google_compute_firewalls resource
Syntax
A google_compute_firewalls is used to test a Google Firewall resource
Beta Resource
This resource has beta fields available. To retrieve these fields, include beta: true in the constructor for the resource
Examples
describe google_compute_firewalls(project: 'chef-gcp-inspec') do
its('count') { should be >= 1 }
its('firewall_names') { should include 'inspec-gcp-firewall' }
its('firewall_directions') { should include 'INGRESS' }
end
Test that there are no more than a specified number of firewalls available for the project
describe google_compute_firewalls(project: 'chef-inspec-gcp') do
its('count') { should be <= 100}
end
Test that an expected firewall is available for the project
describe google_compute_firewalls(project: 'chef-inspec-gcp') do
its('firewall_names') { should include "my-app-firewall-rule" }
end
Test that a particular named rule does not exist
describe google_compute_firewalls(project: 'chef-inspec-gcp') do
its('firewall_names') { should_not include "default-allow-ssh" }
end
Test there are no firewalls for the “INGRESS” direction
describe google_compute_firewalls(project: 'chef-inspec-gcp').where(firewall_direction: 'INGRESS') do
it { should_not exist }
end
Properties
Properties that can be accessed from the google_compute_firewalls resource:
See the google_compute_firewall resource for more information.
-
alloweds -
an array of
google_compute_firewallallowed -
creation_timestamps -
an array of
google_compute_firewallcreation_timestamp -
denieds -
an array of
google_compute_firewalldenied -
descriptions -
an array of
google_compute_firewalldescription -
destination_ranges -
an array of
google_compute_firewalldestination_ranges -
firewall_directions -
an array of
google_compute_firewalldirection -
disableds -
an array of
google_compute_firewalldisabled -
log_configs -
an array of
google_compute_firewalllog_config -
firewall_ids -
an array of
google_compute_firewallid -
firewall_names -
an array of
google_compute_firewallname -
networks -
an array of
google_compute_firewallnetwork -
priorities -
an array of
google_compute_firewallpriority -
source_ranges -
an array of
google_compute_firewallsource_ranges -
source_service_accounts -
an array of
google_compute_firewallsource_service_accounts -
source_tags -
an array of
google_compute_firewallsource_tags -
target_service_accounts -
an array of
google_compute_firewalltarget_service_accounts -
target_tags -
an array of
google_compute_firewalltarget_tags
Filter Criteria
This resource supports all of the above properties as filter criteria, which can be used with where as a block or a method.
GCP Permissions
Ensure the Compute Engine API is enabled for the current project.
© Chef Software, Inc.
Licensed under the Creative Commons Attribution 3.0 Unported License.
The Chef™ Mark and Chef Logo are either registered trademarks/service marks or trademarks/servicemarks of Chef, in the United States and other countries and are used with Chef Inc's permission.
We are not affiliated with, endorsed or sponsored by Chef Inc.
https://docs.chef.io/inspec/resources/google_compute_firewalls/