Skip to main content

FirewallPolicyRule

google_cloud_compute_v1::model

Struct FirewallPolicyRule 

Source 
#[non_exhaustive]
pub struct FirewallPolicyRule {
Show 15 fields
    pub action: Option<String>,
    pub description: Option<String>,
    pub direction: Option<Direction>,
    pub disabled: Option<bool>,
    pub enable_logging: Option<bool>,
    pub kind: Option<String>,
    pub match: Option<FirewallPolicyRuleMatcher>,
    pub priority: Option<i32>,
    pub rule_name: Option<String>,
    pub rule_tuple_count: Option<i32>,
    pub security_profile_group: Option<String>,
    pub target_resources: Vec<String>,
    pub target_secure_tags: Vec<FirewallPolicyRuleSecureTag>,
    pub target_service_accounts: Vec<String>,
    pub tls_inspect: Option<bool>,
    /* private fields */

}
Available on crate features firewall-policies or instances or network-firewall-policies or networks or region-network-firewall-policies only.
Expand description

Represents a rule that describes one or more match conditions along with the action to be taken when traffic matches this condition (allow or deny).

Fields (Non-exhaustive)§

This struct is marked as non-exhaustive
Non-exhaustive structs could have additional fields added in future. Therefore, non-exhaustive structs cannot be constructed in external crates using the traditional Struct { .. } syntax; cannot be matched against without a wildcard ..; and struct update syntax will not work.
§action: Option<String>

The Action to perform when the client connection triggers the rule. Valid actions for firewall rules are: “allow”, “deny”, “apply_security_profile_group” and “goto_next”. Valid actions for packet mirroring rules are: “mirror”, “do_not_mirror” and “goto_next”.

§description: Option<String>

An optional description for this resource.

§direction: Option<Direction>

The direction in which this rule applies.

§disabled: Option<bool>

Denotes whether the firewall policy rule is disabled. When set to true, the firewall policy rule is not enforced and traffic behaves as if it did not exist. If this is unspecified, the firewall policy rule will be enabled.

§enable_logging: Option<bool>

Denotes whether to enable logging for a particular rule. If logging is enabled, logs will be exported to the configured export destination in Stackdriver. Logs may be exported to BigQuery or Pub/Sub. Note: you cannot enable logging on “goto_next” rules.

§kind: Option<String>

Output only. [Output only] Type of the resource. Returnscompute#firewallPolicyRule for firewall rules andcompute#packetMirroringRule for packet mirroring rules.

§match: Option<FirewallPolicyRuleMatcher>

A match condition that incoming traffic is evaluated against. If it evaluates to true, the corresponding ‘action’ is enforced.

§priority: Option<i32>

An integer indicating the priority of a rule in the list. The priority must be a positive value between 0 and 2147483647. Rules are evaluated from highest to lowest priority where 0 is the highest priority and 2147483647 is the lowest priority.

§rule_name: Option<String>

An optional name for the rule. This field is not a unique identifier and can be updated.

§rule_tuple_count: Option<i32>

Output only. [Output Only] Calculation of the complexity of a single firewall policy rule.

§security_profile_group: Option<String>

A fully-qualified URL of a SecurityProfile resource instance. Example: https://networksecurity.googleapis.com/v1/projects/{project}/locations/{location}/securityProfileGroups/my-security-profile-group Must be specified if action is one of ‘apply_security_profile_group’ or ‘mirror’. Cannot be specified for other actions.

§target_resources: Vec<String>

A list of network resource URLs to which this rule applies. This field allows you to control which network’s VMs get this rule. If this field is left blank, all VMs within the organization will receive the rule.

§target_secure_tags: Vec<FirewallPolicyRuleSecureTag>

A list of secure tags that controls which instances the firewall rule applies to. If targetSecureTag are specified, then the firewall rule applies only to instances in the VPC network that have one of those EFFECTIVE secure tags, if all the target_secure_tag are in INEFFECTIVE state, then this rule will be ignored.targetSecureTag may not be set at the same time astargetServiceAccounts. If neither targetServiceAccounts nortargetSecureTag are specified, the firewall rule applies to all instances on the specified network. Maximum number of target label tags allowed is 256.

§target_service_accounts: Vec<String>

A list of service accounts indicating the sets of instances that are applied with this rule.

§tls_inspect: Option<bool>

Boolean flag indicating if the traffic should be TLS decrypted. Can be set only if action = ‘apply_security_profile_group’ and cannot be set for other actions.

Implementations§

Source§

impl FirewallPolicyRule

Source

pub fn new() -> Self

Source

pub fn set_action<T>(self, v: T) -> Self
where T: Into<String>,

Sets the value of action.

§Example
let x = FirewallPolicyRule::new().set_action("example");
Source

pub fn set_or_clear_action<T>(self, v: Option<T>) -> Self
where T: Into<String>,

Sets or clears the value of action.

§Example
let x = FirewallPolicyRule::new().set_or_clear_action(Some("example"));
let x = FirewallPolicyRule::new().set_or_clear_action(None::<String>);
Source

pub fn set_description<T>(self, v: T) -> Self
where T: Into<String>,

Sets the value of description.

§Example
let x = FirewallPolicyRule::new().set_description("example");
Source

pub fn set_or_clear_description<T>(self, v: Option<T>) -> Self
where T: Into<String>,

Sets or clears the value of description.

§Example
let x = FirewallPolicyRule::new().set_or_clear_description(Some("example"));
let x = FirewallPolicyRule::new().set_or_clear_description(None::<String>);
Source

pub fn set_direction<T>(self, v: T) -> Self
where T: Into<Direction>,

Sets the value of direction.

§Example
use google_cloud_compute_v1::model::firewall_policy_rule::Direction;
let x0 = FirewallPolicyRule::new().set_direction(Direction::Ingress);
Source

pub fn set_or_clear_direction<T>(self, v: Option<T>) -> Self
where T: Into<Direction>,

Sets or clears the value of direction.

§Example
use google_cloud_compute_v1::model::firewall_policy_rule::Direction;
let x0 = FirewallPolicyRule::new().set_or_clear_direction(Some(Direction::Ingress));
let x_none = FirewallPolicyRule::new().set_or_clear_direction(None::<Direction>);
Source

pub fn set_disabled<T>(self, v: T) -> Self
where T: Into<bool>,

Sets the value of disabled.

§Example
let x = FirewallPolicyRule::new().set_disabled(true);
Source

pub fn set_or_clear_disabled<T>(self, v: Option<T>) -> Self
where T: Into<bool>,

Sets or clears the value of disabled.

§Example
let x = FirewallPolicyRule::new().set_or_clear_disabled(Some(false));
let x = FirewallPolicyRule::new().set_or_clear_disabled(None::<bool>);
Source

pub fn set_enable_logging<T>(self, v: T) -> Self
where T: Into<bool>,

Sets the value of enable_logging.

§Example
let x = FirewallPolicyRule::new().set_enable_logging(true);
Source

pub fn set_or_clear_enable_logging<T>(self, v: Option<T>) -> Self
where T: Into<bool>,

Sets or clears the value of enable_logging.

§Example
let x = FirewallPolicyRule::new().set_or_clear_enable_logging(Some(false));
let x = FirewallPolicyRule::new().set_or_clear_enable_logging(None::<bool>);
Source

pub fn set_kind<T>(self, v: T) -> Self
where T: Into<String>,

Sets the value of kind.

§Example
let x = FirewallPolicyRule::new().set_kind("example");
Source

pub fn set_or_clear_kind<T>(self, v: Option<T>) -> Self
where T: Into<String>,

Sets or clears the value of kind.

§Example
let x = FirewallPolicyRule::new().set_or_clear_kind(Some("example"));
let x = FirewallPolicyRule::new().set_or_clear_kind(None::<String>);
Source

pub fn set_match<T>(self, v: T) -> Self
where T: Into<FirewallPolicyRuleMatcher>,

Sets the value of r#match.

§Example
use google_cloud_compute_v1::model::FirewallPolicyRuleMatcher;
let x = FirewallPolicyRule::new().set_match(FirewallPolicyRuleMatcher::default()/* use setters */);
Source

pub fn set_or_clear_match<T>(self, v: Option<T>) -> Self
where T: Into<FirewallPolicyRuleMatcher>,

Sets or clears the value of r#match.

§Example
use google_cloud_compute_v1::model::FirewallPolicyRuleMatcher;
let x = FirewallPolicyRule::new().set_or_clear_match(Some(FirewallPolicyRuleMatcher::default()/* use setters */));
let x = FirewallPolicyRule::new().set_or_clear_match(None::<FirewallPolicyRuleMatcher>);
Source

pub fn set_priority<T>(self, v: T) -> Self
where T: Into<i32>,

Sets the value of priority.

§Example
let x = FirewallPolicyRule::new().set_priority(42);
Source

pub fn set_or_clear_priority<T>(self, v: Option<T>) -> Self
where T: Into<i32>,

Sets or clears the value of priority.

§Example
let x = FirewallPolicyRule::new().set_or_clear_priority(Some(42));
let x = FirewallPolicyRule::new().set_or_clear_priority(None::<i32>);
Source

pub fn set_rule_name<T>(self, v: T) -> Self
where T: Into<String>,

Sets the value of rule_name.

§Example
let x = FirewallPolicyRule::new().set_rule_name("example");
Source

pub fn set_or_clear_rule_name<T>(self, v: Option<T>) -> Self
where T: Into<String>,

Sets or clears the value of rule_name.

§Example
let x = FirewallPolicyRule::new().set_or_clear_rule_name(Some("example"));
let x = FirewallPolicyRule::new().set_or_clear_rule_name(None::<String>);
Source

pub fn set_rule_tuple_count<T>(self, v: T) -> Self
where T: Into<i32>,

Sets the value of rule_tuple_count.

§Example
let x = FirewallPolicyRule::new().set_rule_tuple_count(42);
Source

pub fn set_or_clear_rule_tuple_count<T>(self, v: Option<T>) -> Self
where T: Into<i32>,

Sets or clears the value of rule_tuple_count.

§Example
let x = FirewallPolicyRule::new().set_or_clear_rule_tuple_count(Some(42));
let x = FirewallPolicyRule::new().set_or_clear_rule_tuple_count(None::<i32>);
Source

pub fn set_security_profile_group<T>(self, v: T) -> Self
where T: Into<String>,

Sets the value of security_profile_group.

§Example
let x = FirewallPolicyRule::new().set_security_profile_group("example");
Source

pub fn set_or_clear_security_profile_group<T>(self, v: Option<T>) -> Self
where T: Into<String>,

Sets or clears the value of security_profile_group.

§Example
let x = FirewallPolicyRule::new().set_or_clear_security_profile_group(Some("example"));
let x = FirewallPolicyRule::new().set_or_clear_security_profile_group(None::<String>);
Source

pub fn set_target_resources<T, V>(self, v: T) -> Self
where T: IntoIterator<Item = V>, V: Into<String>,

Sets the value of target_resources.

§Example
let x = FirewallPolicyRule::new().set_target_resources(["a", "b", "c"]);
Source

pub fn set_target_secure_tags<T, V>(self, v: T) -> Self
where T: IntoIterator<Item = V>, V: Into<FirewallPolicyRuleSecureTag>,

Sets the value of target_secure_tags.

§Example
use google_cloud_compute_v1::model::FirewallPolicyRuleSecureTag;
let x = FirewallPolicyRule::new()
    .set_target_secure_tags([
        FirewallPolicyRuleSecureTag::default()/* use setters */,
        FirewallPolicyRuleSecureTag::default()/* use (different) setters */,
    ]);
Source

pub fn set_target_service_accounts<T, V>(self, v: T) -> Self
where T: IntoIterator<Item = V>, V: Into<String>,

Sets the value of target_service_accounts.

§Example
let x = FirewallPolicyRule::new().set_target_service_accounts(["a", "b", "c"]);
Source

pub fn set_tls_inspect<T>(self, v: T) -> Self
where T: Into<bool>,

Sets the value of tls_inspect.

§Example
let x = FirewallPolicyRule::new().set_tls_inspect(true);
Source

pub fn set_or_clear_tls_inspect<T>(self, v: Option<T>) -> Self
where T: Into<bool>,

Sets or clears the value of tls_inspect.

§Example
let x = FirewallPolicyRule::new().set_or_clear_tls_inspect(Some(false));
let x = FirewallPolicyRule::new().set_or_clear_tls_inspect(None::<bool>);

Trait Implementations§

Source§

impl Clone for FirewallPolicyRule

Source§

fn clone(&self) -> FirewallPolicyRule

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for FirewallPolicyRule

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl Default for FirewallPolicyRule

Source§

fn default() -> FirewallPolicyRule

Returns the “default value” for a type. Read more
Source§

impl Message for FirewallPolicyRule

Source§

fn typename() -> &'static str

The typename of this message.
Source§

impl PartialEq for FirewallPolicyRule

Source§

fn eq(&self, other: &FirewallPolicyRule) -> bool

Tests for self and other values to be equal, and is used by ==.
1.0.0 · Source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
Source§

impl StructuralPartialEq for FirewallPolicyRule

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> PolicyExt for T
where T: ?Sized,

Source§

fn and<P, B, E>(self, other: P) -> And<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow only if self and other return Action::Follow. Read more
Source§

fn or<P, B, E>(self, other: P) -> Or<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow if either self or other returns Action::Follow. Read more
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

Source§

fn vzip(self) -> V

Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

impl<T> DeserializeOwned for T
where T: for<'de> Deserialize<'de>,