mirror of
https://github.com/imjasonh/gcloud-help
synced 2026-07-18 14:56:05 +00:00
gcloud: Fri Mar 22 09:56:14 UTC 2024
This commit is contained in:
parent
75379bf68b
commit
5b4fac9106
182 changed files with 4221 additions and 251 deletions
28
gcloud/network-security/security-profiles/help
Normal file
28
gcloud/network-security/security-profiles/help
Normal file
|
|
@ -0,0 +1,28 @@
|
|||
NAME
|
||||
gcloud network-security security-profiles - manage Network Security -
|
||||
Security Profiles
|
||||
|
||||
SYNOPSIS
|
||||
gcloud network-security security-profiles GROUP [GCLOUD_WIDE_FLAG ...]
|
||||
|
||||
DESCRIPTION
|
||||
Manage Network Security - Security Profiles.
|
||||
|
||||
GCLOUD WIDE FLAGS
|
||||
These flags are available to all commands: --help.
|
||||
|
||||
Run $ gcloud help for details.
|
||||
|
||||
GROUPS
|
||||
GROUP is one of the following:
|
||||
|
||||
threat-prevention
|
||||
Manage Security Profiles - Threat Prevention Profile.
|
||||
|
||||
NOTES
|
||||
These variants are also available:
|
||||
|
||||
$ gcloud alpha network-security security-profiles
|
||||
|
||||
$ gcloud beta network-security security-profiles
|
||||
|
||||
|
|
@ -0,0 +1,133 @@
|
|||
NAME
|
||||
gcloud network-security security-profiles threat-prevention add-override -
|
||||
add overrides to Threat Prevention Profile
|
||||
|
||||
SYNOPSIS
|
||||
gcloud network-security security-profiles threat-prevention add-override
|
||||
(SECURITY_PROFILE : --location=LOCATION --organization=ORGANIZATION)
|
||||
--action=ACTION
|
||||
(--severities=[SEVERITY_LEVEL,...] | --threat-ids=[THREAT-ID,...])
|
||||
[--async] [--update-labels=[KEY=VALUE,...]]
|
||||
[--clear-labels | --remove-labels=[KEY,...]] [GCLOUD_WIDE_FLAG ...]
|
||||
|
||||
DESCRIPTION
|
||||
Add severities or threat-ids to existing threat prevention profile with
|
||||
intended action on each specified. Check the updates of add-override
|
||||
command by using gcloud network-security security-profiles
|
||||
threat-prevention list-override my-security-profile.
|
||||
|
||||
For more examples, refer to the EXAMPLES section below.
|
||||
|
||||
EXAMPLES
|
||||
To add an override, run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
add-override my-security-profile --severities=MEDIUM \
|
||||
--action=ALLOW
|
||||
|
||||
my-security-profile is the name of the Security Profile in the format
|
||||
organizations/{organizationID}/locations/{location}/securityProfiles/
|
||||
{security_profile_id} where organizationID is the organization ID to which
|
||||
the changes should apply, location - global specified and
|
||||
security_profile_id the Security Profile Identifier
|
||||
|
||||
POSITIONAL ARGUMENTS
|
||||
Security profile resource - Security Profile Name. The arguments in this
|
||||
group can be used to specify the attributes of this resource.
|
||||
|
||||
This must be specified.
|
||||
|
||||
SECURITY_PROFILE
|
||||
ID of the security_profile or fully qualified identifier for the
|
||||
security_profile.
|
||||
|
||||
To set the security_profile attribute:
|
||||
▸ provide the argument security_profile on the command line.
|
||||
|
||||
This positional argument must be specified if any of the other
|
||||
arguments in this group are specified.
|
||||
|
||||
--location=LOCATION
|
||||
location of the security_profile - Global.
|
||||
|
||||
To set the location attribute:
|
||||
▸ provide the argument security_profile on the command line with a
|
||||
fully specified name;
|
||||
▸ provide the argument --location on the command line.
|
||||
|
||||
--organization=ORGANIZATION
|
||||
Organization ID to which the changes should apply.
|
||||
|
||||
To set the organization attribute:
|
||||
▸ provide the argument security_profile on the command line with a
|
||||
fully specified name;
|
||||
▸ provide the argument --organization on the command line.
|
||||
|
||||
REQUIRED FLAGS
|
||||
--action=ACTION
|
||||
Action associated with severity or threat-id. ACTION must be one of:
|
||||
DEFAULT, ALLOW, ALERT, DENY.
|
||||
|
||||
Exactly one of these must be specified:
|
||||
|
||||
--severities=[SEVERITY_LEVEL,...]
|
||||
List of comma-separated severities where each value in the list
|
||||
indicates the severity of the threat.
|
||||
|
||||
--threat-ids=[THREAT-ID,...]
|
||||
List of comma-separated threat identifiers where each identifier in
|
||||
the list is a vendor-specified Signature ID representing a threat
|
||||
type.
|
||||
|
||||
OPTIONAL FLAGS
|
||||
--async
|
||||
Return immediately, without waiting for the operation in progress to
|
||||
complete. The default is False.
|
||||
|
||||
--update-labels=[KEY=VALUE,...]
|
||||
List of label KEY=VALUE pairs to update. If a label exists, its value
|
||||
is modified. Otherwise, a new label is created.
|
||||
|
||||
Keys must start with a lowercase character and contain only hyphens
|
||||
(-), underscores (_), lowercase characters, and numbers. Values must
|
||||
contain only hyphens (-), underscores (_), lowercase characters, and
|
||||
numbers.
|
||||
|
||||
At most one of these can be specified:
|
||||
|
||||
--clear-labels
|
||||
Remove all labels. If --update-labels is also specified then
|
||||
--clear-labels is applied first.
|
||||
|
||||
For example, to remove all labels:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
add-override --clear-labels
|
||||
|
||||
To remove all existing labels and create two new labels, foo and baz:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
add-override --clear-labels --update-labels foo=bar,baz=qux
|
||||
|
||||
--remove-labels=[KEY,...]
|
||||
List of label keys to remove. If a label does not exist it is
|
||||
silently ignored. If --update-labels is also specified then
|
||||
--update-labels is applied first.
|
||||
|
||||
GCLOUD WIDE FLAGS
|
||||
These flags are available to all commands: --access-token-file, --account,
|
||||
--billing-project, --configuration, --flags-file, --flatten, --format,
|
||||
--help, --impersonate-service-account, --log-http, --project, --quiet,
|
||||
--trace-token, --user-output-enabled, --verbosity.
|
||||
|
||||
Run $ gcloud help for details.
|
||||
|
||||
NOTES
|
||||
These variants are also available:
|
||||
|
||||
$ gcloud alpha network-security security-profiles \
|
||||
threat-prevention add-override
|
||||
|
||||
$ gcloud beta network-security security-profiles threat-prevention \
|
||||
add-override
|
||||
|
||||
|
|
@ -0,0 +1,85 @@
|
|||
NAME
|
||||
gcloud network-security security-profiles threat-prevention create - create
|
||||
a new Threat Prevention Profile
|
||||
|
||||
SYNOPSIS
|
||||
gcloud network-security security-profiles threat-prevention create
|
||||
(SECURITY_PROFILE : --location=LOCATION --organization=ORGANIZATION)
|
||||
[--async] [--description=DESCRIPTION] [--labels=[KEY=VALUE,...]]
|
||||
[GCLOUD_WIDE_FLAG ...]
|
||||
|
||||
DESCRIPTION
|
||||
Create a new Security Profile with the given name.
|
||||
|
||||
EXAMPLES
|
||||
To create a Security Profile with the name my-security-profile and an
|
||||
optional description as New Security Profile, run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
create my-security-profile --description="New Security Profile"
|
||||
|
||||
POSITIONAL ARGUMENTS
|
||||
Security profile resource - Security Profile Name. The arguments in this
|
||||
group can be used to specify the attributes of this resource.
|
||||
|
||||
This must be specified.
|
||||
|
||||
SECURITY_PROFILE
|
||||
ID of the security_profile or fully qualified identifier for the
|
||||
security_profile.
|
||||
|
||||
To set the security_profile attribute:
|
||||
▸ provide the argument security_profile on the command line.
|
||||
|
||||
This positional argument must be specified if any of the other
|
||||
arguments in this group are specified.
|
||||
|
||||
--location=LOCATION
|
||||
location of the security_profile - Global.
|
||||
|
||||
To set the location attribute:
|
||||
▸ provide the argument security_profile on the command line with a
|
||||
fully specified name;
|
||||
▸ provide the argument --location on the command line.
|
||||
|
||||
--organization=ORGANIZATION
|
||||
Organization ID to which the changes should apply.
|
||||
|
||||
To set the organization attribute:
|
||||
▸ provide the argument security_profile on the command line with a
|
||||
fully specified name;
|
||||
▸ provide the argument --organization on the command line.
|
||||
|
||||
FLAGS
|
||||
--async
|
||||
Return immediately, without waiting for the operation in progress to
|
||||
complete. The default is False.
|
||||
|
||||
--description=DESCRIPTION
|
||||
Brief description of the security profile
|
||||
|
||||
--labels=[KEY=VALUE,...]
|
||||
List of label KEY=VALUE pairs to add.
|
||||
|
||||
Keys must start with a lowercase character and contain only hyphens
|
||||
(-), underscores (_), lowercase characters, and numbers. Values must
|
||||
contain only hyphens (-), underscores (_), lowercase characters, and
|
||||
numbers.
|
||||
|
||||
GCLOUD WIDE FLAGS
|
||||
These flags are available to all commands: --access-token-file, --account,
|
||||
--billing-project, --configuration, --flags-file, --flatten, --format,
|
||||
--help, --impersonate-service-account, --log-http, --project, --quiet,
|
||||
--trace-token, --user-output-enabled, --verbosity.
|
||||
|
||||
Run $ gcloud help for details.
|
||||
|
||||
NOTES
|
||||
These variants are also available:
|
||||
|
||||
$ gcloud alpha network-security security-profiles \
|
||||
threat-prevention create
|
||||
|
||||
$ gcloud beta network-security security-profiles threat-prevention \
|
||||
create
|
||||
|
||||
|
|
@ -0,0 +1,78 @@
|
|||
NAME
|
||||
gcloud network-security security-profiles threat-prevention delete - delete
|
||||
a Security Profile
|
||||
|
||||
SYNOPSIS
|
||||
gcloud network-security security-profiles threat-prevention delete
|
||||
(SECURITY_PROFILE : --location=LOCATION --organization=ORGANIZATION)
|
||||
[--async] [GCLOUD_WIDE_FLAG ...]
|
||||
|
||||
DESCRIPTION
|
||||
Delete the specified Security Profile.
|
||||
|
||||
EXAMPLES
|
||||
To delete a Security Profile called my-security-profile run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
delete my-security-profile
|
||||
|
||||
POSITIONAL ARGUMENTS
|
||||
Security profile resource - Name of the Security Profile you want to
|
||||
delete. The arguments in this group can be used to specify the attributes
|
||||
of this resource.
|
||||
|
||||
This must be specified.
|
||||
|
||||
SECURITY_PROFILE
|
||||
ID of the security_profile or fully qualified identifier for the
|
||||
security_profile.
|
||||
|
||||
To set the security_profile attribute:
|
||||
▸ provide the argument security_profile on the command line.
|
||||
|
||||
This positional argument must be specified if any of the other
|
||||
arguments in this group are specified.
|
||||
|
||||
--location=LOCATION
|
||||
Location ID of the resource.
|
||||
|
||||
To set the location attribute:
|
||||
▸ provide the argument security_profile on the command line with a
|
||||
fully specified name;
|
||||
▸ provide the argument --location on the command line;
|
||||
▸ use default global location .
|
||||
|
||||
--organization=ORGANIZATION
|
||||
Organization number.
|
||||
|
||||
To set the organization attribute:
|
||||
▸ provide the argument security_profile on the command line with a
|
||||
fully specified name;
|
||||
▸ provide the argument --organization on the command line.
|
||||
|
||||
FLAGS
|
||||
--async
|
||||
Return immediately, without waiting for the operation in progress to
|
||||
complete.
|
||||
|
||||
GCLOUD WIDE FLAGS
|
||||
These flags are available to all commands: --access-token-file, --account,
|
||||
--billing-project, --configuration, --flags-file, --flatten, --format,
|
||||
--help, --impersonate-service-account, --log-http, --project, --quiet,
|
||||
--trace-token, --user-output-enabled, --verbosity.
|
||||
|
||||
Run $ gcloud help for details.
|
||||
|
||||
API REFERENCE
|
||||
This command uses the networksecurity/v1 API. The full documentation for
|
||||
this API can be found at: https://cloud.google.com/networking
|
||||
|
||||
NOTES
|
||||
These variants are also available:
|
||||
|
||||
$ gcloud alpha network-security security-profiles \
|
||||
threat-prevention delete
|
||||
|
||||
$ gcloud beta network-security security-profiles threat-prevention \
|
||||
delete
|
||||
|
||||
|
|
@ -0,0 +1,127 @@
|
|||
NAME
|
||||
gcloud network-security security-profiles threat-prevention delete-override
|
||||
- delete overrides of Threat Prevention Profile
|
||||
|
||||
SYNOPSIS
|
||||
gcloud network-security security-profiles threat-prevention delete-override
|
||||
(SECURITY_PROFILE : --location=LOCATION --organization=ORGANIZATION)
|
||||
(--severities=[SEVERITY_LEVEL,...] | --threat-ids=[THREAT-ID,...])
|
||||
[--async] [--update-labels=[KEY=VALUE,...]]
|
||||
[--clear-labels | --remove-labels=[KEY,...]] [GCLOUD_WIDE_FLAG ...]
|
||||
|
||||
DESCRIPTION
|
||||
To delete existing severities or threat-ids of threat prevention profile.
|
||||
Check the updates of update-override command by using gcloud
|
||||
network-security security-profiles threat-prevention list-override
|
||||
my-security-profile.
|
||||
|
||||
For more examples, refer to the EXAMPLES section below.
|
||||
|
||||
EXAMPLES
|
||||
To delete an override, run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
delete-override my-security-profile --severities=MEDIUM
|
||||
|
||||
my-security-profile is the name of the Security Profile in the format
|
||||
organizations/{organizationID}/locations/{location}/securityProfiles/
|
||||
{security_profile_id} where organizationID is the organization ID to which
|
||||
the changes should apply, location - global specified and
|
||||
security_profile_id the Security Profile Identifier
|
||||
|
||||
POSITIONAL ARGUMENTS
|
||||
Security profile resource - Security Profile Name. The arguments in this
|
||||
group can be used to specify the attributes of this resource.
|
||||
|
||||
This must be specified.
|
||||
|
||||
SECURITY_PROFILE
|
||||
ID of the security_profile or fully qualified identifier for the
|
||||
security_profile.
|
||||
|
||||
To set the security_profile attribute:
|
||||
▸ provide the argument security_profile on the command line.
|
||||
|
||||
This positional argument must be specified if any of the other
|
||||
arguments in this group are specified.
|
||||
|
||||
--location=LOCATION
|
||||
location of the security_profile - Global.
|
||||
|
||||
To set the location attribute:
|
||||
▸ provide the argument security_profile on the command line with a
|
||||
fully specified name;
|
||||
▸ provide the argument --location on the command line.
|
||||
|
||||
--organization=ORGANIZATION
|
||||
Organization ID to which the changes should apply.
|
||||
|
||||
To set the organization attribute:
|
||||
▸ provide the argument security_profile on the command line with a
|
||||
fully specified name;
|
||||
▸ provide the argument --organization on the command line.
|
||||
|
||||
REQUIRED FLAGS
|
||||
Exactly one of these must be specified:
|
||||
|
||||
--severities=[SEVERITY_LEVEL,...]
|
||||
List of comma-separated severities where each value in the list
|
||||
indicates the severity of the threat.
|
||||
|
||||
--threat-ids=[THREAT-ID,...]
|
||||
List of comma-separated threat identifiers where each identifier in
|
||||
the list is a vendor-specified Signature ID representing a threat
|
||||
type.
|
||||
|
||||
OPTIONAL FLAGS
|
||||
--async
|
||||
Return immediately, without waiting for the operation in progress to
|
||||
complete. The default is False.
|
||||
|
||||
--update-labels=[KEY=VALUE,...]
|
||||
List of label KEY=VALUE pairs to update. If a label exists, its value
|
||||
is modified. Otherwise, a new label is created.
|
||||
|
||||
Keys must start with a lowercase character and contain only hyphens
|
||||
(-), underscores (_), lowercase characters, and numbers. Values must
|
||||
contain only hyphens (-), underscores (_), lowercase characters, and
|
||||
numbers.
|
||||
|
||||
At most one of these can be specified:
|
||||
|
||||
--clear-labels
|
||||
Remove all labels. If --update-labels is also specified then
|
||||
--clear-labels is applied first.
|
||||
|
||||
For example, to remove all labels:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
delete-override --clear-labels
|
||||
|
||||
To remove all existing labels and create two new labels, foo and baz:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
delete-override --clear-labels --update-labels foo=bar,baz=qux
|
||||
|
||||
--remove-labels=[KEY,...]
|
||||
List of label keys to remove. If a label does not exist it is
|
||||
silently ignored. If --update-labels is also specified then
|
||||
--update-labels is applied first.
|
||||
|
||||
GCLOUD WIDE FLAGS
|
||||
These flags are available to all commands: --access-token-file, --account,
|
||||
--billing-project, --configuration, --flags-file, --flatten, --format,
|
||||
--help, --impersonate-service-account, --log-http, --project, --quiet,
|
||||
--trace-token, --user-output-enabled, --verbosity.
|
||||
|
||||
Run $ gcloud help for details.
|
||||
|
||||
NOTES
|
||||
These variants are also available:
|
||||
|
||||
$ gcloud alpha network-security security-profiles \
|
||||
threat-prevention delete-override
|
||||
|
||||
$ gcloud beta network-security security-profiles threat-prevention \
|
||||
delete-override
|
||||
|
||||
112
gcloud/network-security/security-profiles/threat-prevention/help
Normal file
112
gcloud/network-security/security-profiles/threat-prevention/help
Normal file
|
|
@ -0,0 +1,112 @@
|
|||
NAME
|
||||
gcloud network-security security-profiles threat-prevention - manage
|
||||
Security Profiles - Threat Prevention Profile
|
||||
|
||||
SYNOPSIS
|
||||
gcloud network-security security-profiles threat-prevention COMMAND
|
||||
[GCLOUD_WIDE_FLAG ...]
|
||||
|
||||
DESCRIPTION
|
||||
Manage Security Profiles - Threat Prevention Profile.
|
||||
|
||||
EXAMPLES
|
||||
To create a Security Profile with the name my-security-profile which
|
||||
includes location as global or region specified and organization ID,
|
||||
optional description as New Security Profile, run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
create my-security-profile --description="New Security Profile"
|
||||
|
||||
To add an override, run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
add-override my-security-profile --severities=MEDIUM \
|
||||
--action=ALLOW
|
||||
|
||||
`my-security-profile` is the name of the Security Profile in the
|
||||
format organizations/{organizationID}/locations/{location}/securityProfiles/
|
||||
{security_profile_id} where organizationID is the organization ID to which
|
||||
the changes should apply, location either global or region specified and
|
||||
security_profile_id the Security Profile Identifier.
|
||||
|
||||
To update an override, run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
update-override my-security-profile --severities=MEDIUM \
|
||||
--action=ALLOW
|
||||
|
||||
`my-security-profile` is the name of the Security Profile in the
|
||||
format organizations/{organizationID}/locations/{location}/securityProfiles/
|
||||
{security_profile_id} where organizationID is the organization ID to which
|
||||
the changes should apply, location either global or region specified and
|
||||
security_profile_id the Security Profile Identifier.
|
||||
|
||||
To list overrides, run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
list-overrides my-security-profile
|
||||
|
||||
`my-security-profile` is the name of the Security Profile in the
|
||||
format organizations/{organizationID}/locations/{location}/securityProfiles/
|
||||
{security_profile_id} where organizationID is the organization ID to which
|
||||
the changes should apply, location either global or region specified and
|
||||
security_profile_id the Security Profile Identifier.
|
||||
|
||||
To delete an override, run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
delete-override my-security-profile --severities=MEDIUM
|
||||
|
||||
`my-security-profile` is the name of the Security Profile in the
|
||||
format organizations/{organizationID}/locations/{location}/securityProfiles/
|
||||
{security_profile_id} where organizationID is the organization ID to which
|
||||
the changes should apply, location either global or region specified and
|
||||
security_profile_id the Security Profile Identifier.
|
||||
|
||||
To list Security Profiles in specified location and organization, run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention list \
|
||||
--location=global
|
||||
|
||||
To delete a Security Profile called my-security-profile which includes
|
||||
location as global or region specified and organization ID, run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
delete my-security-profile
|
||||
|
||||
GCLOUD WIDE FLAGS
|
||||
These flags are available to all commands: --help.
|
||||
|
||||
Run $ gcloud help for details.
|
||||
|
||||
COMMANDS
|
||||
COMMAND is one of the following:
|
||||
|
||||
add-override
|
||||
Add overrides to Threat Prevention Profile.
|
||||
|
||||
create
|
||||
Create a new Threat Prevention Profile.
|
||||
|
||||
delete
|
||||
Delete a Security Profile.
|
||||
|
||||
delete-override
|
||||
Delete overrides of Threat Prevention Profile.
|
||||
|
||||
list
|
||||
List Security Profiles.
|
||||
|
||||
list-overrides
|
||||
List overrides of Threat Prevention Profile.
|
||||
|
||||
update-override
|
||||
Update Overrides of Threat Prevention Profile.
|
||||
|
||||
NOTES
|
||||
These variants are also available:
|
||||
|
||||
$ gcloud alpha network-security security-profiles threat-prevention
|
||||
|
||||
$ gcloud beta network-security security-profiles threat-prevention
|
||||
|
||||
|
|
@ -0,0 +1,96 @@
|
|||
NAME
|
||||
gcloud network-security security-profiles threat-prevention list - list
|
||||
Security Profiles
|
||||
|
||||
SYNOPSIS
|
||||
gcloud network-security security-profiles threat-prevention list
|
||||
(--location=LOCATION : --organization=ORGANIZATION)
|
||||
[--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE]
|
||||
[--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...]
|
||||
|
||||
DESCRIPTION
|
||||
List all Security Profiles in the specified location.
|
||||
|
||||
EXAMPLES
|
||||
To list Security Profiles in specifed location run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention list \
|
||||
--location=global
|
||||
|
||||
REQUIRED FLAGS
|
||||
Location resource - The organization of Security Profiles to display. The
|
||||
arguments in this group can be used to specify the attributes of this
|
||||
resource.
|
||||
|
||||
This must be specified.
|
||||
|
||||
--location=LOCATION
|
||||
ID of the location or fully qualified identifier for the location.
|
||||
|
||||
To set the location attribute:
|
||||
▸ provide the argument --location on the command line.
|
||||
|
||||
This flag argument must be specified if any of the other arguments in
|
||||
this group are specified.
|
||||
|
||||
--organization=ORGANIZATION
|
||||
Organization number.
|
||||
|
||||
To set the organization attribute:
|
||||
▸ provide the argument --location on the command line with a fully
|
||||
specified name;
|
||||
▸ provide the argument --organization on the command line.
|
||||
|
||||
LIST COMMAND FLAGS
|
||||
--filter=EXPRESSION
|
||||
Apply a Boolean filter EXPRESSION to each resource item to be listed.
|
||||
If the expression evaluates True, then that item is listed. For more
|
||||
details and examples of filter expressions, run $ gcloud topic filters.
|
||||
This flag interacts with other flags that are applied in this order:
|
||||
--flatten, --sort-by, --filter, --limit.
|
||||
|
||||
--limit=LIMIT
|
||||
Maximum number of resources to list. The default is unlimited. This
|
||||
flag interacts with other flags that are applied in this order:
|
||||
--flatten, --sort-by, --filter, --limit.
|
||||
|
||||
--page-size=PAGE_SIZE
|
||||
Some services group resource list output into pages. This flag
|
||||
specifies the maximum number of resources per page. The default is
|
||||
determined by the service if it supports paging, otherwise it is
|
||||
unlimited (no paging). Paging may be applied before or after --filter
|
||||
and --limit depending on the service.
|
||||
|
||||
--sort-by=[FIELD,...]
|
||||
Comma-separated list of resource field key names to sort by. The
|
||||
default order is ascending. Prefix a field with ``~'' for descending
|
||||
order on that field. This flag interacts with other flags that are
|
||||
applied in this order: --flatten, --sort-by, --filter, --limit.
|
||||
|
||||
--uri
|
||||
Print a list of resource URIs instead of the default output, and change
|
||||
the command output to a list of URIs. If this flag is used with
|
||||
--format, the formatting is applied on this URI list. To display URIs
|
||||
alongside other keys instead, use the uri() transform.
|
||||
|
||||
GCLOUD WIDE FLAGS
|
||||
These flags are available to all commands: --access-token-file, --account,
|
||||
--billing-project, --configuration, --flags-file, --flatten, --format,
|
||||
--help, --impersonate-service-account, --log-http, --project, --quiet,
|
||||
--trace-token, --user-output-enabled, --verbosity.
|
||||
|
||||
Run $ gcloud help for details.
|
||||
|
||||
API REFERENCE
|
||||
This command uses the networksecurity/v1 API. The full documentation for
|
||||
this API can be found at: https://cloud.google.com/networking
|
||||
|
||||
NOTES
|
||||
These variants are also available:
|
||||
|
||||
$ gcloud alpha network-security security-profiles \
|
||||
threat-prevention list
|
||||
|
||||
$ gcloud beta network-security security-profiles threat-prevention \
|
||||
list
|
||||
|
||||
|
|
@ -0,0 +1,75 @@
|
|||
NAME
|
||||
gcloud network-security security-profiles threat-prevention list-overrides
|
||||
- list overrides of Threat Prevention Profile
|
||||
|
||||
SYNOPSIS
|
||||
gcloud network-security security-profiles threat-prevention list-overrides
|
||||
(SECURITY_PROFILE : --location=LOCATION --organization=ORGANIZATION)
|
||||
[GCLOUD_WIDE_FLAG ...]
|
||||
|
||||
DESCRIPTION
|
||||
To list existing severities or threat-ids of threat prevention profile.
|
||||
|
||||
For more examples, refer to the EXAMPLES section below.
|
||||
|
||||
EXAMPLES
|
||||
To list overrides, run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
list-overrides my-security-profile
|
||||
|
||||
my-security-profile is the name of the Security Profile in the format
|
||||
organizations/{organizationID}/locations/{location}/securityProfiles/
|
||||
{security_profile_id} where organizationID is the organization ID to which
|
||||
the changes should apply, location - global specified and
|
||||
security_profile_id the Security Profile Identifier
|
||||
|
||||
POSITIONAL ARGUMENTS
|
||||
Security profile resource - Security Profile Name. The arguments in this
|
||||
group can be used to specify the attributes of this resource.
|
||||
|
||||
This must be specified.
|
||||
|
||||
SECURITY_PROFILE
|
||||
ID of the security_profile or fully qualified identifier for the
|
||||
security_profile.
|
||||
|
||||
To set the security_profile attribute:
|
||||
▸ provide the argument security_profile on the command line.
|
||||
|
||||
This positional argument must be specified if any of the other
|
||||
arguments in this group are specified.
|
||||
|
||||
--location=LOCATION
|
||||
location of the security_profile - Global.
|
||||
|
||||
To set the location attribute:
|
||||
▸ provide the argument security_profile on the command line with a
|
||||
fully specified name;
|
||||
▸ provide the argument --location on the command line.
|
||||
|
||||
--organization=ORGANIZATION
|
||||
Organization ID to which the changes should apply.
|
||||
|
||||
To set the organization attribute:
|
||||
▸ provide the argument security_profile on the command line with a
|
||||
fully specified name;
|
||||
▸ provide the argument --organization on the command line.
|
||||
|
||||
GCLOUD WIDE FLAGS
|
||||
These flags are available to all commands: --access-token-file, --account,
|
||||
--billing-project, --configuration, --flags-file, --flatten, --format,
|
||||
--help, --impersonate-service-account, --log-http, --project, --quiet,
|
||||
--trace-token, --user-output-enabled, --verbosity.
|
||||
|
||||
Run $ gcloud help for details.
|
||||
|
||||
NOTES
|
||||
These variants are also available:
|
||||
|
||||
$ gcloud alpha network-security security-profiles \
|
||||
threat-prevention list-overrides
|
||||
|
||||
$ gcloud beta network-security security-profiles threat-prevention \
|
||||
list-overrides
|
||||
|
||||
|
|
@ -0,0 +1,133 @@
|
|||
NAME
|
||||
gcloud network-security security-profiles threat-prevention update-override
|
||||
- update Overrides of Threat Prevention Profile
|
||||
|
||||
SYNOPSIS
|
||||
gcloud network-security security-profiles threat-prevention update-override
|
||||
(SECURITY_PROFILE : --location=LOCATION --organization=ORGANIZATION)
|
||||
--action=ACTION
|
||||
(--severities=[SEVERITY_LEVEL,...] | --threat-ids=[THREAT-ID,...])
|
||||
[--async] [--update-labels=[KEY=VALUE,...]]
|
||||
[--clear-labels | --remove-labels=[KEY,...]] [GCLOUD_WIDE_FLAG ...]
|
||||
|
||||
DESCRIPTION
|
||||
To update existing severities or threat-ids of threat prevention profile
|
||||
with intended action on each specified. Check the updates of
|
||||
update-override command by using gcloud network-security security-profiles
|
||||
threat-prevention list-override my-security-profile.
|
||||
|
||||
For more examples, refer to the EXAMPLES section below.
|
||||
|
||||
EXAMPLES
|
||||
To update an override, run:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
update-override my-security-profile --severities=MEDIUM \
|
||||
--action=ALLOW
|
||||
|
||||
my-security-profile is the name of the Security Profile in the format
|
||||
organizations/{organizationID}/locations/{location}/securityProfiles/
|
||||
{security_profile_id} where organizationID is the organization ID to which
|
||||
the changes should apply, location - global specified and
|
||||
security_profile_id the Security Profile Identifier
|
||||
|
||||
POSITIONAL ARGUMENTS
|
||||
Security profile resource - Security Profile Name. The arguments in this
|
||||
group can be used to specify the attributes of this resource.
|
||||
|
||||
This must be specified.
|
||||
|
||||
SECURITY_PROFILE
|
||||
ID of the security_profile or fully qualified identifier for the
|
||||
security_profile.
|
||||
|
||||
To set the security_profile attribute:
|
||||
▸ provide the argument security_profile on the command line.
|
||||
|
||||
This positional argument must be specified if any of the other
|
||||
arguments in this group are specified.
|
||||
|
||||
--location=LOCATION
|
||||
location of the security_profile - Global.
|
||||
|
||||
To set the location attribute:
|
||||
▸ provide the argument security_profile on the command line with a
|
||||
fully specified name;
|
||||
▸ provide the argument --location on the command line.
|
||||
|
||||
--organization=ORGANIZATION
|
||||
Organization ID to which the changes should apply.
|
||||
|
||||
To set the organization attribute:
|
||||
▸ provide the argument security_profile on the command line with a
|
||||
fully specified name;
|
||||
▸ provide the argument --organization on the command line.
|
||||
|
||||
REQUIRED FLAGS
|
||||
--action=ACTION
|
||||
Action associated with severity or threat-id. ACTION must be one of:
|
||||
DEFAULT, ALLOW, ALERT, DENY.
|
||||
|
||||
Exactly one of these must be specified:
|
||||
|
||||
--severities=[SEVERITY_LEVEL,...]
|
||||
List of comma-separated severities where each value in the list
|
||||
indicates the severity of the threat.
|
||||
|
||||
--threat-ids=[THREAT-ID,...]
|
||||
List of comma-separated threat identifiers where each identifier in
|
||||
the list is a vendor-specified Signature ID representing a threat
|
||||
type.
|
||||
|
||||
OPTIONAL FLAGS
|
||||
--async
|
||||
Return immediately, without waiting for the operation in progress to
|
||||
complete. The default is False.
|
||||
|
||||
--update-labels=[KEY=VALUE,...]
|
||||
List of label KEY=VALUE pairs to update. If a label exists, its value
|
||||
is modified. Otherwise, a new label is created.
|
||||
|
||||
Keys must start with a lowercase character and contain only hyphens
|
||||
(-), underscores (_), lowercase characters, and numbers. Values must
|
||||
contain only hyphens (-), underscores (_), lowercase characters, and
|
||||
numbers.
|
||||
|
||||
At most one of these can be specified:
|
||||
|
||||
--clear-labels
|
||||
Remove all labels. If --update-labels is also specified then
|
||||
--clear-labels is applied first.
|
||||
|
||||
For example, to remove all labels:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
update-override --clear-labels
|
||||
|
||||
To remove all existing labels and create two new labels, foo and baz:
|
||||
|
||||
$ gcloud network-security security-profiles threat-prevention \
|
||||
update-override --clear-labels --update-labels foo=bar,baz=qux
|
||||
|
||||
--remove-labels=[KEY,...]
|
||||
List of label keys to remove. If a label does not exist it is
|
||||
silently ignored. If --update-labels is also specified then
|
||||
--update-labels is applied first.
|
||||
|
||||
GCLOUD WIDE FLAGS
|
||||
These flags are available to all commands: --access-token-file, --account,
|
||||
--billing-project, --configuration, --flags-file, --flatten, --format,
|
||||
--help, --impersonate-service-account, --log-http, --project, --quiet,
|
||||
--trace-token, --user-output-enabled, --verbosity.
|
||||
|
||||
Run $ gcloud help for details.
|
||||
|
||||
NOTES
|
||||
These variants are also available:
|
||||
|
||||
$ gcloud alpha network-security security-profiles \
|
||||
threat-prevention update-override
|
||||
|
||||
$ gcloud beta network-security security-profiles threat-prevention \
|
||||
update-override
|
||||
|
||||
Loading…
Add table
Add a link
Reference in a new issue