Package com.hashicorp.cdktf.providers.google.compute_region_network_firewall_policy_rule

Class ComputeRegionNetworkFirewallPolicyRule.Builder

    • Method Detail

      • connection

        @Stability(Experimental)
public ComputeRegionNetworkFirewallPolicyRule.Builder connection​(com.hashicorp.cdktf.SSHProvisionerConnection connection)
        Parameters:
        connection - This parameter is required.
        Returns:
        this

      • connection

        @Stability(Experimental)
public ComputeRegionNetworkFirewallPolicyRule.Builder connection​(com.hashicorp.cdktf.WinrmProvisionerConnection connection)
        Parameters:
        connection - This parameter is required.
        Returns:
        this

      • lifecycle

        @Stability(Experimental)
public ComputeRegionNetworkFirewallPolicyRule.Builder lifecycle​(com.hashicorp.cdktf.TerraformResourceLifecycle lifecycle)
        Parameters:
        lifecycle - This parameter is required.
        Returns:
        this

      • action

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder action​(String action)
        The Action to perform when the client connection triggers the rule. Valid actions are "allow", "deny", "goto_next" and "apply_security_profile_group".

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#action ComputeRegionNetworkFirewallPolicyRule#action}

        Parameters:
        action - The Action to perform when the client connection triggers the rule. Valid actions are "allow", "deny", "goto_next" and "apply_security_profile_group". This parameter is required.
        Returns:
        this

      • direction

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder direction​(String direction)
        The direction in which this rule applies. Possible values: INGRESS, EGRESS.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#direction ComputeRegionNetworkFirewallPolicyRule#direction}

        Parameters:
        direction - The direction in which this rule applies. Possible values: INGRESS, EGRESS. This parameter is required.
        Returns:
        this

      • firewallPolicy

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder firewallPolicy​(String firewallPolicy)
        The firewall policy of the resource.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#firewall_policy ComputeRegionNetworkFirewallPolicyRule#firewall_policy}

        Parameters:
        firewallPolicy - The firewall policy of the resource. This parameter is required.
        Returns:
        this

      • priority

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder priority​(Number priority)
        An integer indicating the priority of a rule in the list.

        The priority must be a positive value between 0 and 2147483647. Rules are evaluated from highest to lowest priority where 0 is the highest priority and 2147483647 is the lowest prority. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#priority ComputeRegionNetworkFirewallPolicyRule#priority}

        Parameters:
        priority - An integer indicating the priority of a rule in the list. This parameter is required.
        Returns:
        this

      • description

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder description​(String description)
        An optional description for this resource.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#description ComputeRegionNetworkFirewallPolicyRule#description}

        Parameters:
        description - An optional description for this resource. This parameter is required.
        Returns:
        this

      • disabled

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder disabled​(Boolean disabled)
        Denotes whether the firewall policy rule is disabled.

        When set to true, the firewall policy rule is not enforced and traffic behaves as if it did not exist. If this is unspecified, the firewall policy rule will be enabled. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#disabled ComputeRegionNetworkFirewallPolicyRule#disabled}

        Parameters:
        disabled - Denotes whether the firewall policy rule is disabled. This parameter is required.
        Returns:
        this

      • disabled

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder disabled​(com.hashicorp.cdktf.IResolvable disabled)
        Denotes whether the firewall policy rule is disabled.

        When set to true, the firewall policy rule is not enforced and traffic behaves as if it did not exist. If this is unspecified, the firewall policy rule will be enabled. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#disabled ComputeRegionNetworkFirewallPolicyRule#disabled}

        Parameters:
        disabled - Denotes whether the firewall policy rule is disabled. This parameter is required.
        Returns:
        this

      • enableLogging

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder enableLogging​(Boolean enableLogging)
        Denotes whether to enable logging for a particular rule.

        If logging is enabled, logs will be exported to the configured export destination in Stackdriver. Logs may be exported to BigQuery or Pub/Sub. Note: you cannot enable logging on "goto_next" rules. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#enable_logging ComputeRegionNetworkFirewallPolicyRule#enable_logging}

        Parameters:
        enableLogging - Denotes whether to enable logging for a particular rule. This parameter is required.
        Returns:
        this

      • enableLogging

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder enableLogging​(com.hashicorp.cdktf.IResolvable enableLogging)
        Denotes whether to enable logging for a particular rule.

        If logging is enabled, logs will be exported to the configured export destination in Stackdriver. Logs may be exported to BigQuery or Pub/Sub. Note: you cannot enable logging on "goto_next" rules. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#enable_logging ComputeRegionNetworkFirewallPolicyRule#enable_logging}

        Parameters:
        enableLogging - Denotes whether to enable logging for a particular rule. This parameter is required.
        Returns:
        this

      • id

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder id​(String id)
        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#id ComputeRegionNetworkFirewallPolicyRule#id}.

        Please be aware that the id field is automatically added to all resources in Terraform providers using a Terraform provider SDK version below 2. If you experience problems setting this value it might not be settable. Please take a look at the provider documentation to ensure it should be settable.

        Parameters:
        id - Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#id ComputeRegionNetworkFirewallPolicyRule#id}. This parameter is required.
        Returns:
        this

      • project

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder project​(String project)
        The project for the resource.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#project ComputeRegionNetworkFirewallPolicyRule#project}

        Parameters:
        project - The project for the resource. This parameter is required.
        Returns:
        this

      • region

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder region​(String region)
        The location of this resource.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#region ComputeRegionNetworkFirewallPolicyRule#region}

        Parameters:
        region - The location of this resource. This parameter is required.
        Returns:
        this

      • ruleName

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder ruleName​(String ruleName)
        An optional name for the rule. This field is not a unique identifier and can be updated.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#rule_name ComputeRegionNetworkFirewallPolicyRule#rule_name}

        Parameters:
        ruleName - An optional name for the rule. This field is not a unique identifier and can be updated. This parameter is required.
        Returns:
        this

      • securityProfileGroup

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder securityProfileGroup​(String securityProfileGroup)
        A fully-qualified URL of a SecurityProfileGroup resource.

        Example: https://networksecurity.googleapis.com/v1/organizations/{organizationId}/locations/global/securityProfileGroups/my-security-profile-group. It must be specified if action = 'apply_security_profile_group' and cannot be specified for other actions. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#security_profile_group ComputeRegionNetworkFirewallPolicyRule#security_profile_group}

        Parameters:
        securityProfileGroup - A fully-qualified URL of a SecurityProfileGroup resource. This parameter is required.
        Returns:
        this

      • targetSecureTags

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder targetSecureTags​(com.hashicorp.cdktf.IResolvable targetSecureTags)
        target_secure_tags block.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#target_secure_tags ComputeRegionNetworkFirewallPolicyRule#target_secure_tags}

        Parameters:
        targetSecureTags - target_secure_tags block. This parameter is required.
        Returns:
        this

      • targetSecureTags

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder targetSecureTags​(List<? extends ComputeRegionNetworkFirewallPolicyRuleTargetSecureTags> targetSecureTags)
        target_secure_tags block.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#target_secure_tags ComputeRegionNetworkFirewallPolicyRule#target_secure_tags}

        Parameters:
        targetSecureTags - target_secure_tags block. This parameter is required.
        Returns:
        this

      • targetServiceAccounts

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder targetServiceAccounts​(List<String> targetServiceAccounts)
        A list of service accounts indicating the sets of instances that are applied with this rule.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#target_service_accounts ComputeRegionNetworkFirewallPolicyRule#target_service_accounts}

        Parameters:
        targetServiceAccounts - A list of service accounts indicating the sets of instances that are applied with this rule. This parameter is required.
        Returns:
        this

      • timeouts

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder timeouts​(ComputeRegionNetworkFirewallPolicyRuleTimeouts timeouts)
        timeouts block.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#timeouts ComputeRegionNetworkFirewallPolicyRule#timeouts}

        Parameters:
        timeouts - timeouts block. This parameter is required.
        Returns:
        this

      • tlsInspect

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder tlsInspect​(Boolean tlsInspect)
        Boolean flag indicating if the traffic should be TLS decrypted.

        It can be set only if action = 'apply_security_profile_group' and cannot be set for other actions. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#tls_inspect ComputeRegionNetworkFirewallPolicyRule#tls_inspect}

        Parameters:
        tlsInspect - Boolean flag indicating if the traffic should be TLS decrypted. This parameter is required.
        Returns:
        this

      • tlsInspect

        @Stability(Stable)
public ComputeRegionNetworkFirewallPolicyRule.Builder tlsInspect​(com.hashicorp.cdktf.IResolvable tlsInspect)
        Boolean flag indicating if the traffic should be TLS decrypted.

        It can be set only if action = 'apply_security_profile_group' and cannot be set for other actions. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/compute_region_network_firewall_policy_rule#tls_inspect ComputeRegionNetworkFirewallPolicyRule#tls_inspect}

        Parameters:
        tlsInspect - Boolean flag indicating if the traffic should be TLS decrypted. This parameter is required.
        Returns:
        this