gcloud network-connectivity service-connection-policies create

NAME: gcloud network-connectivity service-connection-policies create - create a new Service Connection Policy
SYNOPSIS: gcloud network-connectivity service-connection-policies create SERVICE_CONNECTION_POLICY --network=NETWORK --service-class=SERVICE_CLASS (--subnets=[SUBNETS,…] : --allowed-google-producers-resource-hierarchy-level=[ALLOWED_GOOGLE_PRODUCERS_RESOURCE_HIERARCHY_LEVEL,…] --producer-instance-location=PRODUCER_INSTANCE_LOCATION --psc-connection-limit=PSC_CONNECTION_LIMIT) [--async] [--description=DESCRIPTION] [--labels=[KEY=VALUE,…]] [--region=REGION] [GCLOUD_WIDE_FLAG …]
DESCRIPTION: Create a new Service Connection Policy with the given name.
EXAMPLES: Create a Service Connection Policy with name my-service-conn-policy for network projects/my-project/global/networks/net1 and service class my-service-class-ad32fa4b in region us-central1 using subnet projects/my-project/regions/us-central1/subnetworks/subnet1 subject to custom-resource-hierarchy-levels that allows connections from Google-managed producer instances in projects/my-project.
gcloud network-connectivity service-connection-policies create my-service-conn-policy --network="projects/my-project/global/networks/net1" --service-class=my-service-class-ad32fa4b --region=us-central1 --subnets=projects/my-project/regions/us-central1/subnetworks/subnet1 --psc-connection-limit=100 --producer-instance-location=custom-resource-hierarchy-levels --allowed-google-producers-resource-hierarchy-level=projects/my-project
POSITIONAL ARGUMENTS: Service connection policy resource - Name of the Service Connection Policy to be created. This represents a Cloud resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways.
To set the project attribute:

provide the argument service_connection_policy on the command line with a fully specified name;

provide the argument --project on the command line;

set the property core/project.

To set the region attribute:

provide the argument service_connection_policy on the command line with a fully specified name;

provide the argument --region on the command line.

This must be specified.

SERVICE_CONNECTION_POLICY

ID of the service connection policy or fully qualified identifier for the service connection policy.
To set the service_connection_policy attribute:

provide the argument service_connection_policy on the command line.
REQUIRED FLAGS: Network resource - Network that this service connection policy applies to. E.g. projects/my-project/global/networks/net1 This represents a Cloud resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways.
To set the project attribute:

provide the argument --network on the command line with a fully specified name;

provide the argument --project on the command line;

set the property core/project.

This must be specified.

--network=NETWORK

ID of the network or fully qualified identifier for the network.
To set the network attribute:

provide the argument --network on the command line.

--service-class=SERVICE_CLASS

Service class that this policy is created for. E.g. my-service-class-ad32fa4b

This must be specified.

Subnetwork resource - Subnetwork to use for IP address management. This represents a Cloud resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways.
To set the project attribute:

provide the argument --subnets on the command line with a fully specified name;

provide the argument --project on the command line;

set the property core/project.

To set the region attribute:

provide the argument --subnets on the command line with a fully specified name;

provide the argument --region on the command line.

This must be specified.

--subnets=[SUBNETS,…]

IDs of the subnetworks or fully qualified identifiers for the subnetworks.
To set the subnetwork attribute:

provide the argument --subnets on the command line.

--allowed-google-producers-resource-hierarchy-level=[ALLOWED_GOOGLE_PRODUCERS_RESOURCE_HIERARCHY_LEVEL,…]

List of projects, folders, or orgs where the producer instance can be located in the form "projects/123456789", folders/123456789", or "organizations/123456789".

--producer-instance-location=PRODUCER_INSTANCE_LOCATION

Option that determines where the producer instances can be located for which connections can be created in the network controlled by this policy. PRODUCER_INSTANCE_LOCATION must be one of:

custom-resource-hierarchy-levels

The producer instance must be located in one of the values provided in the allowed-google-producers-resource-hierarchy-level flag.

none

The producer instance must be within the same project as this connection policy.

--psc-connection-limit=PSC_CONNECTION_LIMIT

Max number of PSC connections for this policy.
OPTIONAL FLAGS: --async

Return immediately, without waiting for the operation in progress to complete.

--description=DESCRIPTION

Description of the Service Connection Policy to be created.

--labels=[KEY=VALUE,…]

List of label KEY=VALUE pairs to add.

--region=REGION

For resources [service connection policy, subnetwork], provides fallback value for resource region attribute. When the resource's full URI path is not provided, region will fallback to this flag value.
GCLOUD WIDE FLAGS: These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.
Run $ gcloud help for details.
API REFERENCE: This command uses the networkconnectivity/v1 API. The full documentation for this API can be found at: https://cloud.google.com/network-connectivity/docs/reference/networkconnectivity/rest