OpenStack v4.1.3, Aug 21 24

OpenStack v4.1.3 published on Wednesday, Aug 21, 2024 by Pulumi

openstack.firewall.RuleV2

Explore with Pulumi AI

OpenStack v4.1.3 published on Wednesday, Aug 21, 2024 by Pulumi

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as openstack from "@pulumi/openstack";

const rule2 = new openstack.firewall.RuleV2("rule_2", {
    name: "firewall_rule",
    description: "drop TELNET traffic",
    action: "deny",
    protocol: "tcp",
    destinationPort: "23",
    enabled: true,
});

import pulumi
import pulumi_openstack as openstack

rule2 = openstack.firewall.RuleV2("rule_2",
    name="firewall_rule",
    description="drop TELNET traffic",
    action="deny",
    protocol="tcp",
    destination_port="23",
    enabled=True)

package main

import (
	"github.com/pulumi/pulumi-openstack/sdk/v4/go/openstack/firewall"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := firewall.NewRuleV2(ctx, "rule_2", &firewall.RuleV2Args{
			Name:            pulumi.String("firewall_rule"),
			Description:     pulumi.String("drop TELNET traffic"),
			Action:          pulumi.String("deny"),
			Protocol:        pulumi.String("tcp"),
			DestinationPort: pulumi.String("23"),
			Enabled:         pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using OpenStack = Pulumi.OpenStack;

return await Deployment.RunAsync(() => 
{
    var rule2 = new OpenStack.Firewall.RuleV2("rule_2", new()
    {
        Name = "firewall_rule",
        Description = "drop TELNET traffic",
        Action = "deny",
        Protocol = "tcp",
        DestinationPort = "23",
        Enabled = true,
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.openstack.firewall.RuleV2;
import com.pulumi.openstack.firewall.RuleV2Args;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var rule2 = new RuleV2("rule2", RuleV2Args.builder()
            .name("firewall_rule")
            .description("drop TELNET traffic")
            .action("deny")
            .protocol("tcp")
            .destinationPort("23")
            .enabled("true")
            .build());

    }
}

resources:
  rule2:
    type: openstack:firewall:RuleV2
    name: rule_2
    properties:
      name: firewall_rule
      description: drop TELNET traffic
      action: deny
      protocol: tcp
      destinationPort: '23'
      enabled: 'true'

Create RuleV2 Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new RuleV2(name: string, args?: RuleV2Args, opts?: CustomResourceOptions);

@overload
def RuleV2(resource_name: str,
           args: Optional[RuleV2Args] = None,
           opts: Optional[ResourceOptions] = None)

@overload
def RuleV2(resource_name: str,
           opts: Optional[ResourceOptions] = None,
           action: Optional[str] = None,
           description: Optional[str] = None,
           destination_ip_address: Optional[str] = None,
           destination_port: Optional[str] = None,
           enabled: Optional[bool] = None,
           ip_version: Optional[int] = None,
           name: Optional[str] = None,
           project_id: Optional[str] = None,
           protocol: Optional[str] = None,
           region: Optional[str] = None,
           shared: Optional[bool] = None,
           source_ip_address: Optional[str] = None,
           source_port: Optional[str] = None,
           tenant_id: Optional[str] = None)

func NewRuleV2(ctx *Context, name string, args *RuleV2Args, opts ...ResourceOption) (*RuleV2, error)

public RuleV2(string name, RuleV2Args? args = null, CustomResourceOptions? opts = null)

public RuleV2(String name, RuleV2Args args)
public RuleV2(String name, RuleV2Args args, CustomResourceOptions options)

type: openstack:firewall:RuleV2
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args RuleV2Args: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args RuleV2Args: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args RuleV2Args: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args RuleV2Args: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args RuleV2Args: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var ruleV2Resource = new OpenStack.Firewall.RuleV2("ruleV2Resource", new()
{
    Action = "string",
    Description = "string",
    DestinationIpAddress = "string",
    DestinationPort = "string",
    Enabled = false,
    IpVersion = 0,
    Name = "string",
    ProjectId = "string",
    Protocol = "string",
    Region = "string",
    Shared = false,
    SourceIpAddress = "string",
    SourcePort = "string",
    TenantId = "string",
});

example, err := firewall.NewRuleV2(ctx, "ruleV2Resource", &firewall.RuleV2Args{
	Action:               pulumi.String("string"),
	Description:          pulumi.String("string"),
	DestinationIpAddress: pulumi.String("string"),
	DestinationPort:      pulumi.String("string"),
	Enabled:              pulumi.Bool(false),
	IpVersion:            pulumi.Int(0),
	Name:                 pulumi.String("string"),
	ProjectId:            pulumi.String("string"),
	Protocol:             pulumi.String("string"),
	Region:               pulumi.String("string"),
	Shared:               pulumi.Bool(false),
	SourceIpAddress:      pulumi.String("string"),
	SourcePort:           pulumi.String("string"),
	TenantId:             pulumi.String("string"),
})

var ruleV2Resource = new RuleV2("ruleV2Resource", RuleV2Args.builder()
    .action("string")
    .description("string")
    .destinationIpAddress("string")
    .destinationPort("string")
    .enabled(false)
    .ipVersion(0)
    .name("string")
    .projectId("string")
    .protocol("string")
    .region("string")
    .shared(false)
    .sourceIpAddress("string")
    .sourcePort("string")
    .tenantId("string")
    .build());

rule_v2_resource = openstack.firewall.RuleV2("ruleV2Resource",
    action="string",
    description="string",
    destination_ip_address="string",
    destination_port="string",
    enabled=False,
    ip_version=0,
    name="string",
    project_id="string",
    protocol="string",
    region="string",
    shared=False,
    source_ip_address="string",
    source_port="string",
    tenant_id="string")

const ruleV2Resource = new openstack.firewall.RuleV2("ruleV2Resource", {
    action: "string",
    description: "string",
    destinationIpAddress: "string",
    destinationPort: "string",
    enabled: false,
    ipVersion: 0,
    name: "string",
    projectId: "string",
    protocol: "string",
    region: "string",
    shared: false,
    sourceIpAddress: "string",
    sourcePort: "string",
    tenantId: "string",
});

type: openstack:firewall:RuleV2
properties:
    action: string
    description: string
    destinationIpAddress: string
    destinationPort: string
    enabled: false
    ipVersion: 0
    name: string
    projectId: string
    protocol: string
    region: string
    shared: false
    sourceIpAddress: string
    sourcePort: string
    tenantId: string

RuleV2 Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The RuleV2 resource accepts the following input properties:

Action string: Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
Description string: A description for the firewall rule. Changing this updates the description of an existing firewall rule.
DestinationIpAddress string: The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
DestinationPort string: The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
Enabled bool: Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
IpVersion int: IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
Name string: A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
ProjectId string: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
Protocol string: (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
Region string: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
Shared bool: Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
SourceIpAddress string: The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
SourcePort string: The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
TenantId string: This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

Action string: Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
Description string: A description for the firewall rule. Changing this updates the description of an existing firewall rule.
DestinationIpAddress string: The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
DestinationPort string: The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
Enabled bool: Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
IpVersion int: IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
Name string: A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
ProjectId string: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
Protocol string: (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
Region string: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
Shared bool: Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
SourceIpAddress string: The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
SourcePort string: The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
TenantId string: This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

action String: Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
description String: A description for the firewall rule. Changing this updates the description of an existing firewall rule.
destinationIpAddress String: The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
destinationPort String: The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
enabled Boolean: Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
ipVersion Integer: IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
name String: A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
projectId String: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
protocol String: (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
region String: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
shared Boolean: Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
sourceIpAddress String: The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
sourcePort String: The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
tenantId String: This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

action string: Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
description string: A description for the firewall rule. Changing this updates the description of an existing firewall rule.
destinationIpAddress string: The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
destinationPort string: The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
enabled boolean: Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
ipVersion number: IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
name string: A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
projectId string: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
protocol string: (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
region string: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
shared boolean: Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
sourceIpAddress string: The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
sourcePort string: The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
tenantId string: This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

action str: Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
description str: A description for the firewall rule. Changing this updates the description of an existing firewall rule.
destination_ip_address str: The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
destination_port str: The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
enabled bool: Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
ip_version int: IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
name str: A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
project_id str: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
protocol str: (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
region str: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
shared bool: Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
source_ip_address str: The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
source_port str: The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
tenant_id str: This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

action String: Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
description String: A description for the firewall rule. Changing this updates the description of an existing firewall rule.
destinationIpAddress String: The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
destinationPort String: The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
enabled Boolean: Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
ipVersion Number: IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
name String: A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
projectId String: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
protocol String: (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
region String: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
shared Boolean: Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
sourceIpAddress String: The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
sourcePort String: The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
tenantId String: This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

Outputs

All input properties are implicitly available as output properties. Additionally, the RuleV2 resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing RuleV2 Resource

Get an existing RuleV2 resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: RuleV2State, opts?: CustomResourceOptions): RuleV2

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        action: Optional[str] = None,
        description: Optional[str] = None,
        destination_ip_address: Optional[str] = None,
        destination_port: Optional[str] = None,
        enabled: Optional[bool] = None,
        ip_version: Optional[int] = None,
        name: Optional[str] = None,
        project_id: Optional[str] = None,
        protocol: Optional[str] = None,
        region: Optional[str] = None,
        shared: Optional[bool] = None,
        source_ip_address: Optional[str] = None,
        source_port: Optional[str] = None,
        tenant_id: Optional[str] = None) -> RuleV2

func GetRuleV2(ctx *Context, name string, id IDInput, state *RuleV2State, opts ...ResourceOption) (*RuleV2, error)

public static RuleV2 Get(string name, Input<string> id, RuleV2State? state, CustomResourceOptions? opts = null)

public static RuleV2 get(String name, Output<String> id, RuleV2State state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Action string: Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
Description string: A description for the firewall rule. Changing this updates the description of an existing firewall rule.
DestinationIpAddress string: The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
DestinationPort string: The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
Enabled bool: Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
IpVersion int: IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
Name string: A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
ProjectId string: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
Protocol string: (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
Region string: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
Shared bool: Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
SourceIpAddress string: The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
SourcePort string: The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
TenantId string: This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

Action string: Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
Description string: A description for the firewall rule. Changing this updates the description of an existing firewall rule.
DestinationIpAddress string: The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
DestinationPort string: The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
Enabled bool: Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
IpVersion int: IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
Name string: A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
ProjectId string: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
Protocol string: (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
Region string: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
Shared bool: Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
SourceIpAddress string: The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
SourcePort string: The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
TenantId string: This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

action String: Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
description String: A description for the firewall rule. Changing this updates the description of an existing firewall rule.
destinationIpAddress String: The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
destinationPort String: The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
enabled Boolean: Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
ipVersion Integer: IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
name String: A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
projectId String: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
protocol String: (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
region String: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
shared Boolean: Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
sourceIpAddress String: The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
sourcePort String: The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
tenantId String: This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

action string: Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
description string: A description for the firewall rule. Changing this updates the description of an existing firewall rule.
destinationIpAddress string: The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
destinationPort string: The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
enabled boolean: Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
ipVersion number: IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
name string: A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
projectId string: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
protocol string: (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
region string: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
shared boolean: Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
sourceIpAddress string: The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
sourcePort string: The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
tenantId string: This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

action str: Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
description str: A description for the firewall rule. Changing this updates the description of an existing firewall rule.
destination_ip_address str: The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
destination_port str: The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
enabled bool: Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
ip_version int: IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
name str: A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
project_id str: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
protocol str: (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
region str: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
shared bool: Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
source_ip_address str: The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
source_port str: The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
tenant_id str: This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

action String: Action to be taken (must be "allow", "deny" or "reject") when the firewall rule matches. Changing this updates the action of an existing firewall rule. Default is deny.
description String: A description for the firewall rule. Changing this updates the description of an existing firewall rule.
destinationIpAddress String: The destination IP address on which the firewall rule operates. Changing this updates the destination_ip_address of an existing firewall rule.
destinationPort String: The destination port on which the firewall rule operates. Changing this updates the destination_port of an existing firewall rule. Require not any or empty protocol.
enabled Boolean: Enabled status for the firewall rule (must be "true" or "false" if provided - defaults to "true"). Changing this updates the enabled status of an existing firewall rule.
ipVersion Number: IP version, either 4 or 6. Changing this updates the ip_version of an existing firewall rule. Default is 4.
name String: A unique name for the firewall rule. Changing this updates the name of an existing firewall rule.
projectId String: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another project. Changing this creates a new firewall rule.
protocol String: (Optional; Required if source_port or destination_port is not empty) The protocol type on which the firewall rule operates. Valid values are: tcp, udp, icmp, and any. Changing this updates the protocol of an existing firewall rule. Default is any.
region String: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall rule. If omitted, the region argument of the provider is used. Changing this creates a new firewall rule.
shared Boolean: Sharing status of the firewall rule (must be "true" or "false" if provided). If this is "true" the policy is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall policy. On
sourceIpAddress String: The source IP address on which the firewall rule operates. Changing this updates the source_ip_address of an existing firewall rule.
sourcePort String: The source port on which the firewall rule operates. Changing this updates the source_port of an existing firewall rule. Require not any or empty protocol.
tenantId String: This argument conflicts and is interchangeable with project_id. The owner of the firewall rule. Required if admin wants to create a firewall rule for another tenant. Changing this creates a new firewall rule.

Import

Firewall Rules can be imported using the id, e.g.

$ pulumi import openstack:firewall/ruleV2:RuleV2 rule_1 8dbc0c28-e49c-463f-b712-5c5d1bbac327

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: OpenStack pulumi/pulumi-openstack
License: Apache-2.0
Notes: This Pulumi package is based on the openstack Terraform Provider.

OpenStack v4.1.3 published on Wednesday, Aug 21, 2024 by Pulumi

pulumi/pulumi-openstack

openstack.firewall.RuleV2

On this page

On this page

Example Usage

Create RuleV2 Resource

Constructor syntax

Parameters

Constructor example

RuleV2 Resource Properties

Inputs

Outputs

Look up Existing RuleV2 Resource

Import

Package Details

On this page

On this page