ACL entry

An ACL entry holds an individual IP address or subnet range and is a member of an ACL. ACL entries are versionless, which means they can be created, modified, or deleted without activating a new version of your service.

Data model

ipStringAn IP address. Required.
subnetIntegerNumber of bits for the subnet mask applied to the IP address. For IPv4 addresses, a value of 32 represents the smallest subnet mask (1 address), 24 represents a class C subnet mask (256 addresses), 16 represents a class B subnet mask (65k addresses), and 8 is class A subnet mask (16m addresses). If not provided, no mask is applied.
acl_idStringID of the ACL to which this entry belongs (required).
negatedBooleanWhether to negate the match. Useful primarily when creating individual exceptions to larger subnets. Default is false.
commentStringFreeform descriptive note, often used to indicate the reason for this ACL entry to exist.


List ACL entries


Describe an ACL entry


Create an ACL entry


Delete an ACL entry


Update an ACL entry


Update multiple ACL entries


User contributed notes

We welcome comments that add use cases, ideas, tips, and caveats. All comments will be moderated before publication. To post support questions, visit our support center and we'll find you the help you need.