Class: Google::Apis::ComputeV1::FirewallPolicyRuleMatcher

Inherits:

Object

• Object
• Google::Apis::ComputeV1::FirewallPolicyRuleMatcher

Includes:

Google::Apis::Core::Hashable, Google::Apis::Core::JsonObjectSupport

Defined in:

lib/google/apis/compute_v1/classes.rb,
lib/google/apis/compute_v1/representations.rb,
lib/google/apis/compute_v1/representations.rb

Overview

Represents a match condition that incoming traffic is evaluated against. Exactly one field must be specified.

Instance Attribute Summary

• #dest_address_groups ⇒ Array<String>

  Address groups which should be matched against the traffic destination.

• #dest_fqdns ⇒ Array<String>

  Fully Qualified Domain Name (FQDN) which should be matched against traffic destination.

• #dest_ip_ranges ⇒ Array<String>

  CIDR IP address range.

• #dest_network_context ⇒ String

  Network context of the traffic destination.

• #dest_network_type ⇒ String

  Network type of the traffic destination.

• #dest_region_codes ⇒ Array<String>

  Region codes whose IP addresses will be used to match for destination of traffic.

• #dest_threat_intelligences ⇒ Array<String>

  Names of Network Threat Intelligence lists.

• #layer4_configs ⇒ Array<Google::Apis::ComputeV1::FirewallPolicyRuleMatcherLayer4Config>

  Pairs of IP protocols and ports that the rule should match.

• #src_address_groups ⇒ Array<String>

  Address groups which should be matched against the traffic source.

• #src_fqdns ⇒ Array<String>

  Fully Qualified Domain Name (FQDN) which should be matched against traffic source.

• #src_ip_ranges ⇒ Array<String>

  CIDR IP address range.

• #src_network_context ⇒ String

  Network context of the traffic source.

• #src_network_type ⇒ String

  Network type of the traffic source.

• #src_networks ⇒ Array<String>

  Networks of the traffic source.

• #src_region_codes ⇒ Array<String>

  Region codes whose IP addresses will be used to match for source of traffic.

• #src_secure_tags ⇒ Array<Google::Apis::ComputeV1::FirewallPolicyRuleSecureTag>

  List of secure tag values, which should be matched at the source of the traffic.

• #src_threat_intelligences ⇒ Array<String>

  Names of Network Threat Intelligence lists.

Instance Method Summary

• #initialize(**args) ⇒ FirewallPolicyRuleMatcher constructor

  A new instance of FirewallPolicyRuleMatcher.

• #update!(**args) ⇒ Object

  Update properties of this object.

Constructor Details

#initialize(**args) ⇒ FirewallPolicyRuleMatcher

Returns a new instance of FirewallPolicyRuleMatcher.

# File 'lib/google/apis/compute_v1/classes.rb', line 12045

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#dest_address_groups ⇒ Array<String>

Address groups which should be matched against the traffic destination. Maximum number of destination address groups is 10. Corresponds to the JSON property destAddressGroups

Returns:

• (Array<String>)

# File 'lib/google/apis/compute_v1/classes.rb', line 11920

def dest_address_groups
  @dest_address_groups
end

#dest_fqdns ⇒ Array<String>

Fully Qualified Domain Name (FQDN) which should be matched against traffic destination. Maximum number of destination fqdn allowed is 100. Corresponds to the JSON property destFqdns

Returns:

• (Array<String>)

# File 'lib/google/apis/compute_v1/classes.rb', line 11927

def dest_fqdns
  @dest_fqdns
end

#dest_ip_ranges ⇒ Array<String>

CIDR IP address range. Maximum number of destination CIDR IP ranges allowed is 5000. Corresponds to the JSON property destIpRanges

Returns:

• (Array<String>)

# File 'lib/google/apis/compute_v1/classes.rb', line 11933

def dest_ip_ranges
  @dest_ip_ranges
end

#dest_network_context ⇒ String

Network context of the traffic destination. Allowed values are:

• UNSPECIFIED
• INTERNET
• NON_INTERNET Corresponds to the JSON property destNetworkContext

Returns:

• (String)

# File 'lib/google/apis/compute_v1/classes.rb', line 11943

def dest_network_context
  @dest_network_context
end

#dest_network_type ⇒ String

Network type of the traffic destination. Allowed values are:

• UNSPECIFIED
• INTERNET
• NON_INTERNET Corresponds to the JSON property destNetworkType

Returns:

• (String)

# File 'lib/google/apis/compute_v1/classes.rb', line 11953

def dest_network_type
  @dest_network_type
end

#dest_region_codes ⇒ Array<String>

Region codes whose IP addresses will be used to match for destination of traffic. Should be specified as 2 letter country code defined as per ISO 3166 alpha-2 country codes. ex."US" Maximum number of dest region codes allowed is 5000. Corresponds to the JSON property destRegionCodes

Returns:

• (Array<String>)

# File 'lib/google/apis/compute_v1/classes.rb', line 11961

def dest_region_codes
  @dest_region_codes
end

#dest_threat_intelligences ⇒ Array<String>

Names of Network Threat Intelligence lists. The IPs in these lists will be matched against traffic destination. Corresponds to the JSON property destThreatIntelligences

Returns:

• (Array<String>)

# File 'lib/google/apis/compute_v1/classes.rb', line 11967

def dest_threat_intelligences
  @dest_threat_intelligences
end

#layer4_configs ⇒ Array<Google::Apis::ComputeV1::FirewallPolicyRuleMatcherLayer4Config>

Pairs of IP protocols and ports that the rule should match. Corresponds to the JSON property layer4Configs

Returns:

• (Array<Google::Apis::ComputeV1::FirewallPolicyRuleMatcherLayer4Config>)

# File 'lib/google/apis/compute_v1/classes.rb', line 11972

def layer4_configs
  @layer4_configs
end

#src_address_groups ⇒ Array<String>

Address groups which should be matched against the traffic source. Maximum number of source address groups is 10. Corresponds to the JSON property srcAddressGroups

Returns:

• (Array<String>)

# File 'lib/google/apis/compute_v1/classes.rb', line 11978

def src_address_groups
  @src_address_groups
end

#src_fqdns ⇒ Array<String>

Fully Qualified Domain Name (FQDN) which should be matched against traffic source. Maximum number of source fqdn allowed is 100. Corresponds to the JSON property srcFqdns

Returns:

• (Array<String>)

# File 'lib/google/apis/compute_v1/classes.rb', line 11985

def src_fqdns
  @src_fqdns
end

#src_ip_ranges ⇒ Array<String>

CIDR IP address range. Maximum number of source CIDR IP ranges allowed is 5000. Corresponds to the JSON property srcIpRanges

Returns:

• (Array<String>)

# File 'lib/google/apis/compute_v1/classes.rb', line 11991

def src_ip_ranges
  @src_ip_ranges
end

#src_network_context ⇒ String

Network context of the traffic source. Allowed values are:

• UNSPECIFIED
• INTERNET
• INTRA_VPC
• NON_INTERNET
• VPC_NETWORKS Corresponds to the JSON property srcNetworkContext

Returns:

• (String)

# File 'lib/google/apis/compute_v1/classes.rb', line 12003

def src_network_context
  @src_network_context
end

#src_network_type ⇒ String

Network type of the traffic source. Allowed values are:

• UNSPECIFIED
• INTERNET
• INTRA_VPC
• NON_INTERNET
• VPC_NETWORKS Corresponds to the JSON property srcNetworkType

Returns:

• (String)

# File 'lib/google/apis/compute_v1/classes.rb', line 12015

def src_network_type
  @src_network_type
end

#src_networks ⇒ Array<String>

Networks of the traffic source. It can be either a full or partial url. Corresponds to the JSON property srcNetworks

Returns:

• (Array<String>)

# File 'lib/google/apis/compute_v1/classes.rb', line 12020

def src_networks
  @src_networks
end

#src_region_codes ⇒ Array<String>

Region codes whose IP addresses will be used to match for source of traffic. Should be specified as 2 letter country code defined as per ISO 3166 alpha-2 country codes. ex."US" Maximum number of source region codes allowed is 5000. Corresponds to the JSON property srcRegionCodes

Returns:

• (Array<String>)

# File 'lib/google/apis/compute_v1/classes.rb', line 12028

def src_region_codes
  @src_region_codes
end

#src_secure_tags ⇒ Array<Google::Apis::ComputeV1::FirewallPolicyRuleSecureTag>

List of secure tag values, which should be matched at the source of the traffic. For INGRESS rule, if all the srcSecureTag are INEFFECTIVE, and there is no srcIpRange, this rule will be ignored. Maximum number of source tag values allowed is 256. Corresponds to the JSON property srcSecureTags

Returns:

• (Array<Google::Apis::ComputeV1::FirewallPolicyRuleSecureTag>)

# File 'lib/google/apis/compute_v1/classes.rb', line 12037

def src_secure_tags
  @src_secure_tags
end

#src_threat_intelligences ⇒ Array<String>

Names of Network Threat Intelligence lists. The IPs in these lists will be matched against traffic source. Corresponds to the JSON property srcThreatIntelligences

Returns:

• (Array<String>)

# File 'lib/google/apis/compute_v1/classes.rb', line 12043

def src_threat_intelligences
  @src_threat_intelligences
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object

# File 'lib/google/apis/compute_v1/classes.rb', line 12050

def update!(**args)
  @dest_address_groups = args[:dest_address_groups] if args.key?(:dest_address_groups)
  @dest_fqdns = args[:dest_fqdns] if args.key?(:dest_fqdns)
  @dest_ip_ranges = args[:dest_ip_ranges] if args.key?(:dest_ip_ranges)
  @dest_network_context = args[:dest_network_context] if args.key?(:dest_network_context)
  @dest_network_type = args[:dest_network_type] if args.key?(:dest_network_type)
  @dest_region_codes = args[:dest_region_codes] if args.key?(:dest_region_codes)
  @dest_threat_intelligences = args[:dest_threat_intelligences] if args.key?(:dest_threat_intelligences)
  @layer4_configs = args[:layer4_configs] if args.key?(:layer4_configs)
  @src_address_groups = args[:src_address_groups] if args.key?(:src_address_groups)
  @src_fqdns = args[:src_fqdns] if args.key?(:src_fqdns)
  @src_ip_ranges = args[:src_ip_ranges] if args.key?(:src_ip_ranges)
  @src_network_context = args[:src_network_context] if args.key?(:src_network_context)
  @src_network_type = args[:src_network_type] if args.key?(:src_network_type)
  @src_networks = args[:src_networks] if args.key?(:src_networks)
  @src_region_codes = args[:src_region_codes] if args.key?(:src_region_codes)
  @src_secure_tags = args[:src_secure_tags] if args.key?(:src_secure_tags)
  @src_threat_intelligences = args[:src_threat_intelligences] if args.key?(:src_threat_intelligences)
end