com.pulumi.googlenative.compute.alpha.kotlin.FirewallArgs.kt Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of pulumi-google-native-kotlin Show documentation
Show all versions of pulumi-google-native-kotlin Show documentation
Build cloud applications and infrastructure by combining the safety and reliability of infrastructure as code with the power of the Kotlin programming language.
The newest version!
@file:Suppress("NAME_SHADOWING", "DEPRECATION")
package com.pulumi.googlenative.compute.alpha.kotlin
import com.pulumi.core.Output
import com.pulumi.core.Output.of
import com.pulumi.googlenative.compute.alpha.FirewallArgs.builder
import com.pulumi.googlenative.compute.alpha.kotlin.enums.FirewallDirection
import com.pulumi.googlenative.compute.alpha.kotlin.inputs.FirewallAllowedItemArgs
import com.pulumi.googlenative.compute.alpha.kotlin.inputs.FirewallAllowedItemArgsBuilder
import com.pulumi.googlenative.compute.alpha.kotlin.inputs.FirewallDeniedItemArgs
import com.pulumi.googlenative.compute.alpha.kotlin.inputs.FirewallDeniedItemArgsBuilder
import com.pulumi.googlenative.compute.alpha.kotlin.inputs.FirewallLogConfigArgs
import com.pulumi.googlenative.compute.alpha.kotlin.inputs.FirewallLogConfigArgsBuilder
import com.pulumi.kotlin.ConvertibleToJava
import com.pulumi.kotlin.PulumiTagMarker
import com.pulumi.kotlin.applySuspend
import kotlin.Boolean
import kotlin.Deprecated
import kotlin.Int
import kotlin.String
import kotlin.Suppress
import kotlin.Unit
import kotlin.collections.List
import kotlin.jvm.JvmName
/**
* Creates a firewall rule in the specified project using the data included in the request.
* @property allowed The list of ALLOW rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a permitted connection.
* @property denied The list of DENY rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a denied connection.
* @property description An optional description of this resource. Provide this field when you create the resource.
* @property destinationRanges If destination ranges are specified, the firewall rule applies only to traffic that has destination IP address in these ranges. These ranges must be expressed in CIDR format. Both IPv4 and IPv6 are supported.
* @property direction Direction of traffic to which this firewall applies, either `INGRESS` or `EGRESS`. The default is `INGRESS`. For `EGRESS` traffic, you cannot specify the sourceTags fields.
* @property disabled Denotes whether the firewall rule is disabled. When set to true, the firewall rule is not enforced and the network behaves as if it did not exist. If this is unspecified, the firewall rule will be enabled.
* @property enableLogging Deprecated in favor of enable in LogConfig. This field denotes whether to enable logging for a particular firewall rule. If logging is enabled, logs will be exported t Cloud Logging.
* @property logConfig This field denotes the logging options for a particular firewall rule. If logging is enabled, logs will be exported to Cloud Logging.
* @property name Name of the resource; provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?`. The first character must be a lowercase letter, and all following characters (except for the last character) must be a dash, lowercase letter, or digit. The last character must be a lowercase letter or digit.
* @property network URL of the network resource for this firewall rule. If not specified when creating a firewall rule, the default network is used: global/networks/default If you choose to specify this field, you can specify the network as a full or partial URL. For example, the following are all valid URLs: - https://www.googleapis.com/compute/v1/projects/myproject/global/networks/my-network - projects/myproject/global/networks/my-network - global/networks/default
* @property priority Priority for this rule. This is an integer between `0` and `65535`, both inclusive. The default value is `1000`. Relative priorities determine which rule takes effect if multiple rules apply. Lower values indicate higher priority. For example, a rule with priority `0` has higher precedence than a rule with priority `1`. DENY rules take precedence over ALLOW rules if they have equal priority. Note that VPC networks have implied rules with a priority of `65535`. To avoid conflicts with the implied rules, use a priority number less than `65535`.
* @property project
* @property requestId An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported ( 00000000-0000-0000-0000-000000000000).
* @property sourceRanges If source ranges are specified, the firewall rule applies only to traffic that has a source IP address in these ranges. These ranges must be expressed in CIDR format. One or both of sourceRanges and sourceTags may be set. If both fields are set, the rule applies to traffic that has a source IP address within sourceRanges OR a source IP from a resource with a matching tag listed in the sourceTags field. The connection does not need to match both fields for the rule to apply. Both IPv4 and IPv6 are supported.
* @property sourceServiceAccounts If source service accounts are specified, the firewall rules apply only to traffic originating from an instance with a service account in this list. Source service accounts cannot be used to control traffic to an instance's external IP address because service accounts are associated with an instance, not an IP address. sourceRanges can be set at the same time as sourceServiceAccounts. If both are set, the firewall applies to traffic that has a source IP address within the sourceRanges OR a source IP that belongs to an instance with service account listed in sourceServiceAccount. The connection does not need to match both fields for the firewall to apply. sourceServiceAccounts cannot be used at the same time as sourceTags or targetTags.
* @property sourceTags If source tags are specified, the firewall rule applies only to traffic with source IPs that match the primary network interfaces of VM instances that have the tag and are in the same VPC network. Source tags cannot be used to control traffic to an instance's external IP address, it only applies to traffic between instances in the same virtual network. Because tags are associated with instances, not IP addresses. One or both of sourceRanges and sourceTags may be set. If both fields are set, the firewall applies to traffic that has a source IP address within sourceRanges OR a source IP from a resource with a matching tag listed in the sourceTags field. The connection does not need to match both fields for the firewall to apply.
* @property targetServiceAccounts A list of service accounts indicating sets of instances located in the network that may make network connections as specified in allowed[]. targetServiceAccounts cannot be used at the same time as targetTags or sourceTags. If neither targetServiceAccounts nor targetTags are specified, the firewall rule applies to all instances on the specified network.
* @property targetTags A list of tags that controls which instances the firewall rule applies to. If targetTags are specified, then the firewall rule applies only to instances in the VPC network that have one of those tags. If no targetTags are specified, the firewall rule applies to all instances on the specified network.
*/
public data class FirewallArgs(
public val allowed: Output>? = null,
public val denied: Output>? = null,
public val description: Output? = null,
public val destinationRanges: Output>? = null,
public val direction: Output? = null,
public val disabled: Output? = null,
@Deprecated(
message = """
Deprecated in favor of enable in LogConfig. This field denotes whether to enable logging for a
particular firewall rule. If logging is enabled, logs will be exported t Cloud Logging.
""",
)
public val enableLogging: Output? = null,
public val logConfig: Output? = null,
public val name: Output? = null,
public val network: Output? = null,
public val priority: Output? = null,
public val project: Output? = null,
public val requestId: Output? = null,
public val sourceRanges: Output>? = null,
public val sourceServiceAccounts: Output>? = null,
public val sourceTags: Output>? = null,
public val targetServiceAccounts: Output>? = null,
public val targetTags: Output>? = null,
) : ConvertibleToJava {
override fun toJava(): com.pulumi.googlenative.compute.alpha.FirewallArgs =
com.pulumi.googlenative.compute.alpha.FirewallArgs.builder()
.allowed(
allowed?.applyValue({ args0 ->
args0.map({ args0 ->
args0.let({ args0 ->
args0.toJava()
})
})
}),
)
.denied(denied?.applyValue({ args0 -> args0.map({ args0 -> args0.let({ args0 -> args0.toJava() }) }) }))
.description(description?.applyValue({ args0 -> args0 }))
.destinationRanges(destinationRanges?.applyValue({ args0 -> args0.map({ args0 -> args0 }) }))
.direction(direction?.applyValue({ args0 -> args0.let({ args0 -> args0.toJava() }) }))
.disabled(disabled?.applyValue({ args0 -> args0 }))
.enableLogging(enableLogging?.applyValue({ args0 -> args0 }))
.logConfig(logConfig?.applyValue({ args0 -> args0.let({ args0 -> args0.toJava() }) }))
.name(name?.applyValue({ args0 -> args0 }))
.network(network?.applyValue({ args0 -> args0 }))
.priority(priority?.applyValue({ args0 -> args0 }))
.project(project?.applyValue({ args0 -> args0 }))
.requestId(requestId?.applyValue({ args0 -> args0 }))
.sourceRanges(sourceRanges?.applyValue({ args0 -> args0.map({ args0 -> args0 }) }))
.sourceServiceAccounts(sourceServiceAccounts?.applyValue({ args0 -> args0.map({ args0 -> args0 }) }))
.sourceTags(sourceTags?.applyValue({ args0 -> args0.map({ args0 -> args0 }) }))
.targetServiceAccounts(targetServiceAccounts?.applyValue({ args0 -> args0.map({ args0 -> args0 }) }))
.targetTags(targetTags?.applyValue({ args0 -> args0.map({ args0 -> args0 }) })).build()
}
/**
* Builder for [FirewallArgs].
*/
@PulumiTagMarker
public class FirewallArgsBuilder internal constructor() {
private var allowed: Output>? = null
private var denied: Output>? = null
private var description: Output? = null
private var destinationRanges: Output>? = null
private var direction: Output? = null
private var disabled: Output? = null
private var enableLogging: Output? = null
private var logConfig: Output? = null
private var name: Output? = null
private var network: Output? = null
private var priority: Output? = null
private var project: Output? = null
private var requestId: Output? = null
private var sourceRanges: Output>? = null
private var sourceServiceAccounts: Output>? = null
private var sourceTags: Output>? = null
private var targetServiceAccounts: Output>? = null
private var targetTags: Output>? = null
/**
* @param value The list of ALLOW rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a permitted connection.
*/
@JvmName("nqtfqokubyjhqonn")
public suspend fun allowed(`value`: Output>) {
this.allowed = value
}
@JvmName("rxubdsjlxbjlphfm")
public suspend fun allowed(vararg values: Output) {
this.allowed = Output.all(values.asList())
}
/**
* @param values The list of ALLOW rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a permitted connection.
*/
@JvmName("pmchnpxpbvyoasgk")
public suspend fun allowed(values: List>) {
this.allowed = Output.all(values)
}
/**
* @param value The list of DENY rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a denied connection.
*/
@JvmName("knibxevsejkdxcao")
public suspend fun denied(`value`: Output>) {
this.denied = value
}
@JvmName("yyoxlsnpuntckhwk")
public suspend fun denied(vararg values: Output) {
this.denied = Output.all(values.asList())
}
/**
* @param values The list of DENY rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a denied connection.
*/
@JvmName("sdaaeekijrlwlslc")
public suspend fun denied(values: List>) {
this.denied = Output.all(values)
}
/**
* @param value An optional description of this resource. Provide this field when you create the resource.
*/
@JvmName("nkkjuovtdueroioq")
public suspend fun description(`value`: Output) {
this.description = value
}
/**
* @param value If destination ranges are specified, the firewall rule applies only to traffic that has destination IP address in these ranges. These ranges must be expressed in CIDR format. Both IPv4 and IPv6 are supported.
*/
@JvmName("xqjvkdrufqrxbcge")
public suspend fun destinationRanges(`value`: Output>) {
this.destinationRanges = value
}
@JvmName("ecijalfopyrhbtby")
public suspend fun destinationRanges(vararg values: Output) {
this.destinationRanges = Output.all(values.asList())
}
/**
* @param values If destination ranges are specified, the firewall rule applies only to traffic that has destination IP address in these ranges. These ranges must be expressed in CIDR format. Both IPv4 and IPv6 are supported.
*/
@JvmName("srilergdbmdiwcyg")
public suspend fun destinationRanges(values: List>) {
this.destinationRanges = Output.all(values)
}
/**
* @param value Direction of traffic to which this firewall applies, either `INGRESS` or `EGRESS`. The default is `INGRESS`. For `EGRESS` traffic, you cannot specify the sourceTags fields.
*/
@JvmName("cacsrgnjxruvtsbo")
public suspend fun direction(`value`: Output) {
this.direction = value
}
/**
* @param value Denotes whether the firewall rule is disabled. When set to true, the firewall rule is not enforced and the network behaves as if it did not exist. If this is unspecified, the firewall rule will be enabled.
*/
@JvmName("bkfarfsepcemmlie")
public suspend fun disabled(`value`: Output) {
this.disabled = value
}
/**
* @param value Deprecated in favor of enable in LogConfig. This field denotes whether to enable logging for a particular firewall rule. If logging is enabled, logs will be exported t Cloud Logging.
*/
@Deprecated(
message = """
Deprecated in favor of enable in LogConfig. This field denotes whether to enable logging for a
particular firewall rule. If logging is enabled, logs will be exported t Cloud Logging.
""",
)
@JvmName("pchcwafogpwiocly")
public suspend fun enableLogging(`value`: Output) {
this.enableLogging = value
}
/**
* @param value This field denotes the logging options for a particular firewall rule. If logging is enabled, logs will be exported to Cloud Logging.
*/
@JvmName("qfglmxiuymbjuypx")
public suspend fun logConfig(`value`: Output) {
this.logConfig = value
}
/**
* @param value Name of the resource; provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?`. The first character must be a lowercase letter, and all following characters (except for the last character) must be a dash, lowercase letter, or digit. The last character must be a lowercase letter or digit.
*/
@JvmName("lsmoluhhvlwcomso")
public suspend fun name(`value`: Output) {
this.name = value
}
/**
* @param value URL of the network resource for this firewall rule. If not specified when creating a firewall rule, the default network is used: global/networks/default If you choose to specify this field, you can specify the network as a full or partial URL. For example, the following are all valid URLs: - https://www.googleapis.com/compute/v1/projects/myproject/global/networks/my-network - projects/myproject/global/networks/my-network - global/networks/default
*/
@JvmName("pmpqdgsqcbgakyhm")
public suspend fun network(`value`: Output) {
this.network = value
}
/**
* @param value Priority for this rule. This is an integer between `0` and `65535`, both inclusive. The default value is `1000`. Relative priorities determine which rule takes effect if multiple rules apply. Lower values indicate higher priority. For example, a rule with priority `0` has higher precedence than a rule with priority `1`. DENY rules take precedence over ALLOW rules if they have equal priority. Note that VPC networks have implied rules with a priority of `65535`. To avoid conflicts with the implied rules, use a priority number less than `65535`.
*/
@JvmName("gitcyjnwrkgmiort")
public suspend fun priority(`value`: Output) {
this.priority = value
}
/**
* @param value
*/
@JvmName("tqxlcchnryfoouvg")
public suspend fun project(`value`: Output) {
this.project = value
}
/**
* @param value An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported ( 00000000-0000-0000-0000-000000000000).
*/
@JvmName("hpahfjwyetwdastl")
public suspend fun requestId(`value`: Output) {
this.requestId = value
}
/**
* @param value If source ranges are specified, the firewall rule applies only to traffic that has a source IP address in these ranges. These ranges must be expressed in CIDR format. One or both of sourceRanges and sourceTags may be set. If both fields are set, the rule applies to traffic that has a source IP address within sourceRanges OR a source IP from a resource with a matching tag listed in the sourceTags field. The connection does not need to match both fields for the rule to apply. Both IPv4 and IPv6 are supported.
*/
@JvmName("auqcopfcupbmtytx")
public suspend fun sourceRanges(`value`: Output>) {
this.sourceRanges = value
}
@JvmName("ifgihcvugsnumapi")
public suspend fun sourceRanges(vararg values: Output) {
this.sourceRanges = Output.all(values.asList())
}
/**
* @param values If source ranges are specified, the firewall rule applies only to traffic that has a source IP address in these ranges. These ranges must be expressed in CIDR format. One or both of sourceRanges and sourceTags may be set. If both fields are set, the rule applies to traffic that has a source IP address within sourceRanges OR a source IP from a resource with a matching tag listed in the sourceTags field. The connection does not need to match both fields for the rule to apply. Both IPv4 and IPv6 are supported.
*/
@JvmName("immrhuxhjfgrltfo")
public suspend fun sourceRanges(values: List>) {
this.sourceRanges = Output.all(values)
}
/**
* @param value If source service accounts are specified, the firewall rules apply only to traffic originating from an instance with a service account in this list. Source service accounts cannot be used to control traffic to an instance's external IP address because service accounts are associated with an instance, not an IP address. sourceRanges can be set at the same time as sourceServiceAccounts. If both are set, the firewall applies to traffic that has a source IP address within the sourceRanges OR a source IP that belongs to an instance with service account listed in sourceServiceAccount. The connection does not need to match both fields for the firewall to apply. sourceServiceAccounts cannot be used at the same time as sourceTags or targetTags.
*/
@JvmName("jgbhbghlpfpumixr")
public suspend fun sourceServiceAccounts(`value`: Output>) {
this.sourceServiceAccounts = value
}
@JvmName("mryxoyhdpbjxblji")
public suspend fun sourceServiceAccounts(vararg values: Output) {
this.sourceServiceAccounts = Output.all(values.asList())
}
/**
* @param values If source service accounts are specified, the firewall rules apply only to traffic originating from an instance with a service account in this list. Source service accounts cannot be used to control traffic to an instance's external IP address because service accounts are associated with an instance, not an IP address. sourceRanges can be set at the same time as sourceServiceAccounts. If both are set, the firewall applies to traffic that has a source IP address within the sourceRanges OR a source IP that belongs to an instance with service account listed in sourceServiceAccount. The connection does not need to match both fields for the firewall to apply. sourceServiceAccounts cannot be used at the same time as sourceTags or targetTags.
*/
@JvmName("adjjthodxtvsqaag")
public suspend fun sourceServiceAccounts(values: List>) {
this.sourceServiceAccounts = Output.all(values)
}
/**
* @param value If source tags are specified, the firewall rule applies only to traffic with source IPs that match the primary network interfaces of VM instances that have the tag and are in the same VPC network. Source tags cannot be used to control traffic to an instance's external IP address, it only applies to traffic between instances in the same virtual network. Because tags are associated with instances, not IP addresses. One or both of sourceRanges and sourceTags may be set. If both fields are set, the firewall applies to traffic that has a source IP address within sourceRanges OR a source IP from a resource with a matching tag listed in the sourceTags field. The connection does not need to match both fields for the firewall to apply.
*/
@JvmName("udqciurohexvcblr")
public suspend fun sourceTags(`value`: Output>) {
this.sourceTags = value
}
@JvmName("hsbbjbrswpsjkkaj")
public suspend fun sourceTags(vararg values: Output) {
this.sourceTags = Output.all(values.asList())
}
/**
* @param values If source tags are specified, the firewall rule applies only to traffic with source IPs that match the primary network interfaces of VM instances that have the tag and are in the same VPC network. Source tags cannot be used to control traffic to an instance's external IP address, it only applies to traffic between instances in the same virtual network. Because tags are associated with instances, not IP addresses. One or both of sourceRanges and sourceTags may be set. If both fields are set, the firewall applies to traffic that has a source IP address within sourceRanges OR a source IP from a resource with a matching tag listed in the sourceTags field. The connection does not need to match both fields for the firewall to apply.
*/
@JvmName("uovopnhsvsddpvew")
public suspend fun sourceTags(values: List>) {
this.sourceTags = Output.all(values)
}
/**
* @param value A list of service accounts indicating sets of instances located in the network that may make network connections as specified in allowed[]. targetServiceAccounts cannot be used at the same time as targetTags or sourceTags. If neither targetServiceAccounts nor targetTags are specified, the firewall rule applies to all instances on the specified network.
*/
@JvmName("ccptjejrjnhyvptd")
public suspend fun targetServiceAccounts(`value`: Output>) {
this.targetServiceAccounts = value
}
@JvmName("bljfkyswipbcegfp")
public suspend fun targetServiceAccounts(vararg values: Output) {
this.targetServiceAccounts = Output.all(values.asList())
}
/**
* @param values A list of service accounts indicating sets of instances located in the network that may make network connections as specified in allowed[]. targetServiceAccounts cannot be used at the same time as targetTags or sourceTags. If neither targetServiceAccounts nor targetTags are specified, the firewall rule applies to all instances on the specified network.
*/
@JvmName("kxwmkyshcirwxges")
public suspend fun targetServiceAccounts(values: List>) {
this.targetServiceAccounts = Output.all(values)
}
/**
* @param value A list of tags that controls which instances the firewall rule applies to. If targetTags are specified, then the firewall rule applies only to instances in the VPC network that have one of those tags. If no targetTags are specified, the firewall rule applies to all instances on the specified network.
*/
@JvmName("pwtsembjhtfqkncy")
public suspend fun targetTags(`value`: Output>) {
this.targetTags = value
}
@JvmName("hnqjkogfxamnntgg")
public suspend fun targetTags(vararg values: Output) {
this.targetTags = Output.all(values.asList())
}
/**
* @param values A list of tags that controls which instances the firewall rule applies to. If targetTags are specified, then the firewall rule applies only to instances in the VPC network that have one of those tags. If no targetTags are specified, the firewall rule applies to all instances on the specified network.
*/
@JvmName("acfwaxnvjcqvsrta")
public suspend fun targetTags(values: List>) {
this.targetTags = Output.all(values)
}
/**
* @param value The list of ALLOW rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a permitted connection.
*/
@JvmName("csvnudjlsgrrbckw")
public suspend fun allowed(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.allowed = mapped
}
/**
* @param argument The list of ALLOW rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a permitted connection.
*/
@JvmName("mgcgkysspipxrrlw")
public suspend fun allowed(argument: List Unit>) {
val toBeMapped = argument.toList().map {
FirewallAllowedItemArgsBuilder().applySuspend {
it()
}.build()
}
val mapped = of(toBeMapped)
this.allowed = mapped
}
/**
* @param argument The list of ALLOW rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a permitted connection.
*/
@JvmName("itwdtsibixtmxmhd")
public suspend fun allowed(vararg argument: suspend FirewallAllowedItemArgsBuilder.() -> Unit) {
val toBeMapped = argument.toList().map {
FirewallAllowedItemArgsBuilder().applySuspend {
it()
}.build()
}
val mapped = of(toBeMapped)
this.allowed = mapped
}
/**
* @param argument The list of ALLOW rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a permitted connection.
*/
@JvmName("kbtckvdowvysvdph")
public suspend fun allowed(argument: suspend FirewallAllowedItemArgsBuilder.() -> Unit) {
val toBeMapped = listOf(FirewallAllowedItemArgsBuilder().applySuspend { argument() }.build())
val mapped = of(toBeMapped)
this.allowed = mapped
}
/**
* @param values The list of ALLOW rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a permitted connection.
*/
@JvmName("ivoxtwyngmtgdemh")
public suspend fun allowed(vararg values: FirewallAllowedItemArgs) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.allowed = mapped
}
/**
* @param value The list of DENY rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a denied connection.
*/
@JvmName("swinouuaecifsltt")
public suspend fun denied(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.denied = mapped
}
/**
* @param argument The list of DENY rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a denied connection.
*/
@JvmName("ogxktgvunsxyfyru")
public suspend fun denied(argument: List Unit>) {
val toBeMapped = argument.toList().map {
FirewallDeniedItemArgsBuilder().applySuspend {
it()
}.build()
}
val mapped = of(toBeMapped)
this.denied = mapped
}
/**
* @param argument The list of DENY rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a denied connection.
*/
@JvmName("ilyvwjabfojckyqf")
public suspend fun denied(vararg argument: suspend FirewallDeniedItemArgsBuilder.() -> Unit) {
val toBeMapped = argument.toList().map {
FirewallDeniedItemArgsBuilder().applySuspend {
it()
}.build()
}
val mapped = of(toBeMapped)
this.denied = mapped
}
/**
* @param argument The list of DENY rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a denied connection.
*/
@JvmName("bnjkgwpuwsqynlkn")
public suspend fun denied(argument: suspend FirewallDeniedItemArgsBuilder.() -> Unit) {
val toBeMapped = listOf(FirewallDeniedItemArgsBuilder().applySuspend { argument() }.build())
val mapped = of(toBeMapped)
this.denied = mapped
}
/**
* @param values The list of DENY rules specified by this firewall. Each rule specifies a protocol and port-range tuple that describes a denied connection.
*/
@JvmName("rgffxdxhudquyeoc")
public suspend fun denied(vararg values: FirewallDeniedItemArgs) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.denied = mapped
}
/**
* @param value An optional description of this resource. Provide this field when you create the resource.
*/
@JvmName("tgnajdwfwpaebllt")
public suspend fun description(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.description = mapped
}
/**
* @param value If destination ranges are specified, the firewall rule applies only to traffic that has destination IP address in these ranges. These ranges must be expressed in CIDR format. Both IPv4 and IPv6 are supported.
*/
@JvmName("vdgxttneejouhwkf")
public suspend fun destinationRanges(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.destinationRanges = mapped
}
/**
* @param values If destination ranges are specified, the firewall rule applies only to traffic that has destination IP address in these ranges. These ranges must be expressed in CIDR format. Both IPv4 and IPv6 are supported.
*/
@JvmName("vlqqvsosfutnqeku")
public suspend fun destinationRanges(vararg values: String) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.destinationRanges = mapped
}
/**
* @param value Direction of traffic to which this firewall applies, either `INGRESS` or `EGRESS`. The default is `INGRESS`. For `EGRESS` traffic, you cannot specify the sourceTags fields.
*/
@JvmName("wudlmvfrayvvmeem")
public suspend fun direction(`value`: FirewallDirection?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.direction = mapped
}
/**
* @param value Denotes whether the firewall rule is disabled. When set to true, the firewall rule is not enforced and the network behaves as if it did not exist. If this is unspecified, the firewall rule will be enabled.
*/
@JvmName("hrmhthrdfiddlqbr")
public suspend fun disabled(`value`: Boolean?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.disabled = mapped
}
/**
* @param value Deprecated in favor of enable in LogConfig. This field denotes whether to enable logging for a particular firewall rule. If logging is enabled, logs will be exported t Cloud Logging.
*/
@Deprecated(
message = """
Deprecated in favor of enable in LogConfig. This field denotes whether to enable logging for a
particular firewall rule. If logging is enabled, logs will be exported t Cloud Logging.
""",
)
@JvmName("thcdxaxwoxkvnnym")
public suspend fun enableLogging(`value`: Boolean?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.enableLogging = mapped
}
/**
* @param value This field denotes the logging options for a particular firewall rule. If logging is enabled, logs will be exported to Cloud Logging.
*/
@JvmName("fmnnfbncgujrrcfu")
public suspend fun logConfig(`value`: FirewallLogConfigArgs?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.logConfig = mapped
}
/**
* @param argument This field denotes the logging options for a particular firewall rule. If logging is enabled, logs will be exported to Cloud Logging.
*/
@JvmName("jbetfolmcooluunl")
public suspend fun logConfig(argument: suspend FirewallLogConfigArgsBuilder.() -> Unit) {
val toBeMapped = FirewallLogConfigArgsBuilder().applySuspend { argument() }.build()
val mapped = of(toBeMapped)
this.logConfig = mapped
}
/**
* @param value Name of the resource; provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?`. The first character must be a lowercase letter, and all following characters (except for the last character) must be a dash, lowercase letter, or digit. The last character must be a lowercase letter or digit.
*/
@JvmName("savriesrpachhvjo")
public suspend fun name(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.name = mapped
}
/**
* @param value URL of the network resource for this firewall rule. If not specified when creating a firewall rule, the default network is used: global/networks/default If you choose to specify this field, you can specify the network as a full or partial URL. For example, the following are all valid URLs: - https://www.googleapis.com/compute/v1/projects/myproject/global/networks/my-network - projects/myproject/global/networks/my-network - global/networks/default
*/
@JvmName("ueivxfcjcgkaeild")
public suspend fun network(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.network = mapped
}
/**
* @param value Priority for this rule. This is an integer between `0` and `65535`, both inclusive. The default value is `1000`. Relative priorities determine which rule takes effect if multiple rules apply. Lower values indicate higher priority. For example, a rule with priority `0` has higher precedence than a rule with priority `1`. DENY rules take precedence over ALLOW rules if they have equal priority. Note that VPC networks have implied rules with a priority of `65535`. To avoid conflicts with the implied rules, use a priority number less than `65535`.
*/
@JvmName("dqwvwqkhwbqvjbde")
public suspend fun priority(`value`: Int?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.priority = mapped
}
/**
* @param value
*/
@JvmName("jjjeiuxctviolwse")
public suspend fun project(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.project = mapped
}
/**
* @param value An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported ( 00000000-0000-0000-0000-000000000000).
*/
@JvmName("xxidmidvrfcgkjgc")
public suspend fun requestId(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.requestId = mapped
}
/**
* @param value If source ranges are specified, the firewall rule applies only to traffic that has a source IP address in these ranges. These ranges must be expressed in CIDR format. One or both of sourceRanges and sourceTags may be set. If both fields are set, the rule applies to traffic that has a source IP address within sourceRanges OR a source IP from a resource with a matching tag listed in the sourceTags field. The connection does not need to match both fields for the rule to apply. Both IPv4 and IPv6 are supported.
*/
@JvmName("kasvwxlmsfkwcfjt")
public suspend fun sourceRanges(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.sourceRanges = mapped
}
/**
* @param values If source ranges are specified, the firewall rule applies only to traffic that has a source IP address in these ranges. These ranges must be expressed in CIDR format. One or both of sourceRanges and sourceTags may be set. If both fields are set, the rule applies to traffic that has a source IP address within sourceRanges OR a source IP from a resource with a matching tag listed in the sourceTags field. The connection does not need to match both fields for the rule to apply. Both IPv4 and IPv6 are supported.
*/
@JvmName("efvcosnlxqlnoocn")
public suspend fun sourceRanges(vararg values: String) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.sourceRanges = mapped
}
/**
* @param value If source service accounts are specified, the firewall rules apply only to traffic originating from an instance with a service account in this list. Source service accounts cannot be used to control traffic to an instance's external IP address because service accounts are associated with an instance, not an IP address. sourceRanges can be set at the same time as sourceServiceAccounts. If both are set, the firewall applies to traffic that has a source IP address within the sourceRanges OR a source IP that belongs to an instance with service account listed in sourceServiceAccount. The connection does not need to match both fields for the firewall to apply. sourceServiceAccounts cannot be used at the same time as sourceTags or targetTags.
*/
@JvmName("xhovlbyvjpnyjaon")
public suspend fun sourceServiceAccounts(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.sourceServiceAccounts = mapped
}
/**
* @param values If source service accounts are specified, the firewall rules apply only to traffic originating from an instance with a service account in this list. Source service accounts cannot be used to control traffic to an instance's external IP address because service accounts are associated with an instance, not an IP address. sourceRanges can be set at the same time as sourceServiceAccounts. If both are set, the firewall applies to traffic that has a source IP address within the sourceRanges OR a source IP that belongs to an instance with service account listed in sourceServiceAccount. The connection does not need to match both fields for the firewall to apply. sourceServiceAccounts cannot be used at the same time as sourceTags or targetTags.
*/
@JvmName("ddvwxoqrygylpdfh")
public suspend fun sourceServiceAccounts(vararg values: String) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.sourceServiceAccounts = mapped
}
/**
* @param value If source tags are specified, the firewall rule applies only to traffic with source IPs that match the primary network interfaces of VM instances that have the tag and are in the same VPC network. Source tags cannot be used to control traffic to an instance's external IP address, it only applies to traffic between instances in the same virtual network. Because tags are associated with instances, not IP addresses. One or both of sourceRanges and sourceTags may be set. If both fields are set, the firewall applies to traffic that has a source IP address within sourceRanges OR a source IP from a resource with a matching tag listed in the sourceTags field. The connection does not need to match both fields for the firewall to apply.
*/
@JvmName("ojsfmtrpduaauegq")
public suspend fun sourceTags(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.sourceTags = mapped
}
/**
* @param values If source tags are specified, the firewall rule applies only to traffic with source IPs that match the primary network interfaces of VM instances that have the tag and are in the same VPC network. Source tags cannot be used to control traffic to an instance's external IP address, it only applies to traffic between instances in the same virtual network. Because tags are associated with instances, not IP addresses. One or both of sourceRanges and sourceTags may be set. If both fields are set, the firewall applies to traffic that has a source IP address within sourceRanges OR a source IP from a resource with a matching tag listed in the sourceTags field. The connection does not need to match both fields for the firewall to apply.
*/
@JvmName("rtrscgjgaxqyiqlk")
public suspend fun sourceTags(vararg values: String) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.sourceTags = mapped
}
/**
* @param value A list of service accounts indicating sets of instances located in the network that may make network connections as specified in allowed[]. targetServiceAccounts cannot be used at the same time as targetTags or sourceTags. If neither targetServiceAccounts nor targetTags are specified, the firewall rule applies to all instances on the specified network.
*/
@JvmName("sbpirkcuxrsujadp")
public suspend fun targetServiceAccounts(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.targetServiceAccounts = mapped
}
/**
* @param values A list of service accounts indicating sets of instances located in the network that may make network connections as specified in allowed[]. targetServiceAccounts cannot be used at the same time as targetTags or sourceTags. If neither targetServiceAccounts nor targetTags are specified, the firewall rule applies to all instances on the specified network.
*/
@JvmName("fhcpdlwybwmonncv")
public suspend fun targetServiceAccounts(vararg values: String) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.targetServiceAccounts = mapped
}
/**
* @param value A list of tags that controls which instances the firewall rule applies to. If targetTags are specified, then the firewall rule applies only to instances in the VPC network that have one of those tags. If no targetTags are specified, the firewall rule applies to all instances on the specified network.
*/
@JvmName("ishxcxuvmvdionem")
public suspend fun targetTags(`value`: List?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.targetTags = mapped
}
/**
* @param values A list of tags that controls which instances the firewall rule applies to. If targetTags are specified, then the firewall rule applies only to instances in the VPC network that have one of those tags. If no targetTags are specified, the firewall rule applies to all instances on the specified network.
*/
@JvmName("ircwfwjufqnhymbe")
public suspend fun targetTags(vararg values: String) {
val toBeMapped = values.toList()
val mapped = toBeMapped.let({ args0 -> of(args0) })
this.targetTags = mapped
}
internal fun build(): FirewallArgs = FirewallArgs(
allowed = allowed,
denied = denied,
description = description,
destinationRanges = destinationRanges,
direction = direction,
disabled = disabled,
enableLogging = enableLogging,
logConfig = logConfig,
name = name,
network = network,
priority = priority,
project = project,
requestId = requestId,
sourceRanges = sourceRanges,
sourceServiceAccounts = sourceServiceAccounts,
sourceTags = sourceTags,
targetServiceAccounts = targetServiceAccounts,
targetTags = targetTags,
)
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy