1. Packages
  2. Openstack Provider
  3. API Docs
  4. firewall
  5. RuleV2
OpenStack v5.0.0 published on Friday, Sep 27, 2024 by Pulumi

openstack.firewall.RuleV2

Explore with Pulumi AI

openstack logo
OpenStack v5.0.0 published on Friday, Sep 27, 2024 by Pulumi

    Manages a v2 firewall rule resource within OpenStack.

    Note: Firewall v2 has no support for OVN currently.

    Example Usage

    import * as pulumi from "@pulumi/pulumi";
    import * as openstack from "@pulumi/openstack";
    
    const rule2 = new openstack.firewall.RuleV2("rule_2", {
        name: "firewall_rule",
        description: "drop TELNET traffic",
        action: "deny",
        protocol: "tcp",
        destinationPort: "23",
        enabled: true,
    });
    
    import pulumi
    import pulumi_openstack as openstack
    
    rule2 = openstack.firewall.RuleV2("rule_2",
        name="firewall_rule",
        description="drop TELNET traffic",
        action="deny",
        protocol="tcp",
        destination_port="23",
        enabled=True)
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-openstack/sdk/v5/go/openstack/firewall"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := firewall.NewRuleV2(ctx, "rule_2", &firewall.RuleV2Args{
    			Name:            pulumi.String("firewall_rule"),
    			Description:     pulumi.String("drop TELNET traffic"),
    			Action:          pulumi.String("deny"),
    			Protocol:        pulumi.String("tcp"),
    			DestinationPort: pulumi.String("23"),
    			Enabled:         pulumi.Bool(true),
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using OpenStack = Pulumi.OpenStack;
    
    return await Deployment.RunAsync(() => 
    {
        var rule2 = new OpenStack.Firewall.RuleV2("rule_2", new()
        {
            Name = "firewall_rule",
            Description = "drop TELNET traffic",
            Action = "deny",
            Protocol = "tcp",
            DestinationPort = "23",
            Enabled = true,
        });
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.openstack.firewall.RuleV2;
    import com.pulumi.openstack.firewall.RuleV2Args;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var rule2 = new RuleV2("rule2", RuleV2Args.builder()
                .name("firewall_rule")
                .description("drop TELNET traffic")
                .action("deny")
                .protocol("tcp")
                .destinationPort("23")
                .enabled("true")
                .build());
    
        }
    }
    
    resources:
      rule2:
        type: openstack:firewall:RuleV2
        name: rule_2
        properties:
          name: firewall_rule
          description: drop TELNET traffic
          action: deny
          protocol: tcp
          destinationPort: '23'
          enabled: 'true'
    

    Create RuleV2 Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new RuleV2(name: string, args?: RuleV2Args, opts?: CustomResourceOptions);
    @overload
    def RuleV2(resource_name: str,
               args: Optional[RuleV2Args] = None,
               opts: Optional[ResourceOptions] = None)
    
    @overload
    def RuleV2(resource_name: str,
               opts: Optional[ResourceOptions] = None,
               action: Optional[str] = None,
               description: Optional[str] = None,
               destination_ip_address: Optional[str] = None,
               destination_port: Optional[str] = None,
               enabled: Optional[bool] = None,
               ip_version: Optional[int] = None,
               name: Optional[str] = None,
               project_id: Optional[str] = None,
               protocol: Optional[str] = None,
               region: Optional[str] = None,
               shared: Optional[bool] = None,
               source_ip_address: Optional[str] = None,
               source_port: Optional[str] = None,
               tenant_id: Optional[str] = None)
    func NewRuleV2(ctx *Context, name string, args *RuleV2Args, opts ...ResourceOption) (*RuleV2, error)
    public RuleV2(string name, RuleV2Args? args = null, CustomResourceOptions? opts = null)
    public RuleV2(String name, RuleV2Args args)
    public RuleV2(String name, RuleV2Args args, CustomResourceOptions options)
    
    type: openstack:firewall:RuleV2
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args RuleV2Args
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args RuleV2Args
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args RuleV2Args
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args RuleV2Args
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args RuleV2Args
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var ruleV2Resource = new OpenStack.Firewall.RuleV2("ruleV2Resource", new()
    {
        Action = "string",
        Description = "string",
        DestinationIpAddress = "string",
        DestinationPort = "string",
        Enabled = false,
        IpVersion = 0,
        Name = "string",
        ProjectId = "string",
        Protocol = "string",
        Region = "string",
        Shared = false,
        SourceIpAddress = "string",
        SourcePort = "string",
        TenantId = "string",
    });
    
    example, err := firewall.NewRuleV2(ctx, "ruleV2Resource", &firewall.RuleV2Args{
    	Action:               pulumi.String("string"),
    	Description:          pulumi.String("string"),
    	DestinationIpAddress: pulumi.String("string"),
    	DestinationPort:      pulumi.String("string"),
    	Enabled:              pulumi.Bool(false),
    	IpVersion:            pulumi.Int(0),
    	Name:                 pulumi.String("string"),
    	ProjectId:            pulumi.String("string"),
    	Protocol:             pulumi.String("string"),
    	Region:               pulumi.String("string"),
    	Shared:               pulumi.Bool(false),
    	SourceIpAddress:      pulumi.String("string"),
    	SourcePort:           pulumi.String("string"),
    	TenantId:             pulumi.String("string"),
    })
    
    var ruleV2Resource = new RuleV2("ruleV2Resource", RuleV2Args.builder()
        .action("string")
        .description("string")
        .destinationIpAddress("string")
        .destinationPort("string")
        .enabled(false)
        .ipVersion(0)
        .name("string")
        .projectId("string")
        .protocol("string")
        .region("string")
        .shared(false)
        .sourceIpAddress("string")
        .sourcePort("string")
        .tenantId("string")
        .build());
    
    rule_v2_resource = openstack.firewall.RuleV2("ruleV2Resource",
        action="string",
        description="string",
        destination_ip_address="string",
        destination_port="string",
        enabled=False,
        ip_version=0,
        name="string",
        project_id="string",
        protocol="string",
        region="string",
        shared=False,
        source_ip_address="string",
        source_port="string",
        tenant_id="string")
    
    const ruleV2Resource = new openstack.firewall.RuleV2("ruleV2Resource", {
        action: "string",
        description: "string",
        destinationIpAddress: "string",
        destinationPort: "string",
        enabled: false,
        ipVersion: 0,
        name: "string",
        projectId: "string",
        protocol: "string",
        region: "string",
        shared: false,
        sourceIpAddress: "string",
        sourcePort: "string",
        tenantId: "string",
    });
    
    type: openstack:firewall:RuleV2
    properties:
        action: string
        description: string
        destinationIpAddress: string
        destinationPort: string
        enabled: false
        ipVersion: 0
        name: string
        projectId: string
        protocol: string
        region: string
        shared: false
        sourceIpAddress: string
        sourcePort: string
        tenantId: string
    

    RuleV2 Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The RuleV2 resource accepts the following input properties:

    Action string
    Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
    Description string
    A description for the firewall rule. Changing this updates the description of an existing firewall rule.
    DestinationIpAddress string
    The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
    DestinationPort string
    The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
    Enabled bool
    Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
    IpVersion int
    IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
    Name string
    A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
    ProjectId string
    This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
    Protocol string
    (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
    Region string
    The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
    Shared bool
    Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
    SourceIpAddress string
    The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
    SourcePort string
    The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
    TenantId string
    This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
    Action string
    Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
    Description string
    A description for the firewall rule. Changing this updates the description of an existing firewall rule.
    DestinationIpAddress string
    The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
    DestinationPort string
    The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
    Enabled bool
    Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
    IpVersion int
    IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
    Name string
    A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
    ProjectId string
    This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
    Protocol string
    (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
    Region string
    The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
    Shared bool
    Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
    SourceIpAddress string
    The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
    SourcePort string
    The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
    TenantId string
    This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
    action String
    Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
    description String
    A description for the firewall rule. Changing this updates the description of an existing firewall rule.
    destinationIpAddress String
    The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
    destinationPort String
    The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
    enabled Boolean
    Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
    ipVersion Integer
    IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
    name String
    A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
    projectId String
    This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
    protocol String
    (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
    region String
    The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
    shared Boolean
    Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
    sourceIpAddress String
    The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
    sourcePort String
    The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
    tenantId String
    This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
    action string
    Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
    description string
    A description for the firewall rule. Changing this updates the description of an existing firewall rule.
    destinationIpAddress string
    The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
    destinationPort string
    The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
    enabled boolean
    Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
    ipVersion number
    IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
    name string
    A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
    projectId string
    This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
    protocol string
    (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
    region string
    The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
    shared boolean
    Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
    sourceIpAddress string
    The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
    sourcePort string
    The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
    tenantId string
    This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
    action str
    Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
    description str
    A description for the firewall rule. Changing this updates the description of an existing firewall rule.
    destination_ip_address str
    The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
    destination_port str
    The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
    enabled bool
    Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
    ip_version int
    IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
    name str
    A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
    project_id str
    This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
    protocol str
    (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
    region str
    The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
    shared bool
    Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
    source_ip_address str
    The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
    source_port str
    The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
    tenant_id str
    This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
    action String
    Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
    description String
    A description for the firewall rule. Changing this updates the description of an existing firewall rule.
    destinationIpAddress String
    The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
    destinationPort String
    The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
    enabled Boolean
    Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
    ipVersion Number
    IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
    name String
    A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
    projectId String
    This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
    protocol String
    (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
    region String
    The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
    shared Boolean
    Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
    sourceIpAddress String
    The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
    sourcePort String
    The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
    tenantId String
    This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the RuleV2 resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Id string
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.
    id string
    The provider-assigned unique ID for this managed resource.
    id str
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.

    Look up Existing RuleV2 Resource

    Get an existing RuleV2 resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: RuleV2State, opts?: CustomResourceOptions): RuleV2
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            action: Optional[str] = None,
            description: Optional[str] = None,
            destination_ip_address: Optional[str] = None,
            destination_port: Optional[str] = None,
            enabled: Optional[bool] = None,
            ip_version: Optional[int] = None,
            name: Optional[str] = None,
            project_id: Optional[str] = None,
            protocol: Optional[str] = None,
            region: Optional[str] = None,
            shared: Optional[bool] = None,
            source_ip_address: Optional[str] = None,
            source_port: Optional[str] = None,
            tenant_id: Optional[str] = None) -> RuleV2
    func GetRuleV2(ctx *Context, name string, id IDInput, state *RuleV2State, opts ...ResourceOption) (*RuleV2, error)
    public static RuleV2 Get(string name, Input<string> id, RuleV2State? state, CustomResourceOptions? opts = null)
    public static RuleV2 get(String name, Output<String> id, RuleV2State state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    Action string
    Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
    Description string
    A description for the firewall rule. Changing this updates the description of an existing firewall rule.
    DestinationIpAddress string
    The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
    DestinationPort string
    The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
    Enabled bool
    Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
    IpVersion int
    IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
    Name string
    A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
    ProjectId string
    This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
    Protocol string
    (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
    Region string
    The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
    Shared bool
    Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
    SourceIpAddress string
    The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
    SourcePort string
    The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
    TenantId string
    This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
    Action string
    Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
    Description string
    A description for the firewall rule. Changing this updates the description of an existing firewall rule.
    DestinationIpAddress string
    The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
    DestinationPort string
    The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
    Enabled bool
    Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
    IpVersion int
    IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
    Name string
    A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
    ProjectId string
    This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
    Protocol string
    (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
    Region string
    The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
    Shared bool
    Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
    SourceIpAddress string
    The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
    SourcePort string
    The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
    TenantId string
    This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
    action String
    Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
    description String
    A description for the firewall rule. Changing this updates the description of an existing firewall rule.
    destinationIpAddress String
    The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
    destinationPort String
    The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
    enabled Boolean
    Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
    ipVersion Integer
    IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
    name String
    A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
    projectId String
    This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
    protocol String
    (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
    region String
    The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
    shared Boolean
    Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
    sourceIpAddress String
    The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
    sourcePort String
    The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
    tenantId String
    This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
    action string
    Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
    description string
    A description for the firewall rule. Changing this updates the description of an existing firewall rule.
    destinationIpAddress string
    The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
    destinationPort string
    The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
    enabled boolean
    Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
    ipVersion number
    IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
    name string
    A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
    projectId string
    This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
    protocol string
    (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
    region string
    The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
    shared boolean
    Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
    sourceIpAddress string
    The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
    sourcePort string
    The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
    tenantId string
    This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
    action str
    Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
    description str
    A description for the firewall rule. Changing this updates the description of an existing firewall rule.
    destination_ip_address str
    The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
    destination_port str
    The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
    enabled bool
    Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
    ip_version int
    IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
    name str
    A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
    project_id str
    This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
    protocol str
    (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
    region str
    The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
    shared bool
    Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
    source_ip_address str
    The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
    source_port str
    The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
    tenant_id str
    This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
    action String
    Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
    description String
    A description for the firewall rule. Changing this updates the description of an existing firewall rule.
    destinationIpAddress String
    The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
    destinationPort String
    The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
    enabled Boolean
    Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
    ipVersion Number
    IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
    name String
    A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
    projectId String
    This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
    protocol String
    (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
    region String
    The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
    shared Boolean
    Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
    sourceIpAddress String
    The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
    sourcePort String
    The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
    tenantId String
    This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

    Import

    Firewall Rules can be imported using the id, e.g.

    $ pulumi import openstack:firewall/ruleV2:RuleV2 rule_1 8dbc0c28-e49c-463f-b712-5c5d1bbac327
    

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    OpenStack pulumi/pulumi-openstack
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the openstack Terraform Provider.
    openstack logo
    OpenStack v5.0.0 published on Friday, Sep 27, 2024 by Pulumi