Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

add firewall enforcement variable to VPC #1312

Merged
merged 7 commits into from
Apr 11, 2023
Merged

add firewall enforcement variable to VPC #1312

merged 7 commits into from
Apr 11, 2023

Conversation

fawzihmouda
Copy link
Contributor

@fawzihmouda fawzihmouda commented Apr 9, 2023
edited
Loading

since we can use both net-vpc-firewall-policy and net-vpc-firewall at the same time in a VPC, this PR will add the ability to choose the enforcement order for the Firewalls Policy

Default enforcement order is AFTER_CLASSIC_FIREWALL https://cloud.google.com/vpc/docs/firewall-policies-overview#rule-evaluation

@fawzihmouda fawzihmouda closed this Apr 9, 2023
@ludoo
Copy link
Collaborator

ludoo commented Apr 11, 2023

I don't think there's a way yet to control this via Terraform.

@juliocc
Copy link
Collaborator

juliocc commented Apr 11, 2023

I think version 4.60 of the provider added support for this

@juliocc juliocc reopened this Apr 11, 2023
@fawzihmouda
Copy link
Contributor Author

yes its available in version 4.60, but for some reason the checks are breaking this is why i closed the PR

juliocc
juliocc requested changes Apr 11, 2023
View reviewed changes
Copy link
Collaborator

@juliocc juliocc left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • The provider is currently pinned to version 4.59. Can you update default-versions.tf and then run find . -name versions.tf -exec cp default-versions.tf {} \; from the root of the repo to upgrade it?
  • Please add at least one test to ensure the new variable is working correctly.
  • I also left a couple of comments in variables.tf and main.tf. Please take a look.

modules/net-vpc/variables.tf Outdated Show resolved Hide resolved
modules/net-vpc/main.tf Outdated Show resolved Hide resolved
@juliocc juliocc enabled auto-merge April 11, 2023 14:04
@juliocc
Copy link
Collaborator

juliocc commented Apr 11, 2023

Thanks for the PR and applying the requested changes @fawzihmouda

@juliocc juliocc merged commit f41362e into GoogleCloudPlatform:master Apr 11, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@juliocc juliocc juliocc approved these changes

Assignees
No one assigned
Labels
on:blueprints on:modules
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@fawzihmouda @ludoo @juliocc