- NAME
-
- gcloud alpha compute firewall-rules migrate - create a new Network Firewall Policy and move all customer defined firewall rules there
- SYNOPSIS
-
-
gcloud alpha compute firewall-rules migrate--source-network=SOURCE_NETWORK(--bind-tags-to-instances|--export-tag-mapping|--target-firewall-policy=TARGET_FIREWALL_POLICY) [--export-terraform-script] [--tag-mapping-file=TAG_MAPPING_FILE] [GCLOUD_WIDE_FLAG …]
-
- DESCRIPTION
-
(ALPHA)gcloud alpha compute firewall-rules migrateis used to create a new Network Firewall Policy that contain all rules defined in already existing Network Firewall Policy associated with the given VPC Network and all customer defined VPC Firewall Rules attached to that VPC Network. - EXAMPLES
-
To execute the migration for VPC Network 'my-network' which stores the result in
'my-policy' Network Firewall Policy, run:
gcloud alpha compute firewall-rules migrate --source-network=my-network --target-firewall-policy=my-policy - REQUIRED FLAGS
-
--source-network=SOURCE_NETWORK- The VPC Network for which the migration should be performed.
-
Exactly one of these must be specified:
- If set, migration tool will bind secure tags to the instances with the network tags which match secure tags from the tag mapping file.
--export-tag-mapping- If set, migration tool will inspect all VPC Firewalls attached to SOURCE_NETWORK, collect all source and target tags, and store them in TAG_MAPPING_FILE.
--target-firewall-policy=TARGET_FIREWALL_POLICY- Name of the new Network Firewall Policy used to store the migration result.
- OPTIONAL FLAGS
-
--export-terraform-script- If set, migration tool will output a terraform script to create a Firewall Policy with migrated rules.
--tag-mapping-file=TAG_MAPPING_FILE- Path to a JSON file with legacy tags and service accounts to secure tags mapping.
- GCLOUD WIDE FLAGS
-
These flags are available to all commands:
--access-token-file,--account,--billing-project,--configuration,--flags-file,--flatten,--format,--help,--impersonate-service-account,--log-http,--project,--quiet,--trace-token,--user-output-enabled,--verbosity.Run
$ gcloud helpfor details. - NOTES
-
This command is currently in alpha and might change without notice. If this
command fails with API permission errors despite specifying the correct project,
you might be trying to access an API with an invitation-only early access
allowlist. This variant is also available:
gcloud beta compute firewall-rules migrate
Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2024-02-06 UTC.
[{
"type": "thumb-down",
"id": "hardToUnderstand",
"label":"Hard to understand"
},{
"type": "thumb-down",
"id": "incorrectInformationOrSampleCode",
"label":"Incorrect information or sample code"
},{
"type": "thumb-down",
"id": "missingTheInformationSamplesINeed",
"label":"Missing the information/samples I need"
},{
"type": "thumb-down",
"id": "otherDown",
"label":"Other"
}]
[{
"type": "thumb-up",
"id": "easyToUnderstand",
"label":"Easy to understand"
},{
"type": "thumb-up",
"id": "solvedMyProblem",
"label":"Solved my problem"
},{
"type": "thumb-up",
"id": "otherUp",
"label":"Other"
}]