UpdateListenerAttribute - Server Load Balancer - Alibaba Cloud Documentation Center

Updates the attributes of a listener, such as the name and the idle connection timeout period.

Debugging

You can run this interface directly in OpenAPI Explorer, saving you the trouble of calculating signatures. After running successfully, OpenAPI Explorer can automatically generate SDK code samples.

Debug

Authorization information

The following table shows the authorization information corresponding to the API. The authorization information can be used in the Action policy element to grant a RAM user or RAM role the permissions to call this API operation. Description:

Operation: the value that you can use in the Action element to specify the operation on a resource.
Access level: the access level of each operation. The levels are read, write, and list.
Resource type: the type of the resource on which you can authorize the RAM user or the RAM role to perform the operation. Take note of the following items:
- The required resource types are displayed in bold characters.
- If the permissions cannot be granted at the resource level, All Resources is used in the Resource type column of the operation.
Condition Key: the condition key that is defined by the cloud service.
Associated operation: other operations that the RAM user or the RAM role must have permissions to perform to complete the operation. To complete the operation, the RAM user or the RAM role must have the permissions to perform the associated operations.

Operation	Access level	Resource type	Condition key	Associated operation
nlb:UpdateListenerAttribute	update	LoadBalancer acs:nlb:{#regionId}:{#accountId}:loadbalancer/{#LoadBalancerId}	none	none

Request parameters

Parameter	Type	Required	Description	Example
ListenerId	string	Yes	The ID of the listener.	lsn-bp1bpn0kn908w4nbw****@443
ListenerDescription	string	No	Enter a name for the listener. The description must be 2 to 256 characters in length, and can contain letters, digits, commas (,), periods (.), semicolons (;), forward slashes (/), at signs (@), underscores (_), and hyphens (-).	tcpssl_443
ServerGroupId	string	No	The ID of the server group. Note If you set ListenerProtocol to TCP, you can associate the listener with server groups whose backend protocol is TCP or TCP_UDP. You cannot associate the listener with server groups whose backend protocol is UDP. If you set ListenerProtocol to UDP, you can associate the listener with server groups whose backend protocol is UDP or TCP_UDP. You cannot associate the listener with server groups whose backend protocol is TCP. If you set ListenerProtocol to TCPSSL, you can associate the listener with server groups whose backend protocol is TCP and have client IP preservation disabled. You cannot associate the listener with server groups whose backend protocol is TCP and have client IP preservation enabled or server groups whose backend protocol is UDP or TCP_UDP.	sgp-ppdpc14gdm3x4o****
SecurityPolicyId	string	No	The ID of the security policy. Note This parameter takes effect only for listeners that use SSL over TCP.	tls_cipher_policy_1_1
CertificateIds	array	No	The server certificates.
CertificateId	string	No	The list of server certificates. You can specify only one server certificate. Note This parameter takes effect only for listeners that use SSL over TCP.	12315790212_166f8204689_1714763408_70998****
CaCertificateIds	array	No	The CA certificates. Only one CA certificate is supported. Note This parameter takes effect only for listeners that use SSL over TCP.
CaCertificateId	string	No	The list of CA certificates. You can specify only one CA certificate. Note This parameter takes effect only for listeners that use SSL over TCP.	139a00604ad-cn-east-hangzh****
CaEnabled	boolean	No	Specifies whether to enable mutual authentication. Valid values: true: yes false (default): no	false
IdleTimeout	integer	No	The timeout period of idle connections. Unit: seconds If the listener uses TCP or TCPSSL, you can set the timeout period of idle connections to 10 to 900 seconds. Default value: 900. If the listener uses UDP, you can set the timeout period of idle connections to 10 to 20 seconds. Default value: 20.	900
DryRun	boolean	No	Specifies whether only to precheck the request. Valid values: true: prechecks the request but does not update the configurations of the listener. The system prechecks the required parameters, request syntax, and limits. If the request fails the precheck, an error message is returned. If the request passes the precheck, the `DryRunOperation` error code is returned. false (default): sends the request. If the request passes the precheck, an HTTP 2xx status code is returned and the operation is performed.	false
ClientToken	string	No	The client token that is used to ensure the idempotence of the request. You can use the client to generate the token, but you must make sure that the token is unique among different requests. The token can contain only ASCII characters. Note If you do not specify this parameter, the system automatically uses the request ID as the client token. The request ID may be different for each request.	123e4567-e89b-12d3-a456-426655440000
RegionId	string	No	The ID of the region where the NLB instance is deployed. You can call the DescribeRegions operation to query the most recent region list.	cn-hangzhou
ProxyProtocolEnabled	boolean	No	Specifies whether to use the Proxy protocol to pass client IP addresses to backend servers. Valid values: true: yes false: no	false
SecSensorEnabled	boolean	No	Specifies whether to enable fine-grained monitoring. Valid values: true: yes false: no	false
AlpnEnabled	boolean	No	Specifies whether to enable Application-Layer Protocol Negotiation (ALPN). Valid values: true: yes false: no	false
AlpnPolicy	string	No	The ALPN policy. Valid values: HTTP1Only: uses only HTTP 1.x. The priority of HTTP 1.1 is higher than the priority of HTTP 1.0. HTTP2Only: uses only HTTP 2.0. HTTP2Optional: preferentially uses HTTP 1.x over HTTP 2.0. The priority of HTTP 1.1 is higher than the priority of HTTP 1.0, and the priority of HTTP 1.0 is higher than the priority of HTTP 2.0. HTTP2Preferred: preferentially uses HTTP 2.0 over HTTP 1.x. The priority of HTTP 2.0 is higher than the priority of HTTP 1.1, and the priority of HTTP 1.1 is higher than the priority of HTTP 1.0. Note This parameter is required if AlpnEnabled is set to true.	HTTP1Only
Cps	integer	No	The maximum number of new connections per second supported by the listener in each zone (virtual IP address). Valid values: 0 to 1000000. 0 indicates that the number of connections is unlimited.	10000
Mss	integer	No	The size of the largest TCP segment. Unit: bytes. Valid values: 0 to 1500. 0 specifies that the maximum segment size remains unchanged. This parameter is supported only by listeners that use SSL over TCP.	344
ProxyProtocolV2Config	object	No	Specifies that the Proxy protocol passes the VpcId, PrivateLinkEpId, and PrivateLinkEpsId parameters to backend servers.
Ppv2VpcIdEnabled	boolean	No	Specifies whether to use the Proxy protocol to pass the VpcId parameter to backend servers. Valid values: true false	false
Ppv2PrivateLinkEpIdEnabled	boolean	No	Specifies whether to use the Proxy protocol to pass the PrivateLinkEpId parameter to backend servers. Valid values: true false	false
Ppv2PrivateLinkEpsIdEnabled	boolean	No	Specifies whether to use the Proxy protocol to pass the PrivateLinkEpsId parameter to backend servers. Valid values: true false	false

Response parameters

Parameter	Type	Description	Example
	object	Updates listener configurations.
RequestId	string	The ID of the request.	CEF72CEB-54B6-4AE8-B225-F876FF7BA984
JobId	string	The ID of the asynchronous task.	72dcd26b-f12d-4c27-b3af-18f6aed5****

Examples

Sample success responses

JSONformat

{
  "RequestId": "CEF72CEB-54B6-4AE8-B225-F876FF7BA984",
  "JobId": "72dcd26b-f12d-4c27-b3af-18f6aed5****"
}

Error codes

HTTP status code	Error code	Error message	Description
400	Mismatch.VpcId	The VpcId is mismatched for %s and %s.	The VpcId is mismatched for %s and %s.
400	Conflict.Port	The Port [%s] is conflict.	The specified port conflicts with an existing port
400	ResourceNotFound.Certificate	The specified resource %s is not found.	-
400	IncorrectStatus.listener	The status of listener [%s] is incorrect.	The current operation cannot be performed on the listener as its status is unavailable. Please check if the listener is currently undergoing any other operations.
400	IdempotenceSignatureMismatch	The idempotence token of request is same with the prev one, but the signature is different.	The requested idempotent token is the same as the previous one, but the signature is different.
400	DryRunOperation	Request validation has been passed with DryRun flag set.	Request validation has been passed with DryRun flag set.
400	ResourceAlreadyAssociated.Certificate	The specified resource %s is already associated.	-
400	IllegalParamSize.certificateIds	The param size of certificateIds or caCertificateIds is illegal.	you can only have one certificate id. check whether the id is entered repeatedly.
400	SystemBusy	System is busy, please try again later.	-
400	IllegalParam.IdleTimeout	The param of IdleTimeout is illegal.	The parameter connection idle timeout configuration is invalid.
400	OperationDenied.RegionNotSupportHDMonitor	The operation is not allowed because of RegionNotSupportHDMonitor.	The current region does not support second-level monitoring.
400	ResourceNotEnough.CaCertificateApiCount	The specified resource of CaCertificateApiCount is not enough.	-
400	IllegalParam	The param of %s is illegal.	-
403	Forbidden.NoPermission	Authentication is failed for NoPermission.	Authentication is failed for NoPermission.
404	ResourceNotFound.listener	The specified resource %s is not found.	-
404	ResourceNotFound.HdMonitorConfigNotExist	The specified resource of HdMonitorConfigNotExist is not found.	HdMonitorConfig does not exist, check the input parameters.
404	ResourceNotFound.CaCertificate	The specified resource of CaCertificate is not found.	Ca certificate does not exist, please check the input parameters.
404	ResourceNotFound.securitypolicy	The specified resource of securitypolicy is not found.	-

For a list of error codes, visit the Service error codes.

Change history

Change time	Summary of changes	Operation
2024-08-27	The Error code has changed	View Change Details
2024-02-29	The Error code has changed	View Change Details
2024-02-22	The Error code has changed	View Change Details
2024-02-04	The Error code has changed	View Change Details
2024-01-30	The Error code has changed	View Change Details
2024-01-29	The Error code has changed	View Change Details
2024-01-24	The Error code has changed	View Change Details
2023-12-18	The Error code has changed	View Change Details
2023-11-27	The Error code has changed. The request parameters of the API has changed	View Change Details
2023-09-26	The Error code has changed	View Change Details
2023-09-05	The Error code has changed	View Change Details
2023-08-22	The Error code has changed	View Change Details
2023-04-04	The internal configuration of the API is changed, but the call is not affected	View Change Details