Creates a flow log.
Debugging
Authorization information
The following table shows the authorization information corresponding to the API. The authorization information can be used in the Action
policy element to grant a RAM user or RAM role the permissions to call this API operation. Description:
- Operation: the value that you can use in the Action element to specify the operation on a resource.
- Access level: the access level of each operation. The levels are read, write, and list.
- Resource type: the type of the resource on which you can authorize the RAM user or the RAM role to perform the operation. Take note of the following items:
- The required resource types are displayed in bold characters.
- If the permissions cannot be granted at the resource level,
All Resources
is used in the Resource type column of the operation.
- Condition Key: the condition key that is defined by the cloud service.
- Associated operation: other operations that the RAM user or the RAM role must have permissions to perform to complete the operation. To complete the operation, the RAM user or the RAM role must have the permissions to perform the associated operations.
Operation | Access level | Resource type | Condition key | Associated operation |
---|---|---|---|---|
smartag:CreateFlowLog | Write |
|
| none |
Request parameters
Parameter | Type | Required | Description | Example |
---|---|---|---|---|
RegionId | string | Yes | The ID of the region to which the flow log belongs. You can call the DescribeRegions operation to query the most recent region list. | cn-shanghai |
Description | string | No | The description of the flow log. | test |
Name | string | No | The name of the flow log. | sag-flowlog-1 |
ActiveAging | integer | No | The output interval under active connections. Valid values: 60 to 6000. Unit: seconds. Default value: 300. | 300 |
InactiveAging | integer | No | The output interval under inactive connections. Valid values: 10 to 600. Unit: seconds. Default value: 15. | 15 |
OutputType | string | Yes | The type of the flow log. Valid values:
| all |
SlsRegionId | string | No | The ID of the region where Log Service is deployed. If OutputType is set to sls or all, this parameter is required. | cn-shanghai |
ProjectName | string | No | The project in Log Service. If OutputType is set to sls or all, this parameter is required. | sag-flowlog-shanghai |
LogstoreName | string | No | The Logstore in Log Service. If OutputType is set to sls or all, this parameter is required. | config-operation-log |
NetflowServerIp | string | No | The IP address of the NetFlow collector where the flow log is stored. If OutputType is set to netflow or all, this parameter is required. | 192.168.0.2 |
NetflowServerPort | integer | No | The port number of the NetFlow collector where the flow log is stored. Default value: 9995. If OutputType is set to netflow or all, this parameter is required. | 9995 |
NetflowVersion | string | No | The version of the NetFlow collector where the flow log is stored. Valid values: V5, V9, and V10. Default value: V9. If OutputType is set to netflow or all, this parameter is required. | V9 |
Response parameters
Examples
Sample success responses
JSON
format
{
"RequestId": "650CB9E8-20F3-4538-A4FC-1DA1B36E42D9",
"FlowLogId": "fl-7a56mar1kfw9vj****",
"ResourceGroupId": "rg-acfm2iu4f****"
}
Error codes
HTTP status code | Error code | Error message | Description |
---|---|---|---|
400 | DependencyViolation.FlowLog | This FlowLog instance is bound to an SAG instance. | This flow log associated with a resource. |
400 | IncorrectStatus.FlowLog | The current FlowLog instance status does not support this operation. | The status of the flow log is invalid. |
400 | InvalidFlowLogId.NotFound | The specified FlowLogId does not exist. | The specified FlowLogId does not exist. |
400 | MissingParam.FlowLogId | Specify the FlowLogId parameter. | You must set the FlowLogId parameter. |
400 | OperationFailed.AssociateFlowLog | The operation failed. The specified SAG instance has already been associated with another FlowLog instance. | The operation failed. The specified SAG instance has already been associated with another flow log. |
400 | OperationUnsupported.AssociateFlowLog | You cannot bind the SAG device of the current version or model to a FlowLog instance. | The version or model of the SAG device does not allow you to associate it with a flow log. |
400 | QuotaExceeded.Flowlog | The maximum number of FlowLog instances is exceeded. | The number of flow logs has reached the upper limit. |
400 | MissingParam.LogstoreName | Specify the LogstoreName parameter. | You must set the LogstoreName parameter. |
400 | MissingParam.NetflowServerIp | Specify the NetflowServerIp parameter. | You must set the NetflowServerIp parameter. |
400 | MissingParam.NetflowServerPort | Specify the NetflowServerPort parameter. | You must set the NetflowServerPort parameter. |
400 | MissingParam.NetflowVersion | Specify the NetflowVersion parameter. | You must set the NetflowVersion parameter. |
400 | MissingParam.ProjectName | Specify the ProjectName parameter. | You must set the ProjectName parameter. |
400 | MissingParam.SlsRegionId | Specify the SlsRegionId parameter. | You must set the SlsRegionId parameter. |
400 | IllegalParam.ActiveAging | The specified ActiveAging is invalid. | The ActiveAging parameter is set to an invalid value. |
400 | IllegalParam.InactiveAging | The specified InactiveAging is invalid. | The InactiveAging parameter is set to an invalid value. |
400 | IllegalParam.NetflowServerIp | The specified NetflowServerIp is invalid. | The NetflowServerIp parameter is set to an invalid value. |
400 | IllegalParam.NetflowServerPort | The specified NetflowServerPort is invalid. | The NetflowServerPort parameter is set to an invalid value. |
400 | IllegalParam.NetflowVersion | The specified NetflowVersion is invalid. | The NetflowVersion parameter is set to an invalid value. |
400 | IllegalParam.OutputType | The specified OutputType is invalid. | The OutputType parameter is set to an invalid value. |
400 | IllegalParam.RegionId | The specified RegionId is invalid. | The RegionId parameter is set to an invalid value. |
400 | IllegalParam.SlsRegionId | The specified SlsRegionId is invalid. | The SlsRegionId parameter is set to an invalid value. |
400 | IllegalParam.Status | The specified Status parameter is invalid. | The Status parameter is set to an invalid value. |
403 | FeatureNotSupport | The current edition of the smart access gateway does not support this feature. | The current version of Smart Access Gateway does not support this feature. |
For a list of error codes, visit the Service error codes.