Class FirewallPolicy (0.11.0) 

FirewallPolicy(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Represents a Firewall Policy resource.

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields

Attributes
Name Description
associations MutableSequence[google.cloud.compute_v1beta.types.FirewallPolicyAssociation]
A list of associations that belong to this firewall policy.
creation_timestamp str
Output only. [Output Only] Creation timestamp inRFC3339 text format. This field is a member of oneof_ _creation_timestamp.
description str
An optional description of this resource. Provide this property when you create the resource. This field is a member of oneof_ _description.
display_name str
Deprecated, please use short name instead. User-provided name of the Organization firewall policy. The name should be unique in the organization in which the firewall policy is created. This field is not applicable to network firewall policies. This name must be set on creation and cannot be changed. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash. This field is a member of oneof_ _display_name.
fingerprint str
Specifies a fingerprint for this resource, which is essentially a hash of the metadata's contents and used for optimistic locking. The fingerprint is initially generated by Compute Engine and changes after every request to modify or update metadata. You must always provide an up-to-date fingerprint hash in order to update or change metadata, otherwise the request will fail with error412 conditionNotMet. To see the latest fingerprint, make get() request to the firewall policy. This field is a member of oneof_ _fingerprint.
id int
[Output Only] The unique identifier for the resource. This identifier is defined by the server. This field is a member of oneof_ _id.
kind str
Output only. [Output only] Type of the resource. Alwayscompute#firewallPolicyfor firewall policies This field is a member of oneof_ _kind.
name str
Name of the resource. For Organization Firewall Policies it's a [Output Only] numeric ID allocated by Google Cloud which uniquely identifies the Organization Firewall Policy. This field is a member of oneof_ _name.
packet_mirroring_rules MutableSequence[google.cloud.compute_v1beta.types.FirewallPolicyRule]
A list of packet mirroring rules that belong to this policy.
parent str
Output only. [Output Only] The parent of the firewall policy. This field is not applicable to network firewall policies. This field is a member of oneof_ _parent.
policy_source str
Indicates the source of this Firewall Policy. This field is optional on creation and defaults to USER_DEFINED. The USER_DEFINED value indicates a regular firewall policy. The SYSTEM value indicates a system-level policy managed by an internal service like GKE. This SYSTEM value is reserved for internal services and cannot be set by users during policy creation. Policies with a SYSTEM source cannot be modified or deleted by users. Check the PolicySource enum for the list of possible values. This field is a member of oneof_ _policy_source.
policy_type str
The type of the firewall policy. This field can be eitherVPC_POLICY or RDMA_ROCE_POLICY. Note: if not specified then VPC_POLICY will be used. Check the PolicyType enum for the list of possible values. This field is a member of oneof_ _policy_type.
region str
Output only. [Output Only] URL of the region where the regional firewall policy resides. This field is not applicable to global firewall policies. You must specify this field as part of the HTTP request URL. It is not settable as a field in the request body. This field is a member of oneof_ _region.
rule_tuple_count int
Output only. [Output Only] Total count of all firewall policy rule tuples. A firewall policy can not exceed a set number of tuples. This field is a member of oneof_ _rule_tuple_count.
rules MutableSequence[google.cloud.compute_v1beta.types.FirewallPolicyRule]
A list of rules that belong to this policy. There must always be a default rule (rule with priority 2147483647 and match "\*"). If no rules are provided when creating a firewall policy, a default rule with action "allow" will be added.
self_link str
[Output Only] Server-defined URL for the resource. This field is a member of oneof_ _self_link.
self_link_with_id str
Output only. [Output Only] Server-defined URL for this resource with the resource id. This field is a member of oneof_ _self_link_with_id.
short_name str
User-provided name of the Organization firewall policy. The name should be unique in the organization in which the firewall policy is created. This field is not applicable to network firewall policies. This name must be set on creation and cannot be changed. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash. This field is a member of oneof_ _short_name.

Classes

PolicySource

PolicySource(value)

Indicates the source of this Firewall Policy. This field is optional on creation and defaults to USER_DEFINED.

The USER_DEFINED value indicates a regular firewall policy.

The SYSTEM value indicates a system-level policy managed by an internal service like GKE. This SYSTEM value is reserved for internal services and cannot be set by users during policy creation. Policies with a SYSTEM source cannot be modified or deleted by users.

PolicyType

PolicyType(value)

The type of the firewall policy. This field can be eitherVPC_POLICY or RDMA_ROCE_POLICY.

Note: if not specified then VPC_POLICY will be used.