REST Resource: apps.firewall.ingressRules

Resource: FirewallRule

A single firewall rule that is evaluated against incoming traffic and provides an action to take on matched requests.

JSON representation
{
  "priority": integer,
  "action": enum (Action),
  "sourceRange": string,
  "description": string
}
Fields
priority

integer

A positive integer between [1, Int32.MaxValue-1] that defines the order of rule evaluation. Rules with the lowest priority are evaluated first.

A default rule at priority Int32.MaxValue matches all IPv4 and IPv6 traffic when no previous rule matches. Only the action of this rule can be modified by the user.

action

enum (Action)

The action to take on matched requests.

sourceRange

string

IP address or range, defined using CIDR notation, of requests that this rule applies to. You can use the wildcard character "*" to match all IPs equivalent to "0/0" and "::/0" together. Examples: 192.168.1.1 or 192.168.0.0/16 or 2001:db8::/32 or 2001:0db8:0000:0042:0000:8a2e:0370:7334.

Truncation will be silently performed on addresses which are not properly truncated. For example, 1.2.3.4/24 is accepted as the same address as 1.2.3.0/24. Similarly, for IPv6, 2001:db8::1/32 is accepted as the same address as 2001:db8::/32.

description

string

An optional string description of this rule. This field has a maximum length of 400 characters.

Action

Available actions to take on matching requests.

Enums
UNSPECIFIED_ACTION
ALLOW Matching requests are allowed.
DENY Matching requests are denied.

Methods

batchUpdate

Replaces the entire firewall ruleset in one bulk operation.

create

Creates a firewall rule for the application.

delete

Deletes the specified firewall rule.

get

Gets the specified firewall rule.

list

Lists the firewall rules of an application.

patch

Updates the specified firewall rule.