openstack.firewall.RuleV2
Explore with Pulumi AI
Manages a v2 firewall rule resource within OpenStack.
Note: Firewall v2 has no support for OVN currently.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as openstack from "@pulumi/openstack";
const rule2 = new openstack.firewall.RuleV2("rule_2", {
name: "firewall_rule",
description: "drop TELNET traffic",
action: "deny",
protocol: "tcp",
destinationPort: "23",
enabled: true,
});
import pulumi
import pulumi_openstack as openstack
rule2 = openstack.firewall.RuleV2("rule_2",
name="firewall_rule",
description="drop TELNET traffic",
action="deny",
protocol="tcp",
destination_port="23",
enabled=True)
package main
import (
"github.com/pulumi/pulumi-openstack/sdk/v5/go/openstack/firewall"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := firewall.NewRuleV2(ctx, "rule_2", &firewall.RuleV2Args{
Name: pulumi.String("firewall_rule"),
Description: pulumi.String("drop TELNET traffic"),
Action: pulumi.String("deny"),
Protocol: pulumi.String("tcp"),
DestinationPort: pulumi.String("23"),
Enabled: pulumi.Bool(true),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using OpenStack = Pulumi.OpenStack;
return await Deployment.RunAsync(() =>
{
var rule2 = new OpenStack.Firewall.RuleV2("rule_2", new()
{
Name = "firewall_rule",
Description = "drop TELNET traffic",
Action = "deny",
Protocol = "tcp",
DestinationPort = "23",
Enabled = true,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.openstack.firewall.RuleV2;
import com.pulumi.openstack.firewall.RuleV2Args;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var rule2 = new RuleV2("rule2", RuleV2Args.builder()
.name("firewall_rule")
.description("drop TELNET traffic")
.action("deny")
.protocol("tcp")
.destinationPort("23")
.enabled("true")
.build());
}
}
resources:
rule2:
type: openstack:firewall:RuleV2
name: rule_2
properties:
name: firewall_rule
description: drop TELNET traffic
action: deny
protocol: tcp
destinationPort: '23'
enabled: 'true'
Create RuleV2 Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new RuleV2(name: string, args?: RuleV2Args, opts?: CustomResourceOptions);
@overload
def RuleV2(resource_name: str,
args: Optional[RuleV2Args] = None,
opts: Optional[ResourceOptions] = None)
@overload
def RuleV2(resource_name: str,
opts: Optional[ResourceOptions] = None,
action: Optional[str] = None,
description: Optional[str] = None,
destination_ip_address: Optional[str] = None,
destination_port: Optional[str] = None,
enabled: Optional[bool] = None,
ip_version: Optional[int] = None,
name: Optional[str] = None,
project_id: Optional[str] = None,
protocol: Optional[str] = None,
region: Optional[str] = None,
shared: Optional[bool] = None,
source_ip_address: Optional[str] = None,
source_port: Optional[str] = None,
tenant_id: Optional[str] = None)
func NewRuleV2(ctx *Context, name string, args *RuleV2Args, opts ...ResourceOption) (*RuleV2, error)
public RuleV2(string name, RuleV2Args? args = null, CustomResourceOptions? opts = null)
public RuleV2(String name, RuleV2Args args)
public RuleV2(String name, RuleV2Args args, CustomResourceOptions options)
type: openstack:firewall:RuleV2
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args RuleV2Args
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args RuleV2Args
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args RuleV2Args
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args RuleV2Args
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args RuleV2Args
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var ruleV2Resource = new OpenStack.Firewall.RuleV2("ruleV2Resource", new()
{
Action = "string",
Description = "string",
DestinationIpAddress = "string",
DestinationPort = "string",
Enabled = false,
IpVersion = 0,
Name = "string",
ProjectId = "string",
Protocol = "string",
Region = "string",
Shared = false,
SourceIpAddress = "string",
SourcePort = "string",
TenantId = "string",
});
example, err := firewall.NewRuleV2(ctx, "ruleV2Resource", &firewall.RuleV2Args{
Action: pulumi.String("string"),
Description: pulumi.String("string"),
DestinationIpAddress: pulumi.String("string"),
DestinationPort: pulumi.String("string"),
Enabled: pulumi.Bool(false),
IpVersion: pulumi.Int(0),
Name: pulumi.String("string"),
ProjectId: pulumi.String("string"),
Protocol: pulumi.String("string"),
Region: pulumi.String("string"),
Shared: pulumi.Bool(false),
SourceIpAddress: pulumi.String("string"),
SourcePort: pulumi.String("string"),
TenantId: pulumi.String("string"),
})
var ruleV2Resource = new RuleV2("ruleV2Resource", RuleV2Args.builder()
.action("string")
.description("string")
.destinationIpAddress("string")
.destinationPort("string")
.enabled(false)
.ipVersion(0)
.name("string")
.projectId("string")
.protocol("string")
.region("string")
.shared(false)
.sourceIpAddress("string")
.sourcePort("string")
.tenantId("string")
.build());
rule_v2_resource = openstack.firewall.RuleV2("ruleV2Resource",
action="string",
description="string",
destination_ip_address="string",
destination_port="string",
enabled=False,
ip_version=0,
name="string",
project_id="string",
protocol="string",
region="string",
shared=False,
source_ip_address="string",
source_port="string",
tenant_id="string")
const ruleV2Resource = new openstack.firewall.RuleV2("ruleV2Resource", {
action: "string",
description: "string",
destinationIpAddress: "string",
destinationPort: "string",
enabled: false,
ipVersion: 0,
name: "string",
projectId: "string",
protocol: "string",
region: "string",
shared: false,
sourceIpAddress: "string",
sourcePort: "string",
tenantId: "string",
});
type: openstack:firewall:RuleV2
properties:
action: string
description: string
destinationIpAddress: string
destinationPort: string
enabled: false
ipVersion: 0
name: string
projectId: string
protocol: string
region: string
shared: false
sourceIpAddress: string
sourcePort: string
tenantId: string
RuleV2 Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The RuleV2 resource accepts the following input properties:
- Action string
- Action to be taken (must be "allow", "deny" or "reject")
when the firewall rule matches. Changing this updates the
action
of an existing firewall rule. Default isdeny
. - Description string
- A description for the firewall rule. Changing this
updates the
description
of an existing firewall rule. - Destination
Ip stringAddress - The destination IP address on which the
firewall rule operates. Changing this updates the
destination_ip_address
of an existing firewall rule. - Destination
Port string - The destination port on which the firewall
rule operates. Changing this updates the
destination_port
of an existing firewall rule. Require notany
or empty protocol. - Enabled bool
- Enabled status for the firewall rule (must be "true"
or "false" if provided - defaults to "true"). Changing this updates the
enabled
status of an existing firewall rule. - Ip
Version int - IP version, either 4 or 6. Changing this
updates the
ip_version
of an existing firewall rule. Default is4
. - Name string
- A unique name for the firewall rule. Changing this
updates the
name
of an existing firewall rule. - Project
Id string - This argument conflicts and is interchangeable
with
tenant_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule. - Protocol string
- (Optional; Required if
source_port
ordestination_port
is not empty) The protocol type on which the firewall rule operates. Valid values are:tcp
,udp
,icmp
, andany
. Changing this updates theprotocol
of an existing firewall rule. Default isany
. - Region string
- The region in which to obtain the v2 networking client.
A networking client is needed to create a firewall rule. If omitted, the
region
argument of the provider is used. Changing this creates a new firewall rule. - bool
- Sharing status of the firewall rule (must be "true"
or "false" if provided). If this is "true" the policy is visible to, and
can be used in, firewalls in other tenants. Changing this updates the
shared
status of an existing firewall policy. On - Source
Ip stringAddress - The source IP address on which the firewall
rule operates. Changing this updates the
source_ip_address
of an existing firewall rule. - Source
Port string - The source port on which the firewall
rule operates. Changing this updates the
source_port
of an existing firewall rule. Require notany
or empty protocol. - Tenant
Id string - This argument conflicts and is interchangeable
with
project_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
- Action string
- Action to be taken (must be "allow", "deny" or "reject")
when the firewall rule matches. Changing this updates the
action
of an existing firewall rule. Default isdeny
. - Description string
- A description for the firewall rule. Changing this
updates the
description
of an existing firewall rule. - Destination
Ip stringAddress - The destination IP address on which the
firewall rule operates. Changing this updates the
destination_ip_address
of an existing firewall rule. - Destination
Port string - The destination port on which the firewall
rule operates. Changing this updates the
destination_port
of an existing firewall rule. Require notany
or empty protocol. - Enabled bool
- Enabled status for the firewall rule (must be "true"
or "false" if provided - defaults to "true"). Changing this updates the
enabled
status of an existing firewall rule. - Ip
Version int - IP version, either 4 or 6. Changing this
updates the
ip_version
of an existing firewall rule. Default is4
. - Name string
- A unique name for the firewall rule. Changing this
updates the
name
of an existing firewall rule. - Project
Id string - This argument conflicts and is interchangeable
with
tenant_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule. - Protocol string
- (Optional; Required if
source_port
ordestination_port
is not empty) The protocol type on which the firewall rule operates. Valid values are:tcp
,udp
,icmp
, andany
. Changing this updates theprotocol
of an existing firewall rule. Default isany
. - Region string
- The region in which to obtain the v2 networking client.
A networking client is needed to create a firewall rule. If omitted, the
region
argument of the provider is used. Changing this creates a new firewall rule. - bool
- Sharing status of the firewall rule (must be "true"
or "false" if provided). If this is "true" the policy is visible to, and
can be used in, firewalls in other tenants. Changing this updates the
shared
status of an existing firewall policy. On - Source
Ip stringAddress - The source IP address on which the firewall
rule operates. Changing this updates the
source_ip_address
of an existing firewall rule. - Source
Port string - The source port on which the firewall
rule operates. Changing this updates the
source_port
of an existing firewall rule. Require notany
or empty protocol. - Tenant
Id string - This argument conflicts and is interchangeable
with
project_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
- action String
- Action to be taken (must be "allow", "deny" or "reject")
when the firewall rule matches. Changing this updates the
action
of an existing firewall rule. Default isdeny
. - description String
- A description for the firewall rule. Changing this
updates the
description
of an existing firewall rule. - destination
Ip StringAddress - The destination IP address on which the
firewall rule operates. Changing this updates the
destination_ip_address
of an existing firewall rule. - destination
Port String - The destination port on which the firewall
rule operates. Changing this updates the
destination_port
of an existing firewall rule. Require notany
or empty protocol. - enabled Boolean
- Enabled status for the firewall rule (must be "true"
or "false" if provided - defaults to "true"). Changing this updates the
enabled
status of an existing firewall rule. - ip
Version Integer - IP version, either 4 or 6. Changing this
updates the
ip_version
of an existing firewall rule. Default is4
. - name String
- A unique name for the firewall rule. Changing this
updates the
name
of an existing firewall rule. - project
Id String - This argument conflicts and is interchangeable
with
tenant_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule. - protocol String
- (Optional; Required if
source_port
ordestination_port
is not empty) The protocol type on which the firewall rule operates. Valid values are:tcp
,udp
,icmp
, andany
. Changing this updates theprotocol
of an existing firewall rule. Default isany
. - region String
- The region in which to obtain the v2 networking client.
A networking client is needed to create a firewall rule. If omitted, the
region
argument of the provider is used. Changing this creates a new firewall rule. - Boolean
- Sharing status of the firewall rule (must be "true"
or "false" if provided). If this is "true" the policy is visible to, and
can be used in, firewalls in other tenants. Changing this updates the
shared
status of an existing firewall policy. On - source
Ip StringAddress - The source IP address on which the firewall
rule operates. Changing this updates the
source_ip_address
of an existing firewall rule. - source
Port String - The source port on which the firewall
rule operates. Changing this updates the
source_port
of an existing firewall rule. Require notany
or empty protocol. - tenant
Id String - This argument conflicts and is interchangeable
with
project_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
- action string
- Action to be taken (must be "allow", "deny" or "reject")
when the firewall rule matches. Changing this updates the
action
of an existing firewall rule. Default isdeny
. - description string
- A description for the firewall rule. Changing this
updates the
description
of an existing firewall rule. - destination
Ip stringAddress - The destination IP address on which the
firewall rule operates. Changing this updates the
destination_ip_address
of an existing firewall rule. - destination
Port string - The destination port on which the firewall
rule operates. Changing this updates the
destination_port
of an existing firewall rule. Require notany
or empty protocol. - enabled boolean
- Enabled status for the firewall rule (must be "true"
or "false" if provided - defaults to "true"). Changing this updates the
enabled
status of an existing firewall rule. - ip
Version number - IP version, either 4 or 6. Changing this
updates the
ip_version
of an existing firewall rule. Default is4
. - name string
- A unique name for the firewall rule. Changing this
updates the
name
of an existing firewall rule. - project
Id string - This argument conflicts and is interchangeable
with
tenant_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule. - protocol string
- (Optional; Required if
source_port
ordestination_port
is not empty) The protocol type on which the firewall rule operates. Valid values are:tcp
,udp
,icmp
, andany
. Changing this updates theprotocol
of an existing firewall rule. Default isany
. - region string
- The region in which to obtain the v2 networking client.
A networking client is needed to create a firewall rule. If omitted, the
region
argument of the provider is used. Changing this creates a new firewall rule. - boolean
- Sharing status of the firewall rule (must be "true"
or "false" if provided). If this is "true" the policy is visible to, and
can be used in, firewalls in other tenants. Changing this updates the
shared
status of an existing firewall policy. On - source
Ip stringAddress - The source IP address on which the firewall
rule operates. Changing this updates the
source_ip_address
of an existing firewall rule. - source
Port string - The source port on which the firewall
rule operates. Changing this updates the
source_port
of an existing firewall rule. Require notany
or empty protocol. - tenant
Id string - This argument conflicts and is interchangeable
with
project_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
- action str
- Action to be taken (must be "allow", "deny" or "reject")
when the firewall rule matches. Changing this updates the
action
of an existing firewall rule. Default isdeny
. - description str
- A description for the firewall rule. Changing this
updates the
description
of an existing firewall rule. - destination_
ip_ straddress - The destination IP address on which the
firewall rule operates. Changing this updates the
destination_ip_address
of an existing firewall rule. - destination_
port str - The destination port on which the firewall
rule operates. Changing this updates the
destination_port
of an existing firewall rule. Require notany
or empty protocol. - enabled bool
- Enabled status for the firewall rule (must be "true"
or "false" if provided - defaults to "true"). Changing this updates the
enabled
status of an existing firewall rule. - ip_
version int - IP version, either 4 or 6. Changing this
updates the
ip_version
of an existing firewall rule. Default is4
. - name str
- A unique name for the firewall rule. Changing this
updates the
name
of an existing firewall rule. - project_
id str - This argument conflicts and is interchangeable
with
tenant_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule. - protocol str
- (Optional; Required if
source_port
ordestination_port
is not empty) The protocol type on which the firewall rule operates. Valid values are:tcp
,udp
,icmp
, andany
. Changing this updates theprotocol
of an existing firewall rule. Default isany
. - region str
- The region in which to obtain the v2 networking client.
A networking client is needed to create a firewall rule. If omitted, the
region
argument of the provider is used. Changing this creates a new firewall rule. - bool
- Sharing status of the firewall rule (must be "true"
or "false" if provided). If this is "true" the policy is visible to, and
can be used in, firewalls in other tenants. Changing this updates the
shared
status of an existing firewall policy. On - source_
ip_ straddress - The source IP address on which the firewall
rule operates. Changing this updates the
source_ip_address
of an existing firewall rule. - source_
port str - The source port on which the firewall
rule operates. Changing this updates the
source_port
of an existing firewall rule. Require notany
or empty protocol. - tenant_
id str - This argument conflicts and is interchangeable
with
project_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
- action String
- Action to be taken (must be "allow", "deny" or "reject")
when the firewall rule matches. Changing this updates the
action
of an existing firewall rule. Default isdeny
. - description String
- A description for the firewall rule. Changing this
updates the
description
of an existing firewall rule. - destination
Ip StringAddress - The destination IP address on which the
firewall rule operates. Changing this updates the
destination_ip_address
of an existing firewall rule. - destination
Port String - The destination port on which the firewall
rule operates. Changing this updates the
destination_port
of an existing firewall rule. Require notany
or empty protocol. - enabled Boolean
- Enabled status for the firewall rule (must be "true"
or "false" if provided - defaults to "true"). Changing this updates the
enabled
status of an existing firewall rule. - ip
Version Number - IP version, either 4 or 6. Changing this
updates the
ip_version
of an existing firewall rule. Default is4
. - name String
- A unique name for the firewall rule. Changing this
updates the
name
of an existing firewall rule. - project
Id String - This argument conflicts and is interchangeable
with
tenant_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule. - protocol String
- (Optional; Required if
source_port
ordestination_port
is not empty) The protocol type on which the firewall rule operates. Valid values are:tcp
,udp
,icmp
, andany
. Changing this updates theprotocol
of an existing firewall rule. Default isany
. - region String
- The region in which to obtain the v2 networking client.
A networking client is needed to create a firewall rule. If omitted, the
region
argument of the provider is used. Changing this creates a new firewall rule. - Boolean
- Sharing status of the firewall rule (must be "true"
or "false" if provided). If this is "true" the policy is visible to, and
can be used in, firewalls in other tenants. Changing this updates the
shared
status of an existing firewall policy. On - source
Ip StringAddress - The source IP address on which the firewall
rule operates. Changing this updates the
source_ip_address
of an existing firewall rule. - source
Port String - The source port on which the firewall
rule operates. Changing this updates the
source_port
of an existing firewall rule. Require notany
or empty protocol. - tenant
Id String - This argument conflicts and is interchangeable
with
project_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
Outputs
All input properties are implicitly available as output properties. Additionally, the RuleV2 resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing RuleV2 Resource
Get an existing RuleV2 resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: RuleV2State, opts?: CustomResourceOptions): RuleV2
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
action: Optional[str] = None,
description: Optional[str] = None,
destination_ip_address: Optional[str] = None,
destination_port: Optional[str] = None,
enabled: Optional[bool] = None,
ip_version: Optional[int] = None,
name: Optional[str] = None,
project_id: Optional[str] = None,
protocol: Optional[str] = None,
region: Optional[str] = None,
shared: Optional[bool] = None,
source_ip_address: Optional[str] = None,
source_port: Optional[str] = None,
tenant_id: Optional[str] = None) -> RuleV2
func GetRuleV2(ctx *Context, name string, id IDInput, state *RuleV2State, opts ...ResourceOption) (*RuleV2, error)
public static RuleV2 Get(string name, Input<string> id, RuleV2State? state, CustomResourceOptions? opts = null)
public static RuleV2 get(String name, Output<String> id, RuleV2State state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Action string
- Action to be taken (must be "allow", "deny" or "reject")
when the firewall rule matches. Changing this updates the
action
of an existing firewall rule. Default isdeny
. - Description string
- A description for the firewall rule. Changing this
updates the
description
of an existing firewall rule. - Destination
Ip stringAddress - The destination IP address on which the
firewall rule operates. Changing this updates the
destination_ip_address
of an existing firewall rule. - Destination
Port string - The destination port on which the firewall
rule operates. Changing this updates the
destination_port
of an existing firewall rule. Require notany
or empty protocol. - Enabled bool
- Enabled status for the firewall rule (must be "true"
or "false" if provided - defaults to "true"). Changing this updates the
enabled
status of an existing firewall rule. - Ip
Version int - IP version, either 4 or 6. Changing this
updates the
ip_version
of an existing firewall rule. Default is4
. - Name string
- A unique name for the firewall rule. Changing this
updates the
name
of an existing firewall rule. - Project
Id string - This argument conflicts and is interchangeable
with
tenant_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule. - Protocol string
- (Optional; Required if
source_port
ordestination_port
is not empty) The protocol type on which the firewall rule operates. Valid values are:tcp
,udp
,icmp
, andany
. Changing this updates theprotocol
of an existing firewall rule. Default isany
. - Region string
- The region in which to obtain the v2 networking client.
A networking client is needed to create a firewall rule. If omitted, the
region
argument of the provider is used. Changing this creates a new firewall rule. - bool
- Sharing status of the firewall rule (must be "true"
or "false" if provided). If this is "true" the policy is visible to, and
can be used in, firewalls in other tenants. Changing this updates the
shared
status of an existing firewall policy. On - Source
Ip stringAddress - The source IP address on which the firewall
rule operates. Changing this updates the
source_ip_address
of an existing firewall rule. - Source
Port string - The source port on which the firewall
rule operates. Changing this updates the
source_port
of an existing firewall rule. Require notany
or empty protocol. - Tenant
Id string - This argument conflicts and is interchangeable
with
project_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
- Action string
- Action to be taken (must be "allow", "deny" or "reject")
when the firewall rule matches. Changing this updates the
action
of an existing firewall rule. Default isdeny
. - Description string
- A description for the firewall rule. Changing this
updates the
description
of an existing firewall rule. - Destination
Ip stringAddress - The destination IP address on which the
firewall rule operates. Changing this updates the
destination_ip_address
of an existing firewall rule. - Destination
Port string - The destination port on which the firewall
rule operates. Changing this updates the
destination_port
of an existing firewall rule. Require notany
or empty protocol. - Enabled bool
- Enabled status for the firewall rule (must be "true"
or "false" if provided - defaults to "true"). Changing this updates the
enabled
status of an existing firewall rule. - Ip
Version int - IP version, either 4 or 6. Changing this
updates the
ip_version
of an existing firewall rule. Default is4
. - Name string
- A unique name for the firewall rule. Changing this
updates the
name
of an existing firewall rule. - Project
Id string - This argument conflicts and is interchangeable
with
tenant_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule. - Protocol string
- (Optional; Required if
source_port
ordestination_port
is not empty) The protocol type on which the firewall rule operates. Valid values are:tcp
,udp
,icmp
, andany
. Changing this updates theprotocol
of an existing firewall rule. Default isany
. - Region string
- The region in which to obtain the v2 networking client.
A networking client is needed to create a firewall rule. If omitted, the
region
argument of the provider is used. Changing this creates a new firewall rule. - bool
- Sharing status of the firewall rule (must be "true"
or "false" if provided). If this is "true" the policy is visible to, and
can be used in, firewalls in other tenants. Changing this updates the
shared
status of an existing firewall policy. On - Source
Ip stringAddress - The source IP address on which the firewall
rule operates. Changing this updates the
source_ip_address
of an existing firewall rule. - Source
Port string - The source port on which the firewall
rule operates. Changing this updates the
source_port
of an existing firewall rule. Require notany
or empty protocol. - Tenant
Id string - This argument conflicts and is interchangeable
with
project_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
- action String
- Action to be taken (must be "allow", "deny" or "reject")
when the firewall rule matches. Changing this updates the
action
of an existing firewall rule. Default isdeny
. - description String
- A description for the firewall rule. Changing this
updates the
description
of an existing firewall rule. - destination
Ip StringAddress - The destination IP address on which the
firewall rule operates. Changing this updates the
destination_ip_address
of an existing firewall rule. - destination
Port String - The destination port on which the firewall
rule operates. Changing this updates the
destination_port
of an existing firewall rule. Require notany
or empty protocol. - enabled Boolean
- Enabled status for the firewall rule (must be "true"
or "false" if provided - defaults to "true"). Changing this updates the
enabled
status of an existing firewall rule. - ip
Version Integer - IP version, either 4 or 6. Changing this
updates the
ip_version
of an existing firewall rule. Default is4
. - name String
- A unique name for the firewall rule. Changing this
updates the
name
of an existing firewall rule. - project
Id String - This argument conflicts and is interchangeable
with
tenant_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule. - protocol String
- (Optional; Required if
source_port
ordestination_port
is not empty) The protocol type on which the firewall rule operates. Valid values are:tcp
,udp
,icmp
, andany
. Changing this updates theprotocol
of an existing firewall rule. Default isany
. - region String
- The region in which to obtain the v2 networking client.
A networking client is needed to create a firewall rule. If omitted, the
region
argument of the provider is used. Changing this creates a new firewall rule. - Boolean
- Sharing status of the firewall rule (must be "true"
or "false" if provided). If this is "true" the policy is visible to, and
can be used in, firewalls in other tenants. Changing this updates the
shared
status of an existing firewall policy. On - source
Ip StringAddress - The source IP address on which the firewall
rule operates. Changing this updates the
source_ip_address
of an existing firewall rule. - source
Port String - The source port on which the firewall
rule operates. Changing this updates the
source_port
of an existing firewall rule. Require notany
or empty protocol. - tenant
Id String - This argument conflicts and is interchangeable
with
project_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
- action string
- Action to be taken (must be "allow", "deny" or "reject")
when the firewall rule matches. Changing this updates the
action
of an existing firewall rule. Default isdeny
. - description string
- A description for the firewall rule. Changing this
updates the
description
of an existing firewall rule. - destination
Ip stringAddress - The destination IP address on which the
firewall rule operates. Changing this updates the
destination_ip_address
of an existing firewall rule. - destination
Port string - The destination port on which the firewall
rule operates. Changing this updates the
destination_port
of an existing firewall rule. Require notany
or empty protocol. - enabled boolean
- Enabled status for the firewall rule (must be "true"
or "false" if provided - defaults to "true"). Changing this updates the
enabled
status of an existing firewall rule. - ip
Version number - IP version, either 4 or 6. Changing this
updates the
ip_version
of an existing firewall rule. Default is4
. - name string
- A unique name for the firewall rule. Changing this
updates the
name
of an existing firewall rule. - project
Id string - This argument conflicts and is interchangeable
with
tenant_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule. - protocol string
- (Optional; Required if
source_port
ordestination_port
is not empty) The protocol type on which the firewall rule operates. Valid values are:tcp
,udp
,icmp
, andany
. Changing this updates theprotocol
of an existing firewall rule. Default isany
. - region string
- The region in which to obtain the v2 networking client.
A networking client is needed to create a firewall rule. If omitted, the
region
argument of the provider is used. Changing this creates a new firewall rule. - boolean
- Sharing status of the firewall rule (must be "true"
or "false" if provided). If this is "true" the policy is visible to, and
can be used in, firewalls in other tenants. Changing this updates the
shared
status of an existing firewall policy. On - source
Ip stringAddress - The source IP address on which the firewall
rule operates. Changing this updates the
source_ip_address
of an existing firewall rule. - source
Port string - The source port on which the firewall
rule operates. Changing this updates the
source_port
of an existing firewall rule. Require notany
or empty protocol. - tenant
Id string - This argument conflicts and is interchangeable
with
project_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
- action str
- Action to be taken (must be "allow", "deny" or "reject")
when the firewall rule matches. Changing this updates the
action
of an existing firewall rule. Default isdeny
. - description str
- A description for the firewall rule. Changing this
updates the
description
of an existing firewall rule. - destination_
ip_ straddress - The destination IP address on which the
firewall rule operates. Changing this updates the
destination_ip_address
of an existing firewall rule. - destination_
port str - The destination port on which the firewall
rule operates. Changing this updates the
destination_port
of an existing firewall rule. Require notany
or empty protocol. - enabled bool
- Enabled status for the firewall rule (must be "true"
or "false" if provided - defaults to "true"). Changing this updates the
enabled
status of an existing firewall rule. - ip_
version int - IP version, either 4 or 6. Changing this
updates the
ip_version
of an existing firewall rule. Default is4
. - name str
- A unique name for the firewall rule. Changing this
updates the
name
of an existing firewall rule. - project_
id str - This argument conflicts and is interchangeable
with
tenant_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule. - protocol str
- (Optional; Required if
source_port
ordestination_port
is not empty) The protocol type on which the firewall rule operates. Valid values are:tcp
,udp
,icmp
, andany
. Changing this updates theprotocol
of an existing firewall rule. Default isany
. - region str
- The region in which to obtain the v2 networking client.
A networking client is needed to create a firewall rule. If omitted, the
region
argument of the provider is used. Changing this creates a new firewall rule. - bool
- Sharing status of the firewall rule (must be "true"
or "false" if provided). If this is "true" the policy is visible to, and
can be used in, firewalls in other tenants. Changing this updates the
shared
status of an existing firewall policy. On - source_
ip_ straddress - The source IP address on which the firewall
rule operates. Changing this updates the
source_ip_address
of an existing firewall rule. - source_
port str - The source port on which the firewall
rule operates. Changing this updates the
source_port
of an existing firewall rule. Require notany
or empty protocol. - tenant_
id str - This argument conflicts and is interchangeable
with
project_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
- action String
- Action to be taken (must be "allow", "deny" or "reject")
when the firewall rule matches. Changing this updates the
action
of an existing firewall rule. Default isdeny
. - description String
- A description for the firewall rule. Changing this
updates the
description
of an existing firewall rule. - destination
Ip StringAddress - The destination IP address on which the
firewall rule operates. Changing this updates the
destination_ip_address
of an existing firewall rule. - destination
Port String - The destination port on which the firewall
rule operates. Changing this updates the
destination_port
of an existing firewall rule. Require notany
or empty protocol. - enabled Boolean
- Enabled status for the firewall rule (must be "true"
or "false" if provided - defaults to "true"). Changing this updates the
enabled
status of an existing firewall rule. - ip
Version Number - IP version, either 4 or 6. Changing this
updates the
ip_version
of an existing firewall rule. Default is4
. - name String
- A unique name for the firewall rule. Changing this
updates the
name
of an existing firewall rule. - project
Id String - This argument conflicts and is interchangeable
with
tenant_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule. - protocol String
- (Optional; Required if
source_port
ordestination_port
is not empty) The protocol type on which the firewall rule operates. Valid values are:tcp
,udp
,icmp
, andany
. Changing this updates theprotocol
of an existing firewall rule. Default isany
. - region String
- The region in which to obtain the v2 networking client.
A networking client is needed to create a firewall rule. If omitted, the
region
argument of the provider is used. Changing this creates a new firewall rule. - Boolean
- Sharing status of the firewall rule (must be "true"
or "false" if provided). If this is "true" the policy is visible to, and
can be used in, firewalls in other tenants. Changing this updates the
shared
status of an existing firewall policy. On - source
Ip StringAddress - The source IP address on which the firewall
rule operates. Changing this updates the
source_ip_address
of an existing firewall rule. - source
Port String - The source port on which the firewall
rule operates. Changing this updates the
source_port
of an existing firewall rule. Require notany
or empty protocol. - tenant
Id String - This argument conflicts and is interchangeable
with
project_id
. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.
Import
Firewall Rules can be imported using the id
, e.g.
$ pulumi import openstack:firewall/ruleV2:RuleV2 rule_1 8dbc0c28-e49c-463f-b712-5c5d1bbac327
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- OpenStack pulumi/pulumi-openstack
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
openstack
Terraform Provider.