OpenStack v3.15.2, Mar 29 24

OpenStack v3.15.2 published on Friday, Mar 29, 2024 by Pulumi

openstack.firewall.GroupV2

Explore with Pulumi AI

OpenStack v3.15.2 published on Friday, Mar 29, 2024 by Pulumi

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as openstack from "@pulumi/openstack";

const rule1 = new openstack.firewall.RuleV2("rule1", {
    description: "drop TELNET traffic",
    action: "deny",
    protocol: "tcp",
    destinationPort: "23",
    enabled: true,
});
const rule2 = new openstack.firewall.RuleV2("rule2", {
    description: "drop NTP traffic",
    action: "deny",
    protocol: "udp",
    destinationPort: "123",
    enabled: false,
});
const policy1 = new openstack.firewall.PolicyV2("policy1", {rules: [rule1.id]});
const policy2 = new openstack.firewall.PolicyV2("policy2", {rules: [rule2.id]});
const group1 = new openstack.firewall.GroupV2("group1", {
    ingressFirewallPolicyId: policy1.id,
    egressFirewallPolicyId: policy2.id,
});

import pulumi
import pulumi_openstack as openstack

rule1 = openstack.firewall.RuleV2("rule1",
    description="drop TELNET traffic",
    action="deny",
    protocol="tcp",
    destination_port="23",
    enabled=True)
rule2 = openstack.firewall.RuleV2("rule2",
    description="drop NTP traffic",
    action="deny",
    protocol="udp",
    destination_port="123",
    enabled=False)
policy1 = openstack.firewall.PolicyV2("policy1", rules=[rule1.id])
policy2 = openstack.firewall.PolicyV2("policy2", rules=[rule2.id])
group1 = openstack.firewall.GroupV2("group1",
    ingress_firewall_policy_id=policy1.id,
    egress_firewall_policy_id=policy2.id)

package main

import (
	"github.com/pulumi/pulumi-openstack/sdk/v3/go/openstack/firewall"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		rule1, err := firewall.NewRuleV2(ctx, "rule1", &firewall.RuleV2Args{
			Description:     pulumi.String("drop TELNET traffic"),
			Action:          pulumi.String("deny"),
			Protocol:        pulumi.String("tcp"),
			DestinationPort: pulumi.String("23"),
			Enabled:         pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		rule2, err := firewall.NewRuleV2(ctx, "rule2", &firewall.RuleV2Args{
			Description:     pulumi.String("drop NTP traffic"),
			Action:          pulumi.String("deny"),
			Protocol:        pulumi.String("udp"),
			DestinationPort: pulumi.String("123"),
			Enabled:         pulumi.Bool(false),
		})
		if err != nil {
			return err
		}
		policy1, err := firewall.NewPolicyV2(ctx, "policy1", &firewall.PolicyV2Args{
			Rules: pulumi.StringArray{
				rule1.ID(),
			},
		})
		if err != nil {
			return err
		}
		policy2, err := firewall.NewPolicyV2(ctx, "policy2", &firewall.PolicyV2Args{
			Rules: pulumi.StringArray{
				rule2.ID(),
			},
		})
		if err != nil {
			return err
		}
		_, err = firewall.NewGroupV2(ctx, "group1", &firewall.GroupV2Args{
			IngressFirewallPolicyId: policy1.ID(),
			EgressFirewallPolicyId:  policy2.ID(),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using OpenStack = Pulumi.OpenStack;

return await Deployment.RunAsync(() => 
{
    var rule1 = new OpenStack.Firewall.RuleV2("rule1", new()
    {
        Description = "drop TELNET traffic",
        Action = "deny",
        Protocol = "tcp",
        DestinationPort = "23",
        Enabled = true,
    });

    var rule2 = new OpenStack.Firewall.RuleV2("rule2", new()
    {
        Description = "drop NTP traffic",
        Action = "deny",
        Protocol = "udp",
        DestinationPort = "123",
        Enabled = false,
    });

    var policy1 = new OpenStack.Firewall.PolicyV2("policy1", new()
    {
        Rules = new[]
        {
            rule1.Id,
        },
    });

    var policy2 = new OpenStack.Firewall.PolicyV2("policy2", new()
    {
        Rules = new[]
        {
            rule2.Id,
        },
    });

    var group1 = new OpenStack.Firewall.GroupV2("group1", new()
    {
        IngressFirewallPolicyId = policy1.Id,
        EgressFirewallPolicyId = policy2.Id,
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.openstack.firewall.RuleV2;
import com.pulumi.openstack.firewall.RuleV2Args;
import com.pulumi.openstack.firewall.PolicyV2;
import com.pulumi.openstack.firewall.PolicyV2Args;
import com.pulumi.openstack.firewall.GroupV2;
import com.pulumi.openstack.firewall.GroupV2Args;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var rule1 = new RuleV2("rule1", RuleV2Args.builder()        
            .description("drop TELNET traffic")
            .action("deny")
            .protocol("tcp")
            .destinationPort("23")
            .enabled("true")
            .build());

        var rule2 = new RuleV2("rule2", RuleV2Args.builder()        
            .description("drop NTP traffic")
            .action("deny")
            .protocol("udp")
            .destinationPort("123")
            .enabled("false")
            .build());

        var policy1 = new PolicyV2("policy1", PolicyV2Args.builder()        
            .rules(rule1.id())
            .build());

        var policy2 = new PolicyV2("policy2", PolicyV2Args.builder()        
            .rules(rule2.id())
            .build());

        var group1 = new GroupV2("group1", GroupV2Args.builder()        
            .ingressFirewallPolicyId(policy1.id())
            .egressFirewallPolicyId(policy2.id())
            .build());

    }
}

resources:
  rule1:
    type: openstack:firewall:RuleV2
    properties:
      description: drop TELNET traffic
      action: deny
      protocol: tcp
      destinationPort: '23'
      enabled: 'true'
  rule2:
    type: openstack:firewall:RuleV2
    properties:
      description: drop NTP traffic
      action: deny
      protocol: udp
      destinationPort: '123'
      enabled: 'false'
  policy1:
    type: openstack:firewall:PolicyV2
    properties:
      rules:
        - ${rule1.id}
  policy2:
    type: openstack:firewall:PolicyV2
    properties:
      rules:
        - ${rule2.id}
  group1:
    type: openstack:firewall:GroupV2
    properties:
      ingressFirewallPolicyId: ${policy1.id}
      egressFirewallPolicyId: ${policy2.id}

Create GroupV2 Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new GroupV2(name: string, args?: GroupV2Args, opts?: CustomResourceOptions);

@overload
def GroupV2(resource_name: str,
            args: Optional[GroupV2Args] = None,
            opts: Optional[ResourceOptions] = None)

@overload
def GroupV2(resource_name: str,
            opts: Optional[ResourceOptions] = None,
            admin_state_up: Optional[bool] = None,
            description: Optional[str] = None,
            egress_firewall_policy_id: Optional[str] = None,
            ingress_firewall_policy_id: Optional[str] = None,
            name: Optional[str] = None,
            ports: Optional[Sequence[str]] = None,
            project_id: Optional[str] = None,
            region: Optional[str] = None,
            shared: Optional[bool] = None,
            tenant_id: Optional[str] = None)

func NewGroupV2(ctx *Context, name string, args *GroupV2Args, opts ...ResourceOption) (*GroupV2, error)

public GroupV2(string name, GroupV2Args? args = null, CustomResourceOptions? opts = null)

public GroupV2(String name, GroupV2Args args)
public GroupV2(String name, GroupV2Args args, CustomResourceOptions options)

type: openstack:firewall:GroupV2
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args GroupV2Args: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args GroupV2Args: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args GroupV2Args: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args GroupV2Args: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args GroupV2Args: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Example

The following reference example uses placeholder values for all input properties.

var groupV2Resource = new OpenStack.Firewall.GroupV2("groupV2Resource", new()
{
    AdminStateUp = false,
    Description = "string",
    EgressFirewallPolicyId = "string",
    IngressFirewallPolicyId = "string",
    Name = "string",
    Ports = new[]
    {
        "string",
    },
    ProjectId = "string",
    Region = "string",
    Shared = false,
    TenantId = "string",
});

example, err := firewall.NewGroupV2(ctx, "groupV2Resource", &firewall.GroupV2Args{
	AdminStateUp:            pulumi.Bool(false),
	Description:             pulumi.String("string"),
	EgressFirewallPolicyId:  pulumi.String("string"),
	IngressFirewallPolicyId: pulumi.String("string"),
	Name:                    pulumi.String("string"),
	Ports: pulumi.StringArray{
		pulumi.String("string"),
	},
	ProjectId: pulumi.String("string"),
	Region:    pulumi.String("string"),
	Shared:    pulumi.Bool(false),
	TenantId:  pulumi.String("string"),
})

var groupV2Resource = new GroupV2("groupV2Resource", GroupV2Args.builder()        
    .adminStateUp(false)
    .description("string")
    .egressFirewallPolicyId("string")
    .ingressFirewallPolicyId("string")
    .name("string")
    .ports("string")
    .projectId("string")
    .region("string")
    .shared(false)
    .tenantId("string")
    .build());

group_v2_resource = openstack.firewall.GroupV2("groupV2Resource",
    admin_state_up=False,
    description="string",
    egress_firewall_policy_id="string",
    ingress_firewall_policy_id="string",
    name="string",
    ports=["string"],
    project_id="string",
    region="string",
    shared=False,
    tenant_id="string")

const groupV2Resource = new openstack.firewall.GroupV2("groupV2Resource", {
    adminStateUp: false,
    description: "string",
    egressFirewallPolicyId: "string",
    ingressFirewallPolicyId: "string",
    name: "string",
    ports: ["string"],
    projectId: "string",
    region: "string",
    shared: false,
    tenantId: "string",
});

type: openstack:firewall:GroupV2
properties:
    adminStateUp: false
    description: string
    egressFirewallPolicyId: string
    ingressFirewallPolicyId: string
    name: string
    ports:
        - string
    projectId: string
    region: string
    shared: false
    tenantId: string

GroupV2 Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The GroupV2 resource accepts the following input properties:

AdminStateUp bool: Administrative up/down status for the firewall group (must be "true" or "false" if provided - defaults to "true"). Changing this updates the admin_state_up of an existing firewall group.
Description string: A description for the firewall group. Changing this updates the description of an existing firewall group.
EgressFirewallPolicyId string: The egress firewall policy resource id for the firewall group. Changing this updates the egress_firewall_policy_id of an existing firewall group.
IngressFirewallPolicyId string: The ingress firewall policy resource id for the firewall group. Changing this updates the ingress_firewall_policy_id of an existing firewall group.
Name string: A name for the firewall group. Changing this updates the name of an existing firewall.
Ports List<string>: Port(s) to associate this firewall group with. Must be a list of strings. Changing this updates the associated ports of an existing firewall group.
ProjectId string: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall group. Required if admin wants to create a firewall group for another project. Changing this creates a new firewall group.
Region string: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall group. If omitted, the region argument of the provider is used. Changing this creates a new firewall group.
Shared bool: Sharing status of the firewall group (must be "true" or "false" if provided). If this is "true" the firewall group is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall group. Only administrative users can specify if the firewall group should be shared.
TenantId string: This argument conflicts and is interchangeable with project_id. The owner of the firewall group. Required if admin wants to create a firewall group for another tenant. Changing this creates a new firewall group.

AdminStateUp bool: Administrative up/down status for the firewall group (must be "true" or "false" if provided - defaults to "true"). Changing this updates the admin_state_up of an existing firewall group.
Description string: A description for the firewall group. Changing this updates the description of an existing firewall group.
EgressFirewallPolicyId string: The egress firewall policy resource id for the firewall group. Changing this updates the egress_firewall_policy_id of an existing firewall group.
IngressFirewallPolicyId string: The ingress firewall policy resource id for the firewall group. Changing this updates the ingress_firewall_policy_id of an existing firewall group.
Name string: A name for the firewall group. Changing this updates the name of an existing firewall.
Ports []string: Port(s) to associate this firewall group with. Must be a list of strings. Changing this updates the associated ports of an existing firewall group.
ProjectId string: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall group. Required if admin wants to create a firewall group for another project. Changing this creates a new firewall group.
Region string: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall group. If omitted, the region argument of the provider is used. Changing this creates a new firewall group.
Shared bool: Sharing status of the firewall group (must be "true" or "false" if provided). If this is "true" the firewall group is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall group. Only administrative users can specify if the firewall group should be shared.
TenantId string: This argument conflicts and is interchangeable with project_id. The owner of the firewall group. Required if admin wants to create a firewall group for another tenant. Changing this creates a new firewall group.

adminStateUp Boolean: Administrative up/down status for the firewall group (must be "true" or "false" if provided - defaults to "true"). Changing this updates the admin_state_up of an existing firewall group.
description String: A description for the firewall group. Changing this updates the description of an existing firewall group.
egressFirewallPolicyId String: The egress firewall policy resource id for the firewall group. Changing this updates the egress_firewall_policy_id of an existing firewall group.
ingressFirewallPolicyId String: The ingress firewall policy resource id for the firewall group. Changing this updates the ingress_firewall_policy_id of an existing firewall group.
name String: A name for the firewall group. Changing this updates the name of an existing firewall.
ports List<String>: Port(s) to associate this firewall group with. Must be a list of strings. Changing this updates the associated ports of an existing firewall group.
projectId String: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall group. Required if admin wants to create a firewall group for another project. Changing this creates a new firewall group.
region String: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall group. If omitted, the region argument of the provider is used. Changing this creates a new firewall group.
shared Boolean: Sharing status of the firewall group (must be "true" or "false" if provided). If this is "true" the firewall group is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall group. Only administrative users can specify if the firewall group should be shared.
tenantId String: This argument conflicts and is interchangeable with project_id. The owner of the firewall group. Required if admin wants to create a firewall group for another tenant. Changing this creates a new firewall group.

adminStateUp boolean: Administrative up/down status for the firewall group (must be "true" or "false" if provided - defaults to "true"). Changing this updates the admin_state_up of an existing firewall group.
description string: A description for the firewall group. Changing this updates the description of an existing firewall group.
egressFirewallPolicyId string: The egress firewall policy resource id for the firewall group. Changing this updates the egress_firewall_policy_id of an existing firewall group.
ingressFirewallPolicyId string: The ingress firewall policy resource id for the firewall group. Changing this updates the ingress_firewall_policy_id of an existing firewall group.
name string: A name for the firewall group. Changing this updates the name of an existing firewall.
ports string[]: Port(s) to associate this firewall group with. Must be a list of strings. Changing this updates the associated ports of an existing firewall group.
projectId string: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall group. Required if admin wants to create a firewall group for another project. Changing this creates a new firewall group.
region string: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall group. If omitted, the region argument of the provider is used. Changing this creates a new firewall group.
shared boolean: Sharing status of the firewall group (must be "true" or "false" if provided). If this is "true" the firewall group is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall group. Only administrative users can specify if the firewall group should be shared.
tenantId string: This argument conflicts and is interchangeable with project_id. The owner of the firewall group. Required if admin wants to create a firewall group for another tenant. Changing this creates a new firewall group.

admin_state_up bool: Administrative up/down status for the firewall group (must be "true" or "false" if provided - defaults to "true"). Changing this updates the admin_state_up of an existing firewall group.
description str: A description for the firewall group. Changing this updates the description of an existing firewall group.
egress_firewall_policy_id str: The egress firewall policy resource id for the firewall group. Changing this updates the egress_firewall_policy_id of an existing firewall group.
ingress_firewall_policy_id str: The ingress firewall policy resource id for the firewall group. Changing this updates the ingress_firewall_policy_id of an existing firewall group.
name str: A name for the firewall group. Changing this updates the name of an existing firewall.
ports Sequence[str]: Port(s) to associate this firewall group with. Must be a list of strings. Changing this updates the associated ports of an existing firewall group.
project_id str: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall group. Required if admin wants to create a firewall group for another project. Changing this creates a new firewall group.
region str: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall group. If omitted, the region argument of the provider is used. Changing this creates a new firewall group.
shared bool: Sharing status of the firewall group (must be "true" or "false" if provided). If this is "true" the firewall group is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall group. Only administrative users can specify if the firewall group should be shared.
tenant_id str: This argument conflicts and is interchangeable with project_id. The owner of the firewall group. Required if admin wants to create a firewall group for another tenant. Changing this creates a new firewall group.

adminStateUp Boolean: Administrative up/down status for the firewall group (must be "true" or "false" if provided - defaults to "true"). Changing this updates the admin_state_up of an existing firewall group.
description String: A description for the firewall group. Changing this updates the description of an existing firewall group.
egressFirewallPolicyId String: The egress firewall policy resource id for the firewall group. Changing this updates the egress_firewall_policy_id of an existing firewall group.
ingressFirewallPolicyId String: The ingress firewall policy resource id for the firewall group. Changing this updates the ingress_firewall_policy_id of an existing firewall group.
name String: A name for the firewall group. Changing this updates the name of an existing firewall.
ports List<String>: Port(s) to associate this firewall group with. Must be a list of strings. Changing this updates the associated ports of an existing firewall group.
projectId String: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall group. Required if admin wants to create a firewall group for another project. Changing this creates a new firewall group.
region String: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall group. If omitted, the region argument of the provider is used. Changing this creates a new firewall group.
shared Boolean: Sharing status of the firewall group (must be "true" or "false" if provided). If this is "true" the firewall group is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall group. Only administrative users can specify if the firewall group should be shared.
tenantId String: This argument conflicts and is interchangeable with project_id. The owner of the firewall group. Required if admin wants to create a firewall group for another tenant. Changing this creates a new firewall group.

Outputs

All input properties are implicitly available as output properties. Additionally, the GroupV2 resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.
Status string: The status of the firewall group.

Id string: The provider-assigned unique ID for this managed resource.
Status string: The status of the firewall group.

id String: The provider-assigned unique ID for this managed resource.
status String: The status of the firewall group.

id string: The provider-assigned unique ID for this managed resource.
status string: The status of the firewall group.

id str: The provider-assigned unique ID for this managed resource.
status str: The status of the firewall group.

id String: The provider-assigned unique ID for this managed resource.
status String: The status of the firewall group.

Look up Existing GroupV2 Resource

Get an existing GroupV2 resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: GroupV2State, opts?: CustomResourceOptions): GroupV2

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        admin_state_up: Optional[bool] = None,
        description: Optional[str] = None,
        egress_firewall_policy_id: Optional[str] = None,
        ingress_firewall_policy_id: Optional[str] = None,
        name: Optional[str] = None,
        ports: Optional[Sequence[str]] = None,
        project_id: Optional[str] = None,
        region: Optional[str] = None,
        shared: Optional[bool] = None,
        status: Optional[str] = None,
        tenant_id: Optional[str] = None) -> GroupV2

func GetGroupV2(ctx *Context, name string, id IDInput, state *GroupV2State, opts ...ResourceOption) (*GroupV2, error)

public static GroupV2 Get(string name, Input<string> id, GroupV2State? state, CustomResourceOptions? opts = null)

public static GroupV2 get(String name, Output<String> id, GroupV2State state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AdminStateUp bool: Administrative up/down status for the firewall group (must be "true" or "false" if provided - defaults to "true"). Changing this updates the admin_state_up of an existing firewall group.
Description string: A description for the firewall group. Changing this updates the description of an existing firewall group.
EgressFirewallPolicyId string: The egress firewall policy resource id for the firewall group. Changing this updates the egress_firewall_policy_id of an existing firewall group.
IngressFirewallPolicyId string: The ingress firewall policy resource id for the firewall group. Changing this updates the ingress_firewall_policy_id of an existing firewall group.
Name string: A name for the firewall group. Changing this updates the name of an existing firewall.
Ports List<string>: Port(s) to associate this firewall group with. Must be a list of strings. Changing this updates the associated ports of an existing firewall group.
ProjectId string: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall group. Required if admin wants to create a firewall group for another project. Changing this creates a new firewall group.
Region string: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall group. If omitted, the region argument of the provider is used. Changing this creates a new firewall group.
Shared bool: Sharing status of the firewall group (must be "true" or "false" if provided). If this is "true" the firewall group is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall group. Only administrative users can specify if the firewall group should be shared.
Status string: The status of the firewall group.
TenantId string: This argument conflicts and is interchangeable with project_id. The owner of the firewall group. Required if admin wants to create a firewall group for another tenant. Changing this creates a new firewall group.

AdminStateUp bool: Administrative up/down status for the firewall group (must be "true" or "false" if provided - defaults to "true"). Changing this updates the admin_state_up of an existing firewall group.
Description string: A description for the firewall group. Changing this updates the description of an existing firewall group.
EgressFirewallPolicyId string: The egress firewall policy resource id for the firewall group. Changing this updates the egress_firewall_policy_id of an existing firewall group.
IngressFirewallPolicyId string: The ingress firewall policy resource id for the firewall group. Changing this updates the ingress_firewall_policy_id of an existing firewall group.
Name string: A name for the firewall group. Changing this updates the name of an existing firewall.
Ports []string: Port(s) to associate this firewall group with. Must be a list of strings. Changing this updates the associated ports of an existing firewall group.
ProjectId string: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall group. Required if admin wants to create a firewall group for another project. Changing this creates a new firewall group.
Region string: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall group. If omitted, the region argument of the provider is used. Changing this creates a new firewall group.
Shared bool: Sharing status of the firewall group (must be "true" or "false" if provided). If this is "true" the firewall group is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall group. Only administrative users can specify if the firewall group should be shared.
Status string: The status of the firewall group.
TenantId string: This argument conflicts and is interchangeable with project_id. The owner of the firewall group. Required if admin wants to create a firewall group for another tenant. Changing this creates a new firewall group.

adminStateUp Boolean: Administrative up/down status for the firewall group (must be "true" or "false" if provided - defaults to "true"). Changing this updates the admin_state_up of an existing firewall group.
description String: A description for the firewall group. Changing this updates the description of an existing firewall group.
egressFirewallPolicyId String: The egress firewall policy resource id for the firewall group. Changing this updates the egress_firewall_policy_id of an existing firewall group.
ingressFirewallPolicyId String: The ingress firewall policy resource id for the firewall group. Changing this updates the ingress_firewall_policy_id of an existing firewall group.
name String: A name for the firewall group. Changing this updates the name of an existing firewall.
ports List<String>: Port(s) to associate this firewall group with. Must be a list of strings. Changing this updates the associated ports of an existing firewall group.
projectId String: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall group. Required if admin wants to create a firewall group for another project. Changing this creates a new firewall group.
region String: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall group. If omitted, the region argument of the provider is used. Changing this creates a new firewall group.
shared Boolean: Sharing status of the firewall group (must be "true" or "false" if provided). If this is "true" the firewall group is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall group. Only administrative users can specify if the firewall group should be shared.
status String: The status of the firewall group.
tenantId String: This argument conflicts and is interchangeable with project_id. The owner of the firewall group. Required if admin wants to create a firewall group for another tenant. Changing this creates a new firewall group.

adminStateUp boolean: Administrative up/down status for the firewall group (must be "true" or "false" if provided - defaults to "true"). Changing this updates the admin_state_up of an existing firewall group.
description string: A description for the firewall group. Changing this updates the description of an existing firewall group.
egressFirewallPolicyId string: The egress firewall policy resource id for the firewall group. Changing this updates the egress_firewall_policy_id of an existing firewall group.
ingressFirewallPolicyId string: The ingress firewall policy resource id for the firewall group. Changing this updates the ingress_firewall_policy_id of an existing firewall group.
name string: A name for the firewall group. Changing this updates the name of an existing firewall.
ports string[]: Port(s) to associate this firewall group with. Must be a list of strings. Changing this updates the associated ports of an existing firewall group.
projectId string: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall group. Required if admin wants to create a firewall group for another project. Changing this creates a new firewall group.
region string: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall group. If omitted, the region argument of the provider is used. Changing this creates a new firewall group.
shared boolean: Sharing status of the firewall group (must be "true" or "false" if provided). If this is "true" the firewall group is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall group. Only administrative users can specify if the firewall group should be shared.
status string: The status of the firewall group.
tenantId string: This argument conflicts and is interchangeable with project_id. The owner of the firewall group. Required if admin wants to create a firewall group for another tenant. Changing this creates a new firewall group.

admin_state_up bool: Administrative up/down status for the firewall group (must be "true" or "false" if provided - defaults to "true"). Changing this updates the admin_state_up of an existing firewall group.
description str: A description for the firewall group. Changing this updates the description of an existing firewall group.
egress_firewall_policy_id str: The egress firewall policy resource id for the firewall group. Changing this updates the egress_firewall_policy_id of an existing firewall group.
ingress_firewall_policy_id str: The ingress firewall policy resource id for the firewall group. Changing this updates the ingress_firewall_policy_id of an existing firewall group.
name str: A name for the firewall group. Changing this updates the name of an existing firewall.
ports Sequence[str]: Port(s) to associate this firewall group with. Must be a list of strings. Changing this updates the associated ports of an existing firewall group.
project_id str: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall group. Required if admin wants to create a firewall group for another project. Changing this creates a new firewall group.
region str: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall group. If omitted, the region argument of the provider is used. Changing this creates a new firewall group.
shared bool: Sharing status of the firewall group (must be "true" or "false" if provided). If this is "true" the firewall group is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall group. Only administrative users can specify if the firewall group should be shared.
status str: The status of the firewall group.
tenant_id str: This argument conflicts and is interchangeable with project_id. The owner of the firewall group. Required if admin wants to create a firewall group for another tenant. Changing this creates a new firewall group.

adminStateUp Boolean: Administrative up/down status for the firewall group (must be "true" or "false" if provided - defaults to "true"). Changing this updates the admin_state_up of an existing firewall group.
description String: A description for the firewall group. Changing this updates the description of an existing firewall group.
egressFirewallPolicyId String: The egress firewall policy resource id for the firewall group. Changing this updates the egress_firewall_policy_id of an existing firewall group.
ingressFirewallPolicyId String: The ingress firewall policy resource id for the firewall group. Changing this updates the ingress_firewall_policy_id of an existing firewall group.
name String: A name for the firewall group. Changing this updates the name of an existing firewall.
ports List<String>: Port(s) to associate this firewall group with. Must be a list of strings. Changing this updates the associated ports of an existing firewall group.
projectId String: This argument conflicts and is interchangeable with tenant_id. The owner of the firewall group. Required if admin wants to create a firewall group for another project. Changing this creates a new firewall group.
region String: The region in which to obtain the v2 networking client. A networking client is needed to create a firewall group. If omitted, the region argument of the provider is used. Changing this creates a new firewall group.
shared Boolean: Sharing status of the firewall group (must be "true" or "false" if provided). If this is "true" the firewall group is visible to, and can be used in, firewalls in other tenants. Changing this updates the shared status of an existing firewall group. Only administrative users can specify if the firewall group should be shared.
status String: The status of the firewall group.
tenantId String: This argument conflicts and is interchangeable with project_id. The owner of the firewall group. Required if admin wants to create a firewall group for another tenant. Changing this creates a new firewall group.

Import

Firewall groups can be imported using the id, e.g.

$ pulumi import openstack:firewall/groupV2:GroupV2 group_1 c9e39fb2-ce20-46c8-a964-25f3898c7a97

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: OpenStack pulumi/pulumi-openstack
License: Apache-2.0
Notes: This Pulumi package is based on the openstack Terraform Provider.

OpenStack v3.15.2 published on Friday, Mar 29, 2024 by Pulumi

pulumi/pulumi-openstack

openstack.firewall.GroupV2

On this page

On this page

Example Usage

Create GroupV2 Resource

Constructor syntax

Parameters

Example

GroupV2 Resource Properties

Inputs

Outputs

Look up Existing GroupV2 Resource

Import

Package Details

On this page

On this page