Class FirewallPolicyRuleMatcher (1.7.0)

FirewallPolicyRuleMatcher(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Represents a match condition that incoming traffic is evaluated against. Exactly one field must be specified.

Attributes

NameDescription
dest_ip_ranges MutableSequence[str]
CIDR IP address range. Maximum number of destination CIDR IP ranges allowed is 5000.
layer4_configs MutableSequence[google.cloud.compute_v1.types.FirewallPolicyRuleMatcherLayer4Config]
Pairs of IP protocols and ports that the rule should match.
src_ip_ranges MutableSequence[str]
CIDR IP address range. Maximum number of source CIDR IP ranges allowed is 5000.
src_secure_tags MutableSequence[google.cloud.compute_v1.types.FirewallPolicyRuleSecureTag]
List of secure tag values, which should be matched at the source of the traffic. For INGRESS rule, if all the srcSecureTag are INEFFECTIVE, and there is no srcIpRange, this rule will be ignored. Maximum number of source tag values allowed is 256.