google-api-client 0.51.0 → 0.52.0

data/generated/google/apis/compute_alpha/service.rb

@@ -1516,6 +1516,58 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
+        # Sets the edge security policy for the specified backend bucket.
+        # @param [String] project
+        #   Project ID for this request.
+        # @param [String] backend_bucket
+        #   Name of the BackendService resource to which the security policy should be set.
+        #   The name should conform to RFC1035.
+        # @param [Google::Apis::ComputeAlpha::SecurityPolicyReference] security_policy_reference_object
+        # @param [String] request_id
+        #   An optional request ID to identify requests. Specify a unique request ID so
+        #   that if you must retry your request, the server will know to ignore the
+        #   request if it has already been completed.
+        #   For example, consider a situation where you make an initial request and the
+        #   request times out. If you make the request again with the same request ID, the
+        #   server can check if original operation with the same request ID was received,
+        #   and if so, will ignore the second request. This prevents clients from
+        #   accidentally creating duplicate commitments.
+        #   The request ID must be a valid UUID with the exception that zero UUID is not
+        #   supported (00000000-0000-0000-0000-000000000000).
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   An opaque string that represents a user for quota purposes. Must not exceed 40
+        #   characters.
+        # @param [String] user_ip
+        #   Deprecated. Please use quotaUser instead.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::ComputeAlpha::Operation] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::ComputeAlpha::Operation]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def set_backend_bucket_edge_security_policy(project, backend_bucket, security_policy_reference_object = nil, request_id: nil, fields: nil, quota_user: nil, user_ip: nil, options: nil, &block)
+          command = make_simple_command(:post, 'projects/{project}/global/backendBuckets/{backendBucket}/setEdgeSecurityPolicy', options)
+          command.request_representation = Google::Apis::ComputeAlpha::SecurityPolicyReference::Representation
+          command.request_object = security_policy_reference_object
+          command.response_representation = Google::Apis::ComputeAlpha::Operation::Representation
+          command.response_class = Google::Apis::ComputeAlpha::Operation
+          command.params['project'] = project unless project.nil?
+          command.params['backendBucket'] = backend_bucket unless backend_bucket.nil?
+          command.query['requestId'] = request_id unless request_id.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          command.query['userIp'] = user_ip unless user_ip.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
         # Sets the access control policy on the specified resource. Replaces any
         # existing policy.
         # @param [String] project
@@ -2140,6 +2192,58 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
+        # Sets the edge security policy for the specified backend service.
+        # @param [String] project
+        #   Project ID for this request.
+        # @param [String] backend_service
+        #   Name of the BackendService resource to which the edge security policy should
+        #   be set. The name should conform to RFC1035.
+        # @param [Google::Apis::ComputeAlpha::SecurityPolicyReference] security_policy_reference_object
+        # @param [String] request_id
+        #   An optional request ID to identify requests. Specify a unique request ID so
+        #   that if you must retry your request, the server will know to ignore the
+        #   request if it has already been completed.
+        #   For example, consider a situation where you make an initial request and the
+        #   request times out. If you make the request again with the same request ID, the
+        #   server can check if original operation with the same request ID was received,
+        #   and if so, will ignore the second request. This prevents clients from
+        #   accidentally creating duplicate commitments.
+        #   The request ID must be a valid UUID with the exception that zero UUID is not
+        #   supported (00000000-0000-0000-0000-000000000000).
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   An opaque string that represents a user for quota purposes. Must not exceed 40
+        #   characters.
+        # @param [String] user_ip
+        #   Deprecated. Please use quotaUser instead.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::ComputeAlpha::Operation] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::ComputeAlpha::Operation]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def set_backend_service_edge_security_policy(project, backend_service, security_policy_reference_object = nil, request_id: nil, fields: nil, quota_user: nil, user_ip: nil, options: nil, &block)
+          command = make_simple_command(:post, 'projects/{project}/global/backendServices/{backendService}/setEdgeSecurityPolicy', options)
+          command.request_representation = Google::Apis::ComputeAlpha::SecurityPolicyReference::Representation
+          command.request_object = security_policy_reference_object
+          command.response_representation = Google::Apis::ComputeAlpha::Operation::Representation
+          command.response_class = Google::Apis::ComputeAlpha::Operation
+          command.params['project'] = project unless project.nil?
+          command.params['backendService'] = backend_service unless backend_service.nil?
+          command.query['requestId'] = request_id unless request_id.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          command.query['userIp'] = user_ip unless user_ip.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
         # Sets the security policy for the specified backend service.
         # @param [String] project
         #   Project ID for this request.
@@ -9029,8 +9133,9 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Modifies the autohealing policies. [Deprecated] This method is deprecated.
-        # Please use Patch instead.
+        # Motifies the autohealing policy for the instances in this managed instance
+        # group. [Deprecated] This method is deprecated. Use instanceGroupManagers.patch
+        # instead.
         # @param [String] project
         #   Project ID for this request.
         # @param [String] zone
@@ -9086,7 +9191,8 @@ module Google
         
         # Specifies the instance template to use when creating new instances in this
         # group. The templates for existing instances in the group do not change unless
-        # you recreate them.
+        # you run recreateInstances, run applyUpdatesToInstances, or set the group's
+        # updatePolicy.type to PROACTIVE.
         # @param [String] project
         #   Project ID for this request.
         # @param [String] zone
@@ -11140,9 +11246,9 @@ module Google
         #   - projects/project/global/instanceTemplates/instanceTemplate
         #   - global/instanceTemplates/instanceTemplate
         # @param [String] source_machine_image
-        #   Specifies instance machine to create the instance.
+        #   Specifies the machine image to use to create the instance.
         #   This field is optional. It can be a full or partial URL. For example, the
-        #   following are all valid URLs to an instance template:
+        #   following are all valid URLs to a machine image:
         #   - https://www.googleapis.com/compute/v1/projects/project/global/global/
         #   machineImages/machineImage
         #   - projects/project/global/global/machineImages/machineImage
@@ -18583,7 +18689,7 @@ module Google
         # @param [Boolean] replace_existing_association
         #   Indicates whether or not to replace it if an association of the attachment
         #   already exists. This is false by default, in which case an error will be
-        #   returned if an assocation already exists.
+        #   returned if an association already exists.
         # @param [String] request_id
         #   An optional request ID to identify requests. Specify a unique request ID so
         #   that if you must retry your request, the server will know to ignore the
@@ -24802,9 +24908,9 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Insert or patch (for the ones that already exist) per-instance configs for the
-        # managed instance group. perInstanceConfig.instance serves as a key used to
-        # distinguish whether to perform insert or patch.
+        # Inserts or patches per-instance configs for the managed instance group.
+        # perInstanceConfig.name serves as a key used to distinguish whether to perform
+        # insert or patch.
         # @param [String] project
         #   Project ID for this request.
         # @param [String] region
@@ -24984,7 +25090,8 @@ module Google
         end
         
         # Modifies the autohealing policy for the instances in this managed instance
-        # group. [Deprecated] This method is deprecated. Please use Patch instead.
+        # group. [Deprecated] This method is deprecated. Use regionInstanceGroupManagers.
+        # patch instead.
         # @param [String] project
         #   Project ID for this request.
         # @param [String] region
@@ -25248,9 +25355,9 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Insert or update (for the ones that already exist) per-instance configs for
-        # the managed instance group. perInstanceConfig.instance serves as a key used to
-        # distinguish whether to perform insert or patch.
+        # Inserts or updates per-instance configs for the managed instance group.
+        # perInstanceConfig.name serves as a key used to distinguish whether to perform
+        # insert or patch.
         # @param [String] project
         #   Project ID for this request.
         # @param [String] region
@@ -25713,6 +25820,61 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
+        # Export the changed blocks between two instant snapshots to a customer?s bucket
+        # in the user specified format.
+        # @param [String] project
+        #   Project ID for this request.
+        # @param [String] region
+        #   The name of the zone for this request.
+        # @param [String] instant_snapshot
+        #   Name of the instant snapshot to export.
+        # @param [Google::Apis::ComputeAlpha::RegionInstantSnapshotsExportRequest] region_instant_snapshots_export_request_object
+        # @param [String] request_id
+        #   An optional request ID to identify requests. Specify a unique request ID so
+        #   that if you must retry your request, the server will know to ignore the
+        #   request if it has already been completed.
+        #   For example, consider a situation where you make an initial request and the
+        #   request times out. If you make the request again with the same request ID, the
+        #   server can check if original operation with the same request ID was received,
+        #   and if so, will ignore the second request. This prevents clients from
+        #   accidentally creating duplicate commitments.
+        #   The request ID must be a valid UUID with the exception that zero UUID is not
+        #   supported (00000000-0000-0000-0000-000000000000).
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   An opaque string that represents a user for quota purposes. Must not exceed 40
+        #   characters.
+        # @param [String] user_ip
+        #   Deprecated. Please use quotaUser instead.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::ComputeAlpha::Operation] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::ComputeAlpha::Operation]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def export_region_instant_snapshot(project, region, instant_snapshot, region_instant_snapshots_export_request_object = nil, request_id: nil, fields: nil, quota_user: nil, user_ip: nil, options: nil, &block)
+          command = make_simple_command(:post, 'projects/{project}/regions/{region}/instantSnapshots/{instantSnapshot}/export', options)
+          command.request_representation = Google::Apis::ComputeAlpha::RegionInstantSnapshotsExportRequest::Representation
+          command.request_object = region_instant_snapshots_export_request_object
+          command.response_representation = Google::Apis::ComputeAlpha::Operation::Representation
+          command.response_class = Google::Apis::ComputeAlpha::Operation
+          command.params['project'] = project unless project.nil?
+          command.params['region'] = region unless region.nil?
+          command.params['instantSnapshot'] = instant_snapshot unless instant_snapshot.nil?
+          command.query['requestId'] = request_id unless request_id.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          command.query['userIp'] = user_ip unless user_ip.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
         # Returns the specified InstantSnapshot resource in the specified region.
         # @param [String] project
         #   Project ID for this request.
@@ -27839,6 +28001,8 @@ module Google
         
         # Initiates a cache invalidation operation, invalidating the specified path,
         # scoped to the specified UrlMap.
+        # For more information, see [Invalidating cached content](/cdn/docs/invalidating-
+        # cached-content).
         # @param [String] project
         #   Project ID for this request.
         # @param [String] region
@@ -30413,7 +30577,9 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
-        # Patches the specified policy with the data included in the request.
+        # Patches the specified policy with the data included in the request. This
+        # cannot be used to be update the rules in the policy. Please use the per rule
+        # methods like addRule, patchRule, and removeRule instead.
         # @param [String] project
         #   Project ID for this request.
         # @param [String] security_policy
@@ -32536,7 +32702,7 @@ module Google
         end
         
         # Patches the specified subnetwork with the data included in the request. Only
-        # certain fields can up updated with a patch request as indicated in the field
+        # certain fields can be updated with a patch request as indicated in the field
         # descriptions. You must specify the current fingerprint of the subnetwork
         # resource being patched.
         # @param [String] project
@@ -33772,6 +33938,59 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
+        # Patches the specified TargetHttpsProxy resource with the data included in the
+        # request. This method supports PATCH semantics and uses JSON merge patch format
+        # and processing rules. (== suppress_warning http-rest-shadowed ==)
+        # @param [String] project
+        #   Project ID for this request.
+        # @param [String] target_https_proxy
+        #   Name of the TargetHttpsProxy resource to patch.
+        # @param [Google::Apis::ComputeAlpha::TargetHttpsProxy] target_https_proxy_object
+        # @param [String] request_id
+        #   An optional request ID to identify requests. Specify a unique request ID so
+        #   that if you must retry your request, the server will know to ignore the
+        #   request if it has already been completed.
+        #   For example, consider a situation where you make an initial request and the
+        #   request times out. If you make the request again with the same request ID, the
+        #   server can check if original operation with the same request ID was received,
+        #   and if so, will ignore the second request. This prevents clients from
+        #   accidentally creating duplicate commitments.
+        #   The request ID must be a valid UUID with the exception that zero UUID is not
+        #   supported (00000000-0000-0000-0000-000000000000).
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   An opaque string that represents a user for quota purposes. Must not exceed 40
+        #   characters.
+        # @param [String] user_ip
+        #   Deprecated. Please use quotaUser instead.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::ComputeAlpha::Operation] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::ComputeAlpha::Operation]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def patch_target_https_proxy(project, target_https_proxy, target_https_proxy_object = nil, request_id: nil, fields: nil, quota_user: nil, user_ip: nil, options: nil, &block)
+          command = make_simple_command(:patch, 'projects/{project}/global/targetHttpsProxies/{targetHttpsProxy}', options)
+          command.request_representation = Google::Apis::ComputeAlpha::TargetHttpsProxy::Representation
+          command.request_object = target_https_proxy_object
+          command.response_representation = Google::Apis::ComputeAlpha::Operation::Representation
+          command.response_class = Google::Apis::ComputeAlpha::Operation
+          command.params['project'] = project unless project.nil?
+          command.params['targetHttpsProxy'] = target_https_proxy unless target_https_proxy.nil?
+          command.query['requestId'] = request_id unless request_id.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          command.query['userIp'] = user_ip unless user_ip.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
         # Changes the Certificate Map for TargetHttpsProxy.
         # @param [String] project
         #   Project ID for this request.
@@ -36563,6 +36782,8 @@ module Google
         
         # Initiates a cache invalidation operation, invalidating the specified path,
         # scoped to the specified UrlMap.
+        # For more information, see [Invalidating cached content](/cdn/docs/invalidating-
+        # cached-content).
         # @param [String] project
         #   Project ID for this request.
         # @param [String] url_map
@@ -38177,6 +38398,61 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
+        # Export the changed blocks between two instant snapshots to a customer?s bucket
+        # in the user specified format.
+        # @param [String] project
+        #   Project ID for this request.
+        # @param [String] zone
+        #   The name of the zone for this request.
+        # @param [String] instant_snapshot
+        #   Name of the instant snapshot to export.
+        # @param [Google::Apis::ComputeAlpha::ZoneInstantSnapshotsExportRequest] zone_instant_snapshots_export_request_object
+        # @param [String] request_id
+        #   An optional request ID to identify requests. Specify a unique request ID so
+        #   that if you must retry your request, the server will know to ignore the
+        #   request if it has already been completed.
+        #   For example, consider a situation where you make an initial request and the
+        #   request times out. If you make the request again with the same request ID, the
+        #   server can check if original operation with the same request ID was received,
+        #   and if so, will ignore the second request. This prevents clients from
+        #   accidentally creating duplicate commitments.
+        #   The request ID must be a valid UUID with the exception that zero UUID is not
+        #   supported (00000000-0000-0000-0000-000000000000).
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   An opaque string that represents a user for quota purposes. Must not exceed 40
+        #   characters.
+        # @param [String] user_ip
+        #   Deprecated. Please use quotaUser instead.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::ComputeAlpha::Operation] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::ComputeAlpha::Operation]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def export_zone_instant_snapshot(project, zone, instant_snapshot, zone_instant_snapshots_export_request_object = nil, request_id: nil, fields: nil, quota_user: nil, user_ip: nil, options: nil, &block)
+          command = make_simple_command(:post, 'projects/{project}/zones/{zone}/instantSnapshots/{instantSnapshot}/export', options)
+          command.request_representation = Google::Apis::ComputeAlpha::ZoneInstantSnapshotsExportRequest::Representation
+          command.request_object = zone_instant_snapshots_export_request_object
+          command.response_representation = Google::Apis::ComputeAlpha::Operation::Representation
+          command.response_class = Google::Apis::ComputeAlpha::Operation
+          command.params['project'] = project unless project.nil?
+          command.params['zone'] = zone unless zone.nil?
+          command.params['instantSnapshot'] = instant_snapshot unless instant_snapshot.nil?
+          command.query['requestId'] = request_id unless request_id.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          command.query['userIp'] = user_ip unless user_ip.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
         # Returns the specified InstantSnapshot resource in the specified zone.
         # @param [String] project
         #   Project ID for this request.

data/generated/google/apis/compute_beta.rb

@@ -25,7 +25,7 @@ module Google
     # @see https://developers.google.com/compute/docs/reference/latest/
     module ComputeBeta
       VERSION = 'Beta'
-      REVISION = '20200910'
+      REVISION = '20201122'
 
       # View and manage your data across Google Cloud Platform services
       AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'

data/generated/google/apis/compute_beta/classes.rb

@@ -648,6 +648,9 @@ module Google
         # - `VPC_PEERING` for addresses that are reserved for VPC peer networks.
         # - `NAT_AUTO` for addresses that are external IP addresses automatically
         # reserved for Cloud NAT.
+        # - `IPSEC_INTERCONNECT` for addresses created from a private IP range that are
+        # reserved for a VLAN attachment in an IPsec encrypted Interconnect
+        # configuration. These addresses are regional resources.
         # Corresponds to the JSON property `purpose`
         # @return [String]
         attr_accessor :purpose
@@ -1046,6 +1049,30 @@ module Google
         end
       end
       
+      # Specifies options for controlling advanced machine features. Options that
+      # would traditionally be configured in a BIOS belong here. Features that require
+      # operating system support may have corresponding entries in the GuestOsFeatures
+      # of an Image (e.g., whether or not the OS in the Image supports nested
+      # virtualization being enabled or disabled).
+      class AdvancedMachineFeatures
+        include Google::Apis::Core::Hashable
+      
+        # Whether to enable nested virtualization or not (default is false).
+        # Corresponds to the JSON property `enableNestedVirtualization`
+        # @return [Boolean]
+        attr_accessor :enable_nested_virtualization
+        alias_method :enable_nested_virtualization?, :enable_nested_virtualization
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @enable_nested_virtualization = args[:enable_nested_virtualization] if args.key?(:enable_nested_virtualization)
+        end
+      end
+      
       # An alias IP range attached to an instance's network interface.
       class AliasIpRange
         include Google::Apis::Core::Hashable
@@ -1578,8 +1605,8 @@ module Google
       
       # Represents an Autoscaler resource.
       # Google Compute Engine has two Autoscaler resources:
-      # * [Global](/compute/docs/reference/rest/`$api_version`/autoscalers) * [
-      # Regional](/compute/docs/reference/rest/`$api_version`/regionAutoscalers)
+      # * [Zonal](/compute/docs/reference/rest/`$api_version`/autoscalers) * [Regional]
+      # (/compute/docs/reference/rest/`$api_version`/regionAutoscalers)
       # Use autoscalers to automatically add or delete instances from a managed
       # instance group according to your defined autoscaling policy. For more
       # information, read Autoscaling Groups of Instances.
@@ -1628,10 +1655,10 @@ module Google
         attr_accessor :name
       
         # [Output Only] Target recommended MIG size (number of instances) computed by
-        # autoscaler. Autoscaler calculates recommended MIG size even when autoscaling
-        # policy mode is different from ON. This field is empty when autoscaler is not
-        # connected to the existing managed instance group or autoscaler did not
-        # generate its prediction.
+        # autoscaler. Autoscaler calculates the recommended MIG size even when the
+        # autoscaling policy mode is different from ON. This field is empty when
+        # autoscaler is not connected to an existing managed instance group or
+        # autoscaler did not generate its prediction.
         # Corresponds to the JSON property `recommendedSize`
         # @return [Fixnum]
         attr_accessor :recommended_size
@@ -1642,6 +1669,11 @@ module Google
         # @return [String]
         attr_accessor :region
       
+        # [Output Only] Status information of existing scaling schedules.
+        # Corresponds to the JSON property `scalingScheduleStatus`
+        # @return [Hash<String,Google::Apis::ComputeBeta::ScalingScheduleStatus>]
+        attr_accessor :scaling_schedule_status
+      
         # [Output Only] Server-defined URL for the resource.
         # Corresponds to the JSON property `selfLink`
         # @return [String]
@@ -1666,7 +1698,8 @@ module Google
         # @return [Array<Google::Apis::ComputeBeta::AutoscalerStatusDetails>]
         attr_accessor :status_details
       
-        # URL of the managed instance group that this autoscaler will scale.
+        # URL of the managed instance group that this autoscaler will scale. This field
+        # is required when creating an autoscaler.
         # Corresponds to the JSON property `target`
         # @return [String]
         attr_accessor :target
@@ -1691,6 +1724,7 @@ module Google
           @name = args[:name] if args.key?(:name)
           @recommended_size = args[:recommended_size] if args.key?(:recommended_size)
           @region = args[:region] if args.key?(:region)
+          @scaling_schedule_status = args[:scaling_schedule_status] if args.key?(:scaling_schedule_status)
           @self_link = args[:self_link] if args.key?(:self_link)
           @status = args[:status] if args.key?(:status)
           @status_details = args[:status_details] if args.key?(:status_details)
@@ -1973,7 +2007,7 @@ module Google
         # - MODE_OFF (WARNING): Autoscaling is turned off. The number of instances in
         # the group won't change automatically. The autoscaling configuration is
         # preserved.
-        # - MODE_ONLY_UP (WARNING): Autoscaling is in the "Autoscale only up" mode. The
+        # - MODE_ONLY_UP (WARNING): Autoscaling is in the "Autoscale only out" mode. The
         # autoscaler can add instances but not remove any.
         # - MORE_THAN_ONE_BACKEND_SERVICE (ERROR): The instance group cannot be
         # autoscaled because it has more than one backend service attached to it.
@@ -2099,11 +2133,10 @@ module Google
       class AutoscalingPolicy
         include Google::Apis::Core::Hashable
       
-        # The number of seconds that the autoscaler should wait before it starts
-        # collecting information from a new instance. This prevents the autoscaler from
-        # collecting information when the instance is initializing, during which the
-        # collected usage would not be reliable. The default time autoscaler waits is 60
-        # seconds.
+        # The number of seconds that the autoscaler waits before it starts collecting
+        # information from a new instance. This prevents the autoscaler from collecting
+        # information when the instance is initializing, during which the collected
+        # usage would not be reliable. The default time autoscaler waits is 60 seconds.
         # Virtual machine initialization times might vary because of numerous factors.
         # We recommend that you test how long an instance may take to initialize. To do
         # this, create an instance and time the startup process.
@@ -2126,15 +2159,15 @@ module Google
         # @return [Google::Apis::ComputeBeta::AutoscalingPolicyLoadBalancingUtilization]
         attr_accessor :load_balancing_utilization
       
-        # The maximum number of instances that the autoscaler can scale up to. This is
+        # The maximum number of instances that the autoscaler can scale out to. This is
         # required when creating or updating an autoscaler. The maximum number of
-        # replicas should not be lower than minimal number of replicas.
+        # replicas must not be lower than minimal number of replicas.
         # Corresponds to the JSON property `maxNumReplicas`
         # @return [Fixnum]
         attr_accessor :max_num_replicas
       
-        # The minimum number of replicas that the autoscaler can scale down to. This
-        # cannot be less than 0. If not provided, autoscaler will choose a default value
+        # The minimum number of replicas that the autoscaler can scale in to. This
+        # cannot be less than 0. If not provided, autoscaler chooses a default value
         # depending on maximum number of instances allowed.
         # Corresponds to the JSON property `minNumReplicas`
         # @return [Fixnum]
@@ -2145,8 +2178,8 @@ module Google
         # @return [String]
         attr_accessor :mode
       
-        # Configuration that allows for slower scale down so that even if Autoscaler
-        # recommends an abrupt scale down of a MIG, it will be throttled as specified by
+        # Configuration that allows for slower scale in so that even if Autoscaler
+        # recommends an abrupt scale in of a MIG, it will be throttled as specified by
         # the parameters below.
         # Corresponds to the JSON property `scaleDownControl`
         # @return [Google::Apis::ComputeBeta::AutoscalingPolicyScaleDownControl]
@@ -2159,6 +2192,14 @@ module Google
         # @return [Google::Apis::ComputeBeta::AutoscalingPolicyScaleInControl]
         attr_accessor :scale_in_control
       
+        # Scaling schedules defined for an autoscaler. Multiple schedules can be set on
+        # an autoscaler, and they can overlap. During overlapping periods the greatest
+        # min_required_replicas of all scaling schedules is applied. Up to 128 scaling
+        # schedules are allowed.
+        # Corresponds to the JSON property `scalingSchedules`
+        # @return [Hash<String,Google::Apis::ComputeBeta::AutoscalingPolicyScalingSchedule>]
+        attr_accessor :scaling_schedules
+      
         def initialize(**args)
            update!(**args)
         end
@@ -2174,6 +2215,7 @@ module Google
           @mode = args[:mode] if args.key?(:mode)
           @scale_down_control = args[:scale_down_control] if args.key?(:scale_down_control)
           @scale_in_control = args[:scale_in_control] if args.key?(:scale_in_control)
+          @scaling_schedules = args[:scaling_schedules] if args.key?(:scaling_schedules)
         end
       end
       
@@ -2192,13 +2234,13 @@ module Google
         # @return [String]
         attr_accessor :predictive_method
       
-        # The target CPU utilization that the autoscaler should maintain. Must be a
-        # float value in the range (0, 1]. If not specified, the default is 0.6.
-        # If the CPU level is below the target utilization, the autoscaler scales down
-        # the number of instances until it reaches the minimum number of instances you
+        # The target CPU utilization that the autoscaler maintains. Must be a float
+        # value in the range (0, 1]. If not specified, the default is 0.6.
+        # If the CPU level is below the target utilization, the autoscaler scales in the
+        # number of instances until it reaches the minimum number of instances you
         # specified or until the average CPU of your instances reaches the target
         # utilization.
-        # If the average CPU is above the target utilization, the autoscaler scales up
+        # If the average CPU is above the target utilization, the autoscaler scales out
         # until it reaches the maximum number of instances you specified or until the
         # average utilization reaches the target utilization.
         # Corresponds to the JSON property `utilizationTarget`
@@ -2241,11 +2283,11 @@ module Google
         # to scale upon. This is called a per-group metric for the purpose of
         # autoscaling.
         # If not specified, the type defaults to gce_instance.
-        # You should provide a filter that is selective enough to pick just one
-        # TimeSeries for the autoscaled group or for each of the instances (if you are
-        # using gce_instance resource type). If multiple TimeSeries are returned upon
-        # the query execution, the autoscaler will sum their respective values to obtain
-        # its scaling value.
+        # Try to provide a filter that is selective enough to pick just one TimeSeries
+        # for the autoscaled group or for each of the instances (if you are using
+        # gce_instance resource type). If multiple TimeSeries are returned upon the
+        # query execution, the autoscaler will sum their respective values to obtain its
+        # scaling value.
         # Corresponds to the JSON property `filter`
         # @return [String]
         attr_accessor :filter
@@ -2259,9 +2301,9 @@ module Google
       
         # If scaling is based on a per-group metric value that represents the total
         # amount of work to be done or resource usage, set this value to an amount
-        # assigned for a single instance of the scaled group. Autoscaler will keep the
-        # number of instances proportional to the value of this metric, the metric
-        # itself should not change value due to group resizing.
+        # assigned for a single instance of the scaled group. Autoscaler keeps the
+        # number of instances proportional to the value of this metric. The metric
+        # itself does not change value due to group resizing.
         # A good metric to use with the target is for example pubsub.googleapis.com/
         # subscription/num_undelivered_messages or a custom metric exporting the total
         # number of requests coming to your instances.
@@ -2272,12 +2314,12 @@ module Google
         # @return [Float]
         attr_accessor :single_instance_assignment
       
-        # The target value of the metric that autoscaler should maintain. This must be a
+        # The target value of the metric that autoscaler maintains. This must be a
         # positive value. A utilization metric scales number of virtual machines
         # handling requests to increase or decrease proportionally to the metric.
         # For example, a good metric to use as a utilization_target is https://www.
         # googleapis.com/compute/v1/instance/network/received_bytes_count. The
-        # autoscaler will work to keep this value constant for each of the instances.
+        # autoscaler works to keep this value constant for each of the instances.
         # Corresponds to the JSON property `utilizationTarget`
         # @return [Float]
         attr_accessor :utilization_target
@@ -2307,7 +2349,7 @@ module Google
         include Google::Apis::Core::Hashable
       
         # Fraction of backend capacity utilization (set in HTTP(S) load balancing
-        # configuration) that autoscaler should maintain. Must be a positive float value.
+        # configuration) that the autoscaler maintains. Must be a positive float value.
         # If not defined, the default is 0.8.
         # Corresponds to the JSON property `utilizationTarget`
         # @return [Float]
@@ -2323,8 +2365,8 @@ module Google
         end
       end
       
-      # Configuration that allows for slower scale down so that even if Autoscaler
-      # recommends an abrupt scale down of a MIG, it will be throttled as specified by
+      # Configuration that allows for slower scale in so that even if Autoscaler
+      # recommends an abrupt scale in of a MIG, it will be throttled as specified by
       # the parameters below.
       class AutoscalingPolicyScaleDownControl
         include Google::Apis::Core::Hashable
@@ -2334,8 +2376,8 @@ module Google
         # @return [Google::Apis::ComputeBeta::FixedOrPercent]
         attr_accessor :max_scaled_down_replicas
       
-        # How long back autoscaling should look when computing recommendations to
-        # include directives regarding slower scale down, as described above.
+        # How far back autoscaling looks when computing recommendations to include
+        # directives regarding slower scale in, as described above.
         # Corresponds to the JSON property `timeWindowSec`
         # @return [Fixnum]
         attr_accessor :time_window_sec
@@ -2362,8 +2404,8 @@ module Google
         # @return [Google::Apis::ComputeBeta::FixedOrPercent]
         attr_accessor :max_scaled_in_replicas
       
-        # How long back autoscaling should look when computing recommendations to
-        # include directives regarding slower scale in, as described above.
+        # How far back autoscaling looks when computing recommendations to include
+        # directives regarding slower scale in, as described above.
         # Corresponds to the JSON property `timeWindowSec`
         # @return [Fixnum]
         attr_accessor :time_window_sec
@@ -2379,6 +2421,70 @@ module Google
         end
       end
       
+      # Scaling based on user-defined schedule. The message describes a single scaling
+      # schedule. A scaling schedule changes the minimum number of VM instances an
+      # autoscaler can recommend, which can trigger scaling out.
+      class AutoscalingPolicyScalingSchedule
+        include Google::Apis::Core::Hashable
+      
+        # A description of a scaling schedule.
+        # Corresponds to the JSON property `description`
+        # @return [String]
+        attr_accessor :description
+      
+        # A boolean value that specifies whether a scaling schedule can influence
+        # autoscaler recommendations. If set to true, then a scaling schedule has no
+        # effect. This field is optional, and its value is false by default.
+        # Corresponds to the JSON property `disabled`
+        # @return [Boolean]
+        attr_accessor :disabled
+        alias_method :disabled?, :disabled
+      
+        # The duration of time intervals, in seconds, for which this scaling schedule is
+        # to run. The minimum allowed value is 300. This field is required.
+        # Corresponds to the JSON property `durationSec`
+        # @return [Fixnum]
+        attr_accessor :duration_sec
+      
+        # The minimum number of VM instances that the autoscaler will recommend in time
+        # intervals starting according to schedule. This field is required.
+        # Corresponds to the JSON property `minRequiredReplicas`
+        # @return [Fixnum]
+        attr_accessor :min_required_replicas
+      
+        # The start timestamps of time intervals when this scaling schedule is to
+        # provide a scaling signal. This field uses the extended cron format (with an
+        # optional year field). The expression can describe a single timestamp if the
+        # optional year is set, in which case the scaling schedule runs once. The
+        # schedule is interpreted with respect to time_zone. This field is required.
+        # Note: These timestamps only describe when autoscaler starts providing the
+        # scaling signal. The VMs need additional time to become serving.
+        # Corresponds to the JSON property `schedule`
+        # @return [String]
+        attr_accessor :schedule
+      
+        # The time zone to use when interpreting the schedule. The value of this field
+        # must be a time zone name from the tz database: http://en.wikipedia.org/wiki/
+        # Tz_database. This field is assigned a default value of ?UTC? if left empty.
+        # Corresponds to the JSON property `timeZone`
+        # @return [String]
+        attr_accessor :time_zone
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @description = args[:description] if args.key?(:description)
+          @disabled = args[:disabled] if args.key?(:disabled)
+          @duration_sec = args[:duration_sec] if args.key?(:duration_sec)
+          @min_required_replicas = args[:min_required_replicas] if args.key?(:min_required_replicas)
+          @schedule = args[:schedule] if args.key?(:schedule)
+          @time_zone = args[:time_zone] if args.key?(:time_zone)
+        end
+      end
+      
       # Message containing information of one individual backend.
       class Backend
         include Google::Apis::Core::Hashable
@@ -2397,21 +2503,22 @@ module Google
         # parameters: maxConnections (except for regional managed instance groups),
         # maxConnectionsPerInstance, or maxConnectionsPerEndpoint.
         # If the loadBalancingScheme for the backend service is INTERNAL (internal TCP/
-        # UDP load balancers), you cannot specify any additional parameters.
+        # UDP Load Balancers) or EXTERNAL  (Network Load Balancing), you cannot specify
+        # any additional parameters.
         # 
         # - If the load balancing mode is RATE, the load is spread based on the rate of
         # HTTP requests per second (RPS).
         # You can use the RATE balancing mode if the protocol for the backend service is
-        # HTTP or HTTPS. You must specify exactly one of the following parameters:
-        # maxRate (except for regional managed instance groups), maxRatePerInstance, or
-        # maxRatePerEndpoint.
+        # HTTP, HTTP2, or HTTPS. You must specify exactly one of the following
+        # parameters: maxRate (except for regional managed instance groups),
+        # maxRatePerInstance, or maxRatePerEndpoint.
         # 
         # - If the load balancing mode is UTILIZATION, the load is spread based on the
         # backend utilization of instances in an instance group.
         # You can use the UTILIZATION balancing mode if the loadBalancingScheme of the
-        # backend service is EXTERNAL, INTERNAL_SELF_MANAGED, or INTERNAL_MANAGED and
-        # the backends are instance groups. There are no restrictions on the backend
-        # service protocol.
+        # backend service is EXTERNAL (except Network Load Balancing),
+        # INTERNAL_SELF_MANAGED, or INTERNAL_MANAGED and the backends are instance
+        # groups. There are no restrictions on the backend service protocol.
         # Corresponds to the JSON property `balancingMode`
         # @return [String]
         attr_accessor :balancing_mode
@@ -2423,7 +2530,8 @@ module Google
         # available capacity. Valid range is 0.0 and [0.1,1.0]. You cannot configure a
         # setting larger than 0 and smaller than 0.1. You cannot configure a setting of
         # 0 when there is only one backend attached to the backend service.
-        # This cannot be used for internal load balancing.
+        # This cannot be used for Internal TCP/UDP Load Balancing and Network Load
+        # Balancing.
         # Corresponds to the JSON property `capacityScaler`
         # @return [Float]
         attr_accessor :capacity_scaler
@@ -2445,14 +2553,16 @@ module Google
         # resource. The type of backend that a backend service supports depends on the
         # backend service's loadBalancingScheme.
         # 
-        # - When the loadBalancingScheme for the backend service is EXTERNAL,
-        # INTERNAL_SELF_MANAGED, or INTERNAL_MANAGED, the backend can be either an
-        # instance group or a NEG. The backends on the backend service must be either
-        # all instance groups or all NEGs. You cannot mix instance group and NEG
-        # backends on the same backend service.
-        # - When the loadBalancingScheme for the backend service is INTERNAL, the
-        # backend must be an instance group in the same region as the backend service.
-        # NEGs are not supported.
+        # - When the loadBalancingScheme for the backend service is EXTERNAL (except
+        # Network Load Balancing),  INTERNAL_SELF_MANAGED, or INTERNAL_MANAGED , the
+        # backend can be either an instance group or a NEG. The backends on the backend
+        # service must be either all instance groups or all NEGs. You cannot mix
+        # instance group and NEG backends on the same backend service.
+        # - When the loadBalancingScheme for the backend service is EXTERNAL for Network
+        # Load Balancing or INTERNAL for Internal TCP/UDP Load Balancing, the backend
+        # must be an instance group. NEGs are not supported.
+        # For regional services, the backend must be in the same region as the backend
+        # service.
         # You must use the fully-qualified URL (starting with https://www.googleapis.com/
         # ) to specify the instance group or NEG. Partial URLs are not supported.
         # Corresponds to the JSON property `group`
@@ -2464,11 +2574,12 @@ module Google
         # except for regional managed instance groups). If the backend's balancingMode
         # is UTILIZATION, this is an optional parameter. If the backend's balancingMode
         # is CONNECTION, and backend is attached to a backend service whose
-        # loadBalancingScheme is EXTERNAL, you must specify either this parameter,
-        # maxConnectionsPerInstance, or maxConnectionsPerEndpoint.
-        # Not available if the backend's balancingMode is RATE. If the
-        # loadBalancingScheme is INTERNAL, then maxConnections is not supported, even
-        # though the backend requires a balancing mode of CONNECTION.
+        # loadBalancingScheme is EXTERNAL (except Network Load Balancing), you must
+        # specify either this parameter, maxConnectionsPerInstance, or
+        # maxConnectionsPerEndpoint.
+        # Not available if the backend's balancingMode is RATE. Cannot be specified for
+        # Network Load Balancing or Internal TCP/UDP Load Balancing, even though those
+        # load balancers require a balancing mode of CONNECTION.
         # Corresponds to the JSON property `maxConnections`
         # @return [Fixnum]
         attr_accessor :max_connections
@@ -2476,12 +2587,13 @@ module Google
         # Defines a target maximum number of simultaneous connections for an endpoint of
         # a NEG. This is multiplied by the number of endpoints in the NEG to implicitly
         # calculate a maximum number of target maximum simultaneous connections for the
-        # NEG. If the backend's balancingMode is CONNECTION, and the backend is attached
-        # to a backend service whose loadBalancingScheme is EXTERNAL, you must specify
-        # either this parameter, maxConnections, or maxConnectionsPerInstance.
-        # Not available if the backend's balancingMode is RATE. Internal TCP/UDP load
-        # balancing does not support setting maxConnectionsPerEndpoint even though its
-        # backends require a balancing mode of CONNECTION.
+        # NEG. If the backend's balancingMode is CONNECTION, and backend is attached to
+        # a backend service whose loadBalancingScheme is EXTERNAL (except Network Load
+        # Balancing), you must specify either this parameter, maxConnections, or
+        # maxConnectionsPerInstance.
+        # Not available if the backend's balancingMode is RATE. Cannot be specified for
+        # Network Load Balancing or Internal TCP/UDP Load Balancing, even though those
+        # load balancers require a balancing mode of CONNECTION.
         # Corresponds to the JSON property `maxConnectionsPerEndpoint`
         # @return [Fixnum]
         attr_accessor :max_connections_per_endpoint
@@ -2492,11 +2604,11 @@ module Google
         # connections for the whole instance group. If the backend's balancingMode is
         # UTILIZATION, this is an optional parameter. If the backend's balancingMode is
         # CONNECTION, and backend is attached to a backend service whose
-        # loadBalancingScheme is EXTERNAL, you must specify either this parameter,
-        # maxConnections, or maxConnectionsPerEndpoint.
-        # Not available if the backend's balancingMode is RATE. Internal TCP/UDP load
-        # balancing does not support setting maxConnectionsPerInstance even though its
-        # backends require a balancing mode of CONNECTION.
+        # loadBalancingScheme is EXTERNAL (except Network Load Balancing), you must
+        # specify either this parameter,  maxConnections, or maxConnectionsPerEndpoint.
+        # Not available if the backend's balancingMode is RATE. Cannot be specified for
+        # Network Load Balancing or Internal TCP/UDP Load Balancing, even though those
+        # load balancers require a balancing mode of CONNECTION.
         # Corresponds to the JSON property `maxConnectionsPerInstance`
         # @return [Fixnum]
         attr_accessor :max_connections_per_instance
@@ -2711,12 +2823,17 @@ module Google
       
         # Negative caching allows per-status code TTLs to be set, in order to apply fine-
         # grained caching for common errors or redirects. This can reduce the load on
-        # your origin and improve end-user experience by reducing response latency. By
-        # default, Cloud CDN will apply the following default TTLs to these status codes:
-        # HTTP 300 (Multiple Choice), 301, 308 (Permanent Redirects): 10m HTTP 404 (Not
-        # Found), 410 (Gone), 451 (Unavailable For Legal Reasons): 120s HTTP 405 (Method
-        # Not Found), 421 (Misdirected Request), 501 (Not Implemented): 60s These
-        # defaults can be overridden in negative_caching_policy
+        # your origin and improve end-user experience by reducing response latency. When
+        # the cache mode is set to CACHE_ALL_STATIC or USE_ORIGIN_HEADERS, negative
+        # caching applies to responses with the specified response code that lack any
+        # Cache-Control, Expires, or Pragma: no-cache directives. When the cache mode is
+        # set to FORCE_CACHE_ALL, negative caching applies to all responses with the
+        # specified response code, and override any caching headers. By default, Cloud
+        # CDN will apply the following default TTLs to these status codes: HTTP 300 (
+        # Multiple Choice), 301, 308 (Permanent Redirects): 10m HTTP 404 (Not Found),
+        # 410 (Gone), 451 (Unavailable For Legal Reasons): 120s HTTP 405 (Method Not
+        # Found), 421 (Misdirected Request), 501 (Not Implemented): 60s. These defaults
+        # can be overridden in negative_caching_policy.
         # Corresponds to the JSON property `negativeCaching`
         # @return [Boolean]
         attr_accessor :negative_caching
@@ -2812,9 +2929,10 @@ module Google
         # @return [Fixnum]
         attr_accessor :code
       
-        # The TTL (in seconds) to cache responses with the corresponding status code for.
-        # The maximum allowed value is 1800s (30 minutes), noting that infrequently
-        # accessed objects may be evicted from the cache before the defined TTL.
+        # The TTL (in seconds) for which to cache responses with the corresponding
+        # status code. The maximum allowed value is 1800s (30 minutes), noting that
+        # infrequently accessed objects may be evicted from the cache before the defined
+        # TTL.
         # Corresponds to the JSON property `ttl`
         # @return [Fixnum]
         attr_accessor :ttl
@@ -2994,6 +3112,11 @@ module Google
         # @return [Google::Apis::ComputeBeta::ConnectionDraining]
         attr_accessor :connection_draining
       
+        # Connection Tracking configuration for this BackendService.
+        # Corresponds to the JSON property `connectionTrackingPolicy`
+        # @return [Google::Apis::ComputeBeta::BackendServiceConnectionTrackingPolicy]
+        attr_accessor :connection_tracking_policy
+      
         # This message defines settings for a consistent hash style load balancer.
         # Corresponds to the JSON property `consistentHash`
         # @return [Google::Apis::ComputeBeta::ConsistentHashLoadBalancerSettings]
@@ -3027,13 +3150,14 @@ module Google
         attr_accessor :enable_cdn
         alias_method :enable_cdn?, :enable_cdn
       
-        # Applicable only to Failover for Internal TCP/UDP Load Balancing. On failover
-        # or failback, this field indicates whether connection draining will be honored.
-        # GCP has a fixed connection draining timeout of 10 minutes. A setting of true
-        # terminates existing TCP connections to the active pool during failover and
-        # failback, immediately draining traffic. A setting of false allows existing TCP
-        # connections to persist, even on VMs no longer in the active pool, for up to
-        # the duration of the connection draining timeout (10 minutes).
+        # Applicable only to Failover for Internal TCP/UDP Load Balancing and Network
+        # Load Balancing. On failover or failback, this field indicates whether
+        # connection draining will be honored. GCP has a fixed connection draining
+        # timeout of 10 minutes. A setting of true terminates existing TCP connections
+        # to the active pool during failover and failback, immediately draining traffic.
+        # A setting of false allows existing TCP connections to persist, even on VMs no
+        # longer in the active pool, for up to the duration of the connection draining
+        # timeout (10 minutes).
         # Corresponds to the JSON property `failoverPolicy`
         # @return [Google::Apis::ComputeBeta::BackendServiceFailoverPolicy]
         attr_accessor :failover_policy
@@ -3078,11 +3202,11 @@ module Google
         # @return [String]
         attr_accessor :kind
       
-        # Specifies the load balancer type. Choose EXTERNAL for load balancers that
-        # receive traffic from external clients. Choose INTERNAL for Internal TCP/UDP
-        # Load Balancing. Choose INTERNAL_MANAGED for Internal HTTP(S) Load Balancing.
-        # Choose INTERNAL_SELF_MANAGED for Traffic Director. A backend service created
-        # for one type of load balancing cannot be used with another. For more
+        # Specifies the load balancer type. Choose EXTERNAL for external HTTP(S), SSL
+        # Proxy, TCP Proxy and Network Load Balancing. Choose  INTERNAL for Internal TCP/
+        # UDP Load Balancing. Choose  INTERNAL_MANAGED for Internal HTTP(S) Load
+        # Balancing.  INTERNAL_SELF_MANAGED for Traffic Director. A backend service
+        # created for one type of load balancer cannot be used with another. For more
         # information, refer to Choosing a load balancer.
         # Corresponds to the JSON property `loadBalancingScheme`
         # @return [String]
@@ -3137,7 +3261,7 @@ module Google
         attr_accessor :name
       
         # The URL of the network to which this backend service belongs. This field can
-        # only be spcified when the load balancing scheme is set to INTERNAL.
+        # only be specified when the load balancing scheme is set to INTERNAL.
         # Corresponds to the JSON property `network`
         # @return [String]
         attr_accessor :network
@@ -3158,11 +3282,12 @@ module Google
       
         # A named port on a backend instance group representing the port for
         # communication to the backend VMs in that group. Required when the
-        # loadBalancingScheme is EXTERNAL, INTERNAL_MANAGED, or INTERNAL_SELF_MANAGED
-        # and the backends are instance groups. The named port must be defined on each
-        # backend instance group. This parameter has no meaning if the backends are NEGs.
-        # Must be omitted when the loadBalancingScheme is INTERNAL (Internal TCP/UDP
-        # Load Balancing).
+        # loadBalancingScheme is EXTERNAL (except Network Load Balancing),
+        # INTERNAL_MANAGED, or  INTERNAL_SELF_MANAGED and the backends are instance
+        # groups. The named port must be defined on each backend instance group. This
+        # parameter has no meaning if the backends are NEGs.
+        # Backend services for Internal TCP/UDP Load Balancing and Network Load
+        # Balancing require you omit port_name.
         # Corresponds to the JSON property `portName`
         # @return [String]
         attr_accessor :port_name
@@ -3202,11 +3327,12 @@ module Google
         # @return [String]
         attr_accessor :self_link
       
-        # Type of session affinity to use. The default is NONE. Session affinity is not
-        # applicable if the --protocol is UDP.
-        # When the loadBalancingScheme is EXTERNAL, possible values are NONE, CLIENT_IP,
-        # or GENERATED_COOKIE. You can use GENERATED_COOKIE if the protocol is HTTP or
-        # HTTPS.
+        # Type of session affinity to use. The default is NONE.
+        # When the loadBalancingScheme is EXTERNAL: * For Network Load Balancing, the
+        # possible values are NONE, CLIENT_IP, CLIENT_IP_PROTO, or CLIENT_IP_PORT_PROTO.
+        # * For all other load balancers that use loadBalancingScheme=EXTERNAL, the
+        # possible values are NONE, CLIENT_IP, or GENERATED_COOKIE. * You can use
+        # GENERATED_COOKIE if the protocol is HTTP, HTTP2, or HTTPS.
         # When the loadBalancingScheme is INTERNAL, possible values are NONE, CLIENT_IP,
         # CLIENT_IP_PROTO, or CLIENT_IP_PORT_PROTO.
         # When the loadBalancingScheme is INTERNAL_SELF_MANAGED, or INTERNAL_MANAGED,
@@ -3236,6 +3362,7 @@ module Google
           @cdn_policy = args[:cdn_policy] if args.key?(:cdn_policy)
           @circuit_breakers = args[:circuit_breakers] if args.key?(:circuit_breakers)
           @connection_draining = args[:connection_draining] if args.key?(:connection_draining)
+          @connection_tracking_policy = args[:connection_tracking_policy] if args.key?(:connection_tracking_policy)
           @consistent_hash = args[:consistent_hash] if args.key?(:consistent_hash)
           @creation_timestamp = args[:creation_timestamp] if args.key?(:creation_timestamp)
           @custom_request_headers = args[:custom_request_headers] if args.key?(:custom_request_headers)
@@ -3457,12 +3584,17 @@ module Google
       
         # Negative caching allows per-status code TTLs to be set, in order to apply fine-
         # grained caching for common errors or redirects. This can reduce the load on
-        # your origin and improve end-user experience by reducing response latency. By
-        # default, Cloud CDN will apply the following default TTLs to these status codes:
-        # HTTP 300 (Multiple Choice), 301, 308 (Permanent Redirects): 10m HTTP 404 (Not
-        # Found), 410 (Gone), 451 (Unavailable For Legal Reasons): 120s HTTP 405 (Method
-        # Not Found), 421 (Misdirected Request), 501 (Not Implemented): 60s These
-        # defaults can be overridden in negative_caching_policy
+        # your origin and improve end-user experience by reducing response latency. When
+        # the cache mode is set to CACHE_ALL_STATIC or USE_ORIGIN_HEADERS, negative
+        # caching applies to responses with the specified response code that lack any
+        # Cache-Control, Expires, or Pragma: no-cache directives. When the cache mode is
+        # set to FORCE_CACHE_ALL, negative caching applies to all responses with the
+        # specified response code, and override any caching headers. By default, Cloud
+        # CDN will apply the following default TTLs to these status codes: HTTP 300 (
+        # Multiple Choice), 301, 308 (Permanent Redirects): 10m HTTP 404 (Not Found),
+        # 410 (Gone), 451 (Unavailable For Legal Reasons): 120s HTTP 405 (Method Not
+        # Found), 421 (Misdirected Request), 501 (Not Implemented): 60s. These defaults
+        # can be overridden in negative_caching_policy.
         # Corresponds to the JSON property `negativeCaching`
         # @return [Boolean]
         attr_accessor :negative_caching
@@ -3559,9 +3691,10 @@ module Google
         # @return [Fixnum]
         attr_accessor :code
       
-        # The TTL (in seconds) to cache responses with the corresponding status code for.
-        # The maximum allowed value is 1800s (30 minutes), noting that infrequently
-        # accessed objects may be evicted from the cache before the defined TTL.
+        # The TTL (in seconds) for which to cache responses with the corresponding
+        # status code. The maximum allowed value is 1800s (30 minutes), noting that
+        # infrequently accessed objects may be evicted from the cache before the defined
+        # TTL.
         # Corresponds to the JSON property `ttl`
         # @return [Fixnum]
         attr_accessor :ttl
@@ -3577,13 +3710,45 @@ module Google
         end
       end
       
-      # Applicable only to Failover for Internal TCP/UDP Load Balancing. On failover
-      # or failback, this field indicates whether connection draining will be honored.
-      # GCP has a fixed connection draining timeout of 10 minutes. A setting of true
-      # terminates existing TCP connections to the active pool during failover and
-      # failback, immediately draining traffic. A setting of false allows existing TCP
-      # connections to persist, even on VMs no longer in the active pool, for up to
-      # the duration of the connection draining timeout (10 minutes).
+      # Connection Tracking configuration for this BackendService.
+      class BackendServiceConnectionTrackingPolicy
+        include Google::Apis::Core::Hashable
+      
+        # Specifies connection persistence when backends are unhealthy. The default
+        # value is DEFAULT_FOR_PROTOCOL.
+        # If set to DEFAULT_FOR_PROTOCOL, the existing connections persist on unhealthy
+        # backends only for connection-oriented protocols (TCP and SCTP) and only if the
+        # Tracking Mode is PER_CONNECTION (default tracking mode) or the Session
+        # Affinity is configured for 5-tuple. They do not persist for UDP.
+        # If set to NEVER_PERSIST, after a backend becomes unhealthy, the existing
+        # connections on the unhealthy backend are never persisted on the unhealthy
+        # backend. They are always diverted to newly selected healthy backends (unless
+        # all backends are unhealthy).
+        # If set to ALWAYS_PERSIST, existing connections always persist on unhealthy
+        # backends regardless of protocol and session affinity. It is generally not
+        # recommended to use this mode overriding the default.
+        # Corresponds to the JSON property `connectionPersistenceOnUnhealthyBackends`
+        # @return [String]
+        attr_accessor :connection_persistence_on_unhealthy_backends
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @connection_persistence_on_unhealthy_backends = args[:connection_persistence_on_unhealthy_backends] if args.key?(:connection_persistence_on_unhealthy_backends)
+        end
+      end
+      
+      # Applicable only to Failover for Internal TCP/UDP Load Balancing and Network
+      # Load Balancing. On failover or failback, this field indicates whether
+      # connection draining will be honored. GCP has a fixed connection draining
+      # timeout of 10 minutes. A setting of true terminates existing TCP connections
+      # to the active pool during failover and failback, immediately draining traffic.
+      # A setting of false allows existing TCP connections to persist, even on VMs no
+      # longer in the active pool, for up to the duration of the connection draining
+      # timeout (10 minutes).
       class BackendServiceFailoverPolicy
         include Google::Apis::Core::Hashable
       
@@ -3594,22 +3759,21 @@ module Google
         attr_accessor :disable_connection_drain_on_failover
         alias_method :disable_connection_drain_on_failover?, :disable_connection_drain_on_failover
       
-        # Applicable only to Failover for Internal TCP/UDP Load Balancing. If set to
-        # true, connections to the load balancer are dropped when all primary and all
-        # backup backend VMs are unhealthy. If set to false, connections are distributed
-        # among all primary VMs when all primary and all backup backend VMs are
-        # unhealthy.
-        # The default is false.
+        # Applicable only to Failover for Internal TCP/UDP Load Balancing and Network
+        # Load Balancing, If set to true, connections to the load balancer are dropped
+        # when all primary and all backup backend VMs are unhealthy.If set to false,
+        # connections are distributed among all primary VMs when all primary and all
+        # backup backend VMs are unhealthy. The default is false.
         # Corresponds to the JSON property `dropTrafficIfUnhealthy`
         # @return [Boolean]
         attr_accessor :drop_traffic_if_unhealthy
         alias_method :drop_traffic_if_unhealthy?, :drop_traffic_if_unhealthy
       
-        # Applicable only to Failover for Internal TCP/UDP Load Balancing. The value of
-        # the field must be in the range [0, 1]. If the value is 0, the load balancer
-        # performs a failover when the number of healthy primary VMs equals zero. For
-        # all other values, the load balancer performs a failover when the total number
-        # of healthy primary VMs is less than this ratio.
+        # Applicable only to Failover for Internal TCP/UDP Load Balancing and Network
+        # Load Balancing. The value of the field must be in the range [0, 1]. If the
+        # value is 0, the load balancer performs a failover when the number of healthy
+        # primary VMs equals zero. For all other values, the load balancer performs a
+        # failover when the total number of healthy primary VMs is less than this ratio.
         # Corresponds to the JSON property `failoverRatio`
         # @return [Float]
         attr_accessor :failover_ratio
@@ -4214,8 +4378,7 @@ module Google
       class Binding
         include Google::Apis::Core::Hashable
       
-        # A client-specified ID for this binding. Expected to be globally unique to
-        # support the internal bindings-by-ID API.
+        # 
         # Corresponds to the JSON property `bindingId`
         # @return [String]
         attr_accessor :binding_id
@@ -6537,7 +6700,14 @@ module Google
       class DistributionPolicy
         include Google::Apis::Core::Hashable
       
-        # Zones where the regional managed instance group will create and manage
+        # The distribution shape to which the group converges either proactively or on
+        # resize events (depending on the value set in updatePolicy.
+        # instanceRedistributionType).
+        # Corresponds to the JSON property `targetShape`
+        # @return [String]
+        attr_accessor :target_shape
+      
+        # Zones where the regional managed instance group will create and manage its
         # instances.
         # Corresponds to the JSON property `zones`
         # @return [Array<Google::Apis::ComputeBeta::DistributionPolicyZoneConfiguration>]
@@ -6549,6 +6719,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @target_shape = args[:target_shape] if args.key?(:target_shape)
           @zones = args[:zones] if args.key?(:zones)
         end
       end
@@ -7521,6 +7692,187 @@ module Google
         end
       end
       
+      # Represents a rule that describes one or more match conditions along with the
+      # action to be taken when traffic matches this condition (allow or deny).
+      class FirewallPolicyRule
+        include Google::Apis::Core::Hashable
+      
+        # The Action to perform when the client connection triggers the rule. Can
+        # currently be either "allow" or "deny()" where valid values for status are 403,
+        # 404, and 502.
+        # Corresponds to the JSON property `action`
+        # @return [String]
+        attr_accessor :action
+      
+        # An optional description of this resource. Provide this property when you
+        # create the resource.
+        # Corresponds to the JSON property `description`
+        # @return [String]
+        attr_accessor :description
+      
+        # The direction in which this rule applies.
+        # Corresponds to the JSON property `direction`
+        # @return [String]
+        attr_accessor :direction
+      
+        # Denotes whether the firewall policy rule is disabled. When set to true, the
+        # firewall policy rule is not enforced and traffic behaves as if it did not
+        # exist. If this is unspecified, the firewall policy rule will be enabled.
+        # Corresponds to the JSON property `disabled`
+        # @return [Boolean]
+        attr_accessor :disabled
+        alias_method :disabled?, :disabled
+      
+        # Denotes whether to enable logging for a particular rule. If logging is enabled,
+        # logs will be exported to the configured export destination in Stackdriver.
+        # Logs may be exported to BigQuery or Pub/Sub. Note: you cannot enable logging
+        # on "goto_next" rules.
+        # Corresponds to the JSON property `enableLogging`
+        # @return [Boolean]
+        attr_accessor :enable_logging
+        alias_method :enable_logging?, :enable_logging
+      
+        # [Output only] Type of the resource. Always compute#firewallPolicyRule for
+        # firewall policy rules
+        # Corresponds to the JSON property `kind`
+        # @return [String]
+        attr_accessor :kind
+      
+        # Represents a match condition that incoming traffic is evaluated against.
+        # Exactly one field must be specified.
+        # Corresponds to the JSON property `match`
+        # @return [Google::Apis::ComputeBeta::FirewallPolicyRuleMatcher]
+        attr_accessor :match
+      
+        # An integer indicating the priority of a rule in the list. The priority must be
+        # a positive value between 0 and 2147483647. Rules are evaluated from highest to
+        # lowest priority where 0 is the highest priority and 2147483647 is the lowest
+        # prority.
+        # Corresponds to the JSON property `priority`
+        # @return [Fixnum]
+        attr_accessor :priority
+      
+        # [Output Only] Calculation of the complexity of a single firewall policy rule.
+        # Corresponds to the JSON property `ruleTupleCount`
+        # @return [Fixnum]
+        attr_accessor :rule_tuple_count
+      
+        # A list of network resource URLs to which this rule applies. This field allows
+        # you to control which network?s VMs get this rule. If this field is left blank,
+        # all VMs within the organization will receive the rule.
+        # Corresponds to the JSON property `targetResources`
+        # @return [Array<String>]
+        attr_accessor :target_resources
+      
+        # A list of secure labels that controls which instances the firewall rule
+        # applies to. If targetSecureLabel are specified, then the firewall rule applies
+        # only to instances in the VPC network that have one of those secure labels.
+        # targetSecureLabel may not be set at the same time as targetServiceAccounts. If
+        # neither targetServiceAccounts nor targetSecureLabel are specified, the
+        # firewall rule applies to all instances on the specified network. Maximum
+        # number of target label values allowed is 256.
+        # Corresponds to the JSON property `targetSecureLabels`
+        # @return [Array<String>]
+        attr_accessor :target_secure_labels
+      
+        # A list of service accounts indicating the sets of instances that are applied
+        # with this rule.
+        # Corresponds to the JSON property `targetServiceAccounts`
+        # @return [Array<String>]
+        attr_accessor :target_service_accounts
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @action = args[:action] if args.key?(:action)
+          @description = args[:description] if args.key?(:description)
+          @direction = args[:direction] if args.key?(:direction)
+          @disabled = args[:disabled] if args.key?(:disabled)
+          @enable_logging = args[:enable_logging] if args.key?(:enable_logging)
+          @kind = args[:kind] if args.key?(:kind)
+          @match = args[:match] if args.key?(:match)
+          @priority = args[:priority] if args.key?(:priority)
+          @rule_tuple_count = args[:rule_tuple_count] if args.key?(:rule_tuple_count)
+          @target_resources = args[:target_resources] if args.key?(:target_resources)
+          @target_secure_labels = args[:target_secure_labels] if args.key?(:target_secure_labels)
+          @target_service_accounts = args[:target_service_accounts] if args.key?(:target_service_accounts)
+        end
+      end
+      
+      # Represents a match condition that incoming traffic is evaluated against.
+      # Exactly one field must be specified.
+      class FirewallPolicyRuleMatcher
+        include Google::Apis::Core::Hashable
+      
+        # CIDR IP address range. Maximum number of destination CIDR IP ranges allowed is
+        # 256.
+        # Corresponds to the JSON property `destIpRanges`
+        # @return [Array<String>]
+        attr_accessor :dest_ip_ranges
+      
+        # Pairs of IP protocols and ports that the rule should match.
+        # Corresponds to the JSON property `layer4Configs`
+        # @return [Array<Google::Apis::ComputeBeta::FirewallPolicyRuleMatcherLayer4Config>]
+        attr_accessor :layer4_configs
+      
+        # CIDR IP address range. Maximum number of source CIDR IP ranges allowed is 256.
+        # Corresponds to the JSON property `srcIpRanges`
+        # @return [Array<String>]
+        attr_accessor :src_ip_ranges
+      
+        # List of firewall label values, which should be matched at the source of the
+        # traffic. Maximum number of source label values allowed is 256.
+        # Corresponds to the JSON property `srcSecureLabels`
+        # @return [Array<String>]
+        attr_accessor :src_secure_labels
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @dest_ip_ranges = args[:dest_ip_ranges] if args.key?(:dest_ip_ranges)
+          @layer4_configs = args[:layer4_configs] if args.key?(:layer4_configs)
+          @src_ip_ranges = args[:src_ip_ranges] if args.key?(:src_ip_ranges)
+          @src_secure_labels = args[:src_secure_labels] if args.key?(:src_secure_labels)
+        end
+      end
+      
+      # 
+      class FirewallPolicyRuleMatcherLayer4Config
+        include Google::Apis::Core::Hashable
+      
+        # The IP protocol to which this rule applies. The protocol type is required when
+        # creating a firewall rule. This value can either be one of the following well
+        # known protocol strings (tcp, udp, icmp, esp, ah, ipip, sctp), or the IP
+        # protocol number.
+        # Corresponds to the JSON property `ipProtocol`
+        # @return [String]
+        attr_accessor :ip_protocol
+      
+        # An optional list of ports to which this rule applies. This field is only
+        # applicable for UDP or TCP protocol. Each entry must be either an integer or a
+        # range. If not specified, this rule applies to connections through any port.
+        # Example inputs include: ["22"], ["80","443"], and ["12345-12349"].
+        # Corresponds to the JSON property `ports`
+        # @return [Array<String>]
+        attr_accessor :ports
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @ip_protocol = args[:ip_protocol] if args.key?(:ip_protocol)
+          @ports = args[:ports] if args.key?(:ports)
+        end
+      end
+      
       # Encapsulates numeric value that can be either absolute or relative.
       class FixedOrPercent
         include Google::Apis::Core::Hashable
@@ -7584,29 +7936,36 @@ module Google
         # assigned. Methods for specifying an IP address:
         # * IPv4 dotted decimal, as in `100.1.2.3` * Full URL, as in https://www.
         # googleapis.com/compute/v1/projects/project_id/regions/region/addresses/address-
-        # name * Partial URL or by name, as in: * projects/project_id/regions/region/
-        # addresses/address-name * regions/region/addresses/address-name * global/
-        # addresses/address-name * address-name
+        # name * Partial URL or by name, as in:
+        # - projects/project_id/regions/region/addresses/address-name
+        # - regions/region/addresses/address-name
+        # - global/addresses/address-name
+        # - address-name
         # The loadBalancingScheme and the forwarding rule's target determine the type of
         # IP address that you can use. For detailed information, refer to [IP address
         # specifications](/load-balancing/docs/forwarding-rule-concepts#
         # ip_address_specifications).
         # Must be set to `0.0.0.0` when the target is targetGrpcProxy that has
         # validateForProxyless field set to true.
+        # For Private Service Connect forwarding rules that forward traffic to Google
+        # APIs, IP address must be provided.
         # Corresponds to the JSON property `IPAddress`
         # @return [String]
         attr_accessor :ip_address
       
-        # The IP protocol to which this rule applies. For protocol forwarding, valid
-        # options are TCP, UDP, ESP, AH, SCTP or ICMP.
-        # For Internal TCP/UDP Load Balancing, the load balancing scheme is INTERNAL,
-        # and one of TCP or UDP are valid. For Traffic Director, the load balancing
-        # scheme is INTERNAL_SELF_MANAGED, and only TCPis valid. For Internal HTTP(S)
-        # Load Balancing, the load balancing scheme is INTERNAL_MANAGED, and only TCP is
-        # valid. For HTTP(S), SSL Proxy, and TCP Proxy Load Balancing, the load
-        # balancing scheme is EXTERNAL and only TCP is valid. For Network TCP/UDP Load
-        # Balancing, the load balancing scheme is EXTERNAL, and one of TCP or UDP is
-        # valid.
+        # The IP protocol to which this rule applies.
+        # For protocol forwarding, valid options are TCP, UDP, ESP, AH, SCTP and ICMP.
+        # The valid IP protocols are different for different load balancing products:
+        # - Internal TCP/UDP Load Balancing: The load balancing scheme is INTERNAL, and
+        # one of TCP, UDP or ALL is valid.
+        # - Traffic Director: The load balancing scheme is INTERNAL_SELF_MANAGED, and
+        # only TCP is valid.
+        # - Internal HTTP(S) Load Balancing: The load balancing scheme is
+        # INTERNAL_MANAGED, and only TCP is valid.
+        # - HTTP(S), SSL Proxy, and TCP Proxy Load Balancing: The load balancing scheme
+        # is EXTERNAL and only TCP is valid.
+        # - Network Load Balancing: The load balancing scheme is EXTERNAL, and one of
+        # TCP or UDP is valid.
         # Corresponds to the JSON property `IPProtocol`
         # @return [String]
         attr_accessor :ip_protocol
@@ -7631,9 +7990,9 @@ module Google
         attr_accessor :allow_global_access
         alias_method :allow_global_access?, :allow_global_access
       
-        # This field is only used for INTERNAL load balancing.
-        # For internal load balancing, this field identifies the BackendService resource
-        # to receive the matched traffic.
+        # Identifies the backend service to which the forwarding rule sends traffic.
+        # Required for Internal TCP/UDP Load Balancing and Network Load Balancing; must
+        # be omitted for all other load balancer types.
         # Corresponds to the JSON property `backendService`
         # @return [String]
         attr_accessor :backend_service
@@ -7715,13 +8074,12 @@ module Google
         # - EXTERNAL is used for:
         # - Classic Cloud VPN gateways
         # - Protocol forwarding to VMs from an external IP address
-        # - The following load balancers: HTTP(S), SSL Proxy, TCP Proxy, and Network TCP/
-        # UDP
+        # - HTTP(S), SSL Proxy, TCP Proxy, and Network Load Balancing
         # - INTERNAL is used for:
         # - Protocol forwarding to VMs from an internal IP address
-        # - Internal TCP/UDP load balancers
+        # - Internal TCP/UDP Load Balancing
         # - INTERNAL_MANAGED is used for:
-        # - Internal HTTP(S) load balancers
+        # - Internal HTTP(S) Load Balancing
         # - INTERNAL_SELF_MANAGED is used for:
         # - Traffic Director
         # For more information about forwarding rules, refer to Forwarding rule concepts.
@@ -7760,9 +8118,11 @@ module Google
         attr_accessor :name
       
         # This field is not used for external load balancing.
-        # For internal load balancing, this field identifies the network that the load
-        # balanced IP should belong to for this Forwarding Rule. If this field is not
-        # specified, the default network will be used.
+        # For Internal TCP/UDP Load Balancing, this field identifies the network that
+        # the load balanced IP should belong to for this Forwarding Rule. If this field
+        # is not specified, the default network will be used.
+        # For Private Service Connect forwarding rules that forward traffic to Google
+        # APIs, a network must be provided.
         # Corresponds to the JSON property `network`
         # @return [String]
         attr_accessor :network
@@ -7777,19 +8137,17 @@ module Google
         # @return [String]
         attr_accessor :network_tier
       
-        # When the load balancing scheme is EXTERNAL, INTERNAL_SELF_MANAGED and
-        # INTERNAL_MANAGED, you can specify a port_range. Use with a forwarding rule
-        # that points to a target proxy or a target pool. Do not use with a forwarding
-        # rule that points to a backend service. This field is used along with the
-        # target field for TargetHttpProxy, TargetHttpsProxy, TargetSslProxy,
-        # TargetTcpProxy, TargetGrpcProxy, TargetVpnGateway, TargetPool, TargetInstance.
-        # Applicable only when IPProtocol is TCP, UDP, or SCTP, only packets addressed
-        # to ports in the specified range will be forwarded to target. Forwarding rules
-        # with the same [IPAddress, IPProtocol] pair must have disjoint port ranges.
+        # This field can be used only if: * Load balancing scheme is one of EXTERNAL,
+        # INTERNAL_SELF_MANAGED or INTERNAL_MANAGED, and * IPProtocol is one of TCP, UDP,
+        # or SCTP.
+        # Packets addressed to ports in the specified range will be forwarded to target
+        # or  backend_service. You can only use one of ports, port_range, or allPorts.
+        # The three are mutually exclusive. Forwarding rules with the same [IPAddress,
+        # IPProtocol] pair must have disjoint port ranges.
         # Some types of forwarding target have constraints on the acceptable ports:
         # - TargetHttpProxy: 80, 8080
         # - TargetHttpsProxy: 443
-        # - TargetGrpcProxy: Any ports
+        # - TargetGrpcProxy: no constraints
         # - TargetTcpProxy: 25, 43, 110, 143, 195, 443, 465, 587, 700, 993, 995, 1688,
         # 1883, 5222
         # - TargetSslProxy: 25, 43, 110, 143, 195, 443, 465, 587, 700, 993, 995, 1688,
@@ -7799,16 +8157,17 @@ module Google
         # @return [String]
         attr_accessor :port_range
       
-        # This field is used along with the backend_service field for internal load
-        # balancing.
-        # When the load balancing scheme is INTERNAL, a list of ports can be configured,
-        # for example, ['80'], ['8000','9000']. Only packets addressed to these ports
-        # are forwarded to the backends configured with the forwarding rule.
-        # If the forwarding rule's loadBalancingScheme is INTERNAL, you can specify
-        # ports in one of the following ways:
-        # * A list of up to five ports, which can be non-contiguous * Keyword ALL, which
-        # causes the forwarding rule to forward traffic on any port of the forwarding
-        # rule's protocol.
+        # The ports field is only supported when the forwarding rule references a
+        # backend_service directly. Supported load balancing products are Internal TCP/
+        # UDP Load Balancing and Network Load Balancing. Only packets addressed to the
+        # specified list of ports are forwarded to backends.
+        # You can only use one of ports and port_range, or allPorts. The three are
+        # mutually exclusive.
+        # You can specify a list of up to five ports, which can be non-contiguous.
+        # For Internal TCP/UDP Load Balancing, if you specify allPorts, you should not
+        # specify ports.
+        # For more information, see [Port specifications](/load-balancing/docs/
+        # forwarding-rule-concepts#port_specifications).
         # Corresponds to the JSON property `ports`
         # @return [Array<String>]
         attr_accessor :ports
@@ -7828,6 +8187,8 @@ module Google
       
         # Service Directory resources to register this forwarding rule with. Currently,
         # only supports a single Service Directory resource.
+        # It is only supported for Internal TCP/UDP Load Balancing and Internal HTTP(S)
+        # Load Balancing.
         # Corresponds to the JSON property `serviceDirectoryRegistrations`
         # @return [Array<Google::Apis::ComputeBeta::ForwardingRuleServiceDirectoryRegistration>]
         attr_accessor :service_directory_registrations
@@ -7867,6 +8228,15 @@ module Google
         # resource. The forwarded traffic must be of a type appropriate to the target
         # object. For more information, see the "Target" column in [Port specifications](
         # /load-balancing/docs/forwarding-rule-concepts#ip_address_specifications).
+        # For Private Service Connect forwarding rules that forward traffic to Google
+        # APIs, provide the name of a supported Google API bundle. Currently, the
+        # supported Google API bundles include:
+        # 
+        # - vpc-sc - GCP APIs that support VPC Service Controls. For more information
+        # about which APIs support VPC Service Controls, refer to VPC-SC supported
+        # products and limitations.
+        # - all-apis - All GCP APIs. For more information about which APIs are supported
+        # with this bundle, refer to Private Google Access-specific domains and VIPs.
         # Corresponds to the JSON property `target`
         # @return [String]
         attr_accessor :target
@@ -8813,12 +9183,16 @@ module Google
       # Google Compute Engine has two Health Check resources:
       # * [Global](/compute/docs/reference/rest/`$api_version`/healthChecks) * [
       # Regional](/compute/docs/reference/rest/`$api_version`/regionHealthChecks)
-      # Internal HTTP(S) load balancers must use regional health checks. Internal TCP/
-      # UDP load balancers can use either regional or global health checks. All other
-      # types of GCP load balancers and managed instance group auto-healing must use
-      # global health checks. For more information, read Health Check Concepts.
-      # To perform health checks on network load balancers, you must use either
-      # httpHealthChecks or httpsHealthChecks.
+      # Internal HTTP(S) load balancers must use regional health checks (`compute.v1.
+      # regionHealthChecks`).
+      # Traffic Director must use global health checks (`compute.v1.HealthChecks`).
+      # Internal TCP/UDP load balancers can use either regional or global health
+      # checks (`compute.v1.regionHealthChecks` or `compute.v1.HealthChecks`).
+      # External HTTP(S), TCP proxy, and SSL proxy load balancers as well as managed
+      # instance group auto-healing must use global health checks (`compute.v1.
+      # HealthChecks`).
+      # Network load balancers must use legacy HTTP health checks (httpHealthChecks).
+      # For more information, see Health checks overview.
       class HealthCheck
         include Google::Apis::Core::Hashable
       
@@ -9644,6 +10018,16 @@ module Google
         # @return [Fixnum]
         attr_accessor :port
       
+        # 
+        # Corresponds to the JSON property `weight`
+        # @return [String]
+        attr_accessor :weight
+      
+        # 
+        # Corresponds to the JSON property `weightError`
+        # @return [String]
+        attr_accessor :weight_error
+      
         def initialize(**args)
            update!(**args)
         end
@@ -9655,6 +10039,8 @@ module Google
           @instance = args[:instance] if args.key?(:instance)
           @ip_address = args[:ip_address] if args.key?(:ip_address)
           @port = args[:port] if args.key?(:port)
+          @weight = args[:weight] if args.key?(:weight)
+          @weight_error = args[:weight_error] if args.key?(:weight_error)
         end
       end
       
@@ -11418,6 +11804,15 @@ module Google
       class Instance
         include Google::Apis::Core::Hashable
       
+        # Specifies options for controlling advanced machine features. Options that
+        # would traditionally be configured in a BIOS belong here. Features that require
+        # operating system support may have corresponding entries in the GuestOsFeatures
+        # of an Image (e.g., whether or not the OS in the Image supports nested
+        # virtualization being enabled or disabled).
+        # Corresponds to the JSON property `advancedMachineFeatures`
+        # @return [Google::Apis::ComputeBeta::AdvancedMachineFeatures]
+        attr_accessor :advanced_machine_features
+      
         # Allows this instance to send and receive packets with non-matching destination
         # or source IPs. This is required if you plan to use this instance to forward
         # routes. For more information, see Enabling IP Forwarding.
@@ -11690,6 +12085,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @advanced_machine_features = args[:advanced_machine_features] if args.key?(:advanced_machine_features)
           @can_ip_forward = args[:can_ip_forward] if args.key?(:can_ip_forward)
           @confidential_instance_config = args[:confidential_instance_config] if args.key?(:confidential_instance_config)
           @cpu_platform = args[:cpu_platform] if args.key?(:cpu_platform)
@@ -12263,8 +12659,8 @@ module Google
         # @return [String]
         attr_accessor :description
       
-        # Policy specifying intended distribution of instances in regional managed
-        # instance group.
+        # Policy specifying the intended distribution of managed instances across zones
+        # in a regional managed instance group.
         # Corresponds to the JSON property `distributionPolicy`
         # @return [Google::Apis::ComputeBeta::DistributionPolicy]
         attr_accessor :distribution_policy
@@ -12299,7 +12695,9 @@ module Google
       
         # The URL of the instance template that is specified for this managed instance
         # group. The group uses this template to create all new instances in the managed
-        # instance group.
+        # instance group. The templates for existing instances in the group do not
+        # change unless you run recreateInstances, run applyUpdatesToInstances, or set
+        # the group's updatePolicy.type to PROACTIVE.
         # Corresponds to the JSON property `instanceTemplate`
         # @return [String]
         attr_accessor :instance_template
@@ -12322,15 +12720,6 @@ module Google
         # @return [Array<Google::Apis::ComputeBeta::NamedPort>]
         attr_accessor :named_ports
       
-        # [Deprecated] This field is deprecated and will be removed. Prefer using the
-        # status field instead. Please contact cloud-updater-feedback@google.com to
-        # leave feedback if your workload relies on this field. [Output Only] The list
-        # of instance actions and the number of instances in this managed instance group
-        # that are pending for each of those actions.
-        # Corresponds to the JSON property `pendingActions`
-        # @return [Google::Apis::ComputeBeta::InstanceGroupManagerPendingActionsSummary]
-        attr_accessor :pending_actions
-      
         # [Output Only] The URL of the region where the managed instance group resides (
         # for regional resources).
         # Corresponds to the JSON property `region`
@@ -12392,7 +12781,7 @@ module Google
         # @return [Array<Google::Apis::ComputeBeta::InstanceGroupManagerVersion>]
         attr_accessor :versions
       
-        # [Output Only] The URL of the zone where the managed instance group is located (
+        # [Output Only] The URL of a zone where the managed instance group is located (
         # for zonal resources).
         # Corresponds to the JSON property `zone`
         # @return [String]
@@ -12418,7 +12807,6 @@ module Google
           @kind = args[:kind] if args.key?(:kind)
           @name = args[:name] if args.key?(:name)
           @named_ports = args[:named_ports] if args.key?(:named_ports)
-          @pending_actions = args[:pending_actions] if args.key?(:pending_actions)
           @region = args[:region] if args.key?(:region)
           @self_link = args[:self_link] if args.key?(:self_link)
           @service_account = args[:service_account] if args.key?(:service_account)
@@ -12792,55 +13180,6 @@ module Google
         end
       end
       
-      # 
-      class InstanceGroupManagerPendingActionsSummary
-        include Google::Apis::Core::Hashable
-      
-        # [Deprecated] This field is deprecated and will be removed. Prefer using the
-        # status field instead. Please contact cloud-updater-feedback@google.com to
-        # leave feedback if your workload relies on this field. [Output Only] The number
-        # of instances in the managed instance group that are pending to be created.
-        # Corresponds to the JSON property `creating`
-        # @return [Fixnum]
-        attr_accessor :creating
-      
-        # [Deprecated] This field is deprecated and will be removed. Prefer using the
-        # status field instead. Please contact cloud-updater-feedback@google.com to
-        # leave feedback if your workload relies on this field. [Output Only] The number
-        # of instances in the managed instance group that are pending to be deleted.
-        # Corresponds to the JSON property `deleting`
-        # @return [Fixnum]
-        attr_accessor :deleting
-      
-        # [Deprecated] This field is deprecated and will be removed. Prefer using the
-        # status field instead. Please contact cloud-updater-feedback@google.com to
-        # leave feedback if your workload relies on this field. [Output Only] The number
-        # of instances in the managed instance group that are pending to be recreated.
-        # Corresponds to the JSON property `recreating`
-        # @return [Fixnum]
-        attr_accessor :recreating
-      
-        # [Deprecated] This field is deprecated and will be removed. Prefer using the
-        # status field instead. Please contact cloud-updater-feedback@google.com to
-        # leave feedback if your workload relies on this field. [Output Only] The number
-        # of instances in the managed instance group that are pending to be restarted.
-        # Corresponds to the JSON property `restarting`
-        # @return [Fixnum]
-        attr_accessor :restarting
-      
-        def initialize(**args)
-           update!(**args)
-        end
-      
-        # Update properties of this object
-        def update!(**args)
-          @creating = args[:creating] if args.key?(:creating)
-          @deleting = args[:deleting] if args.key?(:deleting)
-          @recreating = args[:recreating] if args.key?(:recreating)
-          @restarting = args[:restarting] if args.key?(:restarting)
-        end
-      end
-      
       # 
       class InstanceGroupManagerStatus
         include Google::Apis::Core::Hashable
@@ -13048,7 +13387,11 @@ module Google
       
         # The URL of the instance template that is specified for this managed instance
         # group. The group uses this template to create new instances in the managed
-        # instance group until the `targetSize` for this version is reached.
+        # instance group until the `targetSize` for this version is reached. The
+        # templates for existing instances in the group do not change unless you run
+        # recreateInstances, run applyUpdatesToInstances, or set the group's
+        # updatePolicy.type to PROACTIVE; in those cases, existing instances are updated
+        # until the `targetSize` for this version is reached.
         # Corresponds to the JSON property `instanceTemplate`
         # @return [String]
         attr_accessor :instance_template
@@ -13567,7 +13910,9 @@ module Google
       
         # The URL of the instance template that is specified for this managed instance
         # group. The group uses this template to create all new instances in the managed
-        # instance group.
+        # instance group. The templates for existing instances in the group do not
+        # change unless you run recreateInstances, run applyUpdatesToInstances, or set
+        # the group's updatePolicy.type to PROACTIVE.
         # Corresponds to the JSON property `instanceTemplate`
         # @return [String]
         attr_accessor :instance_template
@@ -14305,6 +14650,15 @@ module Google
       class InstanceProperties
         include Google::Apis::Core::Hashable
       
+        # Specifies options for controlling advanced machine features. Options that
+        # would traditionally be configured in a BIOS belong here. Features that require
+        # operating system support may have corresponding entries in the GuestOsFeatures
+        # of an Image (e.g., whether or not the OS in the Image supports nested
+        # virtualization being enabled or disabled).
+        # Corresponds to the JSON property `advancedMachineFeatures`
+        # @return [Google::Apis::ComputeBeta::AdvancedMachineFeatures]
+        attr_accessor :advanced_machine_features
+      
         # Enables instances created based on these properties to send packets with
         # source IP addresses other than their own and receive packets with destination
         # IP addresses other than their own. If these instances will be used as an IP
@@ -14424,6 +14778,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @advanced_machine_features = args[:advanced_machine_features] if args.key?(:advanced_machine_features)
           @can_ip_forward = args[:can_ip_forward] if args.key?(:can_ip_forward)
           @confidential_instance_config = args[:confidential_instance_config] if args.key?(:confidential_instance_config)
           @description = args[:description] if args.key?(:description)
@@ -14722,6 +15077,11 @@ module Google
       class InstancesGetEffectiveFirewallsResponse
         include Google::Apis::Core::Hashable
       
+        # Effective firewalls from firewall policies.
+        # Corresponds to the JSON property `firewallPolicys`
+        # @return [Array<Google::Apis::ComputeBeta::InstancesGetEffectiveFirewallsResponseEffectiveFirewallPolicy>]
+        attr_accessor :firewall_policys
+      
         # Effective firewalls on the instance.
         # Corresponds to the JSON property `firewalls`
         # @return [Array<Google::Apis::ComputeBeta::Firewall>]
@@ -14738,11 +15098,49 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @firewall_policys = args[:firewall_policys] if args.key?(:firewall_policys)
           @firewalls = args[:firewalls] if args.key?(:firewalls)
           @organization_firewalls = args[:organization_firewalls] if args.key?(:organization_firewalls)
         end
       end
       
+      # 
+      class InstancesGetEffectiveFirewallsResponseEffectiveFirewallPolicy
+        include Google::Apis::Core::Hashable
+      
+        # [Output Only] The display name of the firewall policy.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # [Output Only] The name of the firewall policy.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # The rules that apply to the network.
+        # Corresponds to the JSON property `rules`
+        # @return [Array<Google::Apis::ComputeBeta::FirewallPolicyRule>]
+        attr_accessor :rules
+      
+        # [Output Only] The type of the firewall policy.
+        # Corresponds to the JSON property `type`
+        # @return [String]
+        attr_accessor :type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @name = args[:name] if args.key?(:name)
+          @rules = args[:rules] if args.key?(:rules)
+          @type = args[:type] if args.key?(:type)
+        end
+      end
+      
       # A pruned SecurityPolicy containing ID and any applicable firewall rules.
       class InstancesGetEffectiveFirewallsResponseOrganizationFirewallPolicy
         include Google::Apis::Core::Hashable
@@ -15381,6 +15779,11 @@ module Google
         # @return [String]
         attr_accessor :customer_router_ip_address
       
+        # [Output Only] Dataplane version for this InterconnectAttachment.
+        # Corresponds to the JSON property `dataplaneVersion`
+        # @return [Fixnum]
+        attr_accessor :dataplane_version
+      
         # An optional description of this resource.
         # Corresponds to the JSON property `description`
         # @return [String]
@@ -15444,6 +15847,13 @@ module Google
         # @return [Hash<String,String>]
         attr_accessor :labels
       
+        # Maximum Transmission Unit (MTU), in bytes, of packets passing through this
+        # interconnect attachment. Only 1440 and 1500 are allowed. If not specified, the
+        # value will default to 1440.
+        # Corresponds to the JSON property `mtu`
+        # @return [Fixnum]
+        attr_accessor :mtu
+      
         # Name of the resource. Provided by the client when the resource is created. The
         # name must be 1-63 characters long, and comply with RFC1035. Specifically, the
         # name must be 1-63 characters long and match the regular expression `[a-z]([-a-
@@ -15562,6 +15972,7 @@ module Google
           @cloud_router_ip_address = args[:cloud_router_ip_address] if args.key?(:cloud_router_ip_address)
           @creation_timestamp = args[:creation_timestamp] if args.key?(:creation_timestamp)
           @customer_router_ip_address = args[:customer_router_ip_address] if args.key?(:customer_router_ip_address)
+          @dataplane_version = args[:dataplane_version] if args.key?(:dataplane_version)
           @description = args[:description] if args.key?(:description)
           @edge_availability_domain = args[:edge_availability_domain] if args.key?(:edge_availability_domain)
           @google_reference_id = args[:google_reference_id] if args.key?(:google_reference_id)
@@ -15570,6 +15981,7 @@ module Google
           @kind = args[:kind] if args.key?(:kind)
           @label_fingerprint = args[:label_fingerprint] if args.key?(:label_fingerprint)
           @labels = args[:labels] if args.key?(:labels)
+          @mtu = args[:mtu] if args.key?(:mtu)
           @name = args[:name] if args.key?(:name)
           @operational_status = args[:operational_status] if args.key?(:operational_status)
           @pairing_key = args[:pairing_key] if args.key?(:pairing_key)
@@ -18502,8 +18914,9 @@ module Google
       # Represents a collection of network endpoints.
       # A network endpoint group (NEG) defines how a set of endpoints should be
       # reached, whether they are reachable, and where they are located. For more
-      # information about using NEGs, see  Setting up internet NEGs,  Setting up zonal
-      # NEGs, or  Setting up serverless NEGs. (== resource_for `$api_version`.
+      # information about using NEGs, see  Setting up external HTTP(S) Load Balancing
+      # with internet NEGs,  Setting up zonal NEGs, or  Setting up external HTTP(S)
+      # Load Balancing with serverless NEGs. (== resource_for `$api_version`.
       # networkEndpointGroups ==) (== resource_for `$api_version`.
       # globalNetworkEndpointGroups ==) (== resource_for `$api_version`.
       # regionNetworkEndpointGroups ==)
@@ -18788,7 +19201,7 @@ module Google
         include Google::Apis::Core::Hashable
       
         # Optional serving service.
-        # The service name must be 1-63 characters long, and comply with RFC1035.
+        # The service name is case-sensitive and must be 1-63 characters long.
         # Example value: "default", "my-service".
         # Corresponds to the JSON property `service`
         # @return [String]
@@ -18806,7 +19219,7 @@ module Google
         attr_accessor :url_mask
       
         # Optional serving version.
-        # The version must be 1-63 characters long, and comply with RFC1035.
+        # The version name is case-sensitive and must be 1-100 characters long.
         # Example value: "v1", "v2".
         # Corresponds to the JSON property `version`
         # @return [String]
@@ -19445,6 +19858,11 @@ module Google
         # @return [String]
         attr_accessor :network_ip
       
+        # The type of vNIC to be used on this interface. This may be gVNIC or VirtioNet.
+        # Corresponds to the JSON property `nicType`
+        # @return [String]
+        attr_accessor :nic_type
+      
         # The URL of the Subnetwork resource for this instance. If the network resource
         # is in legacy mode, do not specify this field. If the network is in auto subnet
         # mode, specifying the subnetwork is optional. If the network is in custom
@@ -19472,6 +19890,7 @@ module Google
           @name = args[:name] if args.key?(:name)
           @network = args[:network] if args.key?(:network)
           @network_ip = args[:network_ip] if args.key?(:network_ip)
+          @nic_type = args[:nic_type] if args.key?(:nic_type)
           @subnetwork = args[:subnetwork] if args.key?(:subnetwork)
         end
       end
@@ -19778,6 +20197,11 @@ module Google
       class NetworksGetEffectiveFirewallsResponse
         include Google::Apis::Core::Hashable
       
+        # Effective firewalls from firewall policy.
+        # Corresponds to the JSON property `firewallPolicys`
+        # @return [Array<Google::Apis::ComputeBeta::NetworksGetEffectiveFirewallsResponseEffectiveFirewallPolicy>]
+        attr_accessor :firewall_policys
+      
         # Effective firewalls on the network.
         # Corresponds to the JSON property `firewalls`
         # @return [Array<Google::Apis::ComputeBeta::Firewall>]
@@ -19794,11 +20218,49 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @firewall_policys = args[:firewall_policys] if args.key?(:firewall_policys)
           @firewalls = args[:firewalls] if args.key?(:firewalls)
           @organization_firewalls = args[:organization_firewalls] if args.key?(:organization_firewalls)
         end
       end
       
+      # 
+      class NetworksGetEffectiveFirewallsResponseEffectiveFirewallPolicy
+        include Google::Apis::Core::Hashable
+      
+        # [Output Only] The display name of the firewall policy.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # [Output Only] The name of the firewall policy.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # The rules that apply to the network.
+        # Corresponds to the JSON property `rules`
+        # @return [Array<Google::Apis::ComputeBeta::FirewallPolicyRule>]
+        attr_accessor :rules
+      
+        # [Output Only] The type of the firewall policy.
+        # Corresponds to the JSON property `type`
+        # @return [String]
+        attr_accessor :type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @name = args[:name] if args.key?(:name)
+          @rules = args[:rules] if args.key?(:rules)
+          @type = args[:type] if args.key?(:type)
+        end
+      end
+      
       # A pruned SecurityPolicy containing ID and any applicable firewall rules.
       class NetworksGetEffectiveFirewallsResponseOrganizationFirewallPolicy
         include Google::Apis::Core::Hashable
@@ -19916,6 +20378,12 @@ module Google
         # @return [String]
         attr_accessor :maintenance_policy
       
+        # Time window specified for daily maintenance operations. GCE's internal
+        # maintenance will be performed within this window.
+        # Corresponds to the JSON property `maintenanceWindow`
+        # @return [Google::Apis::ComputeBeta::NodeGroupMaintenanceWindow]
+        attr_accessor :maintenance_window
+      
         # The name of the resource, provided by the client when initially creating the
         # resource. The resource name must be 1-63 characters long, and comply with
         # RFC1035. Specifically, the name must be 1-63 characters long and match the
@@ -19966,6 +20434,7 @@ module Google
           @id = args[:id] if args.key?(:id)
           @kind = args[:kind] if args.key?(:kind)
           @maintenance_policy = args[:maintenance_policy] if args.key?(:maintenance_policy)
+          @maintenance_window = args[:maintenance_window] if args.key?(:maintenance_window)
           @name = args[:name] if args.key?(:name)
           @node_template = args[:node_template] if args.key?(:node_template)
           @self_link = args[:self_link] if args.key?(:self_link)
@@ -20250,6 +20719,37 @@ module Google
         end
       end
       
+      # Time window specified for daily maintenance operations. GCE's internal
+      # maintenance will be performed within this window.
+      class NodeGroupMaintenanceWindow
+        include Google::Apis::Core::Hashable
+      
+        # A Duration represents a fixed-length span of time represented as a count of
+        # seconds and fractions of seconds at nanosecond resolution. It is independent
+        # of any calendar and concepts like "day" or "month". Range is approximately 10,
+        # 000 years.
+        # Corresponds to the JSON property `maintenanceDuration`
+        # @return [Google::Apis::ComputeBeta::Duration]
+        attr_accessor :maintenance_duration
+      
+        # Start time of the window. This must be in UTC format that resolves to one of
+        # 00:00, 04:00, 08:00, 12:00, 16:00, or 20:00. For example, both 13:00-5 and 08:
+        # 00 are valid.
+        # Corresponds to the JSON property `startTime`
+        # @return [String]
+        attr_accessor :start_time
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @maintenance_duration = args[:maintenance_duration] if args.key?(:maintenance_duration)
+          @start_time = args[:start_time] if args.key?(:start_time)
+        end
+      end
+      
       # 
       class NodeGroupNode
         include Google::Apis::Core::Hashable
@@ -22837,6 +23337,12 @@ module Google
         # @return [Array<String>]
         attr_accessor :cidr_ranges
       
+        # Direction of traffic to mirror, either INGRESS, EGRESS, or BOTH. The default
+        # is BOTH.
+        # Corresponds to the JSON property `direction`
+        # @return [String]
+        attr_accessor :direction
+      
         def initialize(**args)
            update!(**args)
         end
@@ -22845,6 +23351,7 @@ module Google
         def update!(**args)
           @ip_protocols = args[:ip_protocols] if args.key?(:ip_protocols)
           @cidr_ranges = args[:cidr_ranges] if args.key?(:cidr_ranges)
+          @direction = args[:direction] if args.key?(:direction)
         end
       end
       
@@ -26677,8 +27184,8 @@ module Google
         # @return [String]
         attr_accessor :description
       
-        # The destination range of outgoing packets that this route applies to. Only
-        # IPv4 is supported.
+        # The destination range of outgoing packets that this route applies to. Both
+        # IPv4 and IPv6 are supported.
         # Corresponds to the JSON property `destRange`
         # @return [String]
         attr_accessor :dest_range
@@ -26717,8 +27224,9 @@ module Google
         attr_accessor :next_hop_gateway
       
         # The URL to a forwarding rule of type loadBalancingScheme=INTERNAL that should
-        # handle matching packets. You can only specify the forwarding rule as a partial
-        # or full URL. For example, the following are all valid URLs:
+        # handle matching packets or the IP address of the forwarding Rule. For example,
+        # the following are all valid URLs:
+        # - 10.128.0.56
         # - https://www.googleapis.com/compute/v1/projects/project/regions/region/
         # forwardingRules/forwardingRule
         # - regions/region/forwardingRules/forwardingRule
@@ -27671,6 +28179,12 @@ module Google
         # @return [Array<String>]
         attr_accessor :drain_nat_ips
       
+        # 
+        # Corresponds to the JSON property `enableEndpointIndependentMapping`
+        # @return [Boolean]
+        attr_accessor :enable_endpoint_independent_mapping
+        alias_method :enable_endpoint_independent_mapping?, :enable_endpoint_independent_mapping
+      
         # Timeout (in seconds) for ICMP connections. Defaults to 30s if not set.
         # Corresponds to the JSON property `icmpIdleTimeoutSec`
         # @return [Fixnum]
@@ -27756,6 +28270,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @drain_nat_ips = args[:drain_nat_ips] if args.key?(:drain_nat_ips)
+          @enable_endpoint_independent_mapping = args[:enable_endpoint_independent_mapping] if args.key?(:enable_endpoint_independent_mapping)
           @icmp_idle_timeout_sec = args[:icmp_idle_timeout_sec] if args.key?(:icmp_idle_timeout_sec)
           @log_config = args[:log_config] if args.key?(:log_config)
           @min_ports_per_vm = args[:min_ports_per_vm] if args.key?(:min_ports_per_vm)
@@ -28411,6 +28926,41 @@ module Google
         end
       end
       
+      # 
+      class ScalingScheduleStatus
+        include Google::Apis::Core::Hashable
+      
+        # [Output Only] The last time the scaling schedule became active. Note: this is
+        # a timestamp when a schedule actually became active, not when it was planned to
+        # do so. The timestamp is in RFC3339 text format.
+        # Corresponds to the JSON property `lastStartTime`
+        # @return [String]
+        attr_accessor :last_start_time
+      
+        # [Output Only] The next time the scaling schedule is to become active. Note:
+        # this is a timestamp when a schedule is planned to run, but the actual time
+        # might be slightly different. The timestamp is in RFC3339 text format.
+        # Corresponds to the JSON property `nextStartTime`
+        # @return [String]
+        attr_accessor :next_start_time
+      
+        # [Output Only] The current state of a scaling schedule.
+        # Corresponds to the JSON property `state`
+        # @return [String]
+        attr_accessor :state
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @last_start_time = args[:last_start_time] if args.key?(:last_start_time)
+          @next_start_time = args[:next_start_time] if args.key?(:next_start_time)
+          @state = args[:state] if args.key?(:state)
+        end
+      end
+      
       # Sets the scheduling options for an Instance. NextID: 13
       class Scheduling
         include Google::Apis::Core::Hashable
@@ -28426,6 +28976,12 @@ module Google
         attr_accessor :automatic_restart
         alias_method :automatic_restart?, :automatic_restart
       
+        # An opaque location hint used to place the instance close to other resources.
+        # This field is for use by internal tools that use the public API.
+        # Corresponds to the JSON property `locationHint`
+        # @return [String]
+        attr_accessor :location_hint
+      
         # The minimum number of virtual CPUs this instance will consume when running on
         # a sole-tenant node.
         # Corresponds to the JSON property `minNodeCpus`
@@ -28462,6 +29018,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @automatic_restart = args[:automatic_restart] if args.key?(:automatic_restart)
+          @location_hint = args[:location_hint] if args.key?(:location_hint)
           @min_node_cpus = args[:min_node_cpus] if args.key?(:min_node_cpus)
           @node_affinities = args[:node_affinities] if args.key?(:node_affinities)
           @on_host_maintenance = args[:on_host_maintenance] if args.key?(:on_host_maintenance)
@@ -28566,13 +29123,18 @@ module Google
         end
       end
       
-      # Represents a Cloud Armor Security Policy resource.
+      # Represents a Google Cloud Armor security policy resource.
       # Only external backend services that use load balancers can reference a
-      # Security Policy. For more information, read  Cloud Armor Security Policy
-      # Concepts. (== resource_for `$api_version`.securityPolicies ==)
+      # security policy. For more information, see  Google Cloud Armor security policy
+      # overview. (== resource_for `$api_version`.securityPolicies ==)
       class SecurityPolicy
         include Google::Apis::Core::Hashable
       
+        # Configuration options for Cloud Armor Adaptive Protection (CAAP).
+        # Corresponds to the JSON property `adaptiveProtectionConfig`
+        # @return [Google::Apis::ComputeBeta::SecurityPolicyAdaptiveProtectionConfig]
+        attr_accessor :adaptive_protection_config
+      
         # A list of associations that belong to this policy.
         # Corresponds to the JSON property `associations`
         # @return [Array<Google::Apis::ComputeBeta::SecurityPolicyAssociation>]
@@ -28592,11 +29154,11 @@ module Google
         # User-provided name of the Organization security plicy. The name should be
         # unique in the organization in which the security policy is created. This
         # should only be used when SecurityPolicyType is FIREWALL. The name must be 1-63
-        # characters long, and comply with RFC1035. Specifically, the name must be 1-63
-        # characters long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?`
-        # which means the first character must be a lowercase letter, and all following
-        # characters must be a dash, lowercase letter, or digit, except the last
-        # character, which cannot be a dash.
+        # characters long, and comply with https://www.ietf.org/rfc/rfc1035.txt.
+        # Specifically, the name must be 1-63 characters long and match the regular
+        # expression `[a-z]([-a-z0-9]*[a-z0-9])?` which means the first character must
+        # be a lowercase letter, and all following characters must be a dash, lowercase
+        # letter, or digit, except the last character, which cannot be a dash.
         # Corresponds to the JSON property `displayName`
         # @return [String]
         attr_accessor :display_name
@@ -28694,6 +29256,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @adaptive_protection_config = args[:adaptive_protection_config] if args.key?(:adaptive_protection_config)
           @associations = args[:associations] if args.key?(:associations)
           @creation_timestamp = args[:creation_timestamp] if args.key?(:creation_timestamp)
           @description = args[:description] if args.key?(:description)
@@ -28713,6 +29276,52 @@ module Google
         end
       end
       
+      # Configuration options for Cloud Armor Adaptive Protection (CAAP).
+      class SecurityPolicyAdaptiveProtectionConfig
+        include Google::Apis::Core::Hashable
+      
+        # Configuration options for L7 DDoS detection.
+        # Corresponds to the JSON property `layer7DdosDefenseConfig`
+        # @return [Google::Apis::ComputeBeta::SecurityPolicyAdaptiveProtectionConfigLayer7DdosDefenseConfig]
+        attr_accessor :layer7_ddos_defense_config
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @layer7_ddos_defense_config = args[:layer7_ddos_defense_config] if args.key?(:layer7_ddos_defense_config)
+        end
+      end
+      
+      # Configuration options for L7 DDoS detection.
+      class SecurityPolicyAdaptiveProtectionConfigLayer7DdosDefenseConfig
+        include Google::Apis::Core::Hashable
+      
+        # If set to true, enables CAAP for L7 DDoS detection.
+        # Corresponds to the JSON property `enable`
+        # @return [Boolean]
+        attr_accessor :enable
+        alias_method :enable?, :enable
+      
+        # Rule visibility can be one of the following: STANDARD - opaque rules. (default)
+        # PREMIUM - transparent rules.
+        # Corresponds to the JSON property `ruleVisibility`
+        # @return [String]
+        attr_accessor :rule_visibility
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @enable = args[:enable] if args.key?(:enable)
+          @rule_visibility = args[:rule_visibility] if args.key?(:rule_visibility)
+        end
+      end
+      
       # 
       class SecurityPolicyAssociation
         include Google::Apis::Core::Hashable
@@ -28936,11 +29545,18 @@ module Google
         # An integer indicating the priority of a rule in the list. The priority must be
         # a positive value between 0 and 2147483647. Rules are evaluated from highest to
         # lowest priority where 0 is the highest priority and 2147483647 is the lowest
-        # prority.
+        # priority.
         # Corresponds to the JSON property `priority`
         # @return [Fixnum]
         attr_accessor :priority
       
+        # Identifier for the rule. This is only unique within the given security policy.
+        # This can only be set during rule creation, if rule number is not specified it
+        # will be generated by the server.
+        # Corresponds to the JSON property `ruleNumber`
+        # @return [Fixnum]
+        attr_accessor :rule_number
+      
         # [Output Only] Calculation of the complexity of a single firewall security
         # policy rule.
         # Corresponds to the JSON property `ruleTupleCount`
@@ -28975,6 +29591,7 @@ module Google
           @match = args[:match] if args.key?(:match)
           @preview = args[:preview] if args.key?(:preview)
           @priority = args[:priority] if args.key?(:priority)
+          @rule_number = args[:rule_number] if args.key?(:rule_number)
           @rule_tuple_count = args[:rule_tuple_count] if args.key?(:rule_tuple_count)
           @target_resources = args[:target_resources] if args.key?(:target_resources)
           @target_service_accounts = args[:target_service_accounts] if args.key?(:target_service_accounts)
@@ -30640,10 +31257,10 @@ module Google
         end
       end
       
-      # Represents a Cloud Armor Security Policy resource.
-      # Only external backend services used by HTTP or HTTPS load balancers can
-      # reference a Security Policy. For more information, read read  Cloud Armor
-      # Security Policy Concepts. (== resource_for `$api_version`.sslPolicies ==)
+      # Represents an SSL Policy resource.
+      # Use SSL policies to control the SSL features, such as versions and cipher
+      # suites, offered by an HTTPS or SSL Proxy load balancer. For more information,
+      # read  SSL Policy Concepts. (== resource_for `$api_version`.sslPolicies ==)
       class SslPolicy
         include Google::Apis::Core::Hashable
       
@@ -31062,12 +31679,14 @@ module Google
         # @return [String]
         attr_accessor :self_link
       
-        # [Output Only] The state of the subnetwork, which can be one of READY or
-        # DRAINING. A subnetwork that is READY is ready to be used. The state of
-        # DRAINING is only applicable to subnetworks that have the purpose set to
+        # [Output Only] The state of the subnetwork, which can be one of the following
+        # values: READY: Subnetwork is created and ready to use DRAINING: only
+        # applicable to subnetworks that have the purpose set to
         # INTERNAL_HTTPS_LOAD_BALANCER and indicates that connections to the load
         # balancer are being drained. A subnetwork that is draining cannot be used or
-        # modified until it reaches a status of READY.
+        # modified until it reaches a status of READY CREATING: Subnetwork is
+        # provisioning DELETING: Subnetwork is being deleted UPDATING: Subnetwork is
+        # being updated
         # Corresponds to the JSON property `state`
         # @return [String]
         attr_accessor :state
@@ -32048,9 +32667,14 @@ module Google
         # @return [String]
         attr_accessor :name
       
-        # This field only applies when the loadBalancingScheme is INTERNAL_SELF_MANAGED.
-        # When set to true the Envoy binds on the IP address specified by the forwarding
-        # rule. Default is false.
+        # This field only applies when the forwarding rule that references this target
+        # proxy has a loadBalancingScheme set to INTERNAL_SELF_MANAGED.
+        # When this field is set to true, Envoy proxies set up inbound traffic
+        # interception and bind to the IP address and port specified in the forwarding
+        # rule. This is generally useful when using Traffic Director to configure Envoy
+        # as a gateway or middle proxy (in other words, not a sidecar proxy). The Envoy
+        # proxy listens for inbound requests and handles requests when it receives them.
+        # The default is false.
         # Corresponds to the JSON property `proxyBind`
         # @return [Boolean]
         attr_accessor :proxy_bind
@@ -32549,9 +33173,14 @@ module Google
         # @return [String]
         attr_accessor :name
       
-        # This field only applies when the loadBalancingScheme is INTERNAL_SELF_MANAGED.
-        # When set to true the Envoy binds on the IP address specified by the forwarding
-        # rule. Default is false.
+        # This field only applies when the forwarding rule that references this target
+        # proxy has a loadBalancingScheme set to INTERNAL_SELF_MANAGED.
+        # When this field is set to true, Envoy proxies set up inbound traffic
+        # interception and bind to the IP address and port specified in the forwarding
+        # rule. This is generally useful when using Traffic Director to configure Envoy
+        # as a gateway or middle proxy (in other words, not a sidecar proxy). The Envoy
+        # proxy listens for inbound requests and handles requests when it receives them.
+        # The default is false.
         # Corresponds to the JSON property `proxyBind`
         # @return [Boolean]
         attr_accessor :proxy_bind
@@ -33320,9 +33949,9 @@ module Google
       class TargetPool
         include Google::Apis::Core::Hashable
       
-        # This field is applicable only when the containing target pool is serving a
-        # forwarding rule as the primary pool, and its failoverRatio field is properly
-        # set to a value between [0, 1].
+        # The server-defined URL for the resource. This field is applicable only when
+        # the containing target pool is serving a forwarding rule as the primary pool,
+        # and its failoverRatio field is properly set to a value between [0, 1].
         # backupPool and failoverRatio together define the fallback behavior of the
         # primary target pool: if the ratio of the healthy instances in the primary pool
         # is at or below failoverRatio, traffic arriving at the load-balanced IP will be
@@ -34248,6 +34877,19 @@ module Google
         # @return [String]
         attr_accessor :name
       
+        # This field only applies when the forwarding rule that references this target
+        # proxy has a loadBalancingScheme set to INTERNAL_SELF_MANAGED.
+        # When this field is set to true, Envoy proxies set up inbound traffic
+        # interception and bind to the IP address and port specified in the forwarding
+        # rule. This is generally useful when using Traffic Director to configure Envoy
+        # as a gateway or middle proxy (in other words, not a sidecar proxy). The Envoy
+        # proxy listens for inbound requests and handles requests when it receives them.
+        # The default is false.
+        # Corresponds to the JSON property `proxyBind`
+        # @return [Boolean]
+        attr_accessor :proxy_bind
+        alias_method :proxy_bind?, :proxy_bind
+      
         # Specifies the type of proxy header to append before sending data to the
         # backend, either NONE or PROXY_V1. The default is NONE.
         # Corresponds to the JSON property `proxyHeader`
@@ -34275,6 +34917,7 @@ module Google
           @id = args[:id] if args.key?(:id)
           @kind = args[:kind] if args.key?(:kind)
           @name = args[:name] if args.key?(:name)
+          @proxy_bind = args[:proxy_bind] if args.key?(:proxy_bind)
           @proxy_header = args[:proxy_header] if args.key?(:proxy_header)
           @self_link = args[:self_link] if args.key?(:self_link)
           @service = args[:service] if args.key?(:service)