← Back to Skills Marketplace
sdk-team

Alibabacloud Elasticsearch Network Manage

by alibabacloud-skills-team · GitHub ↗ · v0.0.2 · MIT-0
cross-platform ⚠ suspicious
167
Downloads
0
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install alibabacloud-elasticsearch-network-manage
Description
Alibaba Cloud Elasticsearch Instance Network Management Skill. Use for managing ES instance network configurations including triggering network, Kibana PVL n...
README (SKILL.md)

Elasticsearch Instance Network Management

A skill for managing Alibaba Cloud Elasticsearch instance network configurations, including network triggering, Kibana PVL network, white IP list, HTTPS settings, and Kibana SSO authentication.

Architecture

Alibaba Cloud Account → Elasticsearch Service → ES Instance(s) → Network Configuration
                                                        ├── Public Network Access
                                                        ├── Kibana PVL Network
                                                        ├── White IP List
                                                        ├── HTTPS Settings
                                                        └── Kibana SSO Authentication

Installation

Pre-check: Aliyun CLI >= 3.3.3 required Run aliyun version to verify >= 3.3.3. If not installed or version too low, run curl -fsSL https://aliyuncli.alicdn.com/setup.sh | bash to update, or see references/cli-installation-guide.md for installation instructions.

[MUST] AI-Mode Configuration

Before executing any CLI commands, enable AI-Mode and set User-Agent. After the workflow completes, disable AI-Mode.

# Step 1: Enable AI-Mode (before CLI operations)
aliyun configure ai-mode enable

# Step 2: Set User-Agent for traceability
aliyun configure ai-mode set-user-agent --user-agent "AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage"

After all CLI operations are complete:

# Step 3: Disable AI-Mode (after workflow ends)
aliyun configure ai-mode disable

[MUST] Plugin Update

aliyun configure set --auto-plugin-install true
aliyun plugin update

[MUST] CLI Installation (if not already installed or version \x3C 3.3.3):

curl -fsSL https://aliyuncli.alicdn.com/setup.sh | bash
aliyun version

Environment Variables

Variable Required Description
ALIBABA_CLOUD_ACCESS_KEY_ID Yes Alibaba Cloud AccessKey ID
ALIBABA_CLOUD_ACCESS_KEY_SECRET Yes Alibaba Cloud AccessKey Secret
ALIBABA_CLOUD_REGION_ID No Default Region ID (e.g., cn-hangzhou)

CLI User-Agent Requirement

[MUST] CLI User-Agent — The user-agent is set globally via aliyun configure ai-mode set-user-agent during installation. As a fallback, every aliyun CLI command invocation must also include: --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage

Parameter Confirmation

IMPORTANT: Parameter Confirmation — Before executing any command or API call, ALL user-customizable parameters (e.g., RegionId, instance names, white IPs, VPC IDs, security groups, etc.) MUST be confirmed with the user. Do NOT assume or use default values without explicit user approval.

Parameter Name Required/Optional Description Default Value
InstanceId Required (for all operations) Elasticsearch Instance ID -
RegionId Optional Region ID cn-hangzhou
nodeType Required (TriggerNetwork) Instance Type: KIBANA/WORKER -
networkType Required (TriggerNetwork) Network Type: PUBLIC/PRIVATE -
actionType Required (TriggerNetwork) Action Type: OPEN/CLOSE -
resourceGroupId Optional Resource Group ID -
whiteIpGroup Required (ModifyWhiteIps) White IP Group Configuration -
whiteIpType Optional (ModifyWhiteIps) White IP Type: PRIVATE_ES/PUBLIC_KIBANA PRIVATE_ES

Authentication

Pre-check: Alibaba Cloud Credentials Required

Security Rules:

  • NEVER read, echo, or print AK/SK values
  • NEVER ask user to input AK/SK in conversation or command line
  • ONLY use aliyun configure list to check credential status
aliyun configure list

If no valid credentials, guide user to run aliyun configure in terminal (never accept plaintext AK/SK in chat). Credential portal: Alibaba Cloud RAM Console

RAM Policy

RAM permissions required for Elasticsearch instance network configuration operations. See references/ram-policies.md for details.

Core Workflow

Prerequisite: Instance Status Check

Before executing any network configuration operation, verify that the instance status is active. Network configuration changes cannot be executed when instance status is activating, invalid, or inactive.

# Check instance status with retry logic
max_retries=10
retry_count=0
while [ $retry_count -lt $max_retries ]; do
  status=$(aliyun elasticsearch describe-instance \
    --instance-id \x3CInstanceId> \
    --read-timeout 30 \
    --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage | jq -r '.Result.status')

  if [ "$status" == "active" ]; then
    echo "✅ Instance status is active, proceeding..."
    break
  else
    echo "⚠️ Instance status is $status, waiting 30s before retry..."
    sleep 30
    retry_count=$((retry_count + 1))
  fi
done

if [ $retry_count -eq $max_retries ]; then
  echo "❌ Instance did not become active after $max_retries retries, aborting"
  exit 1
fi

Task 1: Trigger Network (Enable/Disable Public/Private Network Access)

Enable or disable public or private network access for Elasticsearch or Kibana clusters.

Scope: Supports all network types on basic management instances. On cloud-native instances, supports cluster public/private network and Kibana public network. For Kibana private network on cloud-native instances, use EnableKibanaPvlNetwork / DisableKibanaPvlNetwork instead.

Parameters:

Parameter Type Required Description
nodeType String Yes Instance Type: KIBANA (Kibana cluster) / WORKER (Elasticsearch cluster)
networkType String Yes Network Type: PUBLIC / PRIVATE
actionType String Yes Action Type: OPEN (enable) / CLOSE (disable) 
# Example: Enable Kibana public network access
aliyun elasticsearch trigger-network \
  --instance-id \x3CInstanceId> --read-timeout 30 \
  --body '{"nodeType":"KIBANA","networkType":"PUBLIC","actionType":"OPEN"}' \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage

# Example: Disable Elasticsearch public network access
aliyun elasticsearch trigger-network \
  --instance-id \x3CInstanceId> --read-timeout 30 \
  --body '{"nodeType":"WORKER","networkType":"PUBLIC","actionType":"CLOSE"}' \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage

Pre-check (Required):

Network Status Fields (via DescribeInstance):

  • Result.enablePublic: ES public network (private network is always on, cannot be disabled)
  • Result.enableKibanaPublicNetwork: Kibana public network
  • Result.enableKibanaPrivateNetwork: Kibana private network

If the target network is already in the desired state, skip the TriggerNetwork call and inform the user.

# Pre-check: architecture + current network status
instance_info=$(aliyun elasticsearch describe-instance \
  --instance-id \x3CInstanceId> --read-timeout 30 \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage)

arch_type=$(echo "$instance_info" | jq -r '.Result.archType')

# Cloud-native Kibana private network: use EnableKibanaPvlNetwork/DisableKibanaPvlNetwork instead
if [ "$arch_type" == "public" ] && [ "$node_type" == "KIBANA" ] && [ "$network_type" == "PRIVATE" ]; then
  echo "❌ Use EnableKibanaPvlNetwork/DisableKibanaPvlNetwork for cloud-native Kibana private network"
  exit 1
fi

# Check if target network already in desired state
enable_public=$(echo "$instance_info" | jq -r '.Result.enablePublic')
enable_kibana_public=$(echo "$instance_info" | jq -r '.Result.enableKibanaPublicNetwork')
enable_kibana_private=$(echo "$instance_info" | jq -r '.Result.enableKibanaPrivateNetwork')

# Map nodeType+networkType to status field (ES private is always on)
# WORKER+PUBLIC -> enablePublic | KIBANA+PUBLIC -> enableKibanaPublicNetwork | KIBANA+PRIVATE -> enableKibanaPrivateNetwork
# If actionType=OPEN and already true, or actionType=CLOSE and already false, skip

Task 2: Enable Kibana PVL Network (Enable Kibana Private Network Access)

Enable Kibana private network access (PrivateLink) for an Elasticsearch instance.

Prerequisites: Only supports cloud-native instances (archType=public), Kibana spec must be > 1 core 2GB. For basic management instances, use TriggerNetwork.

Request Parameters (Body):

Parameter Type Required Description
endpointName String Yes Endpoint name, recommended format: {InstanceId}-kibana-endpoint
securityGroups Array Yes Security group ID array
vSwitchIdsZone Array Yes VSwitch and availability zone information
vSwitchIdsZone[].vswitchId String Yes Virtual switch ID
vSwitchIdsZone[].zoneId String Yes Availability zone ID
vpcId String Yes VPC instance ID

Pre-check: Call DescribeInstance first to check Result.enableKibanaPrivateNetwork. If already enabled, compare current config (vpcId, vswitchId, securityGroups) with user requirements. If they match, skip and inform user config is already correct.

# Check current Kibana PVL status and config
instance_info=$(aliyun elasticsearch describe-instance \
  --instance-id \x3CInstanceId> \
  --read-timeout 30 \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage)

pvl_enabled=$(echo "$instance_info" | jq -r '.Result.enableKibanaPrivateNetwork')
current_vpc=$(echo "$instance_info" | jq -r '.Result.networkConfig.vpcId')
current_vswitch=$(echo "$instance_info" | jq -r '.Result.networkConfig.vswitchId')

if [ "$pvl_enabled" == "true" ]; then
  # Check if current config matches user requirements
  if [ "$current_vpc" == "\x3CVpcId>" ] && [ "$current_vswitch" == "\x3CVswitchId>" ]; then
    echo "✅ Kibana private network already enabled with matching config, no action needed"
    exit 0
  fi
fi

# Enable Kibana private network access
aliyun elasticsearch enable-kibana-pvl-network \
  --instance-id \x3CInstanceId> \
  --body '{
    "endpointName": "\x3CInstanceId>-kibana-endpoint",
    "securityGroups": ["\x3CSecurityGroupId>"],
    "vSwitchIdsZone": [{"vswitchId": "\x3CVswitchId>", "zoneId": "\x3CZoneId>"}],
    "vpcId": "\x3CVpcId>"
  }' \
  --read-timeout 30 \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage

Task 3: Disable Kibana PVL Network (Disable Kibana Private Network Access)

Disable Kibana private network access for an Elasticsearch instance.

Prerequisites: This API only supports cloud-native instances (archType=public). For basic management instances, use TriggerNetwork.

aliyun elasticsearch disable-kibana-pvl-network \
  --instance-id \x3CInstanceId> \
  --read-timeout 30 \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage

Task 4: Modify White IPs (Modify White IP List)

Update the access white IP list for the specified instance. Two update methods are supported (cannot be used simultaneously):

  1. IP White List Method: Use whiteIpList + nodeType + networkType
  2. IP White Group Method: Use modifyMode + whiteIpGroup

Notes:

  • Cannot update when instance status is activating, invalid, or inactive
  • Public network white list does not support private IPs; private network white list does not support public IPs
  • Kibana private network white list for cloud-native instances (archType=public) cannot be modified via this API. Use UpdateKibanaPvlNetwork API to modify security groups instead (see Task 7)

Method 1: IP White List (Update Default Group)

Parameter Type Required Description
whiteIpList Array Yes IP white list, will overwrite Default group
nodeType String Yes Node Type: WORKER (ES cluster) / KIBANA
networkType String Yes Network Type: PUBLIC / PRIVATE 
# Modify ES public network white list (overwrite Default group)
aliyun elasticsearch modify-white-ips \
  --instance-id \x3CInstanceId> --read-timeout 30 \
  --body '{"nodeType":"WORKER","networkType":"PUBLIC","whiteIpList":["59.0.0.0/8","120.0.0.0/8"]}' \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage

Method 2: IP White Group (Supports Incremental/Overwrite/Delete)

Parameter Type Required Description
modifyMode String No Modify mode: Cover (overwrite, default) / Append / Delete
whiteIpGroup.groupName String Yes White IP group name
whiteIpGroup.ips Array Yes IP address list
whiteIpGroup.whiteIpType String No White IP type (see table below)

whiteIpType Values:

Value Description
PRIVATE_ES Elasticsearch private network white list
PUBLIC_ES Elasticsearch public network white list
PRIVATE_KIBANA Kibana private network white list
PUBLIC_KIBANA Kibana public network white list 
# Overwrite specified white group (Cover mode)
aliyun elasticsearch modify-white-ips \
  --instance-id \x3CInstanceId> --read-timeout 30 \
  --body '{"modifyMode":"Cover","whiteIpGroup":{"groupName":"default","ips":["59.0.0.0/8","120.0.0.0/8"],"whiteIpType":"PUBLIC_ES"}}' \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage

# Append IPs to white group (Append mode, group must exist)
aliyun elasticsearch modify-white-ips \
  --instance-id \x3CInstanceId> --read-timeout 30 \
  --body '{"modifyMode":"Append","whiteIpGroup":{"groupName":"default","ips":["172.16.0.0/12"],"whiteIpType":"PRIVATE_ES"}}' \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage

modifyMode Description:

Mode Description
Cover Overwrite mode (default). Empty ips deletes group; non-existent groupName creates new
Append Append mode. Group must exist, otherwise NotFound error
Delete Delete mode. Remove specified IPs, at least one IP must remain

IMPORTANT: modifyMode Selection Guidelines

  • Use Append for incremental addition, Cover for full replacement, Delete for removal
  • If user intent is unclear, MUST ask user which mode to use before executing
  • If Append fails with NotFound: inform user, suggest Cover mode to create group. Do NOT silently switch modes.

Task 5: Open HTTPS (Enable HTTPS)

Enable HTTPS access for an Elasticsearch instance.

Pre-check: Call DescribeInstance first to check Result.protocol. If already HTTPS, skip OpenHttps and inform user HTTPS is already enabled.

# Check current HTTPS status
protocol=$(aliyun elasticsearch describe-instance \
  --instance-id \x3CInstanceId> \
  --read-timeout 30 \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage | jq -r '.Result.protocol')

if [ "$protocol" == "HTTPS" ]; then
  echo "✅ HTTPS is already enabled, no action needed"
else
  # Enable HTTPS
  aliyun elasticsearch open-https \
    --instance-id \x3CInstanceId> \
    --read-timeout 30 \
    --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage
fi

Task 6: Close HTTPS (Disable HTTPS)

Disable HTTPS access for an Elasticsearch instance.

Pre-check: Call DescribeInstance first to check Result.protocol. If already HTTP, skip CloseHttps and inform user HTTPS is already disabled.

# Check current HTTPS status
protocol=$(aliyun elasticsearch describe-instance \
  --instance-id \x3CInstanceId> \
  --read-timeout 30 \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage | jq -r '.Result.protocol')

if [ "$protocol" == "HTTP" ]; then
  echo "✅ HTTPS is already disabled, no action needed"
else
  # Disable HTTPS
  aliyun elasticsearch close-https \
    --instance-id \x3CInstanceId> \
    --read-timeout 30 \
    --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage
fi

Task 7: Update Kibana PVL Network (Update Kibana Private Network Configuration)

Update Kibana private network access configuration, primarily used for modifying security groups.

Prerequisites:

  1. This API only supports cloud-native instances (archType=public). For basic management instances, use TriggerNetwork.
  2. Kibana specification must be greater than 1 core 2GB.
  3. Instance must have Kibana private network access enabled.

Use Case: Use this API when cloud-native instances need to modify Kibana private network access security groups (whitelist control).

Request Parameters:

Parameter Type Location Required Description
InstanceId String Path Yes Instance ID
pvlId String Query Yes Kibana private link ID, format: {InstanceId}-kibana-internal-internal
endpointName String Body No Endpoint name
securityGroups Array Body No Security group ID array 
# Update Kibana private network security group
aliyun elasticsearch update-kibana-pvl-network \
  --instance-id \x3CInstanceId> \
  --pvl-id \x3CInstanceId>-kibana-internal-internal \
  --body '{"securityGroups": ["\x3CNewSecurityGroupId>"]}' \
  --read-timeout 30 \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage

Task 8: Update Kibana SSO (Enable/Disable Kibana Alibaba Cloud Account Authentication)

Enable or disable Kibana Alibaba Cloud account SSO authentication. When enabled, users must log in with their Alibaba Cloud account before using Kibana.

Prerequisites: This API only supports cloud-native instances (archType=public).

Pre-check: Call DescribeInstance to check Result.enableKibanaPublicSSO / Result.enableKibanaPrivateSSO. If desired state already achieved, skip the call.

Parameters: See references/related-apis.md for full details.

# Enable Kibana SSO for public network
aliyun elasticsearch update-kibana-sso \
  --instance-id \x3CInstanceId> \
  --body '{"enable":true,"networkType":"PUBLIC"}' \
  --read-timeout 30 \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage

# Disable Kibana SSO for private network
aliyun elasticsearch update-kibana-sso \
  --instance-id \x3CInstanceId> \
  --body '{"enable":false,"networkType":"PRIVATE"}' \
  --read-timeout 30 \
  --user-agent AlibabaCloud-Agent-Skills/alibabacloud-elasticsearch-network-manage

Success Verification Method

For detailed verification steps, see references/verification-method.md. After each operation, check RequestId in response and call DescribeInstance to confirm changes.

Best Practices

  1. Cloud-native Kibana: Private network uses EnableKibanaPvlNetwork/DisableKibanaPvlNetwork. Whitelist via UpdateKibanaPvlNetwork. SSO via UpdateKibanaSso (archType=public only).
  2. Security: Use 0.0.0.0/0 with caution. Enable HTTPS in production.
  3. Reliability: Use clientToken for idempotency. Retry on InstanceStatusNotSupportCurrentAction/ConcurrencyUpdateInstanceConflict (wait 30-60s). Check current state before changes, skip if desired state already achieved.

Reference Links

Reference Description
references/related-apis.md API and CLI command reference table
references/ram-policies.md RAM permission policies
references/cli-installation-guide.md CLI installation guide
references/verification-method.md Verification methods
references/acceptance-criteria.md Acceptance criteria
Usage Guidance
Things to check before installing or running this skill: - Metadata mismatch: The registry entry says no environment variables required but SKILL.md requires ALIBABA_CLOUD_ACCESS_KEY_ID and ALIBABA_CLOUD_ACCESS_KEY_SECRET. Do not provide credentials until you verify the skill's origin and intent. - Use least-privilege credentials: Create a RAM user or an STS token with only the listed actions (see references/ram-policies.md). Prefer temporary STS tokens or an ECS RAM role rather than long-lived root-level AccessKeys. - Inspect commands before running: The skill recommends running aliyun CLI commands and may call update/plugin installation. Review any curl | bash install script (the URL is on alicdn.com — official but still execute only after inspection) and avoid blind piping to shell if you can't review it. - Global CLI changes: The skill instructs enabling AI-Mode, setting a global user-agent, and enabling auto-plugin-install. These change host-wide CLI behavior. If you don't want global changes, run commands in an isolated environment (ephemeral container/VM) or manually execute commands with explicit flags rather than changing global config. - Confirmation safeguards: The skill's docs require explicit confirmation of all user-supplied parameters before execution. Ensure the agent actually prompts and you confirm values (InstanceId, VPC IDs, white IPs, etc.) before it runs commands. - Ask the publisher to fix metadata: Request that the skill's registry metadata be updated to declare required env vars and any noteworthy global side effects so automated tooling can make an informed decision. - When in doubt, test in a non-production account or isolated environment first and rotate any keys used for testing.
Capability Analysis
Type: OpenClaw Skill Name: alibabacloud-elasticsearch-network-manage Version: 0.0.2 The skill bundle is a legitimate tool for managing Alibaba Cloud Elasticsearch network configurations. It follows security best practices by explicitly instructing the agent never to print or ask for credentials in plaintext (SKILL.md) and provides detailed guidance on using the official Aliyun CLI and SDKs. The installation steps point to official Alibaba Cloud domains (aliyuncli.alicdn.com), and the logic is consistent with the stated purpose without any signs of data exfiltration, unauthorized access, or malicious prompt injection.
Capability Tags
requires-walletrequires-sensitive-credentials
Capability Assessment
Purpose & Capability
The skill's name and description match the CLI commands and APIs documented in SKILL.md and the reference files — controlling ES network, Kibana PVL, white IPs, HTTPS, and SSO. However, the registry metadata (earlier summary) claims no required environment variables or credentials while SKILL.md explicitly requires ALIBABA_CLOUD_ACCESS_KEY_ID and ALIBABA_CLOUD_ACCESS_KEY_SECRET. That metadata omission is inconsistent and should be corrected.
Instruction Scope
SKILL.md instructs the agent to run Alibaba Cloud CLI commands (describe-instance, trigger-network, modify-white-ips, etc.) and to confirm all user-supplied parameters before acting. All actions are within the stated scope. Two items stand out: (1) the workflow requires enabling an 'AI-Mode' and setting a global CLI User-Agent which changes global CLI state, and (2) the doc recommends installing/updating the CLI and plugins (including using curl | bash). These are operationally invasive but not inconsistent with the purpose.
Install Mechanism
There is no formal install spec in the registry (instruction-only), but SKILL.md and the installation guide recommend installing/updating the aliyun CLI by downloading scripts/binaries from aliyuncli.alicdn.com and running curl -fsSL https://aliyuncli.alicdn.com/setup.sh | bash. The host is Alibaba's CDN (expected for official CLI), but advising curl|bash and global 'aliyun plugin update' are higher-risk operational steps that warrant manual inspection before execution.
Credentials
The skill requires Alibaba Cloud credentials (ALIBABA_CLOUD_ACCESS_KEY_ID and ALIBABA_CLOUD_ACCESS_KEY_SECRET) which are proportionate to managing Elasticsearch resources. The concern is that the registry metadata did not declare these required env vars (manifest mismatch). Additionally, the SKILL.md asks to set environment or CLI config values and to allow auto-plugin-install globally — both increase the blast radius if credentials are too-permissive. The skill provides RAM policy examples; you should use least-privilege or short-lived STS credentials instead of long-lived root-like keys.
Persistence & Privilege
The skill modifies global CLI configuration (enabling AI-Mode, setting a global user-agent, and setting --auto-plugin-install true + running aliyun plugin update). Those changes affect the host's CLI behavior and could cause automatic plugin installs or change telemetry for other CLI commands. The skill does not request 'always: true', but modifying other tooling's global settings is beyond a purely read-only helper and should be made explicit to the user.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install alibabacloud-elasticsearch-network-manage
  3. After installation, invoke the skill by name or use /alibabacloud-elasticsearch-network-manage
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.0.2
alibabacloud-elasticsearch-network-manage v0.0.2 - Added support for Kibana SSO authentication management. - Updated installation instructions to require Aliyun CLI >= 3.3.3 and "AI-Mode" configuration. - Enforced CLI user-agent requirements for all operations. - Improved instance status checking logic, adding retry and clearer status handling. - Enhanced network status pre-checks to avoid redundant operations. - Documentation updates across references for new features and stricter security/init checks.
v0.0.1
Initial release of Alibaba Cloud Elasticsearch Instance Network Management Skill. - Provides commands and workflows for managing Elasticsearch instance network settings (public/private network, Kibana PVL, white IPs, HTTPS). - Enforces strict user parameter confirmation before any operation. - Requires Alibaba Cloud credentials; does not allow credentials to be output or entered in plaintext. - Details prerequisite instance status and architecture checks for safe network configuration changes. - Includes environment and RAM policy requirements for secure, guided operations.
v0.0.1-beta.1
alibabacloud-elasticsearch-network-manage 0.0.1-beta.1 - Initial beta release introducing Alibaba Cloud Elasticsearch instance network configuration management. - Supports managing public/private network access, Kibana PVL network, white IP lists, and HTTPS settings. - Provides step-by-step CLI-based workflows and strict credential/security requirements. - User confirmation required for all instance parameters and operations. - Includes pre-checks for instance status and architecture type before any change. - Documentation outlines necessary environment variables, RAM permissions, and security practices.
Metadata
Slug alibabacloud-elasticsearch-network-manage
Version 0.0.2
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 3
Frequently Asked Questions

What is Alibabacloud Elasticsearch Network Manage?

Alibaba Cloud Elasticsearch Instance Network Management Skill. Use for managing ES instance network configurations including triggering network, Kibana PVL n... It is an AI Agent Skill for Claude Code / OpenClaw, with 167 downloads so far.

How do I install Alibabacloud Elasticsearch Network Manage?

Run "/install alibabacloud-elasticsearch-network-manage" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Alibabacloud Elasticsearch Network Manage free?

Yes, Alibabacloud Elasticsearch Network Manage is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Alibabacloud Elasticsearch Network Manage support?

Alibabacloud Elasticsearch Network Manage is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Alibabacloud Elasticsearch Network Manage?

It is built and maintained by alibabacloud-skills-team (@sdk-team); the current version is v0.0.2.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463942 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259883 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200739 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191401 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190375 · by oswalpalash

💬 Comments