class Google::Apis::ComputeBeta::SecurityPolicyRule

Represents a rule that describes one or more match conditions along with the action to be taken when traffic matches this condition (allow or deny).

Attributes

action[RW]

The Action to perform when the client connection triggers the rule. Can currently be either “allow” or “deny()” where valid values for status are 403, 404, and 502. Corresponds to the JSON property `action` @return [String]

description[RW]

An optional description of this resource. Provide this property when you create the resource. Corresponds to the JSON property `description` @return [String]

direction[RW]

The direction in which this rule applies. This field may only be specified when versioned_expr is set to FIREWALL. Corresponds to the JSON property `direction` @return [String]

enable_logging[RW]

Denotes whether to enable logging for a particular rule. If logging is enabled, logs will be exported to the configured export destination in Stackdriver. Logs may be exported to BigQuery or Pub/Sub. Note: you cannot enable logging on “goto_next” rules. This field may only be specified when the versioned_expr is set to FIREWALL. Corresponds to the JSON property `enableLogging` @return [Boolean]

enable_logging?[RW]

Denotes whether to enable logging for a particular rule. If logging is enabled, logs will be exported to the configured export destination in Stackdriver. Logs may be exported to BigQuery or Pub/Sub. Note: you cannot enable logging on “goto_next” rules. This field may only be specified when the versioned_expr is set to FIREWALL. Corresponds to the JSON property `enableLogging` @return [Boolean]

header_action[RW]

Optional, additional actions that are performed on headers. Corresponds to the JSON property `headerAction` @return [Google::Apis::ComputeBeta::SecurityPolicyRuleHttpHeaderAction]

kind[RW]
Output only

Type of the resource. Always compute#securityPolicyRule for

security policy rules Corresponds to the JSON property `kind` @return [String]

match[RW]

Represents a match condition that incoming traffic is evaluated against. Exactly one field must be specified. Corresponds to the JSON property `match` @return [Google::Apis::ComputeBeta::SecurityPolicyRuleMatcher]

preview[RW]

If set to true, the specified action is not enforced. Corresponds to the JSON property `preview` @return [Boolean]

preview?[RW]

If set to true, the specified action is not enforced. Corresponds to the JSON property `preview` @return [Boolean]

priority[RW]

An integer indicating the priority of a rule in the list. The priority must be a positive value between 0 and 2147483647. Rules are evaluated from highest to lowest priority where 0 is the highest priority and 2147483647 is the lowest priority. Corresponds to the JSON property `priority` @return [Fixnum]

rate_limit_options[RW]

Must be specified if the action is “rate_based_ban” or “throttle”. Cannot be specified for any other actions. Corresponds to the JSON property `rateLimitOptions` @return [Google::Apis::ComputeBeta::SecurityPolicyRuleRateLimitOptions]

redirect_options[RW]

Parameters defining the redirect action. Cannot be specified for any other actions. Corresponds to the JSON property `redirectOptions` @return [Google::Apis::ComputeBeta::SecurityPolicyRuleRedirectOptions]

rule_number[RW]

Identifier for the rule. This is only unique within the given security policy. This can only be set during rule creation, if rule number is not specified it will be generated by the server. Corresponds to the JSON property `ruleNumber` @return [Fixnum]

rule_tuple_count[RW]
Output Only

Calculation of the complexity of a single firewall security

policy rule. Corresponds to the JSON property `ruleTupleCount` @return [Fixnum]

target_resources[RW]

A list of network resource URLs to which this rule applies. This field allows you to control which network's VMs get this rule. If this field is left blank, all VMs within the organization will receive the rule. This field may only be specified when versioned_expr is set to FIREWALL. Corresponds to the JSON property `targetResources` @return [Array<String>]

target_service_accounts[RW]

A list of service accounts indicating the sets of instances that are applied with this rule. Corresponds to the JSON property `targetServiceAccounts` @return [Array<String>]

Public Class Methods

new(**args) click to toggle source
# File lib/google/apis/compute_beta/classes.rb, line 31351
def initialize(**args)
   update!(**args)
end

Public Instance Methods

update!(**args) click to toggle source

Update properties of this object

# File lib/google/apis/compute_beta/classes.rb, line 31356
def update!(**args)
  @action = args[:action] if args.key?(:action)
  @description = args[:description] if args.key?(:description)
  @direction = args[:direction] if args.key?(:direction)
  @enable_logging = args[:enable_logging] if args.key?(:enable_logging)
  @header_action = args[:header_action] if args.key?(:header_action)
  @kind = args[:kind] if args.key?(:kind)
  @match = args[:match] if args.key?(:match)
  @preview = args[:preview] if args.key?(:preview)
  @priority = args[:priority] if args.key?(:priority)
  @rate_limit_options = args[:rate_limit_options] if args.key?(:rate_limit_options)
  @redirect_options = args[:redirect_options] if args.key?(:redirect_options)
  @rule_number = args[:rule_number] if args.key?(:rule_number)
  @rule_tuple_count = args[:rule_tuple_count] if args.key?(:rule_tuple_count)
  @target_resources = args[:target_resources] if args.key?(:target_resources)
  @target_service_accounts = args[:target_service_accounts] if args.key?(:target_service_accounts)
end