Firewall
Hierarchical firewall policy rules let you create and enforce a consistent firewall policy across your organization. Rules can explicitly allow or deny connections or delegate evaluation to lower level policies. Policies can be created within organizations or folders. This resource should be generally be used with gcp.compute.FirewallPolicyAssociation and gcp.compute.FirewallPolicyRule For more information see the official documentation
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as gcp from "@pulumi/gcp";
const _default = new gcp.compute.FirewallPolicy("default", {
parent: "organizations/12345",
shortName: "my-policy",
description: "Example Resource",
});import pulumi
import pulumi_gcp as gcp
default = gcp.compute.FirewallPolicy("default",
parent="organizations/12345",
short_name="my-policy",
description="Example Resource")using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Gcp = Pulumi.Gcp;
return await Deployment.RunAsync(() =>
{
var @default = new Gcp.Compute.FirewallPolicy("default", new()
{
Parent = "organizations/12345",
ShortName = "my-policy",
Description = "Example Resource",
});
});package main
import (
"github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/compute"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := compute.NewFirewallPolicy(ctx, "default", &compute.FirewallPolicyArgs{
Parent: pulumi.String("organizations/12345"),
ShortName: pulumi.String("my-policy"),
Description: pulumi.String("Example Resource"),
})
if err != nil {
return err
}
return nil
})
}package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.gcp.compute.FirewallPolicy;
import com.pulumi.gcp.compute.FirewallPolicyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var default_ = new FirewallPolicy("default", FirewallPolicyArgs.builder()
.parent("organizations/12345")
.shortName("my-policy")
.description("Example Resource")
.build());
}
}resources:
default:
type: gcp:compute:FirewallPolicy
properties:
parent: organizations/12345
shortName: my-policy
description: Example ResourceImport
FirewallPolicy can be imported using any of these accepted formats:
$ pulumi import gcp:compute/firewallPolicy:FirewallPolicy default locations/global/firewallPolicies/{{name}}$ pulumi import gcp:compute/firewallPolicy:FirewallPolicy default {{name}}Properties
An optional description of this resource. Provide this property when you create the resource.
User-provided name of the Organization firewall policy. The name should be unique in the organization in which the firewall policy is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression a-z? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.