ACL entry

An ACL entry holds an individual IP address or subnet range and is a member of an ACL. ACL entries are versionless, which means they can be created, modified, or deleted without activating a new version of your service.

Data model

ipStringAn IP address. Required.
subnetIntegerNumber of bits for the subnet mask applied to the IP address. For IPv4 addresses, a value of 32 represents the smallest subnet mask (1 address), 24 represents a class C subnet mask (256 addresses), 16 represents a class B subnet mask (65k addresses), and 8 is class A subnet mask (16m addresses). If not provided, no mask is applied.
acl_idStringID of the ACL to which this entry belongs (required).
negatedBooleanWhether to negate the match. Useful primarily when creating individual exceptions to larger subnets. Default is false.
commentStringFreeform descriptive note, often used to indicate the reason for this ACL entry to exist.

Endpoints

List ACL entries

GET/service/service_id/acl/acl_id/entries

Describe an ACL entry

GET/service/service_id/acl/acl_id/entry/entry_id

Create an ACL entry

POST/service/service_id/acl/acl_id/entry

Delete an ACL entry

DELETE/service/service_id/acl/acl_id/entry/entry_id

Update an ACL entry

PATCH/service/service_id/acl/acl_id/entry/entry_id

Update multiple ACL entries

PATCH/service/service_id/acl/acl_id/entries

User contributed notes

We welcome comments that add use cases, ideas, tips, and caveats. All comments will be moderated before publication. To post support questions, visit our support center and we'll find you the help you need.