Class: Google::Apis::ComputeAlpha::SecurityPolicyRule

Inherits:

Object

• Object
• Google::Apis::ComputeAlpha::SecurityPolicyRule

Includes:

Google::Apis::Core::Hashable, Google::Apis::Core::JsonObjectSupport

Defined in:

generated/google/apis/compute_alpha/classes.rb,
generated/google/apis/compute_alpha/representations.rb,
generated/google/apis/compute_alpha/representations.rb

Overview

Represents a rule that describes one or more match conditions along with the action to be taken when traffic matches this condition (allow or deny).

Instance Attribute Summary

• #action ⇒ String

  The Action to preform when the client connection triggers the rule.

• #description ⇒ String

  An optional description of this resource.

• #direction ⇒ String

  The direction in which this rule applies.

• #enable_logging ⇒ Boolean (also: #enable_logging?)

  Denotes whether to enable logging for a particular rule.

• #kind ⇒ String

  [Output only] Type of the resource.

• #match ⇒ Google::Apis::ComputeAlpha::SecurityPolicyRuleMatcher

  Represents a match condition that incoming traffic is evaluated against.

• #preview ⇒ Boolean (also: #preview?)

  If set to true, the specified action is not enforced.

• #priority ⇒ Fixnum

  An integer indicating the priority of a rule in the list.

• #rate_limit_options ⇒ Google::Apis::ComputeAlpha::SecurityPolicyRuleRateLimitOptions

  Must be specified if the action is "rate_based_blacklist" or "throttle".

• #rule_tuple_count ⇒ Fixnum

  [Output Only] Calculation of the complexity of a single firewall security policy rule.

• #target_resources ⇒ Array<String>

  A list of network resource URLs to which this rule applies.

• #target_service_accounts ⇒ Array<String>

  A list of service accounts indicating the sets of instances that are applied with this rule.

Instance Method Summary

• #initialize(**args) ⇒ SecurityPolicyRule constructor

  A new instance of SecurityPolicyRule.

• #update!(**args) ⇒ Object

  Update properties of this object.

Methods included from Google::Apis::Core::JsonObjectSupport

#to_json

Methods included from Google::Apis::Core::Hashable

process_value, #to_h

Constructor Details

#initialize(**args) ⇒ SecurityPolicyRule

Returns a new instance of SecurityPolicyRule.

# File 'generated/google/apis/compute_alpha/classes.rb', line 30484

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#action ⇒ String

The Action to preform when the client connection triggers the rule. Can currently be either "allow" or "deny()" where valid values for status are 403, 404, and 502. Corresponds to the JSON property action

Returns:

• (String)

# File 'generated/google/apis/compute_alpha/classes.rb', line 30408

def action
  @action
end

#description ⇒ String

An optional description of this resource. Provide this property when you create the resource. Corresponds to the JSON property description

Returns:

• (String)

# File 'generated/google/apis/compute_alpha/classes.rb', line 30414

def description
  @description
end

#direction ⇒ String

The direction in which this rule applies. This field may only be specified when versioned_expr is set to FIREWALL. Corresponds to the JSON property direction

Returns:

• (String)

# File 'generated/google/apis/compute_alpha/classes.rb', line 30420

def direction
  @direction
end

#enable_logging ⇒ Boolean Also known as: enable_logging?

Denotes whether to enable logging for a particular rule. If logging is enabled, logs will be exported to the configured export destination in Stackdriver. Logs may be exported to BigQuery or Pub/Sub. Note: you cannot enable logging on "goto_next" rules. This field may only be specified when the versioned_expr is set to FIREWALL. Corresponds to the JSON property enableLogging

Returns:

• (Boolean)

# File 'generated/google/apis/compute_alpha/classes.rb', line 30429

def enable_logging
  @enable_logging
end

#kind ⇒ String

[Output only] Type of the resource. Always compute#securityPolicyRule for security policy rules Corresponds to the JSON property kind

Returns:

• (String)

# File 'generated/google/apis/compute_alpha/classes.rb', line 30436

def kind
  @kind
end

#match ⇒ Google::Apis::ComputeAlpha::SecurityPolicyRuleMatcher

Represents a match condition that incoming traffic is evaluated against. Exactly one field must be specified. Corresponds to the JSON property match

Returns:

• (Google::Apis::ComputeAlpha::SecurityPolicyRuleMatcher)

# File 'generated/google/apis/compute_alpha/classes.rb', line 30442

def match
  @match
end

#preview ⇒ Boolean Also known as: preview?

If set to true, the specified action is not enforced. Corresponds to the JSON property preview

Returns:

• (Boolean)

# File 'generated/google/apis/compute_alpha/classes.rb', line 30447

def preview
  @preview
end

#priority ⇒ Fixnum

An integer indicating the priority of a rule in the list. The priority must be a positive value between 0 and 2147483647. Rules are evaluated from highest to lowest priority where 0 is the highest priority and 2147483647 is the lowest prority. Corresponds to the JSON property priority

Returns:

• (Fixnum)

# File 'generated/google/apis/compute_alpha/classes.rb', line 30456

def priority
  @priority
end

#rate_limit_options ⇒ Google::Apis::ComputeAlpha::SecurityPolicyRuleRateLimitOptions

Must be specified if the action is "rate_based_blacklist" or "throttle". Cannot be specified for any other actions. Corresponds to the JSON property rateLimitOptions

Returns:

• (Google::Apis::ComputeAlpha::SecurityPolicyRuleRateLimitOptions)

# File 'generated/google/apis/compute_alpha/classes.rb', line 30462

def rate_limit_options
  @rate_limit_options
end

#rule_tuple_count ⇒ Fixnum

[Output Only] Calculation of the complexity of a single firewall security policy rule. Corresponds to the JSON property ruleTupleCount

Returns:

• (Fixnum)

# File 'generated/google/apis/compute_alpha/classes.rb', line 30468

def rule_tuple_count
  @rule_tuple_count
end

#target_resources ⇒ Array<String>

A list of network resource URLs to which this rule applies. This field allows you to control which network's VMs get this rule. If this field is left blank, all VMs within the organization will receive the rule. This field may only be specified when versioned_expr is set to FIREWALL. Corresponds to the JSON property targetResources

Returns:

• (Array<String>)

# File 'generated/google/apis/compute_alpha/classes.rb', line 30476

def target_resources
  @target_resources
end

#target_service_accounts ⇒ Array<String>

A list of service accounts indicating the sets of instances that are applied with this rule. Corresponds to the JSON property targetServiceAccounts

Returns:

• (Array<String>)

# File 'generated/google/apis/compute_alpha/classes.rb', line 30482

def target_service_accounts
  @target_service_accounts
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object

# File 'generated/google/apis/compute_alpha/classes.rb', line 30489

def update!(**args)
  @action = args[:action] if args.key?(:action)
  @description = args[:description] if args.key?(:description)
  @direction = args[:direction] if args.key?(:direction)
  @enable_logging = args[:enable_logging] if args.key?(:enable_logging)
  @kind = args[:kind] if args.key?(:kind)
  @match = args[:match] if args.key?(:match)
  @preview = args[:preview] if args.key?(:preview)
  @priority = args[:priority] if args.key?(:priority)
  @rate_limit_options = args[:rate_limit_options] if args.key?(:rate_limit_options)
  @rule_tuple_count = args[:rule_tuple_count] if args.key?(:rule_tuple_count)
  @target_resources = args[:target_resources] if args.key?(:target_resources)
  @target_service_accounts = args[:target_service_accounts] if args.key?(:target_service_accounts)
end