Firewall
Hierarchical firewall policy rules let you create and enforce a consistent firewall policy across your organization. Rules can explicitly allow or deny connections or delegate evaluation to lower level policies. Policies can be created within organizations or folders. This resource should be generally be used with gcp.compute.FirewallPolicyAssociation and gcp.compute.FirewallPolicyRule For more information see the official documentation To get more information about FirewallPolicy, see:
Example Usage
Firewall Policy
import * as pulumi from "@pulumi/pulumi";
import * as gcp from "@pulumi/gcp";
const _default = new gcp.compute.FirewallPolicy("default", {
parent: "organizations/123456789",
shortName: "my-policy",
description: "Example Resource",
});import pulumi
import pulumi_gcp as gcp
default = gcp.compute.FirewallPolicy("default",
parent="organizations/123456789",
short_name="my-policy",
description="Example Resource")using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Gcp = Pulumi.Gcp;
return await Deployment.RunAsync(() =>
{
var @default = new Gcp.Compute.FirewallPolicy("default", new()
{
Parent = "organizations/123456789",
ShortName = "my-policy",
Description = "Example Resource",
});
});package main
import (
"github.com/pulumi/pulumi-gcp/sdk/v8/go/gcp/compute"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := compute.NewFirewallPolicy(ctx, "default", &compute.FirewallPolicyArgs{
Parent: pulumi.String("organizations/123456789"),
ShortName: pulumi.String("my-policy"),
Description: pulumi.String("Example Resource"),
})
if err != nil {
return err
}
return nil
})
}package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.gcp.compute.FirewallPolicy;
import com.pulumi.gcp.compute.FirewallPolicyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var default_ = new FirewallPolicy("default", FirewallPolicyArgs.builder()
.parent("organizations/123456789")
.shortName("my-policy")
.description("Example Resource")
.build());
}
}resources:
default:
type: gcp:compute:FirewallPolicy
properties:
parent: organizations/123456789
shortName: my-policy
description: Example ResourceImport
FirewallPolicy can be imported using any of these accepted formats:
locations/global/firewallPolicies/{{name}}{{name}}When using thepulumi importcommand, FirewallPolicy can be imported using one of the formats above. For example:
$ pulumi import gcp:compute/firewallPolicy:FirewallPolicy default locations/global/firewallPolicies/{{name}}$ pulumi import gcp:compute/firewallPolicy:FirewallPolicy default {{name}}Properties
An optional description of this resource. Provide this property when you create the resource.
User-provided name of the Organization firewall policy. The name should be unique in the organization in which the firewall policy is created. This field is not applicable to network firewall policies. This name must be set on creation and cannot be changed. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression a-z? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.