent.configurations |
body |
string |
An object containing configuration specific key/value pairs; the semantics of which are determined by the binary name and type. |
agent.description |
body |
[‘string’, ‘null’] |
A human-readable description for the resource. |
agent.resources_synced |
body |
string |
The value |
agent.availability_zone |
body |
string |
The availability zone of the agent. |
auto-allocated-topology¶
Shows details for an auto allocated topology.
Use the fields
query parameter to control which fields are
returned in the response body. For information, see Filtering and
Column Selection.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
auto_allocated_topology |
body |
object |
|
auto_allocated_topology.id |
body |
string |
The ID of the network for the auto allocated topology. |
auto_allocated_topology.tenant_id |
body |
string |
The ID of the project owning the auto allocated topology. |
availability_zones¶
dhcp-agent-scheduler¶
networks¶
Request of the networks/network_id/tags:put operation
Lists networks to which the project has access.
Default policy settings return only networks that the project who submits the request owns, unless an administrative user submits the request. In addition, networks shared with the project who submits the request are also returned.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
You can also use the tags
, tags-any
, not-tags
, not-tags-any
query parameter to filter the response with tags. For information,
see REST API Impact.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates a network.
A request body is optional. An administrative user can specify another project ID, which is the project that owns the network, in the request body.
Normal response codes: 201
Error response codes: 400, 401
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
network |
body |
object |
A |
network.id |
body |
string |
The ID of the network. |
network.name |
body |
string |
Human-readable name of the network. |
network.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the network, which is
up ( |
network.status |
body |
string |
The network status. Values are |
network.tenant_id |
body |
string |
The ID of the project. |
network.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this network is shared across all tenants. By default, only administrative users can change this value. |
network.ipv4_address_scope |
body |
string |
The ID of the IPv4 address scope that the network is associated with. |
network.ipv6_address_scope |
body |
string |
The ID of the IPv6 address scope that the network is associated with. |
network.router:external |
body |
[‘string’, ‘boolean’] |
Defines whether the network may be used for creation of floating IPs. Only
networks with this flag may be an external gateway for routers.
The network must have an external routing facility that is not managed by
the networking service. If the network is updated from external to internal
the unused floating IPs of this network are automatically deleted when
extension |
network.l2_adjacency |
body |
string |
Indicates whether L2 connectivity is available throughout
the |
network.mtu |
body |
integer |
The maximum transmission unit (MTU) value to address fragmentation. Minimum value is 68 for IPv4, and 1280 for IPv6. |
network.port_security_enabled |
body |
[‘string’, ‘boolean’] |
The port security status of the network. Valid values are
enabled ( |
network.provider:network_type |
body |
string |
|
network.provider:physical_network |
body |
string |
|
network.provider:segmentation_id |
body |
[‘string’, ‘integer’] |
|
network.qos_policy_id |
body |
[‘string’, ‘null’] |
The ID of the QoS policy associated with the network. |
network.revision_number |
body |
integer |
The revision number of the resource. |
network.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
network.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
network.is_default |
body |
[‘string’, ‘boolean’] |
The network is default pool or not. |
network.dns_domain |
body |
string |
A valid DNS domain. |
network.description |
body |
string |
A human-readable description for the resource. |
Shows details for a network.
Use the fields
query parameter to control which fields are
returned in the response body. For information, see Filtering and
Column Selection.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
network |
body |
object |
A |
network.id |
body |
string |
The ID of the network. |
network.name |
body |
string |
Human-readable name of the network. |
network.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the network, which is
up ( |
network.status |
body |
string |
The network status. Values are |
network.tenant_id |
body |
string |
The ID of the project. |
network.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this network is shared across all tenants. By default, only administrative users can change this value. |
network.ipv4_address_scope |
body |
string |
The ID of the IPv4 address scope that the network is associated with. |
network.ipv6_address_scope |
body |
string |
The ID of the IPv6 address scope that the network is associated with. |
network.router:external |
body |
[‘string’, ‘boolean’] |
Defines whether the network may be used for creation of floating IPs. Only
networks with this flag may be an external gateway for routers.
The network must have an external routing facility that is not managed by
the networking service. If the network is updated from external to internal
the unused floating IPs of this network are automatically deleted when
extension |
network.l2_adjacency |
body |
string |
Indicates whether L2 connectivity is available throughout
the |
network.mtu |
body |
integer |
The maximum transmission unit (MTU) value to address fragmentation. Minimum value is 68 for IPv4, and 1280 for IPv6. |
network.port_security_enabled |
body |
[‘string’, ‘boolean’] |
The port security status of the network. Valid values are
enabled ( |
network.provider:network_type |
body |
string |
|
network.provider:physical_network |
body |
string |
|
network.provider:segmentation_id |
body |
[‘string’, ‘integer’] |
|
network.qos_policy_id |
body |
[‘string’, ‘null’] |
The ID of the QoS policy associated with the network. |
network.revision_number |
body |
integer |
The revision number of the resource. |
network.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
network.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
network.is_default |
body |
[‘string’, ‘boolean’] |
The network is default pool or not. |
network.dns_domain |
body |
string |
A valid DNS domain. |
network.description |
body |
string |
A human-readable description for the resource. |
Updates a network.
Normal response codes: 200
Error response codes: 400, 401, 403, 404, 412
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
network |
body |
object |
A |
network.id |
body |
string |
The ID of the network. |
network.name |
body |
string |
Human-readable name of the network. |
network.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the network, which is
up ( |
network.status |
body |
string |
The network status. Values are |
network.tenant_id |
body |
string |
The ID of the project. |
network.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this network is shared across all tenants. By default, only administrative users can change this value. |
network.ipv4_address_scope |
body |
string |
The ID of the IPv4 address scope that the network is associated with. |
network.ipv6_address_scope |
body |
string |
The ID of the IPv6 address scope that the network is associated with. |
network.router:external |
body |
[‘string’, ‘boolean’] |
Defines whether the network may be used for creation of floating IPs. Only
networks with this flag may be an external gateway for routers.
The network must have an external routing facility that is not managed by
the networking service. If the network is updated from external to internal
the unused floating IPs of this network are automatically deleted when
extension |
network.l2_adjacency |
body |
string |
Indicates whether L2 connectivity is available throughout
the |
network.mtu |
body |
integer |
The maximum transmission unit (MTU) value to address fragmentation. Minimum value is 68 for IPv4, and 1280 for IPv6. |
network.port_security_enabled |
body |
[‘string’, ‘boolean’] |
The port security status of the network. Valid values are
enabled ( |
network.provider:network_type |
body |
string |
|
network.provider:physical_network |
body |
string |
|
network.provider:segmentation_id |
body |
[‘string’, ‘integer’] |
|
network.qos_policy_id |
body |
[‘string’, ‘null’] |
The ID of the QoS policy associated with the network. |
network.revision_number |
body |
integer |
The revision number of the resource. |
network.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
network.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
network.is_default |
body |
[‘string’, ‘boolean’] |
The network is default pool or not. |
network.dns_domain |
body |
string |
A valid DNS domain. |
network.description |
body |
string |
A human-readable description for the resource. |
routers¶
Lists logical routers that the project who submits the request can access.
Default policy settings return only those routers that the project who submits the request owns, unless an administrative user submits the request.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates a logical router.
This operation creates a logical router. The logical router does
not have any internal interface and it is not associated with any
subnet. You can optionally specify an external gateway for a router
at create time. The external gateway for the router must be plugged
into an external network. An external network has its
router:external
extended field set to true
. To specify an
external gateway, the ID of the external network must be passed
in the network_id
parameter of the external_gateway_info
attribute in the request body.
Normal response codes: 201
Error response codes: 400, 401
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
router |
body |
object |
A |
router.id |
body |
string |
The ID of the router. |
router.name |
body |
string |
Human-readable name of the resource. |
router.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
router.status |
body |
string |
The router status. |
router.tenant_id |
body |
string |
The ID of the project. |
router.external_gateway_info |
body |
object |
The external gateway information of the router.
If the router has an external gateway, this would be a dict with
|
router.external_gateway_info.network_id |
body |
string |
|
router.external_gateway_info.enable_snat |
body |
boolean |
|
router.ha |
body |
[‘string’, ‘boolean’, ‘null’] |
|
router.enable_ndp_proxy |
body |
[‘string’, ‘boolean’, ‘null’] |
Enable NDP proxy attribute. |
router.flavor_id |
body |
string |
The ID of the flavor associated with the router. |
router.revision_number |
body |
integer |
The revision number of the resource. |
router.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
router.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
router.distributed |
body |
[‘string’, ‘boolean’, ‘null’] |
|
router.conntrack_helpers |
body |
string |
The associated conntrack helper resources for the roter. If the
router has multiple conntrack helper resources, this field has
multiple entries. Each entry consists of netfilter conntrack helper
( |
router.description |
body |
string |
A human-readable description for the resource. |
Adds an internal interface to a logical router. This means a specified subnet is attached to a router as an internal router interface.
Specify the ID of a subnet or port in the request body:
When you specify an IPv6 subnet, this operation adds the subnet to an existing internal port with same network ID, on the router. If a port with the same network ID does not exist, this operation creates a port on the router for that subnet.
The limitation of one IPv4 subnet per router port remains, though a port can contain any number of IPv6 subnets that belong to the same network ID.
When you use the port-create
command to add a port and then
call router-interface-add
with this port ID, this operation
adds the port to the router if the following conditions are met:
If you specify both subnet ID and port ID,
this operation returns the Bad Request (400)
response code.
If the port is already in use, this operation returns the
Conflict (409)
response code.
This operation returns a port ID that is either:
After you run this operation, the operation sets:
Normal response codes: 200
Error response codes: 400, 401, 404, 409
Request¶
Responses¶
200¶
Ok
Deletes an internal interface from a logical router.
This operation deletes an internal router interface, which detaches a subnet from the router. If this subnet ID is the last subnet on the port, this operation deletes the port itself. You must specify either a subnet ID or port ID in the request body; the operation uses this value to identify which router interface to deletes.
You can also specify both a subnet ID and port ID. If you
specify both IDs, the subnet ID must correspond to the subnet
ID of the first IP address on the port. Otherwise, this operation
returns the Conflict (409)
response code with information about
the affected router and interface.
If you try to delete the router interface for subnets that are used
by one or more routes
, this operation returns the Conflict (409)
response. In this case, you first need to delete such routes from
the router.
If the router or the subnet and port do not exist or are not
visible to you, this operation returns the Not Found (404)
response code. As a consequence of this operation, the operation
removes the port connecting the router with the subnet from the
subnet for the network.
Normal response codes: 200
Error response codes: 400, 401, 404, 409
Request¶
Responses¶
200¶
Ok
Atomically adds a set of extra routes to the router’s already existing extra routes.
This operation is a variation on updating the router’s routes
parameter. In all ways it works the same, except the extra routes sent
in the request body do not replace the existing set of extra routes.
Instead the extra routes sent are added to the existing set of
extra routes.
The use of the add_extraroutes/remove_extraroutes member actions
is preferred to updating the routes
attribute in all cases when
concurrent updates to the set of extra routes are possible.
The addition’s corner cases behave the following way:
The format of the request body is the same as the format of a PUT
request to the router changing the routes
parameter only.
The response codes and response body are the same as to the update of
the routes
parameter. That is the whole router object is returned
including the routes
parameter which represents the result of the
addition.
Normal response codes: 200
Error response codes: 400, 401, 404, 412
Request¶
Responses¶
200¶
Ok
Atomically removes a set of extra routes from the router’s already existing extra routes.
This operation is a variation on updating the router’s routes
parameter. In all ways it works the same, except the extra routes sent
in the request body do not replace the existing set of extra routes.
Instead the the extra routes sent are removed from the existing set of
extra routes.
The use of the add_extraroutes/remove_extraroutes member actions
is preferred to updating the routes
attribute in all cases when
concurrent updates to the set of extra routes are possible.
The removal’s corner cases behave the following way:
The format of the request body is the same as the format of a PUT
request to the router changing the routes
parameter only. However
the routes sent are not meant to overwrite the whole routes
parameter, but they are meant to be removed from the existing set.
The response codes and response body are the same as to the update of
the routes
parameter. That is the whole router object is returned
including the routes
parameter which represents the result of the
removal.
Normal response codes: 200
Error response codes: 400, 401, 404, 412
Request¶
Responses¶
200¶
Ok
Add external gateways to a router in addition to the ones it already has.
Multiple gateways attached to the same network can be added to the same router.
The add/update/remove external gateways operations extend the use of
router.external_gateway_info
to manage multiple external gateways.
The full set of external gateways is exposed in the read-only
router.external_gateways
parameter. router.external_gateways
contains a list of external_gateway_info
structures like:
The first item (index 0) of the external_gateways
list is special if a
router does not have any gateway ports yet:
The order of the the rest of the list (indexes 1, 2, …) is irrelevant and ignored.
The first external gateway can be managed in two
ways: via router.external_gateway_info
or via
add/update/remove_external_gateways
. The other external gateways
can only be managed via add/update/remove_external_gateways
.
The format of the request body is the same as the format of the read-only
router.external_gateways
parameter, but wrapped as follows:
The response codes and response body are the same as to the update of
the router. That is the whole router object is returned including the
external_gateway_info
and external_gateways
parameters which
represents the result of the operation.
Changes in router.external_gateway_info
are reflected
in router.external_gateways
and vice versa. Updating
external_gateway_info
also updates the first element of
external_gateways
and it leaves the rest of external_gateways
unchanged. Setting external_gateway_info
to an empty value removes
a single gateway and one of the extra gateways takes its place instead.
Normal response codes: 200
Error response codes: 400, 401, 404, 412
Request¶
Responses¶
200¶
Ok
Update some external gateways of router.
For general information on the add/update/remove external gateways
operations see add_external_gateways
above.
The external gateways to be updated are identified by the network_ids
found in the PUT request. The external_fixed_ips
, enable_snat
,
fields can be updated. The network_id
field cannot be updated - any
changes will cause a gateway port to be removed and recreated.
The format of the request body is the same as the format of the read-only
router.external_gateways
parameter, but wrapped as follows:
The enable_snat
field does not have any effect for extra gateways except
for the first external gateway in the list.
The network_id
field is used to identify a particular gateway port along
with the external_fixed_ips
field. Specifying just the network_id
field
is ambiguous: Neutron will attempt to find the matching gateway port but if
there are multiple matches it will return an error response code.
The enable_snat
field can be omitted from the request. Specifying
external_fixed_ips
will result in matching ports based on those
fixed IPs. If a gateway port has a subset of the specified fixed IPs,
then the set of IPs will be updated to match the ones in the request.
Alternatively, if a gateway port has a superset of fixed IPs from the
request the IPs will be removed from the gateway port.
The response codes and response body are the same as to the update of
the router. That is the whole router object is returned including the
external_gateway_info
and external_gateways
parameters which
represents the result of the operation.
Please note that updating external_gateway_info
also updates
the first element of external_gateways
and it leaves the rest of
external_gateways
unchanged.
Normal response codes: 200
Error response codes: 400, 401, 404, 412
Request¶
Responses¶
200¶
Ok
Remove some external gateways from router.
For general information on the add/update/remove external gateways
operations see add_external_gateways
above.
The format of the request body is the same as the format of the read-only
router.external_gateways
parameter, but wrapped as follows:
However the request body can be partial. Only the network_id
and external_fixed_ips
fields from the external_gateway_info
structure is used in order to match the specific gateway ports.
The enable_snat
key can be present but its value is ignored.
Please note that setting external_gateway_info
to an empty value
also resets external_gateways
to the empty list.
Normal response codes: 200
Error response codes: 400, 401, 404, 412
Request¶
Responses¶
200¶
Ok
Shows details for a router.
Use the fields
query parameter to control which fields are
returned in the response body. For information, see Filtering and
Column Selection.
Normal response codes: 200
Error response codes: 401, 403, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
router |
body |
object |
A |
router.id |
body |
string |
The ID of the router. |
router.name |
body |
string |
Human-readable name of the resource. |
router.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
router.status |
body |
string |
The router status. |
router.tenant_id |
body |
string |
The ID of the project. |
router.external_gateway_info |
body |
object |
The external gateway information of the router.
If the router has an external gateway, this would be a dict with
|
router.external_gateway_info.network_id |
body |
string |
|
router.external_gateway_info.enable_snat |
body |
boolean |
|
router.ha |
body |
[‘string’, ‘boolean’, ‘null’] |
|
router.enable_ndp_proxy |
body |
[‘string’, ‘boolean’, ‘null’] |
Enable NDP proxy attribute. |
router.flavor_id |
body |
string |
The ID of the flavor associated with the router. |
router.revision_number |
body |
integer |
The revision number of the resource. |
router.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
router.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
router.distributed |
body |
[‘string’, ‘boolean’, ‘null’] |
|
router.conntrack_helpers |
body |
string |
The associated conntrack helper resources for the roter. If the
router has multiple conntrack helper resources, this field has
multiple entries. Each entry consists of netfilter conntrack helper
( |
router.description |
body |
string |
A human-readable description for the resource. |
Updates a logical router.
This operation does not enable the update of router interfaces. To update a router interface, use the add router interface and remove router interface operations.
Normal response codes: 200
Error response codes: 400, 401, 404, 412
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
router |
body |
object |
A |
router.id |
body |
string |
The ID of the router. |
router.name |
body |
string |
Human-readable name of the resource. |
router.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
router.status |
body |
string |
The router status. |
router.tenant_id |
body |
string |
The ID of the project. |
router.external_gateway_info |
body |
object |
The external gateway information of the router.
If the router has an external gateway, this would be a dict with
|
router.external_gateway_info.network_id |
body |
string |
|
router.external_gateway_info.enable_snat |
body |
boolean |
|
router.ha |
body |
[‘string’, ‘boolean’, ‘null’] |
|
router.enable_ndp_proxy |
body |
[‘string’, ‘boolean’, ‘null’] |
Enable NDP proxy attribute. |
router.flavor_id |
body |
string |
The ID of the flavor associated with the router. |
router.revision_number |
body |
integer |
The revision number of the resource. |
router.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
router.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
router.distributed |
body |
[‘string’, ‘boolean’, ‘null’] |
|
router.conntrack_helpers |
body |
string |
The associated conntrack helper resources for the roter. If the
router has multiple conntrack helper resources, this field has
multiple entries. Each entry consists of netfilter conntrack helper
( |
router.description |
body |
string |
A human-readable description for the resource. |
Deletes a logical router and, if present, its external gateway interface.
This operation fails if the router has attached interfaces. Use the remove router interface operation to remove all router interfaces before you delete the router.
Normal response codes: 204
Error response codes: 401, 404, 409, 412
Responses¶
204¶
Ok
Lists router conntrack helpers associated with a router.
Use the fields
query parameter to control which fields are returned in the response body.
Additionally, you can filter results by using query string parameters.
For information, see Filtering and Column Selection.
Normal response codes: 200
Error response codes: 400, 404
Responses¶
200¶
Ok
Creates a router conntrack helper.
Normal response codes: 201
Error response codes: 400, 404
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
conntrack_helper |
body |
object |
A router |
conntrack_helper.id |
body |
string |
The ID of the conntrack helper. |
conntrack_helper.protocol |
body |
string |
The network protocol for the netfilter conntrack target rule. |
conntrack_helper.port |
body |
number |
The network port for the netfilter conntrack target rule. |
conntrack_helper.helper |
body |
string |
The netfilter conntrack helper module. |
Request of the routers/router_id/tags:put operation
flavors¶
Lists all flavors visible to the project.
The list can be empty.
Standard query parameters are supported on the URI. Use the fields
query parameter to control which fields are returned in the response body.
Additionally, you can filter results by using query string parameters.
For information, see Filtering and Column Selection. If Neutron configuration supports
pagination by overriding allow_pagination = false, the marker
query
parameter can set the last element id the client has seen and limit
set the maximum number of items to return. if Neutron configuration has
allow_sorting = true, sort_key
and sort_dir
pairs can be used
where sort direction is ‘asc’ or ‘desc’.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates a flavor.
This operation establishes a new flavor.
The service_type to which the flavor applies is a required parameter. The corresponding service plugin must have been activated as part of the configuration. Check Service providers for how to see currently loaded service types. Additionally the service plugin needs to support the use of flavors.
Creation currently limited to administrators. Other users will
receive a Forbidden 403
response code with a response body
NeutronError message expressing that creation is disallowed by
policy.
Until one or more service profiles are associated with the flavor
by the operator, attempts to use the flavor during resource
creations will currently return a Not Found 404
with a response
body that indicates no service profile could be found.
If the API cannot fulfill the request due to insufficient data or
data that is not valid, the service returns the HTTP Bad Request (400)
response code with information about the failure in the
response body. Validation errors require that you correct the error
and submit the request again.
Normal response codes: 201
Error response codes: 400, 401, 403, 404
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
flavor |
body |
object |
A |
flavor.id |
body |
string |
The ID of the flavor. |
flavor.name |
body |
string |
Name of the flavor. |
flavor.description |
body |
[‘string’, ‘null’] |
The human-readable description for the flavor. |
flavor.service_type |
body |
string |
Service type for the flavor. Example: FIREWALL. |
flavor.tenant_id |
body |
string |
|
flavor.enabled |
body |
[‘string’, ‘boolean’, ‘null’] |
Indicates whether the flavor is enabled or not. Default is true. |
Shows details for a flavor.
This operation returns a flavor object by ID. If you are not an
administrative user and the flavor object is not visible to your
project account, the service returns the HTTP Forbidden (403)
response code.
Normal response codes: 200
Error response codes: 401, 403, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
flavor |
body |
object |
A |
flavor.id |
body |
string |
The ID of the flavor. |
flavor.name |
body |
string |
Name of the flavor. |
flavor.description |
body |
[‘string’, ‘null’] |
The human-readable description for the flavor. |
flavor.service_type |
body |
string |
Service type for the flavor. Example: FIREWALL. |
flavor.tenant_id |
body |
string |
|
flavor.enabled |
body |
[‘string’, ‘boolean’, ‘null’] |
Indicates whether the flavor is enabled or not. Default is true. |
Updates a flavor.
The service_type cannot be updated as there may be associated service profiles and consumers depending on the value.
Normal response codes: 200
Error response codes: 400, 401, 403, 404
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
flavor |
body |
object |
A |
flavor.id |
body |
string |
The ID of the flavor. |
flavor.name |
body |
string |
Name of the flavor. |
flavor.description |
body |
[‘string’, ‘null’] |
The human-readable description for the flavor. |
flavor.service_type |
body |
string |
Service type for the flavor. Example: FIREWALL. |
flavor.tenant_id |
body |
string |
|
flavor.enabled |
body |
[‘string’, ‘boolean’, ‘null’] |
Indicates whether the flavor is enabled or not. Default is true. |
Associate a flavor with a service profile.
A flavor can be associated with more than one profile.
Will return 409 Conflict
if association already exists.
Normal response codes: 201
Error response codes: 400, 401, 403, 404, 409
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
service_profile |
body |
object |
A |
service_profile.id |
body |
string |
The ID of the resource. |
service_profile.tenant_id |
body |
string |
service_profiles¶
Creates a service profile.
This operation establishes a new service profile that can be associated with one or more flavors.
Either metadata or a driver is required.
If a driver is specified but does not exist, call will return a
Not found 404
error with the response body explaining that the
driver could not be found.
Creation currently limited to administrators. Other users will
receive a Forbidden 403
response code with a response body
NeutronError message expressing that creation is disallowed by
policy.
If the API cannot fulfill the request due to insufficient data or
data that is not valid, the service returns the HTTP Bad Request (400)
response code with information about the failure in the
response body. Validation errors require that you correct the error
and submit the request again.
Normal response codes: 201
Error response codes: 400, 401, 403, 404
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
service_profile |
body |
object |
A |
service_profile.id |
body |
string |
The UUID of the service profile. |
service_profile.description |
body |
[‘string’, ‘null’] |
The human-readable description for the service profile. |
service_profile.driver |
body |
string |
Provider driver to use for this profile. |
service_profile.metainfo |
body |
string |
JSON-formatted meta information of the service profile. |
service_profile.tenant_id |
body |
string |
|
service_profile.enabled |
body |
[‘string’, ‘boolean’, ‘null’] |
Indicates whether this service profile is enabled or not.
Default is |
Shows details for a service profile.
This operation returns a service profile object by ID. If you are
not an administrative user and the object is not visible to your
tenant account, the service returns the HTTP Forbidden (403)
response code.
Normal response codes: 200
Error response codes: 401, 403, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
service_profile |
body |
object |
A |
service_profile.id |
body |
string |
The UUID of the service profile. |
service_profile.description |
body |
[‘string’, ‘null’] |
The human-readable description for the service profile. |
service_profile.driver |
body |
string |
Provider driver to use for this profile. |
service_profile.metainfo |
body |
string |
JSON-formatted meta information of the service profile. |
service_profile.tenant_id |
body |
string |
|
service_profile.enabled |
body |
[‘string’, ‘boolean’, ‘null’] |
Indicates whether this service profile is enabled or not.
Default is |
Updates a service profile.
Normal response codes: 200
Error response codes: 400, 401, 403, 404
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
service_profile |
body |
object |
A |
service_profile.id |
body |
string |
The UUID of the service profile. |
service_profile.description |
body |
[‘string’, ‘null’] |
The human-readable description for the service profile. |
service_profile.driver |
body |
string |
Provider driver to use for this profile. |
service_profile.metainfo |
body |
string |
JSON-formatted meta information of the service profile. |
service_profile.tenant_id |
body |
string |
|
service_profile.enabled |
body |
[‘string’, ‘boolean’, ‘null’] |
Indicates whether this service profile is enabled or not.
Default is |
Deletes a service profile.
Attempting to delete a service profile that is currently associated
with a flavor will return a Conflict 409
with a response body
containing an in use message.
Either metadata or a driver is required.
Normal response codes: 204
Error response codes: 401, 403, 404, 409
Responses¶
204¶
Ok
floatingips¶
Lists floating IP port forwardings that the project has access to.
Default policy settings return only the port forwardings associated to floating IPs owned by the project of the user submitting the request, unless the user has administrative role.
Use the fields
query parameter to control which fields are returned in the response body.
Additionally, you can filter results by using query string parameters.
For information, see Filtering and Column Selection.
Normal response codes: 200
Error response codes: 400, 404
Responses¶
200¶
Ok
Creates a floating IP port forwarding.
Normal response codes: 201
Error response codes: 400, 404
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
port_forwarding |
body |
object |
A |
port_forwarding.id |
body |
string |
The ID of the floating IP port forwarding. |
port_forwarding.external_port |
body |
[‘number’, ‘null’] |
The TCP/UDP/other protocol port number of the port forwarding’s floating IP address. |
port_forwarding.internal_port |
body |
[‘number’, ‘null’] |
The TCP/UDP/other protocol port number of the Neutron port fixed IP address associated to the floating ip port forwarding. |
port_forwarding.internal_ip_address |
body |
string |
The fixed IPv4 address of the Neutron port associated to the floating IP port forwarding. |
port_forwarding.protocol |
body |
string |
The IP protocol used in the floating IP port forwarding. |
port_forwarding.internal_port_id |
body |
string |
The ID of the Neutron port associated to the floating IP port forwarding. |
port_forwarding.description |
body |
string |
A text describing the rule, which helps users to manage/find easily theirs rules. |
port_forwarding.external_port_range |
body |
number |
The TCP/UDP/other protocol port range of the port forwarding’s floating IP address. |
port_forwarding.internal_port_range |
body |
number |
The TCP/UDP/other protocol port range of the Neutron port fixed IP address associated to the floating ip port forwarding. |
Lists floating IPs visible to the user.
Default policy settings return only the floating IPs owned by the user’s project, unless the user has admin role.
This example request lists floating IPs in JSON format:
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates a floating IP, and, if you specify port information, associates the floating IP with an internal port.
To associate the floating IP with an internal port, specify the port ID attribute in the request body. If you do not specify a port ID in the request, you can issue a PUT request instead of a POST request.
Default policy settings enable only administrative users to set floating IP addresses and some non-administrative users might require a floating IP address. If you do not specify a floating IP address in the request, the operation automatically allocates one.
By default, this operation associates the floating IP address with
a single fixed IP address that is configured on an OpenStack
Networking port. If a port has multiple IP addresses, you must
specify the fixed_ip_address
attribute in the request body to
associate a fixed IP address with the floating IP address.
You can create floating IPs on only external networks. When you create a floating IP, you must specify the ID of the network on which you want to create the floating IP. Alternatively, you can create a floating IP on a subnet in the external network, based on the costs and quality of that subnet.
You must configure an IP address with the internal OpenStack Networking port that is associated with the floating IP address.
The operation returns the Bad Request (400)
response code for one of
reasons:
If the port ID is not valid, this operation returns 404
response code.
The operation returns the Conflict (409)
response code for one of
reasons:
Normal response codes: 201
Error response codes: 400, 401, 404, 409
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
floatingip |
body |
object |
A |
floatingip.id |
body |
string |
The ID of the floating IP address. |
floatingip.floating_ip_address |
body |
string |
The floating IP address. |
floatingip.floating_network_id |
body |
string |
The ID of the network associated with the floating IP. |
floatingip.router_id |
body |
[‘string’, ‘null’] |
The ID of the router for the floating IP. |
floatingip.port_id |
body |
[‘string’, ‘null’] |
The ID of a port associated with the floating IP. |
floatingip.fixed_ip_address |
body |
string |
The fixed IP address that is associated with the floating IP address. |
floatingip.tenant_id |
body |
string |
The ID of the project. |
floatingip.status |
body |
string |
The status of the floating IP. Values are
|
floatingip.qos_policy_id |
body |
[‘string’, ‘null’] |
The ID of the QoS policy associated with the floating IP. |
floatingip.revision_number |
body |
integer |
The revision number of the resource. |
floatingip.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
floatingip.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
floatingip.dns_name |
body |
string |
A valid DNS name. |
floatingip.dns_domain |
body |
string |
A valid DNS domain. |
floatingip.port_details |
body |
string |
The information of the port that this floating IP associates with.
In particular, if the floating IP is associated with a port, this field
contains some attributes of the associated port, including |
floatingip.port_forwardings |
body |
string |
The associated port forwarding resources for the floating IP. If the
floating IP has multiple port forwarding resources, this field has
multiple entries. Each entry consists of network IP protocol
( |
floatingip.description |
body |
string |
A human-readable description for the resource. |
Shows details for a floating IP.
Use the fields
query parameter to control which fields are
returned in the response body. For information, see Filtering and
Column Selection.
This example request shows details for a floating IP in JSON
format. This example also filters the result by the
fixed_ip_address
and floating_ip_address
fields.
Normal response codes: 200
Error response codes: 401, 403, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
floatingip |
body |
object |
A |
floatingip.id |
body |
string |
The ID of the floating IP address. |
floatingip.floating_ip_address |
body |
string |
The floating IP address. |
floatingip.floating_network_id |
body |
string |
The ID of the network associated with the floating IP. |
floatingip.router_id |
body |
[‘string’, ‘null’] |
The ID of the router for the floating IP. |
floatingip.port_id |
body |
[‘string’, ‘null’] |
The ID of a port associated with the floating IP. |
floatingip.fixed_ip_address |
body |
string |
The fixed IP address that is associated with the floating IP address. |
floatingip.tenant_id |
body |
string |
The ID of the project. |
floatingip.status |
body |
string |
The status of the floating IP. Values are
|
floatingip.qos_policy_id |
body |
[‘string’, ‘null’] |
The ID of the QoS policy associated with the floating IP. |
floatingip.revision_number |
body |
integer |
The revision number of the resource. |
floatingip.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
floatingip.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
floatingip.dns_name |
body |
string |
A valid DNS name. |
floatingip.dns_domain |
body |
string |
A valid DNS domain. |
floatingip.port_details |
body |
string |
The information of the port that this floating IP associates with.
In particular, if the floating IP is associated with a port, this field
contains some attributes of the associated port, including |
floatingip.port_forwardings |
body |
string |
The associated port forwarding resources for the floating IP. If the
floating IP has multiple port forwarding resources, this field has
multiple entries. Each entry consists of network IP protocol
( |
floatingip.description |
body |
string |
A human-readable description for the resource. |
Updates a floating IP and its association with an internal port.
The association process is the same as the process for the create floating IP operation.
To disassociate a floating IP from a port, set the port_id
attribute to null or omit it from the request body.
This example updates a floating IP:
Depending on the request body that you submit, this request associates a port with or disassociates a port from a floating IP.
Normal response codes: 200
Error response codes: 400, 401, 404, 409, 412
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
floatingip |
body |
object |
A |
floatingip.id |
body |
string |
The ID of the floating IP address. |
floatingip.floating_ip_address |
body |
string |
The floating IP address. |
floatingip.floating_network_id |
body |
string |
The ID of the network associated with the floating IP. |
floatingip.router_id |
body |
[‘string’, ‘null’] |
The ID of the router for the floating IP. |
floatingip.port_id |
body |
[‘string’, ‘null’] |
The ID of a port associated with the floating IP. |
floatingip.fixed_ip_address |
body |
string |
The fixed IP address that is associated with the floating IP address. |
floatingip.tenant_id |
body |
string |
The ID of the project. |
floatingip.status |
body |
string |
The status of the floating IP. Values are
|
floatingip.qos_policy_id |
body |
[‘string’, ‘null’] |
The ID of the QoS policy associated with the floating IP. |
floatingip.revision_number |
body |
integer |
The revision number of the resource. |
floatingip.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
floatingip.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
floatingip.dns_name |
body |
string |
A valid DNS name. |
floatingip.dns_domain |
body |
string |
A valid DNS domain. |
floatingip.port_details |
body |
string |
The information of the port that this floating IP associates with.
In particular, if the floating IP is associated with a port, this field
contains some attributes of the associated port, including |
floatingip.port_forwardings |
body |
string |
The associated port forwarding resources for the floating IP. If the
floating IP has multiple port forwarding resources, this field has
multiple entries. Each entry consists of network IP protocol
( |
floatingip.description |
body |
string |
A human-readable description for the resource. |
Request of the floatingips/floatingip_id/tags:put operation
floatingips-port-forwardings¶
Shows information for a floating IP port forwarding.
Use the fields
query parameter to control which fields are returned in the response body.
For information, see Filtering and Column Selection.
Normal response codes: 200
Error response codes: 400, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
port_forwarding |
body |
object |
A |
port_forwarding.id |
body |
string |
The ID of the floating IP port forwarding. |
port_forwarding.external_port |
body |
[‘number’, ‘null’] |
The TCP/UDP/other protocol port number of the port forwarding’s floating IP address. |
port_forwarding.internal_port |
body |
[‘number’, ‘null’] |
The TCP/UDP/other protocol port number of the Neutron port fixed IP address associated to the floating ip port forwarding. |
port_forwarding.internal_ip_address |
body |
string |
The fixed IPv4 address of the Neutron port associated to the floating IP port forwarding. |
port_forwarding.protocol |
body |
string |
The IP protocol used in the floating IP port forwarding. |
port_forwarding.internal_port_id |
body |
string |
The ID of the Neutron port associated to the floating IP port forwarding. |
port_forwarding.description |
body |
string |
A text describing the rule, which helps users to manage/find easily theirs rules. |
port_forwarding.external_port_range |
body |
number |
The TCP/UDP/other protocol port range of the port forwarding’s floating IP address. |
port_forwarding.internal_port_range |
body |
number |
The TCP/UDP/other protocol port range of the Neutron port fixed IP address associated to the floating ip port forwarding. |
Updates a floating IP port forwarding.
Normal response codes: 200
Error response codes: 400, 404
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
port_forwarding |
body |
object |
A |
port_forwarding.id |
body |
string |
The ID of the floating IP port forwarding. |
port_forwarding.external_port |
body |
[‘number’, ‘null’] |
The TCP/UDP/other protocol port number of the port forwarding’s floating IP address. |
port_forwarding.internal_port |
body |
[‘number’, ‘null’] |
The TCP/UDP/other protocol port number of the Neutron port fixed IP address associated to the floating ip port forwarding. |
port_forwarding.internal_ip_address |
body |
string |
The fixed IPv4 address of the Neutron port associated to the floating IP port forwarding. |
port_forwarding.protocol |
body |
string |
The IP protocol used in the floating IP port forwarding. |
port_forwarding.internal_port_id |
body |
string |
The ID of the Neutron port associated to the floating IP port forwarding. |
port_forwarding.description |
body |
string |
A text describing the rule, which helps users to manage/find easily theirs rules. |
port_forwarding.external_port_range |
body |
number |
The TCP/UDP/other protocol port range of the port forwarding’s floating IP address. |
port_forwarding.internal_port_range |
body |
number |
The TCP/UDP/other protocol port range of the Neutron port fixed IP address associated to the floating ip port forwarding. |
floatingip-pools¶
Request of the floatingip-pools:post operation
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
floatingip_pool |
body |
object |
|
floatingip_pool.subnet_id |
body |
string |
|
floatingip_pool.subnet_name |
body |
string |
|
floatingip_pool.network_id |
body |
string |
|
floatingip_pool.cidr |
body |
[‘string’, ‘null’] |
|
floatingip_pool.project_id |
body |
string |
Request of the floatingip-pools/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
floatingip_pool |
body |
object |
|
floatingip_pool.subnet_id |
body |
string |
|
floatingip_pool.subnet_name |
body |
string |
|
floatingip_pool.network_id |
body |
string |
|
floatingip_pool.cidr |
body |
[‘string’, ‘null’] |
|
floatingip_pool.project_id |
body |
string |
routers-conntrack-helper¶
Shows information for a router conntrack helper.
Use the fields
query parameter to control which fields are returned in the response body.
For information, see Filtering and Column Selection.
Normal response codes: 200
Error response codes: 400, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
conntrack_helper |
body |
object |
A router |
conntrack_helper.id |
body |
string |
The ID of the conntrack helper. |
conntrack_helper.protocol |
body |
string |
The network protocol for the netfilter conntrack target rule. |
conntrack_helper.port |
body |
number |
The network port for the netfilter conntrack target rule. |
conntrack_helper.helper |
body |
string |
The netfilter conntrack helper module. |
Updates a router conntrack helper.
Normal response codes: 200
Error response codes: 400, 404
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
conntrack_helper |
body |
object |
A router |
conntrack_helper.id |
body |
string |
The ID of the conntrack helper. |
conntrack_helper.protocol |
body |
string |
The network protocol for the netfilter conntrack target rule. |
conntrack_helper.port |
body |
number |
The network port for the netfilter conntrack target rule. |
conntrack_helper.helper |
body |
string |
The netfilter conntrack helper module. |
ndp-proxies¶
Request of the ndp-proxies:post operation
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
ndp_proxy |
body |
object |
|
ndp_proxy.id |
body |
string |
|
ndp_proxy.name |
body |
string |
|
ndp_proxy.project_id |
body |
string |
|
ndp_proxy.router_id |
body |
string |
|
ndp_proxy.port_id |
body |
string |
|
ndp_proxy.ip_address |
body |
string |
|
ndp_proxy.description |
body |
string |
|
ndp_proxy.revision_number |
body |
integer |
|
ndp_proxy.created_at |
body |
string |
|
ndp_proxy.updated_at |
body |
string |
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
ndp_proxy |
body |
object |
|
ndp_proxy.id |
body |
string |
|
ndp_proxy.name |
body |
string |
|
ndp_proxy.project_id |
body |
string |
|
ndp_proxy.router_id |
body |
string |
|
ndp_proxy.port_id |
body |
string |
|
ndp_proxy.ip_address |
body |
string |
|
ndp_proxy.description |
body |
string |
|
ndp_proxy.revision_number |
body |
integer |
|
ndp_proxy.created_at |
body |
string |
|
ndp_proxy.updated_at |
body |
string |
Request of the ndp-proxies/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
ndp_proxy |
body |
object |
|
ndp_proxy.id |
body |
string |
|
ndp_proxy.name |
body |
string |
|
ndp_proxy.project_id |
body |
string |
|
ndp_proxy.router_id |
body |
string |
|
ndp_proxy.port_id |
body |
string |
|
ndp_proxy.ip_address |
body |
string |
|
ndp_proxy.description |
body |
string |
|
ndp_proxy.revision_number |
body |
integer |
|
ndp_proxy.created_at |
body |
string |
|
ndp_proxy.updated_at |
body |
string |
local-ips¶
Request of the local-ips:post operation
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
local_ip |
body |
object |
|
local_ip.id |
body |
string |
|
local_ip.name |
body |
string |
|
local_ip.description |
body |
string |
|
local_ip.project_id |
body |
string |
|
local_ip.local_port_id |
body |
string |
|
local_ip.network_id |
body |
string |
|
local_ip.local_ip_address |
body |
string |
|
local_ip.ip_mode |
body |
string |
|
local_ip.revision_number |
body |
integer |
|
local_ip.created_at |
body |
string |
|
local_ip.updated_at |
body |
string |
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
local_ip |
body |
object |
|
local_ip.id |
body |
string |
|
local_ip.name |
body |
string |
|
local_ip.description |
body |
string |
|
local_ip.project_id |
body |
string |
|
local_ip.local_port_id |
body |
string |
|
local_ip.network_id |
body |
string |
|
local_ip.local_ip_address |
body |
string |
|
local_ip.ip_mode |
body |
string |
|
local_ip.revision_number |
body |
integer |
|
local_ip.created_at |
body |
string |
|
local_ip.updated_at |
body |
string |
Request of the local-ips/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
local_ip |
body |
object |
|
local_ip.id |
body |
string |
|
local_ip.name |
body |
string |
|
local_ip.description |
body |
string |
|
local_ip.project_id |
body |
string |
|
local_ip.local_port_id |
body |
string |
|
local_ip.network_id |
body |
string |
|
local_ip.local_ip_address |
body |
string |
|
local_ip.ip_mode |
body |
string |
|
local_ip.revision_number |
body |
integer |
|
local_ip.created_at |
body |
string |
|
local_ip.updated_at |
body |
string |
local_ips¶
Lists Associations for the given Local IP.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates a Local IP association with a given Port. If a Port has multiple fixed IPs user must specify which IP to use for association.
The operation returns the Conflict (409)
response code for one of
reasons:
Normal response codes: 201
Error response codes: 400, 401, 404, 409
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
port_association |
body |
object |
|
port_association.local_ip_id |
body |
string |
The ID of the associated Local IP. |
port_association.local_ip_address |
body |
string |
|
port_association.fixed_port_id |
body |
string |
The ID of the port associated with the Local IP. |
port_association.fixed_ip |
body |
string |
The IP of the port associated with the Local IP. |
port_association.host |
body |
string |
The host of the port associated with the Local IP. |
Request of the local_ips/local_ip_id/port_associations/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
port_association |
body |
object |
|
port_association.local_ip_id |
body |
string |
|
port_association.local_ip_address |
body |
string |
|
port_association.fixed_port_id |
body |
string |
|
port_association.fixed_ip |
body |
string |
|
port_association.host |
body |
string |
log¶
Lists all log resources associated with your project.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
The list might be empty.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates a log resource.
Creates a log resource by using the configuration that you define in the request object. A response object is returned. The object contains a unique ID.
If the caller is not an administrative user, this call returns the
HTTP Forbidden (403)
response code.
Users with an administrative role can create policies on behalf of other projects by specifying a project ID that is different than their own.
Normal response codes: 201
Error response codes: 400, 401, 403, 409
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
log |
body |
object |
A |
log.id |
body |
string |
The ID of the log object. |
log.project_id |
body |
string |
The ID of the project. |
log.name |
body |
string |
Human-readable name of the resource. |
log.resource_type |
body |
string |
The resource log type such as ‘security_group’. |
log.resource_id |
body |
[‘string’, ‘null’] |
The ID of resource log (e.g security group ID). |
log.event |
body |
string |
Type of security events to log.
|
log.target_id |
body |
[‘string’, ‘null’] |
The ID of resource target log such as port ID. |
log.enabled |
body |
[‘string’, ‘boolean’] |
Indicates whether this log object is enabled or disabled. |
log.revision_number |
body |
integer |
The revision number of the resource. |
log.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
log.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
log.description |
body |
string |
A human-readable description for the resource. |
Shows details log resource.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
log |
body |
object |
A |
log.id |
body |
string |
The ID of the log object. |
log.project_id |
body |
string |
The ID of the project. |
log.name |
body |
string |
Human-readable name of the resource. |
log.resource_type |
body |
string |
The resource log type such as ‘security_group’. |
log.resource_id |
body |
[‘string’, ‘null’] |
The ID of resource log (e.g security group ID). |
log.event |
body |
string |
Type of security events to log.
|
log.target_id |
body |
[‘string’, ‘null’] |
The ID of resource target log such as port ID. |
log.enabled |
body |
[‘string’, ‘boolean’] |
Indicates whether this log object is enabled or disabled. |
log.revision_number |
body |
integer |
The revision number of the resource. |
log.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
log.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
log.description |
body |
string |
A human-readable description for the resource. |
Updates a log resource.
Normal response codes: 200
Error response codes: 400, 401, 404, 412
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
log |
body |
object |
A |
log.id |
body |
string |
The ID of the log object. |
log.project_id |
body |
string |
The ID of the project. |
log.name |
body |
string |
Human-readable name of the resource. |
log.resource_type |
body |
string |
The resource log type such as ‘security_group’. |
log.resource_id |
body |
[‘string’, ‘null’] |
The ID of resource log (e.g security group ID). |
log.event |
body |
string |
Type of security events to log.
|
log.target_id |
body |
[‘string’, ‘null’] |
The ID of resource target log such as port ID. |
log.enabled |
body |
[‘string’, ‘boolean’] |
Indicates whether this log object is enabled or disabled. |
log.revision_number |
body |
integer |
The revision number of the resource. |
log.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
log.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
log.description |
body |
string |
A human-readable description for the resource. |
metering¶
Lists all L3 metering labels that belong to the project.
The list shows the ID for each metering label.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates an L3 metering label.
Normal response codes: 201
Error response codes: 400, 401, 403
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
metering_label |
body |
object |
A |
metering_label.id |
body |
string |
The ID of the metering label. |
metering_label.name |
body |
string |
Human-readable name of the resource. |
metering_label.description |
body |
string |
A human-readable description for the resource. |
metering_label.tenant_id |
body |
string |
The ID of the project. |
metering_label.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this metering label is shared across all projects. |
Shows details for a metering label.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
metering_label |
body |
object |
A |
metering_label.id |
body |
string |
The ID of the metering label. |
metering_label.name |
body |
string |
Human-readable name of the resource. |
metering_label.description |
body |
string |
A human-readable description for the resource. |
metering_label.tenant_id |
body |
string |
The ID of the project. |
metering_label.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this metering label is shared across all projects. |
Request of the metering/metering-labels/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
metering_label |
body |
object |
|
metering_label.id |
body |
string |
|
metering_label.name |
body |
string |
|
metering_label.description |
body |
string |
|
metering_label.tenant_id |
body |
string |
|
metering_label.shared |
body |
[‘string’, ‘boolean’] |
Lists a summary of all L3 metering label rules that belong to the project.
The list shows the ID for each metering label rule.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates an L3 metering label rule.
Normal response codes: 201
Error response codes: 400, 401, 403, 404, 409
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
metering_label_rule |
body |
object |
A |
metering_label_rule.id |
body |
string |
The ID of the metering label rule. |
metering_label_rule.metering_label_id |
body |
string |
The metering label ID associated with this metering rule. |
metering_label_rule.direction |
body |
string |
Ingress or egress, which is the direction in which the metering rule is applied. |
metering_label_rule.excluded |
body |
[‘string’, ‘boolean’] |
Indicates whether to count the traffic of a specific IP address with the
|
metering_label_rule.remote_ip_prefix |
body |
string |
(deprecated) The source IP prefix that is matched by this metering rule. By source IP prefix, one should read the internal/private IPs used in OpenStack. |
metering_label_rule.tenant_id |
body |
string |
|
metering_label_rule.source_ip_prefix |
body |
string |
|
metering_label_rule.destination_ip_prefix |
body |
string |
Shows details for a metering label rule.
The response body shows this information for each metering label rule:
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
metering_label_rule |
body |
object |
|
metering_label_rule.id |
body |
string |
|
metering_label_rule.metering_label_id |
body |
string |
|
metering_label_rule.direction |
body |
string |
|
metering_label_rule.excluded |
body |
[‘string’, ‘boolean’] |
|
metering_label_rule.remote_ip_prefix |
body |
string |
|
metering_label_rule.tenant_id |
body |
string |
|
metering_label_rule.source_ip_prefix |
body |
string |
|
metering_label_rule.destination_ip_prefix |
body |
string |
Request of the metering/metering-label-rules/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
metering_label_rule |
body |
object |
|
metering_label_rule.id |
body |
string |
|
metering_label_rule.metering_label_id |
body |
string |
|
metering_label_rule.direction |
body |
string |
|
metering_label_rule.excluded |
body |
[‘string’, ‘boolean’] |
|
metering_label_rule.remote_ip_prefix |
body |
string |
|
metering_label_rule.tenant_id |
body |
string |
|
metering_label_rule.source_ip_prefix |
body |
string |
|
metering_label_rule.destination_ip_prefix |
body |
string |
network-ip-availabilities¶
Request of the network-ip-availabilities:post operation
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
network_ip_availability |
body |
object |
|
network_ip_availability.network_id |
body |
string |
|
network_ip_availability.network_name |
body |
string |
|
network_ip_availability.tenant_id |
body |
string |
|
network_ip_availability.total_ips |
body |
string |
|
network_ip_availability.used_ips |
body |
string |
|
network_ip_availability.subnet_ip_availability |
body |
string |
Shows network IP availability details for a network.
By default policy configuration, only administrative users can retrieve
IP availability. Otherwise, Not Found (404)
will be returned.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
network_ip_availability |
body |
object |
A |
network_ip_availability.network_id |
body |
string |
The ID of the network whose IP availability detail is reported. |
network_ip_availability.network_name |
body |
string |
Human-readable name of the network. |
network_ip_availability.tenant_id |
body |
string |
The ID of the project. |
network_ip_availability.total_ips |
body |
string |
The total number of IP addresses in a network. |
network_ip_availability.used_ips |
body |
string |
The number of used IP addresses of all subnets in a network. |
network_ip_availability.subnet_ip_availability |
body |
string |
A list of dictionaries showing subnet IP availability. It contains information for every subnet associated to the network. |
Request of the network-ip-availabilities/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
network_ip_availability |
body |
object |
|
network_ip_availability.network_id |
body |
string |
|
network_ip_availability.network_name |
body |
string |
|
network_ip_availability.tenant_id |
body |
string |
|
network_ip_availability.total_ips |
body |
string |
|
network_ip_availability.used_ips |
body |
string |
|
network_ip_availability.subnet_ip_availability |
body |
string |
network-segment-ranges¶
Request of the network-segment-ranges:post operation
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
network_segment_range |
body |
object |
|
network_segment_range.id |
body |
string |
|
network_segment_range.name |
body |
string |
|
network_segment_range.default |
body |
[‘string’, ‘boolean’] |
|
network_segment_range.shared |
body |
[‘string’, ‘boolean’] |
|
network_segment_range.project_id |
body |
string |
|
network_segment_range.network_type |
body |
string |
|
network_segment_range.physical_network |
body |
string |
|
network_segment_range.minimum |
body |
number |
|
network_segment_range.maximum |
body |
number |
|
network_segment_range.used |
body |
string |
|
network_segment_range.available |
body |
string |
|
network_segment_range.revision_number |
body |
integer |
|
network_segment_range.created_at |
body |
string |
|
network_segment_range.updated_at |
body |
string |
|
network_segment_range.description |
body |
string |
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
network_segment_range |
body |
object |
|
network_segment_range.id |
body |
string |
|
network_segment_range.name |
body |
string |
|
network_segment_range.default |
body |
[‘string’, ‘boolean’] |
|
network_segment_range.shared |
body |
[‘string’, ‘boolean’] |
|
network_segment_range.project_id |
body |
string |
|
network_segment_range.network_type |
body |
string |
|
network_segment_range.physical_network |
body |
string |
|
network_segment_range.minimum |
body |
number |
|
network_segment_range.maximum |
body |
number |
|
network_segment_range.used |
body |
string |
|
network_segment_range.available |
body |
string |
|
network_segment_range.revision_number |
body |
integer |
|
network_segment_range.created_at |
body |
string |
|
network_segment_range.updated_at |
body |
string |
|
network_segment_range.description |
body |
string |
Request of the network-segment-ranges/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
network_segment_range |
body |
object |
|
network_segment_range.id |
body |
string |
|
network_segment_range.name |
body |
string |
|
network_segment_range.default |
body |
[‘string’, ‘boolean’] |
|
network_segment_range.shared |
body |
[‘string’, ‘boolean’] |
|
network_segment_range.project_id |
body |
string |
|
network_segment_range.network_type |
body |
string |
|
network_segment_range.physical_network |
body |
string |
|
network_segment_range.minimum |
body |
number |
|
network_segment_range.maximum |
body |
number |
|
network_segment_range.used |
body |
string |
|
network_segment_range.available |
body |
string |
|
network_segment_range.revision_number |
body |
integer |
|
network_segment_range.created_at |
body |
string |
|
network_segment_range.updated_at |
body |
string |
|
network_segment_range.description |
body |
string |
port-bindings¶
Request of the ports/port_id/bindings:post operation
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
binding |
body |
object |
|
binding.host |
body |
string |
|
binding.vif_type |
body |
string |
|
binding.vif_details |
body |
string |
|
binding.vnic_type |
body |
string |
|
binding.profile |
body |
[‘object’, ‘null’] |
|
binding.status |
body |
string |
|
binding.project_id |
body |
string |
Request of the ports/port_id/bindings/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
binding |
body |
object |
|
binding.host |
body |
string |
|
binding.vif_type |
body |
string |
|
binding.vif_details |
body |
string |
|
binding.vnic_type |
body |
string |
|
binding.profile |
body |
[‘object’, ‘null’] |
|
binding.status |
body |
string |
|
binding.project_id |
body |
string |
qos¶
Lists all QoS policies associated with your project. One policy can contain more than one rule type.
The list might be empty.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates a QoS policy.
Creates a QoS policy by using the configuration that you define in the request object. A response object is returned. The object contains a unique ID.
By the default policy configuration, if the caller is not an administrative
user, this call returns the HTTP Forbidden (403)
response code.
Users with an administrative role can create policies on behalf of other projects by specifying a project ID that is different than their own.
Normal response codes: 201
Error response codes: 401, 403, 404, 409
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
policy |
body |
object |
A QoS |
policy.id |
body |
string |
The ID of the QoS policy. |
policy.name |
body |
string |
Human-readable name of the resource. |
policy.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this policy is shared across all projects. |
policy.tenant_id |
body |
string |
The ID of the project. |
policy.rules |
body |
string |
A set of zero or more policy rules. |
policy.is_default |
body |
[‘string’, ‘boolean’] |
If |
policy.revision_number |
body |
integer |
The revision number of the resource. |
policy.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
policy.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
policy.description |
body |
string |
A human-readable description for the resource. |
Shows details for a QoS policy. One policy can contain more than one rule type.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
policy |
body |
object |
A QoS |
policy.id |
body |
string |
The ID of the QoS policy. |
policy.name |
body |
string |
Human-readable name of the resource. |
policy.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this policy is shared across all projects. |
policy.tenant_id |
body |
string |
The ID of the project. |
policy.rules |
body |
string |
A set of zero or more policy rules. |
policy.is_default |
body |
[‘string’, ‘boolean’] |
If |
policy.revision_number |
body |
integer |
The revision number of the resource. |
policy.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
policy.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
policy.description |
body |
string |
A human-readable description for the resource. |
Updates a QoS policy.
Normal response codes: 200
Error response codes: 400, 401, 404, 412
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
policy |
body |
object |
A QoS |
policy.id |
body |
string |
The ID of the QoS policy. |
policy.name |
body |
string |
Human-readable name of the resource. |
policy.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this policy is shared across all projects. |
policy.tenant_id |
body |
string |
The ID of the project. |
policy.rules |
body |
string |
A set of zero or more policy rules. |
policy.is_default |
body |
[‘string’, ‘boolean’] |
If |
policy.revision_number |
body |
integer |
The revision number of the resource. |
policy.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
policy.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
policy.description |
body |
string |
A human-readable description for the resource. |
Lists available qos rule types.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Shows details for an available QoS rule type.
You can control which response parameters are returned by using the fields query parameter. For information, see Filtering and column selection.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
rule_type |
body |
object |
|
rule_type.type |
body |
string |
The type of QoS rule. |
rule_type.drivers |
body |
string |
List of loaded QoS drivers with supported
rule type parameters with possible values for each.
Each driver is represented by a dict with the keys
|
Creates a bandwidth limit rule for a QoS policy.
Normal response codes: 201
Error response codes: 400, 401, 404, 409
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
bandwidth_limit_rule |
body |
object |
A |
bandwidth_limit_rule.id |
body |
string |
The ID of the QoS Bandwidth limit rule. |
bandwidth_limit_rule.tenant_id |
body |
string |
|
bandwidth_limit_rule.max_kbps |
body |
number |
The maximum KBPS (kilobits per second) value. If you specify this value, must be greater than 0 otherwise max_kbps will have no value. |
bandwidth_limit_rule.max_burst_kbps |
body |
number |
The maximum burst size (in kilobits). |
bandwidth_limit_rule.direction |
body |
string |
The direction of the traffic to which the QoS
rule is applied, as seen from the point of view
of the |
Shows details for a bandwidth limit rule for a QoS policy.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
bandwidth_limit_rule |
body |
object |
A |
bandwidth_limit_rule.id |
body |
string |
The ID of the QoS Bandwidth limit rule. |
bandwidth_limit_rule.tenant_id |
body |
string |
|
bandwidth_limit_rule.max_kbps |
body |
number |
The maximum KBPS (kilobits per second) value. If you specify this value, must be greater than 0 otherwise max_kbps will have no value. |
bandwidth_limit_rule.max_burst_kbps |
body |
number |
The maximum burst size (in kilobits). |
bandwidth_limit_rule.direction |
body |
string |
The direction of the traffic to which the QoS
rule is applied, as seen from the point of view
of the |
Updates a bandwidth limit rule for a QoS policy.
Normal response codes: 200
Error response codes: 400, 401, 404
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
bandwidth_limit_rule |
body |
object |
A |
bandwidth_limit_rule.id |
body |
string |
The ID of the QoS Bandwidth limit rule. |
bandwidth_limit_rule.tenant_id |
body |
string |
|
bandwidth_limit_rule.max_kbps |
body |
number |
The maximum KBPS (kilobits per second) value. If you specify this value, must be greater than 0 otherwise max_kbps will have no value. |
bandwidth_limit_rule.max_burst_kbps |
body |
number |
The maximum burst size (in kilobits). |
bandwidth_limit_rule.direction |
body |
string |
The direction of the traffic to which the QoS
rule is applied, as seen from the point of view
of the |
Creates a DSCP marking rule for a QoS policy.
Normal response codes: 201
Error response codes: 400, 401, 404, 409
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
dscp_marking_rule |
body |
object |
A |
dscp_marking_rule.id |
body |
string |
The ID of the QoS DSCP marking rule. |
dscp_marking_rule.tenant_id |
body |
string |
|
dscp_marking_rule.dscp_mark |
body |
integer |
The DSCP mark value. |
Shows details for a DSCP marking rule for a QoS policy.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
dscp_marking_rule |
body |
object |
A |
dscp_marking_rule.id |
body |
string |
The ID of the QoS DSCP marking rule. |
dscp_marking_rule.tenant_id |
body |
string |
|
dscp_marking_rule.dscp_mark |
body |
integer |
The DSCP mark value. |
Updates a DSCP marking rule for a QoS policy.
Normal response codes: 200
Error response codes: 400, 401, 404
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
dscp_marking_rule |
body |
object |
A |
dscp_marking_rule.id |
body |
string |
The ID of the QoS DSCP marking rule. |
dscp_marking_rule.tenant_id |
body |
string |
|
dscp_marking_rule.dscp_mark |
body |
integer |
The DSCP mark value. |
Lists all minimum bandwidth rules for a QoS policy.
The list might be empty.
You can control which response parameters are returned by using the fields query parameter. For information, see Filtering and column selection.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Creates a minimum bandwidth rule for a QoS policy.
Normal response codes: 201
Error response codes: 400, 401, 404, 409
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
minimum_bandwidth_rule |
body |
object |
A |
minimum_bandwidth_rule.id |
body |
string |
The ID of the QoS minimum bandwidth rule. |
minimum_bandwidth_rule.tenant_id |
body |
string |
|
minimum_bandwidth_rule.min_kbps |
body |
number |
The minimum KBPS (kilobits per second) value which should be available for port. |
minimum_bandwidth_rule.direction |
body |
string |
The direction of the traffic to which the QoS
rule is applied, as seen from the point of view
of the |
Shows details for a minimum bandwidth rule for a QoS policy.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
minimum_bandwidth_rule |
body |
object |
A |
minimum_bandwidth_rule.id |
body |
string |
The ID of the QoS minimum bandwidth rule. |
minimum_bandwidth_rule.tenant_id |
body |
string |
|
minimum_bandwidth_rule.min_kbps |
body |
number |
The minimum KBPS (kilobits per second) value which should be available for port. |
minimum_bandwidth_rule.direction |
body |
string |
The direction of the traffic to which the QoS
rule is applied, as seen from the point of view
of the |
Updates a minimum bandwidth rule for a QoS policy.
Note that the rule cannot be updated, and the update is rejected with error code 501, if there is any bound port referring to the rule via the qos policy.
Normal response codes: 200
Error response codes: 400, 401, 404, 501
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
minimum_bandwidth_rule |
body |
object |
A |
minimum_bandwidth_rule.id |
body |
string |
The ID of the QoS minimum bandwidth rule. |
minimum_bandwidth_rule.tenant_id |
body |
string |
|
minimum_bandwidth_rule.min_kbps |
body |
number |
The minimum KBPS (kilobits per second) value which should be available for port. |
minimum_bandwidth_rule.direction |
body |
string |
The direction of the traffic to which the QoS
rule is applied, as seen from the point of view
of the |
Request of the qos/policies/policy_id/minimum-packet-rate-rules:post operation
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
minimum_packet_rate_rule |
body |
object |
|
minimum_packet_rate_rule.id |
body |
string |
|
minimum_packet_rate_rule.tenant_id |
body |
string |
|
minimum_packet_rate_rule.min_kpps |
body |
number |
|
minimum_packet_rate_rule.direction |
body |
string |
Request of the qos/policies/policy_id/minimum-packet-rate-rules/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
minimum_packet_rate_rule |
body |
object |
|
minimum_packet_rate_rule.id |
body |
string |
|
minimum_packet_rate_rule.tenant_id |
body |
string |
|
minimum_packet_rate_rule.min_kpps |
body |
number |
|
minimum_packet_rate_rule.direction |
body |
string |
Request of the qos/alias-minimum-packet-rate-rules:post operation
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
alias_minimum_packet_rate_rule |
body |
object |
|
alias_minimum_packet_rate_rule.id |
body |
string |
|
alias_minimum_packet_rate_rule.tenant_id |
body |
string |
|
alias_minimum_packet_rate_rule.min_kpps |
body |
number |
|
alias_minimum_packet_rate_rule.direction |
body |
string |
Request of the qos/alias-minimum-packet-rate-rules/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
alias_minimum_packet_rate_rule |
body |
object |
|
alias_minimum_packet_rate_rule.id |
body |
string |
|
alias_minimum_packet_rate_rule.tenant_id |
body |
string |
|
alias_minimum_packet_rate_rule.min_kpps |
body |
number |
|
alias_minimum_packet_rate_rule.direction |
body |
string |
Request of the qos/alias-bandwidth-limit-rules:post operation
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
alias_bandwidth_limit_rule |
body |
object |
|
alias_bandwidth_limit_rule.id |
body |
string |
|
alias_bandwidth_limit_rule.tenant_id |
body |
string |
|
alias_bandwidth_limit_rule.max_kbps |
body |
number |
|
alias_bandwidth_limit_rule.direction |
body |
string |
|
alias_bandwidth_limit_rule.max_burst_kbps |
body |
number |
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
alias_bandwidth_limit_rule |
body |
object |
|
alias_bandwidth_limit_rule.id |
body |
string |
|
alias_bandwidth_limit_rule.tenant_id |
body |
string |
|
alias_bandwidth_limit_rule.max_kbps |
body |
number |
|
alias_bandwidth_limit_rule.direction |
body |
string |
|
alias_bandwidth_limit_rule.max_burst_kbps |
body |
number |
Request of the qos/alias-bandwidth-limit-rules/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
alias_bandwidth_limit_rule |
body |
object |
|
alias_bandwidth_limit_rule.id |
body |
string |
|
alias_bandwidth_limit_rule.tenant_id |
body |
string |
|
alias_bandwidth_limit_rule.max_kbps |
body |
number |
|
alias_bandwidth_limit_rule.direction |
body |
string |
|
alias_bandwidth_limit_rule.max_burst_kbps |
body |
number |
Request of the qos/alias-minimum-bandwidth-rules:post operation
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
alias_minimum_bandwidth_rule |
body |
object |
|
alias_minimum_bandwidth_rule.id |
body |
string |
|
alias_minimum_bandwidth_rule.tenant_id |
body |
string |
|
alias_minimum_bandwidth_rule.min_kbps |
body |
number |
|
alias_minimum_bandwidth_rule.direction |
body |
string |
Request of the qos/alias-minimum-bandwidth-rules/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
alias_minimum_bandwidth_rule |
body |
object |
|
alias_minimum_bandwidth_rule.id |
body |
string |
|
alias_minimum_bandwidth_rule.tenant_id |
body |
string |
|
alias_minimum_bandwidth_rule.min_kbps |
body |
number |
|
alias_minimum_bandwidth_rule.direction |
body |
string |
policies¶
Request of the policies/policy_id/packet_rate_limit_rules:post operation
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
packet_rate_limit_rule |
body |
object |
|
packet_rate_limit_rule.id |
body |
string |
|
packet_rate_limit_rule.tenant_id |
body |
string |
|
packet_rate_limit_rule.max_kpps |
body |
number |
|
packet_rate_limit_rule.max_burst_kpps |
body |
number |
|
packet_rate_limit_rule.direction |
body |
string |
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
packet_rate_limit_rule |
body |
object |
|
packet_rate_limit_rule.id |
body |
string |
|
packet_rate_limit_rule.tenant_id |
body |
string |
|
packet_rate_limit_rule.max_kpps |
body |
number |
|
packet_rate_limit_rule.max_burst_kpps |
body |
number |
|
packet_rate_limit_rule.direction |
body |
string |
Request of the policies/policy_id/packet_rate_limit_rules/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
packet_rate_limit_rule |
body |
object |
|
packet_rate_limit_rule.id |
body |
string |
|
packet_rate_limit_rule.tenant_id |
body |
string |
|
packet_rate_limit_rule.max_kpps |
body |
number |
|
packet_rate_limit_rule.max_burst_kpps |
body |
number |
|
packet_rate_limit_rule.direction |
body |
string |
Request of the policies/policy_id/tags:put operation
quotas¶
Lists default quotas for a project.
Normal response codes: 200
Error response codes: 401, 403
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
quota |
body |
object |
A |
quota.floatingip |
body |
integer |
The number of floating IP addresses allowed for
each project. A value of |
quota.network |
body |
integer |
The number of networks allowed for each project.
A value of |
quota.port |
body |
integer |
The number of ports allowed for each project.
A value of |
quota.rbac_policy |
body |
integer |
The number of role-based access control (RBAC)
policies for each project. A value of |
quota.router |
body |
integer |
The number of routers allowed for each project.
A value of |
quota.security_group |
body |
integer |
The number of security groups allowed for each
project. A value of |
quota.security_group_rule |
body |
integer |
The number of security group rules allowed for
each project. A value of |
quota.subnet |
body |
integer |
The number of subnets allowed for each project.
A value of |
quota.subnetpool |
body |
integer |
The number of subnet pools allowed for each
project. A value of |
quota.project_id |
body |
string |
The ID of the project. |
Lists quotas for a project.
Normal response codes: 200
Error response codes: 401, 403
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
quota |
body |
object |
A |
quota.floatingip |
body |
integer |
The number of floating IP addresses allowed for
each project. A value of |
quota.network |
body |
integer |
The number of networks allowed for each project.
A value of |
quota.port |
body |
integer |
The number of ports allowed for each project.
A value of |
quota.rbac_policy |
body |
integer |
The number of role-based access control (RBAC)
policies for each project. A value of |
quota.router |
body |
integer |
The number of routers allowed for each project.
A value of |
quota.security_group |
body |
integer |
The number of security groups allowed for each
project. A value of |
quota.security_group_rule |
body |
integer |
The number of security group rules allowed for
each project. A value of |
quota.subnet |
body |
integer |
The number of subnets allowed for each project.
A value of |
quota.subnetpool |
body |
integer |
The number of subnet pools allowed for each
project. A value of |
quota.project_id |
body |
string |
The ID of the project. |
Updates quotas for a project. Use when non-default quotas are desired.
Normal response codes: 200
Error response codes: 401, 403
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
quota |
body |
object |
A |
quota.floatingip |
body |
integer |
The number of floating IP addresses allowed for
each project. A value of |
quota.network |
body |
integer |
The number of networks allowed for each project.
A value of |
quota.port |
body |
integer |
The number of ports allowed for each project.
A value of |
quota.rbac_policy |
body |
integer |
The number of role-based access control (RBAC)
policies for each project. A value of |
quota.router |
body |
integer |
The number of routers allowed for each project.
A value of |
quota.security_group |
body |
integer |
The number of security groups allowed for each
project. A value of |
quota.security_group_rule |
body |
integer |
The number of security group rules allowed for
each project. A value of |
quota.subnet |
body |
integer |
The number of subnets allowed for each project.
A value of |
quota.subnetpool |
body |
integer |
The number of subnet pools allowed for each
project. A value of |
quota.project_id |
body |
string |
The ID of the project. |
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
quota |
body |
object |
|
quota.floatingip |
body |
object |
The number of floating IP addresses allowed for each project. |
quota.floatingip.used |
body |
integer |
Used quota |
quota.floatingip.limit |
body |
integer |
Current quota limit |
quota.floatingip.reserved |
body |
integer |
Reserved quota |
quota.network |
body |
object |
The number of networks allowed for each project. |
quota.network.used |
body |
integer |
Used quota |
quota.network.limit |
body |
integer |
Current quota limit |
quota.network.reserved |
body |
integer |
Reserved quota |
quota.port |
body |
object |
The number of ports allowed for each project. |
quota.port.used |
body |
integer |
Used quota |
quota.port.limit |
body |
integer |
Current quota limit |
quota.port.reserved |
body |
integer |
Reserved quota |
quota.rbac_policy |
body |
object |
The number of role-based access control (RBAC) policies for each project. |
quota.rbac_policy.used |
body |
integer |
Used quota |
quota.rbac_policy.limit |
body |
integer |
Current quota limit |
quota.rbac_policy.reserved |
body |
integer |
Reserved quota |
quota.router |
body |
object |
The number of routers allowed for each project. |
quota.router.used |
body |
integer |
Used quota |
quota.router.limit |
body |
integer |
Current quota limit |
quota.router.reserved |
body |
integer |
Reserved quota |
quota.security_group |
body |
object |
The number of security groups allowed for each project. |
quota.security_group.used |
body |
integer |
Used quota |
quota.security_group.limit |
body |
integer |
Current quota limit |
quota.security_group.reserved |
body |
integer |
Reserved quota |
quota.security_group_rule |
body |
object |
The number of security group rules allowed for each project. |
quota.security_group_rule.used |
body |
integer |
Used quota |
quota.security_group_rule.limit |
body |
integer |
Current quota limit |
quota.security_group_rule.reserved |
body |
integer |
Reserved quota |
quota.subnet |
body |
object |
The number of subnets allowed for each project. |
quota.subnet.used |
body |
integer |
Used quota |
quota.subnet.limit |
body |
integer |
Current quota limit |
quota.subnet.reserved |
body |
integer |
Reserved quota |
quota.subnetpool |
body |
object |
The number of subnet pools allowed for each project. |
quota.subnetpool.used |
body |
integer |
Used quota |
quota.subnetpool.limit |
body |
integer |
Current quota limit |
quota.subnetpool.reserved |
body |
integer |
Reserved quota |
rbac-policies¶
List RBAC policies that belong to a given tenant.
Use the fields
query parameter to filter the response. For
information, see Filtering and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Create RBAC policy for given tenant.
Normal response codes: 201
Error response codes: 400, 401
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
rbac_policy |
body |
object |
|
rbac_policy.id |
body |
string |
The ID of the RBAC policy. |
rbac_policy.object_type |
body |
string |
The type of the object that the RBAC policy affects. Types include
|
rbac_policy.object_id |
body |
string |
The ID of the |
rbac_policy.target_tenant |
body |
string |
The ID of the tenant to which the RBAC policy will be enforced. |
rbac_policy.tenant_id |
body |
string |
The ID of the project that owns the resource. |
rbac_policy.action |
body |
string |
Action for the RBAC policy which is |
Show details for a given RBAC policy.
You can control which response parameters are returned by using the fields query parameter. For information, see Filtering and column selection.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
rbac_policy |
body |
object |
|
rbac_policy.id |
body |
string |
The ID of the RBAC policy. |
rbac_policy.object_type |
body |
string |
The type of the object that the RBAC policy affects. Types include
|
rbac_policy.object_id |
body |
string |
The ID of the |
rbac_policy.target_tenant |
body |
string |
The ID of the tenant to which the RBAC policy will be enforced. |
rbac_policy.tenant_id |
body |
string |
The ID of the project that owns the resource. |
rbac_policy.action |
body |
string |
Action for the RBAC policy which is |
Update RBAC policy for given tenant.
Normal response codes: 200
Error response codes: 400, 401, 403, 404
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
rbac_policy |
body |
object |
|
rbac_policy.id |
body |
string |
The ID of the RBAC policy. |
rbac_policy.object_type |
body |
string |
The type of the object that the RBAC policy affects. Types include
|
rbac_policy.object_id |
body |
string |
The ID of the |
rbac_policy.target_tenant |
body |
string |
The ID of the tenant to which the RBAC policy will be enforced. |
rbac_policy.tenant_id |
body |
string |
The ID of the project that owns the resource. |
rbac_policy.action |
body |
string |
Action for the RBAC policy which is |
default-security-group-rules¶
Lists a summary of all OpenStack Networking security group rules that are used for every newly created Security Group.
The list provides the ID for each security group default rule.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates an Openstack Networking security group rule template.
Normal response codes: 201
Error response codes: 400, 401, 404, 409
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
default_security_group_rule |
body |
object |
|
default_security_group_rule.id |
body |
string |
The ID of the security group default rule. |
default_security_group_rule.description |
body |
string |
A human-readable description for the resource. |
default_security_group_rule.remote_group_id |
body |
string |
The remote group UUID to associate with this
security group rule. You can specify either the
|
default_security_group_rule.remote_address_group_id |
body |
string |
The remote address group UUID to associate with this security group rule. |
default_security_group_rule.direction |
body |
string |
Ingress or egress, which is the direction in which the security group rule is applied. |
default_security_group_rule.protocol |
body |
string |
The IP protocol can be represented by a string, an integer, or |
default_security_group_rule.port_range_min |
body |
string |
The minimum port number in the range that is
matched by the security group rule. If the protocol is TCP, UDP,
DCCP, SCTP or UDP-Lite this value must be less than or equal to
the |
default_security_group_rule.port_range_max |
body |
string |
The maximum port number in the range that is
matched by the security group rule. If the protocol is TCP, UDP,
DCCP, SCTP or UDP-Lite this value must be greater than or equal to
the |
default_security_group_rule.ethertype |
body |
string |
Must be IPv4 or IPv6, and addresses represented in CIDR must match the ingress or egress rules. |
default_security_group_rule.remote_ip_prefix |
body |
string |
The remote IP prefix that is matched by this security group rule. |
default_security_group_rule.used_in_default_sg |
body |
[‘string’, ‘boolean’] |
Whether this security group rule template should be used in default
security group created automatically for each new project. Default value
is |
default_security_group_rule.used_in_non_default_sg |
body |
[‘string’, ‘boolean’] |
Whether this security group rule template should be used in custom
security groups created by project user. Default value is |
Shows detailed information for a security group default rule.
The response body contains the following information about the security group rule:
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
default_security_group_rule |
body |
object |
A |
default_security_group_rule.id |
body |
string |
The ID of the security group default rule. |
default_security_group_rule.description |
body |
string |
A human-readable description for the resource. |
default_security_group_rule.remote_group_id |
body |
string |
The remote group UUID to associate with this
security group rule. You can specify either the
|
default_security_group_rule.remote_address_group_id |
body |
string |
The remote address group UUID to associate with this security group rule. |
default_security_group_rule.direction |
body |
string |
Ingress or egress, which is the direction in which the security group rule is applied. |
default_security_group_rule.protocol |
body |
string |
The IP protocol can be represented by a string, an integer, or |
default_security_group_rule.port_range_min |
body |
string |
The minimum port number in the range that is
matched by the security group rule. If the protocol is TCP, UDP,
DCCP, SCTP or UDP-Lite this value must be less than or equal to
the |
default_security_group_rule.port_range_max |
body |
string |
The maximum port number in the range that is
matched by the security group rule. If the protocol is TCP, UDP,
DCCP, SCTP or UDP-Lite this value must be greater than or equal to
the |
default_security_group_rule.ethertype |
body |
string |
Must be IPv4 or IPv6, and addresses represented in CIDR must match the ingress or egress rules. |
default_security_group_rule.remote_ip_prefix |
body |
string |
The remote IP prefix that is matched by this security group rule. |
default_security_group_rule.used_in_default_sg |
body |
[‘string’, ‘boolean’] |
Whether this security group rule template should be used in default
security group created automatically for each new project. Default value
is |
default_security_group_rule.used_in_non_default_sg |
body |
[‘string’, ‘boolean’] |
Whether this security group rule template should be used in custom
security groups created by project user. Default value is |
Request of the default-security-group-rules/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
default_security_group_rule |
body |
object |
|
default_security_group_rule.id |
body |
string |
|
default_security_group_rule.description |
body |
string |
|
default_security_group_rule.remote_group_id |
body |
string |
|
default_security_group_rule.remote_address_group_id |
body |
string |
|
default_security_group_rule.direction |
body |
string |
|
default_security_group_rule.protocol |
body |
string |
|
default_security_group_rule.port_range_min |
body |
string |
|
default_security_group_rule.port_range_max |
body |
string |
|
default_security_group_rule.ethertype |
body |
string |
|
default_security_group_rule.remote_ip_prefix |
body |
string |
|
default_security_group_rule.used_in_default_sg |
body |
[‘string’, ‘boolean’] |
|
default_security_group_rule.used_in_non_default_sg |
body |
[‘string’, ‘boolean’] |
security-groups¶
Lists OpenStack Networking security groups to which the project has access.
The response is an array of security_group
objects which contains a list of
security_group_rules
objects.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates an OpenStack Networking security group.
This operation creates a security group with default security group rules for the IPv4 and IPv6 ether types.
Normal response codes: 201
Error response codes: 400, 401, 409
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
security_group |
body |
object |
A |
security_group.id |
body |
string |
The ID of the security group. |
security_group.name |
body |
string |
Human-readable name of the resource. |
security_group.tenant_id |
body |
string |
The ID of the project. |
security_group.security_group_rules |
body |
string |
A list of |
security_group.revision_number |
body |
integer |
The revision number of the resource. |
security_group.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
security_group.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
security_group.description |
body |
string |
A human-readable description for the resource. |
security_group.stateful |
body |
[‘string’, ‘boolean’] |
Indicates if the security group is stateful or stateless. |
security_group.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this security group is shared to the requester’s project. |
Shows details for a security group.
The associated security group rules are contained in the response.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
security_group |
body |
object |
A |
security_group.id |
body |
string |
The ID of the security group. |
security_group.name |
body |
string |
Human-readable name of the resource. |
security_group.tenant_id |
body |
string |
The ID of the project. |
security_group.security_group_rules |
body |
string |
A list of |
security_group.revision_number |
body |
integer |
The revision number of the resource. |
security_group.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
security_group.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
security_group.description |
body |
string |
A human-readable description for the resource. |
security_group.stateful |
body |
[‘string’, ‘boolean’] |
Indicates if the security group is stateful or stateless. |
security_group.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this security group is shared to the requester’s project. |
Updates a security group.
Normal response codes: 200
Error response codes: 400, 401, 403, 404, 412
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
security_group |
body |
object |
A |
security_group.id |
body |
string |
The ID of the security group. |
security_group.name |
body |
string |
Human-readable name of the resource. |
security_group.tenant_id |
body |
string |
The ID of the project. |
security_group.security_group_rules |
body |
string |
A list of |
security_group.revision_number |
body |
integer |
The revision number of the resource. |
security_group.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
security_group.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
security_group.description |
body |
string |
A human-readable description for the resource. |
security_group.stateful |
body |
[‘string’, ‘boolean’] |
Indicates if the security group is stateful or stateless. |
security_group.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this security group is shared to the requester’s project. |
Deletes an OpenStack Networking security group.
This operation deletes an OpenStack Networking security group and its associated security group rules, provided that a port is not associated with the security group. If a port is associated with the security group 409 (Conflict) is returned.
This operation does not require a request body. This operation does not return a response body.
Normal response codes: 204
Error response codes: 401, 404, 409, 412
Responses¶
204¶
Ok
Request of the security-groups/security_group_id/tags:put operation
security-group-rules¶
Lists a summary of all OpenStack Networking security group rules that the project can access.
The list provides the ID for each security group rule.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates an OpenStack Networking security group rule.
Normal response codes: 201
Error response codes: 400, 401, 404, 409
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
security_group_rule |
body |
object |
A |
security_group_rule.id |
body |
string |
The ID of the security group rule. |
security_group_rule.security_group_id |
body |
string |
The security group ID to associate with this security group rule. |
security_group_rule.remote_group_id |
body |
string |
The remote group UUID to associate with this
security group rule. You can specify either the
|
security_group_rule.direction |
body |
string |
Ingress or egress, which is the direction in which the security group rule is applied. |
security_group_rule.protocol |
body |
string |
The IP protocol can be represented by a string, an integer, or |
security_group_rule.port_range_min |
body |
string |
The minimum port number in the range that is
matched by the security group rule. If the protocol is TCP, UDP,
DCCP, SCTP or UDP-Lite this value must be less than or equal to
the |
security_group_rule.port_range_max |
body |
string |
The maximum port number in the range that is
matched by the security group rule. If the protocol is TCP, UDP,
DCCP, SCTP or UDP-Lite this value must be greater than or equal to
the |
security_group_rule.ethertype |
body |
string |
Must be IPv4 or IPv6, and addresses represented in CIDR must match the ingress or egress rules. |
security_group_rule.remote_ip_prefix |
body |
string |
The remote IP prefix that is matched by this security group rule. |
security_group_rule.tenant_id |
body |
string |
The ID of the project. |
security_group_rule.revision_number |
body |
integer |
The revision number of the resource. |
security_group_rule.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
security_group_rule.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
security_group_rule.description |
body |
string |
A human-readable description for the resource. |
security_group_rule.normalized_cidr |
body |
[‘string’, ‘null’] |
|
security_group_rule.remote_address_group_id |
body |
string |
Shows detailed information for a security group rule.
The response body contains the following information about the security group rule:
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
security_group_rule |
body |
object |
A |
security_group_rule.id |
body |
string |
The ID of the security group rule. |
security_group_rule.security_group_id |
body |
string |
The security group ID to associate with this security group rule. |
security_group_rule.remote_group_id |
body |
string |
The remote group UUID to associate with this
security group rule. You can specify either the
|
security_group_rule.direction |
body |
string |
Ingress or egress, which is the direction in which the security group rule is applied. |
security_group_rule.protocol |
body |
string |
The IP protocol can be represented by a string, an integer, or |
security_group_rule.port_range_min |
body |
string |
The minimum port number in the range that is
matched by the security group rule. If the protocol is TCP, UDP,
DCCP, SCTP or UDP-Lite this value must be less than or equal to
the |
security_group_rule.port_range_max |
body |
string |
The maximum port number in the range that is
matched by the security group rule. If the protocol is TCP, UDP,
DCCP, SCTP or UDP-Lite this value must be greater than or equal to
the |
security_group_rule.ethertype |
body |
string |
Must be IPv4 or IPv6, and addresses represented in CIDR must match the ingress or egress rules. |
security_group_rule.remote_ip_prefix |
body |
string |
The remote IP prefix that is matched by this security group rule. |
security_group_rule.tenant_id |
body |
string |
The ID of the project. |
security_group_rule.revision_number |
body |
integer |
The revision number of the resource. |
security_group_rule.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
security_group_rule.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
security_group_rule.description |
body |
string |
A human-readable description for the resource. |
security_group_rule.normalized_cidr |
body |
[‘string’, ‘null’] |
|
security_group_rule.remote_address_group_id |
body |
string |
Request of the security-group-rules/id:put operation
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
security_group_rule |
body |
object |
|
security_group_rule.id |
body |
string |
|
security_group_rule.security_group_id |
body |
string |
|
security_group_rule.remote_group_id |
body |
string |
|
security_group_rule.direction |
body |
string |
|
security_group_rule.protocol |
body |
string |
|
security_group_rule.port_range_min |
body |
string |
|
security_group_rule.port_range_max |
body |
string |
|
security_group_rule.ethertype |
body |
string |
|
security_group_rule.remote_ip_prefix |
body |
string |
|
security_group_rule.tenant_id |
body |
string |
|
security_group_rule.revision_number |
body |
integer |
|
security_group_rule.created_at |
body |
string |
|
security_group_rule.updated_at |
body |
string |
|
security_group_rule.description |
body |
string |
|
security_group_rule.normalized_cidr |
body |
[‘string’, ‘null’] |
|
security_group_rule.remote_address_group_id |
body |
string |
segments¶
Lists segments to which the project has access.
Use the fields
query parameter to filter the response. For
information, see Filtering and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates a segment.
Normal response codes: 201
Error response codes: 400, 401
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
segment |
body |
object |
|
segment.id |
body |
string |
The UUID of the segment. |
segment.network_id |
body |
string |
The ID of the attached network. |
segment.physical_network |
body |
string |
The physical network where this network/segment is implemented. |
segment.network_type |
body |
string |
The type of physical network that maps to this
network resource. For example, |
segment.segmentation_id |
body |
[‘string’, ‘integer’] |
The ID of the isolated segment on the physical network.
The |
segment.name |
body |
[‘string’, ‘null’] |
Human-readable name of the resource. |
segment.revision_number |
body |
integer |
The revision number of the resource. |
segment.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
segment.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
segment.description |
body |
string |
A human-readable description for the resource. |
Shows details for a segment.
You can control which response parameters are returned by using the fields query parameter. For information, see Filtering and column selection.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
segment |
body |
object |
|
segment.id |
body |
string |
The UUID of the segment. |
segment.network_id |
body |
string |
The ID of the attached network. |
segment.physical_network |
body |
string |
The physical network where this network/segment is implemented. |
segment.network_type |
body |
string |
The type of physical network that maps to this
network resource. For example, |
segment.segmentation_id |
body |
[‘string’, ‘integer’] |
The ID of the isolated segment on the physical network.
The |
segment.name |
body |
[‘string’, ‘null’] |
Human-readable name of the resource. |
segment.revision_number |
body |
integer |
The revision number of the resource. |
segment.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
segment.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
segment.description |
body |
string |
A human-readable description for the resource. |
Updates a segment.
Normal response codes: 200
Error response codes: 400, 401, 403, 404, 412
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
segment |
body |
object |
|
segment.id |
body |
string |
The UUID of the segment. |
segment.network_id |
body |
string |
The ID of the attached network. |
segment.physical_network |
body |
string |
The physical network where this network/segment is implemented. |
segment.network_type |
body |
string |
The type of physical network that maps to this
network resource. For example, |
segment.segmentation_id |
body |
[‘string’, ‘integer’] |
The ID of the isolated segment on the physical network.
The |
segment.name |
body |
[‘string’, ‘null’] |
Human-readable name of the resource. |
segment.revision_number |
body |
integer |
The revision number of the resource. |
segment.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
segment.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
segment.description |
body |
string |
A human-readable description for the resource. |
service-providers¶
Lists service providers and their associated service types.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
subnetpools¶
Lists subnet pools that the project has access to.
Default policy settings return only the subnet pools owned by the project of the user submitting the request, unless the user has administrative role.
Use the fields
query parameter to control which fields are returned in the response body.
Additionally, you can filter results by using query string parameters.
For information, see Filtering and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates a subnet pool.
Normal response codes: 201
Error response codes: 400, 401, 403, 404
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
subnetpool |
body |
object |
A |
subnetpool.id |
body |
string |
The ID of the subnet pool. |
subnetpool.name |
body |
string |
Human-readable name of the resource. |
subnetpool.tenant_id |
body |
string |
The ID of the project. |
subnetpool.default_quota |
body |
integer |
A per-project quota on the prefix space that can
be allocated from the subnet pool for project subnets. Default is
no quota is enforced on allocations from the subnet pool. For IPv4
subnet pools, |
subnetpool.ip_version |
body |
string |
The IP protocol version. Valid value is |
subnetpool.default_prefixlen |
body |
integer |
The size of the prefix to allocate when the
|
subnetpool.min_prefixlen |
body |
integer |
The smallest prefix that can be allocated from a
subnet pool. For IPv4 subnet pools, default is |
subnetpool.max_prefixlen |
body |
integer |
The maximum prefix size that can be allocated
from the subnet pool. For IPv4 subnet pools, default is |
subnetpool.is_default |
body |
[‘string’, ‘boolean’] |
The subnetpool is default pool or not. |
subnetpool.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this resource is shared across all projects. By default, only administrative users can change this value. |
subnetpool.address_scope_id |
body |
[‘string’, ‘null’] |
An address scope to assign to the subnet pool. |
subnetpool.revision_number |
body |
integer |
The revision number of the resource. |
subnetpool.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
subnetpool.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
subnetpool.description |
body |
string |
A human-readable description for the resource. |
Shows information for a subnet pool.
Use the fields
query parameter to control which fields are returned in the response body.
Additionally, you can filter results by using query string parameters.
For information, see Filtering and Column Selection.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
subnetpool |
body |
object |
A |
subnetpool.id |
body |
string |
The ID of the subnet pool. |
subnetpool.name |
body |
string |
Human-readable name of the resource. |
subnetpool.tenant_id |
body |
string |
The ID of the project. |
subnetpool.default_quota |
body |
integer |
A per-project quota on the prefix space that can
be allocated from the subnet pool for project subnets. Default is
no quota is enforced on allocations from the subnet pool. For IPv4
subnet pools, |
subnetpool.ip_version |
body |
string |
The IP protocol version. Valid value is |
subnetpool.default_prefixlen |
body |
integer |
The size of the prefix to allocate when the
|
subnetpool.min_prefixlen |
body |
integer |
The smallest prefix that can be allocated from a
subnet pool. For IPv4 subnet pools, default is |
subnetpool.max_prefixlen |
body |
integer |
The maximum prefix size that can be allocated
from the subnet pool. For IPv4 subnet pools, default is |
subnetpool.is_default |
body |
[‘string’, ‘boolean’] |
The subnetpool is default pool or not. |
subnetpool.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this resource is shared across all projects. By default, only administrative users can change this value. |
subnetpool.address_scope_id |
body |
[‘string’, ‘null’] |
An address scope to assign to the subnet pool. |
subnetpool.revision_number |
body |
integer |
The revision number of the resource. |
subnetpool.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
subnetpool.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
subnetpool.description |
body |
string |
A human-readable description for the resource. |
Updates a subnet pool.
Normal response codes: 200
Error response codes: 400, 401, 403, 404, 412
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
subnetpool |
body |
object |
A |
subnetpool.id |
body |
string |
The ID of the subnet pool. |
subnetpool.name |
body |
string |
Human-readable name of the resource. |
subnetpool.tenant_id |
body |
string |
The ID of the project. |
subnetpool.default_quota |
body |
integer |
A per-project quota on the prefix space that can
be allocated from the subnet pool for project subnets. Default is
no quota is enforced on allocations from the subnet pool. For IPv4
subnet pools, |
subnetpool.ip_version |
body |
string |
The IP protocol version. Valid value is |
subnetpool.default_prefixlen |
body |
integer |
The size of the prefix to allocate when the
|
subnetpool.min_prefixlen |
body |
integer |
The smallest prefix that can be allocated from a
subnet pool. For IPv4 subnet pools, default is |
subnetpool.max_prefixlen |
body |
integer |
The maximum prefix size that can be allocated
from the subnet pool. For IPv4 subnet pools, default is |
subnetpool.is_default |
body |
[‘string’, ‘boolean’] |
The subnetpool is default pool or not. |
subnetpool.shared |
body |
[‘string’, ‘boolean’] |
Indicates whether this resource is shared across all projects. By default, only administrative users can change this value. |
subnetpool.address_scope_id |
body |
[‘string’, ‘null’] |
An address scope to assign to the subnet pool. |
subnetpool.revision_number |
body |
integer |
The revision number of the resource. |
subnetpool.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
subnetpool.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
subnetpool.description |
body |
string |
A human-readable description for the resource. |
Request of the subnetpools/subnetpool_id/tags:put operation
ports¶
Request of the ports/port_id/tags:put operation
Lists ports to which the user has access.
Default policy settings return only those ports that are owned by the project of the user who submits the request, unless the request is submitted by a user with administrative rights.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
If the ip-substring-filtering
extension is enabled, the Neutron API
supports IP address substring filtering on the fixed_ips
attribute.
If you specify an IP address substring (ip_address_substr
) in
an entry of the fixed_ips
attribute, the Neutron API will list all
ports that have an IP address matching the substring.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates a port on a network.
To define the network in which to create the port, specify the
network_id
attribute in the request body.
Normal response codes: 201
Error response codes: 400, 401, 403, 404
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
port |
body |
object |
A |
port.id |
body |
string |
The ID of the resource. |
port.name |
body |
string |
Human-readable name of the resource. |
port.network_id |
body |
string |
The ID of the attached network. |
port.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
port.mac_address |
body |
string |
The MAC address of the port. If the port uses the |
port.device_id |
body |
string |
The ID of the device that uses this port. For example, a server instance or a logical router. |
port.device_owner |
body |
string |
The entity type that uses this port.
For example, |
port.tenant_id |
body |
string |
The ID of the project. |
port.status |
body |
string |
The port status. Values are |
port.data_plane_status |
body |
string |
Status of the underlying data plane of a port. |
port.ip_allocation |
body |
string |
Indicates when ports use either |
port.device_profile |
body |
[‘string’, ‘null’] |
|
port.hints |
body |
[‘object’, ‘null’] |
Admin-only. The following values control Open vSwitch’s Userspace Tx packet steering feature:
|
port.numa_affinity_policy |
body |
string |
The port NUMA affinity policy requested during the virtual machine
scheduling. Values: |
port.resource_request |
body |
string |
Expose Placement resources (i.e.: |
port.binding:vif_type |
body |
string |
The type of which mechanism is used for the port.
An API consumer like nova can use this to determine an appropriate way to
attach a device (for example an interface of a virtual server) to the port.
Available values currently defined includes
|
port.binding:vif_details |
body |
object |
A dictionary which contains additional information on the port.
Currently the following fields are defined: |
port.binding:vnic_type |
body |
string |
The type of vNIC which this port should be attached to. This is used to
determine which mechanism driver(s) to be used to bind the port.
The valid values are |
port.binding:host_id |
body |
string |
The ID of the host where the port resides. |
port.binding:profile |
body |
[‘object’, ‘null’] |
A dictionary that enables the application running on the specific host to pass and receive vif port information specific to the networking back-end. The networking API does not define a specific format of this field. If the update request is null this response field will be {}. |
port.port_security_enabled |
body |
[‘string’, ‘boolean’] |
The port security status. A valid value is
enabled ( |
port.qos_policy_id |
body |
[‘string’, ‘null’] |
The ID of the QoS policy associated with the port. |
port.qos_network_policy_id |
body |
[‘string’, ‘null’] |
The ID of the QoS policy of the network where this port is plugged. |
port.revision_number |
body |
integer |
The revision number of the resource. |
port.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
port.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
port.propagate_uplink_status |
body |
[‘string’, ‘boolean’] |
The uplink status propagation of the port. Valid values are
enabled ( |
port.dns_name |
body |
string |
A valid DNS name. |
port.dns_assignment |
body |
string |
Data assigned to a port by the Networking internal DNS including the
|
port.dns_domain |
body |
string |
A valid DNS domain. |
port.description |
body |
string |
A human-readable description for the resource. |
Shows details for a port.
Use the fields
query parameter to control which fields are
returned in the response body. For information, see Filtering and
Column Selection.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
port |
body |
object |
A |
port.id |
body |
string |
The ID of the resource. |
port.name |
body |
string |
Human-readable name of the resource. |
port.network_id |
body |
string |
The ID of the attached network. |
port.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
port.mac_address |
body |
string |
The MAC address of the port. If the port uses the |
port.device_id |
body |
string |
The ID of the device that uses this port. For example, a server instance or a logical router. |
port.device_owner |
body |
string |
The entity type that uses this port.
For example, |
port.tenant_id |
body |
string |
The ID of the project. |
port.status |
body |
string |
The port status. Values are |
port.data_plane_status |
body |
string |
Status of the underlying data plane of a port. |
port.ip_allocation |
body |
string |
Indicates when ports use either |
port.device_profile |
body |
[‘string’, ‘null’] |
|
port.hints |
body |
[‘object’, ‘null’] |
Admin-only. The following values control Open vSwitch’s Userspace Tx packet steering feature:
|
port.numa_affinity_policy |
body |
string |
The port NUMA affinity policy requested during the virtual machine
scheduling. Values: |
port.resource_request |
body |
string |
Expose Placement resources (i.e.: |
port.binding:vif_type |
body |
string |
The type of which mechanism is used for the port.
An API consumer like nova can use this to determine an appropriate way to
attach a device (for example an interface of a virtual server) to the port.
Available values currently defined includes
|
port.binding:vif_details |
body |
object |
A dictionary which contains additional information on the port.
Currently the following fields are defined: |
port.binding:vnic_type |
body |
string |
The type of vNIC which this port should be attached to. This is used to
determine which mechanism driver(s) to be used to bind the port.
The valid values are |
port.binding:host_id |
body |
string |
The ID of the host where the port resides. |
port.binding:profile |
body |
[‘object’, ‘null’] |
A dictionary that enables the application running on the specific host to pass and receive vif port information specific to the networking back-end. The networking API does not define a specific format of this field. If the update request is null this response field will be {}. |
port.port_security_enabled |
body |
[‘string’, ‘boolean’] |
The port security status. A valid value is
enabled ( |
port.qos_policy_id |
body |
[‘string’, ‘null’] |
The ID of the QoS policy associated with the port. |
port.qos_network_policy_id |
body |
[‘string’, ‘null’] |
The ID of the QoS policy of the network where this port is plugged. |
port.revision_number |
body |
integer |
The revision number of the resource. |
port.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
port.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
port.propagate_uplink_status |
body |
[‘string’, ‘boolean’] |
The uplink status propagation of the port. Valid values are
enabled ( |
port.dns_name |
body |
string |
A valid DNS name. |
port.dns_assignment |
body |
string |
Data assigned to a port by the Networking internal DNS including the
|
port.dns_domain |
body |
string |
A valid DNS domain. |
port.description |
body |
string |
A human-readable description for the resource. |
Updates a port.
You can update information for a port, such as its symbolic name
and associated IPs. When you update IPs for a port, any previously
associated IPs are removed, returned to the respective subnet
allocation pools, and replaced by the IPs in the request body.
Therefore, this operation replaces the fixed_ip
attribute when
you specify it in the request body. If the updated IP addresses are
not valid or are already in use, the operation fails and the
existing IP addresses are not removed from the port.
When you update security groups for a port and the operation
succeeds, any associated security groups are removed and replaced
by the security groups in the request body. Therefore, this
operation replaces the security_groups
attribute when you
specify it in the request body. If the security groups are not
valid, the operation fails and the existing security groups are not
removed from the port.
When you update binding:profile
of a port with null it is treated as {}
in the response.
Only admins and users with a specific role can update the data plane status
(default role: data_plane_integrator
).
Normal response codes: 200
Error response codes: 400, 401, 403, 404, 409, 412
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
port |
body |
object |
A |
port.id |
body |
string |
The ID of the resource. |
port.name |
body |
string |
Human-readable name of the resource. |
port.network_id |
body |
string |
The ID of the attached network. |
port.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
port.mac_address |
body |
string |
The MAC address of the port. If the port uses the |
port.device_id |
body |
string |
The ID of the device that uses this port. For example, a server instance or a logical router. |
port.device_owner |
body |
string |
The entity type that uses this port.
For example, |
port.tenant_id |
body |
string |
The ID of the project. |
port.status |
body |
string |
The port status. Values are |
port.data_plane_status |
body |
string |
Status of the underlying data plane of a port. |
port.ip_allocation |
body |
string |
Indicates when ports use either |
port.device_profile |
body |
[‘string’, ‘null’] |
|
port.hints |
body |
[‘object’, ‘null’] |
Admin-only. The following values control Open vSwitch’s Userspace Tx packet steering feature:
|
port.numa_affinity_policy |
body |
string |
The port NUMA affinity policy requested during the virtual machine
scheduling. Values: |
port.resource_request |
body |
string |
Expose Placement resources (i.e.: |
port.binding:vif_type |
body |
string |
The type of which mechanism is used for the port.
An API consumer like nova can use this to determine an appropriate way to
attach a device (for example an interface of a virtual server) to the port.
Available values currently defined includes
|
port.binding:vif_details |
body |
object |
A dictionary which contains additional information on the port.
Currently the following fields are defined: |
port.binding:vnic_type |
body |
string |
The type of vNIC which this port should be attached to. This is used to
determine which mechanism driver(s) to be used to bind the port.
The valid values are |
port.binding:host_id |
body |
string |
The ID of the host where the port resides. |
port.binding:profile |
body |
[‘object’, ‘null’] |
A dictionary that enables the application running on the specific host to pass and receive vif port information specific to the networking back-end. The networking API does not define a specific format of this field. If the update request is null this response field will be {}. |
port.port_security_enabled |
body |
[‘string’, ‘boolean’] |
The port security status. A valid value is
enabled ( |
port.qos_policy_id |
body |
[‘string’, ‘null’] |
The ID of the QoS policy associated with the port. |
port.qos_network_policy_id |
body |
[‘string’, ‘null’] |
The ID of the QoS policy of the network where this port is plugged. |
port.revision_number |
body |
integer |
The revision number of the resource. |
port.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
port.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
port.propagate_uplink_status |
body |
[‘string’, ‘boolean’] |
The uplink status propagation of the port. Valid values are
enabled ( |
port.dns_name |
body |
string |
A valid DNS name. |
port.dns_assignment |
body |
string |
Data assigned to a port by the Networking internal DNS including the
|
port.dns_domain |
body |
string |
A valid DNS domain. |
port.description |
body |
string |
A human-readable description for the resource. |
subnets¶
Request of the subnets/subnet_id/tags:put operation
Lists subnets that the project has access to.
Default policy settings return only subnets owned by the project of the user submitting the request, unless the user has administrative role. You can control which attributes are returned by using the fields query parameter. You can filter results by using query string parameters.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401
Responses¶
200¶
Ok
Creates a subnet on a network.
OpenStack Networking does not try to derive the correct IP version
from the CIDR. If you do not specify the gateway_ip
attribute,
OpenStack Networking allocates an address from the CIDR for the
gateway for the subnet.
To specify a subnet without a gateway, set the gateway_ip
attribute to null
in the request body. If you do not specify
the allocation_pools
attribute, OpenStack Networking
automatically allocates pools for covering all IP addresses in the
CIDR, excluding the address reserved for the subnet gateway.
Otherwise, you can explicitly specify allocation pools as shown in
the following example.
When you specify both the allocation_pools
and gateway_ip
attributes, you must ensure that the gateway IP does not overlap
with the allocation pools; otherwise, the call returns the
Conflict (409)
response code.
A subnet can have one or more name servers and host routes. Hosts in this subnet use the name servers. Devices with IP addresses from this subnet, not including the local subnet route, use the host routes.
Specify the ipv6_ra_mode
and ipv6_address_mode
attributes
to create subnets that support IPv6 configurations, such as
stateless address autoconfiguration (SLAAC), DHCPv6 stateful, and
DHCPv6 stateless configurations.
A subnet can optionally be associated with a network segment when
it is created by specifying the segment_id
of a valid segment
on the specified network. A network with subnets associated in this
way is called a routed network. On any given network, all of the
subnets must be associated with segments or none of them can be.
Neutron enforces this invariant. Currently, routed networks are
only supported for provider networks.
Normal response codes: 201
Error response codes: 400, 401, 403, 404, 409
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
subnet |
body |
object |
A |
subnet.id |
body |
string |
The ID of the subnet. |
subnet.name |
body |
string |
Human-readable name of the resource. |
subnet.ip_version |
body |
integer |
The IP protocol version. Value is |
subnet.network_id |
body |
string |
The ID of the network to which the subnet belongs. |
subnet.subnetpool_id |
body |
[‘string’, ‘null’] |
The ID of the subnet pool associated with the subnet. |
subnet.cidr |
body |
[‘string’, ‘null’] |
The CIDR of the subnet. |
subnet.gateway_ip |
body |
string |
Gateway IP of this subnet. If the value is |
subnet.tenant_id |
body |
string |
The ID of the project. |
subnet.enable_dhcp |
body |
[‘string’, ‘boolean’] |
Indicates whether dhcp is enabled or disabled for the subnet. |
subnet.ipv6_ra_mode |
body |
string |
The IPv6 router advertisement specifies whether the networking service
should transmit ICMPv6 packets, for a subnet. Value is |
subnet.ipv6_address_mode |
body |
string |
The IPv6 address modes specifies mechanisms for assigning IP addresses.
Value is |
subnet.revision_number |
body |
integer |
The revision number of the resource. |
subnet.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
subnet.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
subnet.dns_publish_fixed_ip |
body |
[‘string’, ‘boolean’] |
Whether to publish DNS records for IPs from this subnet. |
subnet.description |
body |
string |
A human-readable description for the resource. |
subnet.segment_id |
body |
[‘string’, ‘null’] |
The ID of a network segment the subnet is associated with.
It is available when |
Shows details for a subnet.
Use the fields query parameter to filter the results.
Normal response codes: 200
Error response codes: 401, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
subnet |
body |
object |
A |
subnet.id |
body |
string |
The ID of the subnet. |
subnet.name |
body |
string |
Human-readable name of the resource. |
subnet.ip_version |
body |
integer |
The IP protocol version. Value is |
subnet.network_id |
body |
string |
The ID of the network to which the subnet belongs. |
subnet.subnetpool_id |
body |
[‘string’, ‘null’] |
The ID of the subnet pool associated with the subnet. |
subnet.cidr |
body |
[‘string’, ‘null’] |
The CIDR of the subnet. |
subnet.gateway_ip |
body |
string |
Gateway IP of this subnet. If the value is |
subnet.tenant_id |
body |
string |
The ID of the project. |
subnet.enable_dhcp |
body |
[‘string’, ‘boolean’] |
Indicates whether dhcp is enabled or disabled for the subnet. |
subnet.ipv6_ra_mode |
body |
string |
The IPv6 router advertisement specifies whether the networking service
should transmit ICMPv6 packets, for a subnet. Value is |
subnet.ipv6_address_mode |
body |
string |
The IPv6 address modes specifies mechanisms for assigning IP addresses.
Value is |
subnet.revision_number |
body |
integer |
The revision number of the resource. |
subnet.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
subnet.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
subnet.dns_publish_fixed_ip |
body |
[‘string’, ‘boolean’] |
Whether to publish DNS records for IPs from this subnet. |
subnet.description |
body |
string |
A human-readable description for the resource. |
subnet.segment_id |
body |
[‘string’, ‘null’] |
The ID of a network segment the subnet is associated with.
It is available when |
Updates a subnet.
Some attributes, such as IP version (ip_version), CIDR (cidr), and
segment (segment_id) cannot be updated. Attempting to update these
attributes results in a 400 Bad Request
error.
Normal response codes: 200
Error response codes: 400, 401, 403, 404, 412
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
subnet |
body |
object |
A |
subnet.id |
body |
string |
The ID of the subnet. |
subnet.name |
body |
string |
Human-readable name of the resource. |
subnet.ip_version |
body |
integer |
The IP protocol version. Value is |
subnet.network_id |
body |
string |
The ID of the network to which the subnet belongs. |
subnet.subnetpool_id |
body |
[‘string’, ‘null’] |
The ID of the subnet pool associated with the subnet. |
subnet.cidr |
body |
[‘string’, ‘null’] |
The CIDR of the subnet. |
subnet.gateway_ip |
body |
string |
Gateway IP of this subnet. If the value is |
subnet.tenant_id |
body |
string |
The ID of the project. |
subnet.enable_dhcp |
body |
[‘string’, ‘boolean’] |
Indicates whether dhcp is enabled or disabled for the subnet. |
subnet.ipv6_ra_mode |
body |
string |
The IPv6 router advertisement specifies whether the networking service
should transmit ICMPv6 packets, for a subnet. Value is |
subnet.ipv6_address_mode |
body |
string |
The IPv6 address modes specifies mechanisms for assigning IP addresses.
Value is |
subnet.revision_number |
body |
integer |
The revision number of the resource. |
subnet.created_at |
body |
string |
Time at which the resource has been created (in UTC ISO8601 format). |
subnet.updated_at |
body |
string |
Time at which the resource has been updated (in UTC ISO8601 format). |
subnet.dns_publish_fixed_ip |
body |
[‘string’, ‘boolean’] |
Whether to publish DNS records for IPs from this subnet. |
subnet.description |
body |
string |
A human-readable description for the resource. |
subnet.segment_id |
body |
[‘string’, ‘null’] |
The ID of a network segment the subnet is associated with.
It is available when |
trunks¶
Request of the trunks/trunk_id/tags:put operation
network_segment_ranges¶
Request of the network_segment_ranges/network_segment_range_id/tags:put operation
vpn¶
Lists VPN endpoint groups.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401, 403
Responses¶
200¶
Ok
Creates a VPN endpoint group.
The endpoint group contains one or more endpoints of a specific type that you can use to create a VPN connections.
Normal response codes: 201
Error response codes: 400, 401
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
endpoint_group |
body |
object |
|
endpoint_group.id |
body |
string |
The ID of the VPN endpoint group. |
endpoint_group.tenant_id |
body |
string |
The ID of the project. |
endpoint_group.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
endpoint_group.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
endpoint_group.type |
body |
string |
The type of the endpoints in the group. A valid
value is |
Shows details for a VPN endpoint group.
Normal response codes: 200
Error response codes: 401, 403, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
endpoint_group |
body |
object |
|
endpoint_group.id |
body |
string |
The ID of the VPN endpoint group. |
endpoint_group.tenant_id |
body |
string |
The ID of the project. |
endpoint_group.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
endpoint_group.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
endpoint_group.type |
body |
string |
The type of the endpoints in the group. A valid
value is |
Updates settings for a VPN endpoint group.
Normal response codes: 200
Error response codes: 400, 401, 404
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
endpoint_group |
body |
object |
|
endpoint_group.id |
body |
string |
The ID of the VPN endpoint group. |
endpoint_group.tenant_id |
body |
string |
The ID of the project. |
endpoint_group.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
endpoint_group.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
endpoint_group.type |
body |
string |
The type of the endpoints in the group. A valid
value is |
Lists all VPN services.
The list might be empty.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401, 403
Responses¶
200¶
Ok
Creates a VPN service.
The service is associated with a router. After you create the service, it can contain multiple VPN connections.
An optional flavor_id
attribute can be passed to enable dynamic
selection of an appropriate provider if configured by the operator.
It is only available when vpn-flavors
extension is enabled.
The basic selection algorithm chooses the provider in the first
service profile currently associated with flavor. This option can
only be set in POST
operation.
Normal response codes: 201
Error response codes: 400, 401
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
vpnservice |
body |
object |
A |
vpnservice.id |
body |
string |
The ID of the VPN service. |
vpnservice.tenant_id |
body |
string |
The ID of the project. |
vpnservice.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
vpnservice.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
vpnservice.subnet_id |
body |
[‘string’, ‘null’] |
If you specify only a subnet UUID, OpenStack Networking allocates an available IP from that subnet to the port. If you specify both a subnet UUID and an IP address, OpenStack Networking tries to allocate the address to the port. |
vpnservice.router_id |
body |
string |
|
vpnservice.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
vpnservice.external_v4_ip |
body |
string |
Read-only external (public) IPv4 address that is used for the VPN service. The VPN plugin sets this address if an IPv4 interface is available. |
vpnservice.external_v6_ip |
body |
string |
Read-only external (public) IPv6 address that is used for the VPN service. The VPN plugin sets this address if an IPv6 interface is available. |
vpnservice.status |
body |
string |
Indicates whether IPsec VPN service is currently
operational. Values are |
vpnservice.flavor_id |
body |
[‘string’, ‘null’] |
The ID of the flavor. |
Shows details for a VPN service.
If the user is not an administrative user and the VPN service
object does not belong to the tenant account for the user, the
operation returns the Forbidden (403)
response code.
Normal response codes: 200
Error response codes: 401, 403, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
vpnservice |
body |
object |
A |
vpnservice.id |
body |
string |
The ID of the VPN service. |
vpnservice.tenant_id |
body |
string |
The ID of the project. |
vpnservice.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
vpnservice.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
vpnservice.subnet_id |
body |
[‘string’, ‘null’] |
If you specify only a subnet UUID, OpenStack Networking allocates an available IP from that subnet to the port. If you specify both a subnet UUID and an IP address, OpenStack Networking tries to allocate the address to the port. |
vpnservice.router_id |
body |
string |
|
vpnservice.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
vpnservice.external_v4_ip |
body |
string |
Read-only external (public) IPv4 address that is used for the VPN service. The VPN plugin sets this address if an IPv4 interface is available. |
vpnservice.external_v6_ip |
body |
string |
Read-only external (public) IPv6 address that is used for the VPN service. The VPN plugin sets this address if an IPv6 interface is available. |
vpnservice.status |
body |
string |
Indicates whether IPsec VPN service is currently
operational. Values are |
vpnservice.flavor_id |
body |
[‘string’, ‘null’] |
The ID of the flavor. |
Updates a VPN service.
Updates the attributes of a VPN service. You cannot update a
service with a PENDING_\*
status.
Normal response codes: 200
Error response codes: 400, 401, 404
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
vpnservice |
body |
object |
A |
vpnservice.id |
body |
string |
The ID of the VPN service. |
vpnservice.tenant_id |
body |
string |
The ID of the project. |
vpnservice.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
vpnservice.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
vpnservice.subnet_id |
body |
[‘string’, ‘null’] |
If you specify only a subnet UUID, OpenStack Networking allocates an available IP from that subnet to the port. If you specify both a subnet UUID and an IP address, OpenStack Networking tries to allocate the address to the port. |
vpnservice.router_id |
body |
string |
|
vpnservice.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
vpnservice.external_v4_ip |
body |
string |
Read-only external (public) IPv4 address that is used for the VPN service. The VPN plugin sets this address if an IPv4 interface is available. |
vpnservice.external_v6_ip |
body |
string |
Read-only external (public) IPv6 address that is used for the VPN service. The VPN plugin sets this address if an IPv6 interface is available. |
vpnservice.status |
body |
string |
Indicates whether IPsec VPN service is currently
operational. Values are |
vpnservice.flavor_id |
body |
[‘string’, ‘null’] |
The ID of the flavor. |
Lists all IPsec connections.
Use the fields
query parameter to control which fields are
returned in the response body. For information, see Filtering and
Column Selection.
Normal response codes: 200
Error response codes: 401, 403
Responses¶
200¶
Ok
Creates a site-to-site IPsec connection for a service.
Normal response codes: 201
Error response codes: 400, 401
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
ipsec_site_connection |
body |
object |
An |
ipsec_site_connection.id |
body |
string |
The ID of the IPsec site-to-site connection. |
ipsec_site_connection.tenant_id |
body |
string |
The ID of the project. |
ipsec_site_connection.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
ipsec_site_connection.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
ipsec_site_connection.local_id |
body |
string |
An ID to be used instead of the external IP address for a virtual router used in traffic between instances on different networks in east-west traffic. Most often, local ID would be domain name, email address, etc. If this is not configured then the external IP address will be used as the ID. |
ipsec_site_connection.peer_address |
body |
string |
The peer gateway public IPv4 or IPv6 address or FQDN. |
ipsec_site_connection.peer_id |
body |
string |
The peer router identity for authentication. A
valid value is an IPv4 address, IPv6 address, e-mail address, key
ID, or FQDN. Typically, this value matches the |
ipsec_site_connection.local_ep_group_id |
body |
[‘string’, ‘null’] |
The ID for the endpoint group that contains
private subnets for the local side of the connection. Yo must
specify this parameter with the |
ipsec_site_connection.peer_ep_group_id |
body |
[‘string’, ‘null’] |
The ID for the endpoint group that contains
private CIDRs in the form < net_address > / < prefix > for the
peer side of the connection. You must specify this parameter with
the |
ipsec_site_connection.route_mode |
body |
string |
The route mode. A valid value is |
ipsec_site_connection.mtu |
body |
integer |
The maximum transmission unit (MTU) value to address fragmentation. Minimum value is 68 for IPv4, and 1280 for IPv6. |
ipsec_site_connection.initiator |
body |
string |
Indicates whether this VPN can only respond to
connections or both respond to and initiate connections. A valid
value is |
ipsec_site_connection.auth_mode |
body |
string |
The authentication mode. A valid value is
|
ipsec_site_connection.psk |
body |
string |
The pre-shared key. A valid value is any string. |
ipsec_site_connection.dpd |
body |
string |
A dictionary with dead peer detection (DPD) protocol controls. |
ipsec_site_connection.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
ipsec_site_connection.status |
body |
string |
Indicates whether the IPsec connection is
currently operational. Values are |
ipsec_site_connection.vpnservice_id |
body |
string |
The ID of the VPN service. |
ipsec_site_connection.ikepolicy_id |
body |
string |
The ID of the IKE policy. |
ipsec_site_connection.ipsecpolicy_id |
body |
string |
The ID of the IPsec policy. |
Shows details for an IPsec connection.
Normal response codes: 200
Error response codes: 401, 403, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
ipsec_site_connection |
body |
object |
An |
ipsec_site_connection.id |
body |
string |
The ID of the IPsec site-to-site connection. |
ipsec_site_connection.tenant_id |
body |
string |
The ID of the project. |
ipsec_site_connection.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
ipsec_site_connection.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
ipsec_site_connection.local_id |
body |
string |
An ID to be used instead of the external IP address for a virtual router used in traffic between instances on different networks in east-west traffic. Most often, local ID would be domain name, email address, etc. If this is not configured then the external IP address will be used as the ID. |
ipsec_site_connection.peer_address |
body |
string |
The peer gateway public IPv4 or IPv6 address or FQDN. |
ipsec_site_connection.peer_id |
body |
string |
The peer router identity for authentication. A
valid value is an IPv4 address, IPv6 address, e-mail address, key
ID, or FQDN. Typically, this value matches the |
ipsec_site_connection.local_ep_group_id |
body |
[‘string’, ‘null’] |
The ID for the endpoint group that contains
private subnets for the local side of the connection. Yo must
specify this parameter with the |
ipsec_site_connection.peer_ep_group_id |
body |
[‘string’, ‘null’] |
The ID for the endpoint group that contains
private CIDRs in the form < net_address > / < prefix > for the
peer side of the connection. You must specify this parameter with
the |
ipsec_site_connection.route_mode |
body |
string |
The route mode. A valid value is |
ipsec_site_connection.mtu |
body |
integer |
The maximum transmission unit (MTU) value to address fragmentation. Minimum value is 68 for IPv4, and 1280 for IPv6. |
ipsec_site_connection.initiator |
body |
string |
Indicates whether this VPN can only respond to
connections or both respond to and initiate connections. A valid
value is |
ipsec_site_connection.auth_mode |
body |
string |
The authentication mode. A valid value is
|
ipsec_site_connection.psk |
body |
string |
The pre-shared key. A valid value is any string. |
ipsec_site_connection.dpd |
body |
string |
A dictionary with dead peer detection (DPD) protocol controls. |
ipsec_site_connection.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
ipsec_site_connection.status |
body |
string |
Indicates whether the IPsec connection is
currently operational. Values are |
ipsec_site_connection.vpnservice_id |
body |
string |
The ID of the VPN service. |
ipsec_site_connection.ikepolicy_id |
body |
string |
The ID of the IKE policy. |
ipsec_site_connection.ipsecpolicy_id |
body |
string |
The ID of the IPsec policy. |
Updates connection settings for an IPsec connection.
Normal response codes: 200
Error response codes: 400, 401, 404
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
ipsec_site_connection |
body |
object |
An |
ipsec_site_connection.id |
body |
string |
The ID of the IPsec site-to-site connection. |
ipsec_site_connection.tenant_id |
body |
string |
The ID of the project. |
ipsec_site_connection.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
ipsec_site_connection.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
ipsec_site_connection.local_id |
body |
string |
An ID to be used instead of the external IP address for a virtual router used in traffic between instances on different networks in east-west traffic. Most often, local ID would be domain name, email address, etc. If this is not configured then the external IP address will be used as the ID. |
ipsec_site_connection.peer_address |
body |
string |
The peer gateway public IPv4 or IPv6 address or FQDN. |
ipsec_site_connection.peer_id |
body |
string |
The peer router identity for authentication. A
valid value is an IPv4 address, IPv6 address, e-mail address, key
ID, or FQDN. Typically, this value matches the |
ipsec_site_connection.local_ep_group_id |
body |
[‘string’, ‘null’] |
The ID for the endpoint group that contains
private subnets for the local side of the connection. Yo must
specify this parameter with the |
ipsec_site_connection.peer_ep_group_id |
body |
[‘string’, ‘null’] |
The ID for the endpoint group that contains
private CIDRs in the form < net_address > / < prefix > for the
peer side of the connection. You must specify this parameter with
the |
ipsec_site_connection.route_mode |
body |
string |
The route mode. A valid value is |
ipsec_site_connection.mtu |
body |
integer |
The maximum transmission unit (MTU) value to address fragmentation. Minimum value is 68 for IPv4, and 1280 for IPv6. |
ipsec_site_connection.initiator |
body |
string |
Indicates whether this VPN can only respond to
connections or both respond to and initiate connections. A valid
value is |
ipsec_site_connection.auth_mode |
body |
string |
The authentication mode. A valid value is
|
ipsec_site_connection.psk |
body |
string |
The pre-shared key. A valid value is any string. |
ipsec_site_connection.dpd |
body |
string |
A dictionary with dead peer detection (DPD) protocol controls. |
ipsec_site_connection.admin_state_up |
body |
[‘string’, ‘boolean’] |
The administrative state of the resource, which is
up ( |
ipsec_site_connection.status |
body |
string |
Indicates whether the IPsec connection is
currently operational. Values are |
ipsec_site_connection.vpnservice_id |
body |
string |
The ID of the VPN service. |
ipsec_site_connection.ikepolicy_id |
body |
string |
The ID of the IKE policy. |
ipsec_site_connection.ipsecpolicy_id |
body |
string |
The ID of the IPsec policy. |
Lists all IPsec policies.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401, 403
Responses¶
200¶
Ok
Creates an IP security (IPsec) policy.
The IPsec policy specifies the authentication and encryption algorithms and encapsulation mode to use for the established VPN connection.
Normal response codes: 201
Error response codes: 400, 401
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
ipsecpolicy |
body |
object |
An |
ipsecpolicy.id |
body |
string |
The ID of the IPsec policy. |
ipsecpolicy.tenant_id |
body |
string |
The ID of the project. |
ipsecpolicy.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
ipsecpolicy.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
ipsecpolicy.transform_protocol |
body |
string |
The transform protocol. A valid value is |
ipsecpolicy.auth_algorithm |
body |
string |
The authentication hash algorithm. Valid values
are |
ipsecpolicy.encryption_algorithm |
body |
string |
The encryption algorithm. A valid value is
|
ipsecpolicy.encapsulation_mode |
body |
string |
The encapsulation mode. A valid value is
|
ipsecpolicy.lifetime |
body |
string |
The lifetime of the security association. The lifetime consists of a unit and integer value. You can omit either the unit or value portion of the lifetime. Default unit is seconds and default value is 3600. |
ipsecpolicy.pfs |
body |
string |
Perfect forward secrecy (PFS). A valid value is
|
Shows details for an IPsec policy.
Normal response codes: 200
Error response codes: 401, 403, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
ipsecpolicy |
body |
object |
An |
ipsecpolicy.id |
body |
string |
The ID of the IPsec policy. |
ipsecpolicy.tenant_id |
body |
string |
The ID of the project. |
ipsecpolicy.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
ipsecpolicy.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
ipsecpolicy.transform_protocol |
body |
string |
The transform protocol. A valid value is |
ipsecpolicy.auth_algorithm |
body |
string |
The authentication hash algorithm. Valid values
are |
ipsecpolicy.encryption_algorithm |
body |
string |
The encryption algorithm. A valid value is
|
ipsecpolicy.encapsulation_mode |
body |
string |
The encapsulation mode. A valid value is
|
ipsecpolicy.lifetime |
body |
string |
The lifetime of the security association. The lifetime consists of a unit and integer value. You can omit either the unit or value portion of the lifetime. Default unit is seconds and default value is 3600. |
ipsecpolicy.pfs |
body |
string |
Perfect forward secrecy (PFS). A valid value is
|
Updates policy settings in an IPsec policy.
Normal response codes: 200
Error response codes: 400, 401, 404
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
ipsecpolicy |
body |
object |
An |
ipsecpolicy.id |
body |
string |
The ID of the IPsec policy. |
ipsecpolicy.tenant_id |
body |
string |
The ID of the project. |
ipsecpolicy.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
ipsecpolicy.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
ipsecpolicy.transform_protocol |
body |
string |
The transform protocol. A valid value is |
ipsecpolicy.auth_algorithm |
body |
string |
The authentication hash algorithm. Valid values
are |
ipsecpolicy.encryption_algorithm |
body |
string |
The encryption algorithm. A valid value is
|
ipsecpolicy.encapsulation_mode |
body |
string |
The encapsulation mode. A valid value is
|
ipsecpolicy.lifetime |
body |
string |
The lifetime of the security association. The lifetime consists of a unit and integer value. You can omit either the unit or value portion of the lifetime. Default unit is seconds and default value is 3600. |
ipsecpolicy.pfs |
body |
string |
Perfect forward secrecy (PFS). A valid value is
|
Lists IKE policies.
Use the fields
query parameter to control which fields are
returned in the response body. Additionally, you can filter results
by using query string parameters. For information, see Filtering
and Column Selection.
Normal response codes: 200
Error response codes: 401, 403
Responses¶
200¶
Ok
Creates an IKE policy.
The IKE policy is used for phases one and two negotiation of the VPN connection. You can specify both the authentication and encryption algorithms for connections.
Normal response codes: 201
Error response codes: 400, 401
Request¶
Responses¶
201¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
ikepolicy |
body |
object |
An |
ikepolicy.id |
body |
string |
The ID of the IKE policy. |
ikepolicy.tenant_id |
body |
string |
The ID of the project. |
ikepolicy.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
ikepolicy.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
ikepolicy.auth_algorithm |
body |
string |
The authentication hash algorithm. Valid values
are |
ikepolicy.encryption_algorithm |
body |
string |
The encryption algorithm. A valid value is
|
ikepolicy.phase1_negotiation_mode |
body |
string |
The IKE mode. A valid value is |
ikepolicy.lifetime |
body |
string |
The lifetime of the security association. The lifetime consists of a unit and integer value. You can omit either the unit or value portion of the lifetime. Default unit is seconds and default value is 3600. |
ikepolicy.ike_version |
body |
string |
The IKE version. A valid value is |
ikepolicy.pfs |
body |
string |
Perfect forward secrecy (PFS). A valid value is
|
Shows details for an IKE policy.
Normal response codes: 200
Error response codes: 401, 403, 404
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
ikepolicy |
body |
object |
An |
ikepolicy.id |
body |
string |
The ID of the IKE policy. |
ikepolicy.tenant_id |
body |
string |
The ID of the project. |
ikepolicy.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
ikepolicy.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
ikepolicy.auth_algorithm |
body |
string |
The authentication hash algorithm. Valid values
are |
ikepolicy.encryption_algorithm |
body |
string |
The encryption algorithm. A valid value is
|
ikepolicy.phase1_negotiation_mode |
body |
string |
The IKE mode. A valid value is |
ikepolicy.lifetime |
body |
string |
The lifetime of the security association. The lifetime consists of a unit and integer value. You can omit either the unit or value portion of the lifetime. Default unit is seconds and default value is 3600. |
ikepolicy.ike_version |
body |
string |
The IKE version. A valid value is |
ikepolicy.pfs |
body |
string |
Perfect forward secrecy (PFS). A valid value is
|
Updates policy settings in an IKE policy.
Normal response codes: 200
Error response codes: 400, 401, 404
Request¶
Responses¶
200¶
Ok
Name |
Location |
Type |
Description |
---|---|---|---|
ikepolicy |
body |
object |
An |
ikepolicy.id |
body |
string |
The ID of the IKE policy. |
ikepolicy.tenant_id |
body |
string |
The ID of the project. |
ikepolicy.name |
body |
string |
Human-readable name of the resource. Default is an empty string. |
ikepolicy.description |
body |
string |
A human-readable description for the resource. Default is an empty string. |
ikepolicy.auth_algorithm |
body |
string |
The authentication hash algorithm. Valid values
are |
ikepolicy.encryption_algorithm |
body |
string |
The encryption algorithm. A valid value is
|
ikepolicy.phase1_negotiation_mode |
body |
string |
The IKE mode. A valid value is |
ikepolicy.lifetime |
body |
string |
The lifetime of the security association. The lifetime consists of a unit and integer value. You can omit either the unit or value portion of the lifetime. Default unit is seconds and default value is 3600. |
ikepolicy.ike_version |
body |
string |
The IKE version. A valid value is |
ikepolicy.pfs |
body |
string |
Perfect forward secrecy (PFS). A valid value is
|