google-apis-compute_v1 0.26.0 → 0.29.0

data/lib/google/apis/compute_v1/classes.rb

@@ -1185,6 +1185,11 @@ module Google
       class AllocationSpecificSkuReservation
         include Google::Apis::Core::Hashable
       
+        # [Output Only] Indicates how many instances are actually usable currently.
+        # Corresponds to the JSON property `assuredCount`
+        # @return [Fixnum]
+        attr_accessor :assured_count
+      
         # Specifies the number of resources that are allocated.
         # Corresponds to the JSON property `count`
         # @return [Fixnum]
@@ -1206,6 +1211,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @assured_count = args[:assured_count] if args.key?(:assured_count)
           @count = args[:count] if args.key?(:count)
           @in_use_count = args[:in_use_count] if args.key?(:in_use_count)
           @instance_properties = args[:instance_properties] if args.key?(:instance_properties)
@@ -3269,9 +3275,14 @@ module Google
         # @return [Google::Apis::ComputeV1::Subsetting]
         attr_accessor :subsetting
       
-        # Not supported when the backend service is referenced by a URL map that is
-        # bound to target gRPC proxy that has validateForProxyless field set to true.
-        # Instead, use maxStreamDuration.
+        # The backend service timeout has a different meaning depending on the type of
+        # load balancer. For more information see, Backend service settings. The default
+        # is 30 seconds. The full range of timeout values allowed goes from 1 through 2,
+        # 147,483,647 seconds. This value can be overridden in the PathMatcher
+        # configuration of the UrlMap that references this backend service. Not
+        # supported when the backend service is referenced by a URL map that is bound to
+        # target gRPC proxy that has validateForProxyless field set to true. Instead,
+        # use maxStreamDuration.
         # Corresponds to the JSON property `timeoutSec`
         # @return [Fixnum]
         attr_accessor :timeout_sec
@@ -3674,6 +3685,13 @@ module Google
         # @return [String]
         attr_accessor :connection_persistence_on_unhealthy_backends
       
+        # Enable Strong Session Affinity for Network Load Balancing. This option is not
+        # available publicly.
+        # Corresponds to the JSON property `enableStrongAffinity`
+        # @return [Boolean]
+        attr_accessor :enable_strong_affinity
+        alias_method :enable_strong_affinity?, :enable_strong_affinity
+      
         # Specifies how long to keep a Connection Tracking entry while there is no
         # matching traffic (in seconds). For Internal TCP/UDP Load Balancing: - The
         # minimum (default) is 10 minutes and the maximum is 16 hours. - It can be set
@@ -3705,6 +3723,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @connection_persistence_on_unhealthy_backends = args[:connection_persistence_on_unhealthy_backends] if args.key?(:connection_persistence_on_unhealthy_backends)
+          @enable_strong_affinity = args[:enable_strong_affinity] if args.key?(:enable_strong_affinity)
           @idle_timeout_sec = args[:idle_timeout_sec] if args.key?(:idle_timeout_sec)
           @tracking_mode = args[:tracking_mode] if args.key?(:tracking_mode)
         end
@@ -4626,14 +4645,18 @@ module Google
       class CircuitBreakers
         include Google::Apis::Core::Hashable
       
-        # Not supported when the backend service is referenced by a URL map that is
-        # bound to target gRPC proxy that has validateForProxyless field set to true.
+        # The maximum number of connections to the backend service. If not specified,
+        # there is no limit. Not supported when the backend service is referenced by a
+        # URL map that is bound to target gRPC proxy that has validateForProxyless field
+        # set to true.
         # Corresponds to the JSON property `maxConnections`
         # @return [Fixnum]
         attr_accessor :max_connections
       
-        # Not supported when the backend service is referenced by a URL map that is
-        # bound to target gRPC proxy that has validateForProxyless field set to true.
+        # The maximum number of pending requests allowed to the backend service. If not
+        # specified, there is no limit. Not supported when the backend service is
+        # referenced by a URL map that is bound to target gRPC proxy that has
+        # validateForProxyless field set to true.
         # Corresponds to the JSON property `maxPendingRequests`
         # @return [Fixnum]
         attr_accessor :max_pending_requests
@@ -4644,14 +4667,20 @@ module Google
         # @return [Fixnum]
         attr_accessor :max_requests
       
-        # Not supported when the backend service is referenced by a URL map that is
-        # bound to target gRPC proxy that has validateForProxyless field set to true.
+        # Maximum requests for a single connection to the backend service. This
+        # parameter is respected by both the HTTP/1.1 and HTTP/2 implementations. If not
+        # specified, there is no limit. Setting this parameter to 1 will effectively
+        # disable keep alive. Not supported when the backend service is referenced by a
+        # URL map that is bound to target gRPC proxy that has validateForProxyless field
+        # set to true.
         # Corresponds to the JSON property `maxRequestsPerConnection`
         # @return [Fixnum]
         attr_accessor :max_requests_per_connection
       
-        # Not supported when the backend service is referenced by a URL map that is
-        # bound to target gRPC proxy that has validateForProxyless field set to true.
+        # The maximum number of parallel retries allowed to the backend cluster. If not
+        # specified, the default is 1. Not supported when the backend service is
+        # referenced by a URL map that is bound to target gRPC proxy that has
+        # validateForProxyless field set to true.
         # Corresponds to the JSON property `maxRetries`
         # @return [Fixnum]
         attr_accessor :max_retries
@@ -7837,6 +7866,14 @@ module Google
         # @return [String]
         attr_accessor :parent
       
+        # [Output Only] URL of the region where the regional firewall policy resides.
+        # This field is not applicable to global firewall policies. You must specify
+        # this field as part of the HTTP request URL. It is not settable as a field in
+        # the request body.
+        # Corresponds to the JSON property `region`
+        # @return [String]
+        attr_accessor :region
+      
         # [Output Only] Total count of all firewall policy rule tuples. A firewall
         # policy can not exceed a set number of tuples.
         # Corresponds to the JSON property `ruleTupleCount`
@@ -7888,6 +7925,7 @@ module Google
           @kind = args[:kind] if args.key?(:kind)
           @name = args[:name] if args.key?(:name)
           @parent = args[:parent] if args.key?(:parent)
+          @region = args[:region] if args.key?(:region)
           @rule_tuple_count = args[:rule_tuple_count] if args.key?(:rule_tuple_count)
           @rules = args[:rules] if args.key?(:rules)
           @self_link = args[:self_link] if args.key?(:self_link)
@@ -8123,6 +8161,18 @@ module Google
         # @return [Array<String>]
         attr_accessor :target_resources
       
+        # A list of secure tags that controls which instances the firewall rule applies
+        # to. If targetSecureTag are specified, then the firewall rule applies only to
+        # instances in the VPC network that have one of those EFFECTIVE secure tags, if
+        # all the target_secure_tag are in INEFFECTIVE state, then this rule will be
+        # ignored. targetSecureTag may not be set at the same time as
+        # targetServiceAccounts. If neither targetServiceAccounts nor targetSecureTag
+        # are specified, the firewall rule applies to all instances on the specified
+        # network. Maximum number of target label tags allowed is 256.
+        # Corresponds to the JSON property `targetSecureTags`
+        # @return [Array<Google::Apis::ComputeV1::FirewallPolicyRuleSecureTag>]
+        attr_accessor :target_secure_tags
+      
         # A list of service accounts indicating the sets of instances that are applied
         # with this rule.
         # Corresponds to the JSON property `targetServiceAccounts`
@@ -8145,6 +8195,7 @@ module Google
           @priority = args[:priority] if args.key?(:priority)
           @rule_tuple_count = args[:rule_tuple_count] if args.key?(:rule_tuple_count)
           @target_resources = args[:target_resources] if args.key?(:target_resources)
+          @target_secure_tags = args[:target_secure_tags] if args.key?(:target_secure_tags)
           @target_service_accounts = args[:target_service_accounts] if args.key?(:target_service_accounts)
         end
       end
@@ -8170,6 +8221,14 @@ module Google
         # @return [Array<String>]
         attr_accessor :src_ip_ranges
       
+        # List of secure tag values, which should be matched at the source of the
+        # traffic. For INGRESS rule, if all the srcSecureTag are INEFFECTIVE, and there
+        # is no srcIpRange, this rule will be ignored. Maximum number of source tag
+        # values allowed is 256.
+        # Corresponds to the JSON property `srcSecureTags`
+        # @return [Array<Google::Apis::ComputeV1::FirewallPolicyRuleSecureTag>]
+        attr_accessor :src_secure_tags
+      
         def initialize(**args)
            update!(**args)
         end
@@ -8179,6 +8238,7 @@ module Google
           @dest_ip_ranges = args[:dest_ip_ranges] if args.key?(:dest_ip_ranges)
           @layer4_configs = args[:layer4_configs] if args.key?(:layer4_configs)
           @src_ip_ranges = args[:src_ip_ranges] if args.key?(:src_ip_ranges)
+          @src_secure_tags = args[:src_secure_tags] if args.key?(:src_secure_tags)
         end
       end
       
@@ -8213,6 +8273,32 @@ module Google
         end
       end
       
+      # 
+      class FirewallPolicyRuleSecureTag
+        include Google::Apis::Core::Hashable
+      
+        # Name of the secure tag, created with TagManager's TagValue API.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # [Output Only] State of the secure tag, either `EFFECTIVE` or `INEFFECTIVE`. A
+        # secure tag is `INEFFECTIVE` when it is deleted or its network is deleted.
+        # Corresponds to the JSON property `state`
+        # @return [String]
+        attr_accessor :state
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @name = args[:name] if args.key?(:name)
+          @state = args[:state] if args.key?(:state)
+        end
+      end
+      
       # Encapsulates numeric value that can be either absolute or relative.
       class FixedOrPercent
         include Google::Apis::Core::Hashable
@@ -9310,8 +9396,8 @@ module Google
         # The ID of a supported feature. To add multiple values, use commas to separate
         # values. Set to one or more of the following values: - VIRTIO_SCSI_MULTIQUEUE -
         # WINDOWS - MULTI_IP_SUBNET - UEFI_COMPATIBLE - SECURE_BOOT - GVNIC -
-        # SEV_CAPABLE - SUSPEND_RESUME_COMPATIBLE For more information, see Enabling
-        # guest operating system features.
+        # SEV_CAPABLE - SUSPEND_RESUME_COMPATIBLE - SEV_SNP_CAPABLE For more information,
+        # see Enabling guest operating system features.
         # Corresponds to the JSON property `type`
         # @return [String]
         attr_accessor :type
@@ -12275,6 +12361,11 @@ module Google
         # @return [Google::Apis::ComputeV1::NetworkPerformanceConfig]
         attr_accessor :network_performance_config
       
+        # Additional instance params.
+        # Corresponds to the JSON property `params`
+        # @return [Google::Apis::ComputeV1::InstanceParams]
+        attr_accessor :params
+      
         # The private IPv6 google access type for the VM. If not specified, use
         # INHERIT_FROM_SUBNETWORK as default.
         # Corresponds to the JSON property `privateIpv6GoogleAccess`
@@ -12401,6 +12492,7 @@ module Google
           @name = args[:name] if args.key?(:name)
           @network_interfaces = args[:network_interfaces] if args.key?(:network_interfaces)
           @network_performance_config = args[:network_performance_config] if args.key?(:network_performance_config)
+          @params = args[:params] if args.key?(:params)
           @private_ipv6_google_access = args[:private_ipv6_google_access] if args.key?(:private_ipv6_google_access)
           @reservation_affinity = args[:reservation_affinity] if args.key?(:reservation_affinity)
           @resource_policies = args[:resource_policies] if args.key?(:resource_policies)
@@ -12595,8 +12687,8 @@ module Google
         # Assigns a name to a port number. For example: `name: "http", port: 80` This
         # allows the system to reference ports by the assigned name instead of a port
         # number. Named ports can also contain multiple ports. For example: [`name: "
-        # http", port: 80`,`name: "http", port: 8080`] Named ports apply to all
-        # instances in this instance group.
+        # app1", port: 8080`, `name: "app1", port: 8081`, `name: "app2", port: 8082`]
+        # Named ports apply to all instances in this instance group.
         # Corresponds to the JSON property `namedPorts`
         # @return [Array<Google::Apis::ComputeV1::NamedPort>]
         attr_accessor :named_ports
@@ -14874,6 +14966,28 @@ module Google
         end
       end
       
+      # Additional instance params.
+      class InstanceParams
+        include Google::Apis::Core::Hashable
+      
+        # Resource manager tags to be bound to the instance. Tag keys and values have
+        # the same definition as resource manager tags. Keys must be in the format `
+        # tagKeys/`tag_key_id``, and values are in the format `tagValues/456`. The field
+        # is ignored (both PUT & PATCH) when empty.
+        # Corresponds to the JSON property `resourceManagerTags`
+        # @return [Hash<String,String>]
+        attr_accessor :resource_manager_tags
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @resource_manager_tags = args[:resource_manager_tags] if args.key?(:resource_manager_tags)
+        end
+      end
+      
       # 
       class InstanceProperties
         include Google::Apis::Core::Hashable
@@ -15353,7 +15467,8 @@ module Google
         # @return [String]
         attr_accessor :short_name
       
-        # [Output Only] The type of the firewall policy.
+        # [Output Only] The type of the firewall policy. Can be one of HIERARCHY,
+        # NETWORK, NETWORK_REGIONAL.
         # Corresponds to the JSON property `type`
         # @return [String]
         attr_accessor :type
@@ -15868,13 +15983,7 @@ module Google
         # @return [String]
         attr_accessor :bandwidth
       
-        # Up to 16 candidate prefixes that control the allocation of
-        # cloudRouterIpv6Address and customerRouterIpv6Address for this attachment. Each
-        # prefix must be in the Global Unique Address (GUA) space. It is highly
-        # recommended that it be in a range owned by the requestor. A GUA in a range
-        # owned by Google will cause the request to fail. Google will select an
-        # available prefix from the supplied candidates or fail the request. If not
-        # supplied, a /125 from a Google-owned GUA block will be selected.
+        # This field is not available.
         # Corresponds to the JSON property `candidateIpv6Subnets`
         # @return [Array<String>]
         attr_accessor :candidate_ipv6_subnets
@@ -15902,10 +16011,7 @@ module Google
         # @return [String]
         attr_accessor :cloud_router_ipv6_address
       
-        # If supplied, the interface id (index within the subnet) to be used for the
-        # cloud router address. The id must be in the range of 1 to 6. If a subnet mask
-        # is supplied, it must be /125, and the subnet should either be 0 or match the
-        # selected subnet.
+        # This field is not available.
         # Corresponds to the JSON property `cloudRouterIpv6InterfaceId`
         # @return [String]
         attr_accessor :cloud_router_ipv6_interface_id
@@ -15927,18 +16033,14 @@ module Google
         # @return [String]
         attr_accessor :customer_router_ipv6_address
       
-        # If supplied, the interface id (index within the subnet) to be used for the
-        # customer router address. The id must be in the range of 1 to 6. If a subnet
-        # mask is supplied, it must be /125, and the subnet should either be 0 or match
-        # the selected subnet.
+        # This field is not available.
         # Corresponds to the JSON property `customerRouterIpv6InterfaceId`
         # @return [String]
         attr_accessor :customer_router_ipv6_interface_id
       
-        # [Output only for types PARTNER and DEDICATED. Not present for PARTNER_PROVIDER.
-        # ] Dataplane version for this InterconnectAttachment. This field is only
-        # present for Dataplane version 2 and higher. Absence of this field in the API
-        # output indicates that the Dataplane is version 1.
+        # [Output Only] Dataplane version for this InterconnectAttachment. This field is
+        # only present for Dataplane version 2 and higher. Absence of this field in the
+        # API output indicates that the Dataplane is version 1.
         # Corresponds to the JSON property `dataplaneVersion`
         # @return [Fixnum]
         attr_accessor :dataplane_version
@@ -17858,8 +17960,7 @@ module Google
         attr_accessor :description
       
         # [Input Only] Whether to attempt an application consistent machine image by
-        # informing the OS to prepare for the snapshot process. Currently only supported
-        # on Windows instances using the Volume Shadow Copy Service (VSS).
+        # informing the OS to prepare for the snapshot process.
         # Corresponds to the JSON property `guestFlush`
         # @return [Boolean]
         attr_accessor :guest_flush
@@ -19013,6 +19114,13 @@ module Google
         # @return [String]
         attr_accessor :description
       
+        # Enable ULA internal ipv6 on this network. Enabling this feature will assign a /
+        # 48 from google defined ULA prefix fd20::/20. .
+        # Corresponds to the JSON property `enableUlaInternalIpv6`
+        # @return [Boolean]
+        attr_accessor :enable_ula_internal_ipv6
+        alias_method :enable_ula_internal_ipv6?, :enable_ula_internal_ipv6
+      
         # [Output Only] The gateway address for default routing out of the network,
         # selected by GCP.
         # Corresponds to the JSON property `gatewayIPv4`
@@ -19025,6 +19133,16 @@ module Google
         # @return [Fixnum]
         attr_accessor :id
       
+        # When enabling ula internal ipv6, caller optionally can specify the /48 range
+        # they want from the google defined ULA prefix fd20::/20. The input must be a
+        # valid /48 ULA IPv6 address and must be within the fd20::/20. Operation will
+        # fail if the speficied /48 is already in used by another resource. If the field
+        # is not speficied, then a /48 range will be randomly allocated from fd20::/20
+        # and returned via this field. .
+        # Corresponds to the JSON property `internalIpv6Range`
+        # @return [String]
+        attr_accessor :internal_ipv6_range
+      
         # [Output Only] Type of the resource. Always compute#network for networks.
         # Corresponds to the JSON property `kind`
         # @return [String]
@@ -19046,6 +19164,13 @@ module Google
         # @return [String]
         attr_accessor :name
       
+        # The network firewall policy enforcement order. Can be either
+        # AFTER_CLASSIC_FIREWALL or BEFORE_CLASSIC_FIREWALL. Defaults to
+        # AFTER_CLASSIC_FIREWALL if the field is not specified.
+        # Corresponds to the JSON property `networkFirewallPolicyEnforcementOrder`
+        # @return [String]
+        attr_accessor :network_firewall_policy_enforcement_order
+      
         # [Output Only] A list of network peerings for the resource.
         # Corresponds to the JSON property `peerings`
         # @return [Array<Google::Apis::ComputeV1::NetworkPeering>]
@@ -19063,6 +19188,11 @@ module Google
         # @return [String]
         attr_accessor :self_link
       
+        # [Output Only] Server-defined URL for this resource with the resource id.
+        # Corresponds to the JSON property `selfLinkWithId`
+        # @return [String]
+        attr_accessor :self_link_with_id
+      
         # [Output Only] Server-defined fully-qualified URLs for all subnetworks in this
         # VPC network.
         # Corresponds to the JSON property `subnetworks`
@@ -19079,18 +19209,334 @@ module Google
           @auto_create_subnetworks = args[:auto_create_subnetworks] if args.key?(:auto_create_subnetworks)
           @creation_timestamp = args[:creation_timestamp] if args.key?(:creation_timestamp)
           @description = args[:description] if args.key?(:description)
+          @enable_ula_internal_ipv6 = args[:enable_ula_internal_ipv6] if args.key?(:enable_ula_internal_ipv6)
           @gateway_i_pv4 = args[:gateway_i_pv4] if args.key?(:gateway_i_pv4)
           @id = args[:id] if args.key?(:id)
+          @internal_ipv6_range = args[:internal_ipv6_range] if args.key?(:internal_ipv6_range)
           @kind = args[:kind] if args.key?(:kind)
           @mtu = args[:mtu] if args.key?(:mtu)
           @name = args[:name] if args.key?(:name)
+          @network_firewall_policy_enforcement_order = args[:network_firewall_policy_enforcement_order] if args.key?(:network_firewall_policy_enforcement_order)
           @peerings = args[:peerings] if args.key?(:peerings)
           @routing_config = args[:routing_config] if args.key?(:routing_config)
           @self_link = args[:self_link] if args.key?(:self_link)
+          @self_link_with_id = args[:self_link_with_id] if args.key?(:self_link_with_id)
           @subnetworks = args[:subnetworks] if args.key?(:subnetworks)
         end
       end
       
+      # Represents a Google Cloud Armor network edge security service resource.
+      class NetworkEdgeSecurityService
+        include Google::Apis::Core::Hashable
+      
+        # [Output Only] Creation timestamp in RFC3339 text format.
+        # Corresponds to the JSON property `creationTimestamp`
+        # @return [String]
+        attr_accessor :creation_timestamp
+      
+        # An optional description of this resource. Provide this property when you
+        # create the resource.
+        # Corresponds to the JSON property `description`
+        # @return [String]
+        attr_accessor :description
+      
+        # Fingerprint of this resource. A hash of the contents stored in this object.
+        # This field is used in optimistic locking. This field will be ignored when
+        # inserting a NetworkEdgeSecurityService. An up-to-date fingerprint must be
+        # provided in order to update the NetworkEdgeSecurityService, otherwise the
+        # request will fail with error 412 conditionNotMet. To see the latest
+        # fingerprint, make a get() request to retrieve a NetworkEdgeSecurityService.
+        # Corresponds to the JSON property `fingerprint`
+        # NOTE: Values are automatically base64 encoded/decoded in the client library.
+        # @return [String]
+        attr_accessor :fingerprint
+      
+        # [Output Only] The unique identifier for the resource. This identifier is
+        # defined by the server.
+        # Corresponds to the JSON property `id`
+        # @return [Fixnum]
+        attr_accessor :id
+      
+        # [Output only] Type of the resource. Always compute#networkEdgeSecurityService
+        # for NetworkEdgeSecurityServices
+        # Corresponds to the JSON property `kind`
+        # @return [String]
+        attr_accessor :kind
+      
+        # Name of the resource. Provided by the client when the resource is created. The
+        # name must be 1-63 characters long, and comply with RFC1035. Specifically, the
+        # name must be 1-63 characters long and match the regular expression `[a-z]([-a-
+        # z0-9]*[a-z0-9])?` which means the first character must be a lowercase letter,
+        # and all following characters must be a dash, lowercase letter, or digit,
+        # except the last character, which cannot be a dash.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # [Output Only] URL of the region where the resource resides. You must specify
+        # this field as part of the HTTP request URL. It is not settable as a field in
+        # the request body.
+        # Corresponds to the JSON property `region`
+        # @return [String]
+        attr_accessor :region
+      
+        # The resource URL for the network edge security service associated with this
+        # network edge security service.
+        # Corresponds to the JSON property `securityPolicy`
+        # @return [String]
+        attr_accessor :security_policy
+      
+        # [Output Only] Server-defined URL for the resource.
+        # Corresponds to the JSON property `selfLink`
+        # @return [String]
+        attr_accessor :self_link
+      
+        # [Output Only] Server-defined URL for this resource with the resource id.
+        # Corresponds to the JSON property `selfLinkWithId`
+        # @return [String]
+        attr_accessor :self_link_with_id
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @creation_timestamp = args[:creation_timestamp] if args.key?(:creation_timestamp)
+          @description = args[:description] if args.key?(:description)
+          @fingerprint = args[:fingerprint] if args.key?(:fingerprint)
+          @id = args[:id] if args.key?(:id)
+          @kind = args[:kind] if args.key?(:kind)
+          @name = args[:name] if args.key?(:name)
+          @region = args[:region] if args.key?(:region)
+          @security_policy = args[:security_policy] if args.key?(:security_policy)
+          @self_link = args[:self_link] if args.key?(:self_link)
+          @self_link_with_id = args[:self_link_with_id] if args.key?(:self_link_with_id)
+        end
+      end
+      
+      # 
+      class NetworkEdgeSecurityServiceAggregatedList
+        include Google::Apis::Core::Hashable
+      
+        # 
+        # Corresponds to the JSON property `etag`
+        # @return [String]
+        attr_accessor :etag
+      
+        # [Output Only] Unique identifier for the resource; defined by the server.
+        # Corresponds to the JSON property `id`
+        # @return [String]
+        attr_accessor :id
+      
+        # A list of NetworkEdgeSecurityServicesScopedList resources.
+        # Corresponds to the JSON property `items`
+        # @return [Hash<String,Google::Apis::ComputeV1::NetworkEdgeSecurityServicesScopedList>]
+        attr_accessor :items
+      
+        # [Output Only] Type of resource. Always compute#
+        # networkEdgeSecurityServiceAggregatedList for lists of Network Edge Security
+        # Services.
+        # Corresponds to the JSON property `kind`
+        # @return [String]
+        attr_accessor :kind
+      
+        # [Output Only] This token allows you to get the next page of results for list
+        # requests. If the number of results is larger than maxResults, use the
+        # nextPageToken as a value for the query parameter pageToken in the next list
+        # request. Subsequent list requests will have their own nextPageToken to
+        # continue paging through the results.
+        # Corresponds to the JSON property `nextPageToken`
+        # @return [String]
+        attr_accessor :next_page_token
+      
+        # [Output Only] Server-defined URL for this resource.
+        # Corresponds to the JSON property `selfLink`
+        # @return [String]
+        attr_accessor :self_link
+      
+        # [Output Only] Unreachable resources.
+        # Corresponds to the JSON property `unreachables`
+        # @return [Array<String>]
+        attr_accessor :unreachables
+      
+        # [Output Only] Informational warning message.
+        # Corresponds to the JSON property `warning`
+        # @return [Google::Apis::ComputeV1::NetworkEdgeSecurityServiceAggregatedList::Warning]
+        attr_accessor :warning
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @etag = args[:etag] if args.key?(:etag)
+          @id = args[:id] if args.key?(:id)
+          @items = args[:items] if args.key?(:items)
+          @kind = args[:kind] if args.key?(:kind)
+          @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
+          @self_link = args[:self_link] if args.key?(:self_link)
+          @unreachables = args[:unreachables] if args.key?(:unreachables)
+          @warning = args[:warning] if args.key?(:warning)
+        end
+        
+        # [Output Only] Informational warning message.
+        class Warning
+          include Google::Apis::Core::Hashable
+        
+          # [Output Only] A warning code, if applicable. For example, Compute Engine
+          # returns NO_RESULTS_ON_PAGE if there are no results in the response.
+          # Corresponds to the JSON property `code`
+          # @return [String]
+          attr_accessor :code
+        
+          # [Output Only] Metadata about this warning in key: value format. For example: "
+          # data": [ ` "key": "scope", "value": "zones/us-east1-d" `
+          # Corresponds to the JSON property `data`
+          # @return [Array<Google::Apis::ComputeV1::NetworkEdgeSecurityServiceAggregatedList::Warning::Datum>]
+          attr_accessor :data
+        
+          # [Output Only] A human-readable description of the warning code.
+          # Corresponds to the JSON property `message`
+          # @return [String]
+          attr_accessor :message
+        
+          def initialize(**args)
+             update!(**args)
+          end
+        
+          # Update properties of this object
+          def update!(**args)
+            @code = args[:code] if args.key?(:code)
+            @data = args[:data] if args.key?(:data)
+            @message = args[:message] if args.key?(:message)
+          end
+          
+          # 
+          class Datum
+            include Google::Apis::Core::Hashable
+          
+            # [Output Only] A key that provides more detail on the warning being returned.
+            # For example, for warnings where there are no results in a list request for a
+            # particular zone, this key might be scope and the key value might be the zone
+            # name. Other examples might be a key indicating a deprecated resource and a
+            # suggested replacement, or a warning about invalid network settings (for
+            # example, if an instance attempts to perform IP forwarding but is not enabled
+            # for IP forwarding).
+            # Corresponds to the JSON property `key`
+            # @return [String]
+            attr_accessor :key
+          
+            # [Output Only] A warning data value corresponding to the key.
+            # Corresponds to the JSON property `value`
+            # @return [String]
+            attr_accessor :value
+          
+            def initialize(**args)
+               update!(**args)
+            end
+          
+            # Update properties of this object
+            def update!(**args)
+              @key = args[:key] if args.key?(:key)
+              @value = args[:value] if args.key?(:value)
+            end
+          end
+        end
+      end
+      
+      # 
+      class NetworkEdgeSecurityServicesScopedList
+        include Google::Apis::Core::Hashable
+      
+        # A list of NetworkEdgeSecurityServices contained in this scope.
+        # Corresponds to the JSON property `networkEdgeSecurityServices`
+        # @return [Array<Google::Apis::ComputeV1::NetworkEdgeSecurityService>]
+        attr_accessor :network_edge_security_services
+      
+        # Informational warning which replaces the list of security policies when the
+        # list is empty.
+        # Corresponds to the JSON property `warning`
+        # @return [Google::Apis::ComputeV1::NetworkEdgeSecurityServicesScopedList::Warning]
+        attr_accessor :warning
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @network_edge_security_services = args[:network_edge_security_services] if args.key?(:network_edge_security_services)
+          @warning = args[:warning] if args.key?(:warning)
+        end
+        
+        # Informational warning which replaces the list of security policies when the
+        # list is empty.
+        class Warning
+          include Google::Apis::Core::Hashable
+        
+          # [Output Only] A warning code, if applicable. For example, Compute Engine
+          # returns NO_RESULTS_ON_PAGE if there are no results in the response.
+          # Corresponds to the JSON property `code`
+          # @return [String]
+          attr_accessor :code
+        
+          # [Output Only] Metadata about this warning in key: value format. For example: "
+          # data": [ ` "key": "scope", "value": "zones/us-east1-d" `
+          # Corresponds to the JSON property `data`
+          # @return [Array<Google::Apis::ComputeV1::NetworkEdgeSecurityServicesScopedList::Warning::Datum>]
+          attr_accessor :data
+        
+          # [Output Only] A human-readable description of the warning code.
+          # Corresponds to the JSON property `message`
+          # @return [String]
+          attr_accessor :message
+        
+          def initialize(**args)
+             update!(**args)
+          end
+        
+          # Update properties of this object
+          def update!(**args)
+            @code = args[:code] if args.key?(:code)
+            @data = args[:data] if args.key?(:data)
+            @message = args[:message] if args.key?(:message)
+          end
+          
+          # 
+          class Datum
+            include Google::Apis::Core::Hashable
+          
+            # [Output Only] A key that provides more detail on the warning being returned.
+            # For example, for warnings where there are no results in a list request for a
+            # particular zone, this key might be scope and the key value might be the zone
+            # name. Other examples might be a key indicating a deprecated resource and a
+            # suggested replacement, or a warning about invalid network settings (for
+            # example, if an instance attempts to perform IP forwarding but is not enabled
+            # for IP forwarding).
+            # Corresponds to the JSON property `key`
+            # @return [String]
+            attr_accessor :key
+          
+            # [Output Only] A warning data value corresponding to the key.
+            # Corresponds to the JSON property `value`
+            # @return [String]
+            attr_accessor :value
+          
+            def initialize(**args)
+               update!(**args)
+            end
+          
+            # Update properties of this object
+            def update!(**args)
+              @key = args[:key] if args.key?(:key)
+              @value = args[:value] if args.key?(:value)
+            end
+          end
+        end
+      end
+      
       # The network endpoint.
       class NetworkEndpoint
         include Google::Apis::Core::Hashable
@@ -19226,8 +19672,8 @@ module Google
         attr_accessor :network
       
         # Type of network endpoints in this network endpoint group. Can be one of
-        # GCE_VM_IP_PORT, NON_GCP_PRIVATE_IP_PORT, INTERNET_FQDN_PORT, INTERNET_IP_PORT,
-        # SERVERLESS, PRIVATE_SERVICE_CONNECT.
+        # GCE_VM_IP, GCE_VM_IP_PORT, NON_GCP_PRIVATE_IP_PORT, INTERNET_FQDN_PORT,
+        # INTERNET_IP_PORT, SERVERLESS, PRIVATE_SERVICE_CONNECT.
         # Corresponds to the JSON property `networkEndpointType`
         # @return [String]
         attr_accessor :network_endpoint_type
@@ -19513,13 +19959,13 @@ module Google
         # @return [String]
         attr_accessor :tag
       
-        # A template to parse service and tag fields from a request URL. URL mask allows
-        # for routing to multiple Run services without having to create multiple network
-        # endpoint groups and backend services. For example, request URLs "foo1.domain.
-        # com/bar1" and "foo1.domain.com/bar2" can be backed by the same Serverless
-        # Network Endpoint Group (NEG) with URL mask ".domain.com/". The URL mask will
-        # parse them to ` service="bar1", tag="foo1" ` and ` service="bar2", tag="foo2" `
-        # respectively.
+        # A template to parse <service> and <tag> fields from a request URL. URL mask
+        # allows for routing to multiple Run services without having to create multiple
+        # network endpoint groups and backend services. For example, request URLs "foo1.
+        # domain.com/bar1" and "foo1.domain.com/bar2" can be backed by the same
+        # Serverless Network Endpoint Group (NEG) with URL mask "<tag>.domain.com/<
+        # service>". The URL mask will parse them to ` service="bar1", tag="foo1" ` and `
+        # service="bar2", tag="foo2" ` respectively.
         # Corresponds to the JSON property `urlMask`
         # @return [String]
         attr_accessor :url_mask
@@ -19970,6 +20416,11 @@ module Google
         # @return [String]
         attr_accessor :fingerprint
       
+        # The prefix length of the primary internal IPv6 range.
+        # Corresponds to the JSON property `internalIpv6PrefixLength`
+        # @return [Fixnum]
+        attr_accessor :internal_ipv6_prefix_length
+      
         # An array of IPv6 access configurations for this interface. Currently, only one
         # IPv6 access config, DIRECT_IPV6, is supported. If there is no ipv6AccessConfig
         # specified, then this instance will have no external IPv6 Internet access.
@@ -19996,7 +20447,8 @@ module Google
         attr_accessor :kind
       
         # [Output Only] The name of the network interface, which is generated by the
-        # server. For network devices, these are eth0, eth1, etc.
+        # server. For a VM, the network interface uses the nicN naming format. Where N
+        # is a value between 0 and 7. The default interface value is nic0.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -20061,6 +20513,7 @@ module Google
           @access_configs = args[:access_configs] if args.key?(:access_configs)
           @alias_ip_ranges = args[:alias_ip_ranges] if args.key?(:alias_ip_ranges)
           @fingerprint = args[:fingerprint] if args.key?(:fingerprint)
+          @internal_ipv6_prefix_length = args[:internal_ipv6_prefix_length] if args.key?(:internal_ipv6_prefix_length)
           @ipv6_access_configs = args[:ipv6_access_configs] if args.key?(:ipv6_access_configs)
           @ipv6_access_type = args[:ipv6_access_type] if args.key?(:ipv6_access_type)
           @ipv6_address = args[:ipv6_address] if args.key?(:ipv6_address)
@@ -26630,6 +27083,69 @@ module Google
         end
       end
       
+      # 
+      class RegionNetworkFirewallPoliciesGetEffectiveFirewallsResponse
+        include Google::Apis::Core::Hashable
+      
+        # Effective firewalls from firewall policy.
+        # Corresponds to the JSON property `firewallPolicys`
+        # @return [Array<Google::Apis::ComputeV1::RegionNetworkFirewallPoliciesGetEffectiveFirewallsResponseEffectiveFirewallPolicy>]
+        attr_accessor :firewall_policys
+      
+        # Effective firewalls on the network.
+        # Corresponds to the JSON property `firewalls`
+        # @return [Array<Google::Apis::ComputeV1::Firewall>]
+        attr_accessor :firewalls
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @firewall_policys = args[:firewall_policys] if args.key?(:firewall_policys)
+          @firewalls = args[:firewalls] if args.key?(:firewalls)
+        end
+      end
+      
+      # 
+      class RegionNetworkFirewallPoliciesGetEffectiveFirewallsResponseEffectiveFirewallPolicy
+        include Google::Apis::Core::Hashable
+      
+        # [Output Only] The display name of the firewall policy.
+        # Corresponds to the JSON property `displayName`
+        # @return [String]
+        attr_accessor :display_name
+      
+        # [Output Only] The name of the firewall policy.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # The rules that apply to the network.
+        # Corresponds to the JSON property `rules`
+        # @return [Array<Google::Apis::ComputeV1::FirewallPolicyRule>]
+        attr_accessor :rules
+      
+        # [Output Only] The type of the firewall policy. Can be one of HIERARCHY,
+        # NETWORK, NETWORK_REGIONAL.
+        # Corresponds to the JSON property `type`
+        # @return [String]
+        attr_accessor :type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @display_name = args[:display_name] if args.key?(:display_name)
+          @name = args[:name] if args.key?(:name)
+          @rules = args[:rules] if args.key?(:rules)
+          @type = args[:type] if args.key?(:type)
+        end
+      end
+      
       # 
       class RegionSetLabelsRequest
         include Google::Apis::Core::Hashable
@@ -27677,8 +28193,8 @@ module Google
       class ResourcePolicyDailyCycle
         include Google::Apis::Core::Hashable
       
-        # Defines a schedule with units measured in months. The value determines how
-        # many months pass between the start of each cycle.
+        # Defines a schedule with units measured in days. The value determines how many
+        # days pass between the start of each cycle.
         # Corresponds to the JSON property `daysInCycle`
         # @return [Fixnum]
         attr_accessor :days_in_cycle
@@ -28308,6 +28824,11 @@ module Google
         # @return [Fixnum]
         attr_accessor :priority
       
+        # [Output only] The status of the route.
+        # Corresponds to the JSON property `routeStatus`
+        # @return [String]
+        attr_accessor :route_status
+      
         # [Output Only] The type of this route, which can be one of the following values:
         # - 'TRANSIT' for a transit route that this router learned from another Cloud
         # Router and will readvertise to one of its BGP peers - 'SUBNET' for a route
@@ -28355,6 +28876,7 @@ module Google
           @next_hop_peering = args[:next_hop_peering] if args.key?(:next_hop_peering)
           @next_hop_vpn_tunnel = args[:next_hop_vpn_tunnel] if args.key?(:next_hop_vpn_tunnel)
           @priority = args[:priority] if args.key?(:priority)
+          @route_status = args[:route_status] if args.key?(:route_status)
           @route_type = args[:route_type] if args.key?(:route_type)
           @self_link = args[:self_link] if args.key?(:self_link)
           @tags = args[:tags] if args.key?(:tags)
@@ -29061,7 +29583,7 @@ module Google
         # Cloud Router will initiate the BFD session for this BGP peer. If set to
         # PASSIVE, the Cloud Router will wait for the peer router to initiate the BFD
         # session for this BGP peer. If set to DISABLED, BFD is disabled for this BGP
-        # peer. The default is PASSIVE.
+        # peer. The default is DISABLED.
         # Corresponds to the JSON property `sessionInitializationMode`
         # @return [String]
         attr_accessor :session_initialization_mode
@@ -29674,7 +30196,8 @@ module Google
         # @return [String]
         attr_accessor :router_appliance_instance
       
-        # BGP state as specified in RFC1771.
+        # The state of the BGP session. For a list of possible values for this field,
+        # see BGP session states.
         # Corresponds to the JSON property `state`
         # @return [String]
         attr_accessor :state
@@ -30423,6 +30946,136 @@ module Google
         end
       end
       
+      # 
+      class SecurityPoliciesAggregatedList
+        include Google::Apis::Core::Hashable
+      
+        # 
+        # Corresponds to the JSON property `etag`
+        # @return [String]
+        attr_accessor :etag
+      
+        # [Output Only] Unique identifier for the resource; defined by the server.
+        # Corresponds to the JSON property `id`
+        # @return [String]
+        attr_accessor :id
+      
+        # A list of SecurityPoliciesScopedList resources.
+        # Corresponds to the JSON property `items`
+        # @return [Hash<String,Google::Apis::ComputeV1::SecurityPoliciesScopedList>]
+        attr_accessor :items
+      
+        # [Output Only] Type of resource. Always compute#securityPolicyAggregatedList
+        # for lists of Security Policies.
+        # Corresponds to the JSON property `kind`
+        # @return [String]
+        attr_accessor :kind
+      
+        # [Output Only] This token allows you to get the next page of results for list
+        # requests. If the number of results is larger than maxResults, use the
+        # nextPageToken as a value for the query parameter pageToken in the next list
+        # request. Subsequent list requests will have their own nextPageToken to
+        # continue paging through the results.
+        # Corresponds to the JSON property `nextPageToken`
+        # @return [String]
+        attr_accessor :next_page_token
+      
+        # [Output Only] Server-defined URL for this resource.
+        # Corresponds to the JSON property `selfLink`
+        # @return [String]
+        attr_accessor :self_link
+      
+        # [Output Only] Unreachable resources.
+        # Corresponds to the JSON property `unreachables`
+        # @return [Array<String>]
+        attr_accessor :unreachables
+      
+        # [Output Only] Informational warning message.
+        # Corresponds to the JSON property `warning`
+        # @return [Google::Apis::ComputeV1::SecurityPoliciesAggregatedList::Warning]
+        attr_accessor :warning
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @etag = args[:etag] if args.key?(:etag)
+          @id = args[:id] if args.key?(:id)
+          @items = args[:items] if args.key?(:items)
+          @kind = args[:kind] if args.key?(:kind)
+          @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
+          @self_link = args[:self_link] if args.key?(:self_link)
+          @unreachables = args[:unreachables] if args.key?(:unreachables)
+          @warning = args[:warning] if args.key?(:warning)
+        end
+        
+        # [Output Only] Informational warning message.
+        class Warning
+          include Google::Apis::Core::Hashable
+        
+          # [Output Only] A warning code, if applicable. For example, Compute Engine
+          # returns NO_RESULTS_ON_PAGE if there are no results in the response.
+          # Corresponds to the JSON property `code`
+          # @return [String]
+          attr_accessor :code
+        
+          # [Output Only] Metadata about this warning in key: value format. For example: "
+          # data": [ ` "key": "scope", "value": "zones/us-east1-d" `
+          # Corresponds to the JSON property `data`
+          # @return [Array<Google::Apis::ComputeV1::SecurityPoliciesAggregatedList::Warning::Datum>]
+          attr_accessor :data
+        
+          # [Output Only] A human-readable description of the warning code.
+          # Corresponds to the JSON property `message`
+          # @return [String]
+          attr_accessor :message
+        
+          def initialize(**args)
+             update!(**args)
+          end
+        
+          # Update properties of this object
+          def update!(**args)
+            @code = args[:code] if args.key?(:code)
+            @data = args[:data] if args.key?(:data)
+            @message = args[:message] if args.key?(:message)
+          end
+          
+          # 
+          class Datum
+            include Google::Apis::Core::Hashable
+          
+            # [Output Only] A key that provides more detail on the warning being returned.
+            # For example, for warnings where there are no results in a list request for a
+            # particular zone, this key might be scope and the key value might be the zone
+            # name. Other examples might be a key indicating a deprecated resource and a
+            # suggested replacement, or a warning about invalid network settings (for
+            # example, if an instance attempts to perform IP forwarding but is not enabled
+            # for IP forwarding).
+            # Corresponds to the JSON property `key`
+            # @return [String]
+            attr_accessor :key
+          
+            # [Output Only] A warning data value corresponding to the key.
+            # Corresponds to the JSON property `value`
+            # @return [String]
+            attr_accessor :value
+          
+            def initialize(**args)
+               update!(**args)
+            end
+          
+            # Update properties of this object
+            def update!(**args)
+              @key = args[:key] if args.key?(:key)
+              @value = args[:value] if args.key?(:value)
+            end
+          end
+        end
+      end
+      
       # 
       class SecurityPoliciesListPreconfiguredExpressionSetsResponse
         include Google::Apis::Core::Hashable
@@ -30442,6 +31095,97 @@ module Google
         end
       end
       
+      # 
+      class SecurityPoliciesScopedList
+        include Google::Apis::Core::Hashable
+      
+        # A list of SecurityPolicies contained in this scope.
+        # Corresponds to the JSON property `securityPolicies`
+        # @return [Array<Google::Apis::ComputeV1::SecurityPolicy>]
+        attr_accessor :security_policies
+      
+        # Informational warning which replaces the list of security policies when the
+        # list is empty.
+        # Corresponds to the JSON property `warning`
+        # @return [Google::Apis::ComputeV1::SecurityPoliciesScopedList::Warning]
+        attr_accessor :warning
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @security_policies = args[:security_policies] if args.key?(:security_policies)
+          @warning = args[:warning] if args.key?(:warning)
+        end
+        
+        # Informational warning which replaces the list of security policies when the
+        # list is empty.
+        class Warning
+          include Google::Apis::Core::Hashable
+        
+          # [Output Only] A warning code, if applicable. For example, Compute Engine
+          # returns NO_RESULTS_ON_PAGE if there are no results in the response.
+          # Corresponds to the JSON property `code`
+          # @return [String]
+          attr_accessor :code
+        
+          # [Output Only] Metadata about this warning in key: value format. For example: "
+          # data": [ ` "key": "scope", "value": "zones/us-east1-d" `
+          # Corresponds to the JSON property `data`
+          # @return [Array<Google::Apis::ComputeV1::SecurityPoliciesScopedList::Warning::Datum>]
+          attr_accessor :data
+        
+          # [Output Only] A human-readable description of the warning code.
+          # Corresponds to the JSON property `message`
+          # @return [String]
+          attr_accessor :message
+        
+          def initialize(**args)
+             update!(**args)
+          end
+        
+          # Update properties of this object
+          def update!(**args)
+            @code = args[:code] if args.key?(:code)
+            @data = args[:data] if args.key?(:data)
+            @message = args[:message] if args.key?(:message)
+          end
+          
+          # 
+          class Datum
+            include Google::Apis::Core::Hashable
+          
+            # [Output Only] A key that provides more detail on the warning being returned.
+            # For example, for warnings where there are no results in a list request for a
+            # particular zone, this key might be scope and the key value might be the zone
+            # name. Other examples might be a key indicating a deprecated resource and a
+            # suggested replacement, or a warning about invalid network settings (for
+            # example, if an instance attempts to perform IP forwarding but is not enabled
+            # for IP forwarding).
+            # Corresponds to the JSON property `key`
+            # @return [String]
+            attr_accessor :key
+          
+            # [Output Only] A warning data value corresponding to the key.
+            # Corresponds to the JSON property `value`
+            # @return [String]
+            attr_accessor :value
+          
+            def initialize(**args)
+               update!(**args)
+            end
+          
+            # Update properties of this object
+            def update!(**args)
+              @key = args[:key] if args.key?(:key)
+              @value = args[:value] if args.key?(:value)
+            end
+          end
+        end
+      end
+      
       # 
       class SecurityPoliciesWafConfig
         include Google::Apis::Core::Hashable
@@ -30482,6 +31226,11 @@ module Google
         # @return [String]
         attr_accessor :creation_timestamp
       
+        # 
+        # Corresponds to the JSON property `ddosProtectionConfig`
+        # @return [Google::Apis::ComputeV1::SecurityPolicyDdosProtectionConfig]
+        attr_accessor :ddos_protection_config
+      
         # An optional description of this resource. Provide this property when you
         # create the resource.
         # Corresponds to the JSON property `description`
@@ -30527,6 +31276,12 @@ module Google
         # @return [Google::Apis::ComputeV1::SecurityPolicyRecaptchaOptionsConfig]
         attr_accessor :recaptcha_options_config
       
+        # [Output Only] URL of the region where the regional security policy resides.
+        # This field is not applicable to global security policies.
+        # Corresponds to the JSON property `region`
+        # @return [String]
+        attr_accessor :region
+      
         # A list of rules that belong to this policy. There must always be a default
         # rule (rule with priority 2147483647 and match "*"). If no rules are provided
         # when creating a security policy, a default rule with action "allow" will be
@@ -30540,13 +31295,17 @@ module Google
         # @return [String]
         attr_accessor :self_link
       
-        # The type indicates the intended use of the security policy. CLOUD_ARMOR -
+        # The type indicates the intended use of the security policy. - CLOUD_ARMOR:
         # Cloud Armor backend security policies can be configured to filter incoming
         # HTTP requests targeting backend services. They filter requests before they hit
-        # the origin servers. CLOUD_ARMOR_EDGE - Cloud Armor edge security policies can
+        # the origin servers. - CLOUD_ARMOR_EDGE: Cloud Armor edge security policies can
         # be configured to filter incoming HTTP requests targeting backend services (
         # including Cloud CDN-enabled) as well as backend buckets (Cloud Storage). They
-        # filter requests before the request is served from Google's cache.
+        # filter requests before the request is served from Google's cache. -
+        # CLOUD_ARMOR_INTERNAL_SERVICE: Cloud Armor internal service policies can be
+        # configured to filter HTTP requests targeting services managed by Traffic
+        # Director in a service mesh. They filter requests before the request is served
+        # from the application. This field can be set only at resource creation time.
         # Corresponds to the JSON property `type`
         # @return [String]
         attr_accessor :type
@@ -30560,12 +31319,14 @@ module Google
           @adaptive_protection_config = args[:adaptive_protection_config] if args.key?(:adaptive_protection_config)
           @advanced_options_config = args[:advanced_options_config] if args.key?(:advanced_options_config)
           @creation_timestamp = args[:creation_timestamp] if args.key?(:creation_timestamp)
+          @ddos_protection_config = args[:ddos_protection_config] if args.key?(:ddos_protection_config)
           @description = args[:description] if args.key?(:description)
           @fingerprint = args[:fingerprint] if args.key?(:fingerprint)
           @id = args[:id] if args.key?(:id)
           @kind = args[:kind] if args.key?(:kind)
           @name = args[:name] if args.key?(:name)
           @recaptcha_options_config = args[:recaptcha_options_config] if args.key?(:recaptcha_options_config)
+          @region = args[:region] if args.key?(:region)
           @rules = args[:rules] if args.key?(:rules)
           @self_link = args[:self_link] if args.key?(:self_link)
           @type = args[:type] if args.key?(:type)
@@ -30643,6 +31404,25 @@ module Google
         end
       end
       
+      # 
+      class SecurityPolicyDdosProtectionConfig
+        include Google::Apis::Core::Hashable
+      
+        # 
+        # Corresponds to the JSON property `ddosProtection`
+        # @return [String]
+        attr_accessor :ddos_protection
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @ddos_protection = args[:ddos_protection] if args.key?(:ddos_protection)
+        end
+      end
+      
       # 
       class SecurityPolicyList
         include Google::Apis::Core::Hashable
@@ -31033,10 +31813,11 @@ module Google
         # present in the request, the key type defaults to ALL. - XFF_IP: The first IP
         # address (i.e. the originating client IP address) specified in the list of IPs
         # under X-Forwarded-For HTTP header. If no such header is present or the value
-        # is not a valid IP, the key type defaults to ALL. - HTTP_COOKIE: The value of
-        # the HTTP cookie whose name is configured under "enforce_on_key_name". The key
-        # value is truncated to the first 128 bytes of the cookie value. If no such
-        # cookie is present in the request, the key type defaults to ALL.
+        # is not a valid IP, the key defaults to the source IP address of the request i.
+        # e. key type IP. - HTTP_COOKIE: The value of the HTTP cookie whose name is
+        # configured under "enforce_on_key_name". The key value is truncated to the
+        # first 128 bytes of the cookie value. If no such cookie is present in the
+        # request, the key type defaults to ALL.
         # Corresponds to the JSON property `enforceOnKey`
         # @return [String]
         attr_accessor :enforce_on_key
@@ -31050,9 +31831,9 @@ module Google
       
         # Action to take for requests that are above the configured rate limit threshold,
         # to either deny with a specified HTTP response code, or redirect to a
-        # different endpoint. Valid options are "deny()" where valid values for status
-        # are 403, 404, 429, and 502, and "redirect" where the redirect parameters come
-        # from exceed_redirect_options below.
+        # different endpoint. Valid options are "deny(status)", where valid values for
+        # status are 403, 404, 429, and 502, and "redirect" where the redirect
+        # parameters come from exceedRedirectOptions below.
         # Corresponds to the JSON property `exceedAction`
         # @return [String]
         attr_accessor :exceed_action
@@ -33449,6 +34230,13 @@ module Google
         # @return [Fixnum]
         attr_accessor :id
       
+        # [Output Only] The range of internal IPv6 addresses that are owned by this
+        # subnetwork. Note this is for general VM to VM communication, not to be
+        # confused with the ipv6_cidr_range field.
+        # Corresponds to the JSON property `internalIpv6Prefix`
+        # @return [String]
+        attr_accessor :internal_ipv6_prefix
+      
         # The range of internal addresses that are owned by this subnetwork. Provide
         # this property when you create the subnetwork. For example, 10.0.0.0/8 or 100.
         # 64.0.0/10. Ranges must be unique and non-overlapping within a network. Only
@@ -33556,9 +34344,10 @@ module Google
         # @return [String]
         attr_accessor :self_link
       
-        # The stack type for this subnet to identify whether the IPv6 feature is enabled
-        # or not. If not specified IPV4_ONLY will be used. This field can be both set at
-        # resource creation time and updated using patch.
+        # The stack type for the subnet. If set to IPV4_ONLY, new VMs in the subnet are
+        # assigned IPv4 addresses only. If set to IPV4_IPV6, new VMs in the subnet can
+        # be assigned both IPv4 and IPv6 addresses. If not specified, IPV4_ONLY is used.
+        # This field can be both set at resource creation time and updated using patch.
         # Corresponds to the JSON property `stackType`
         # @return [String]
         attr_accessor :stack_type
@@ -33586,6 +34375,7 @@ module Google
           @fingerprint = args[:fingerprint] if args.key?(:fingerprint)
           @gateway_address = args[:gateway_address] if args.key?(:gateway_address)
           @id = args[:id] if args.key?(:id)
+          @internal_ipv6_prefix = args[:internal_ipv6_prefix] if args.key?(:internal_ipv6_prefix)
           @ip_cidr_range = args[:ip_cidr_range] if args.key?(:ip_cidr_range)
           @ipv6_access_type = args[:ipv6_access_type] if args.key?(:ipv6_access_type)
           @ipv6_cidr_range = args[:ipv6_cidr_range] if args.key?(:ipv6_cidr_range)
@@ -33868,8 +34658,9 @@ module Google
         attr_accessor :enable
         alias_method :enable?, :enable
       
-        # Can only be specified if VPC flow logs for this subnetwork is enabled. Export
-        # filter used to define which VPC flow logs should be logged.
+        # Can only be specified if VPC flow logs for this subnetwork is enabled. The
+        # filter expression is used to define which VPC flow logs should be exported to
+        # Cloud Logging.
         # Corresponds to the JSON property `filterExpr`
         # @return [String]
         attr_accessor :filter_expr
@@ -38038,6 +38829,21 @@ module Google
       class ValidateUrlMapsRequest
         include Google::Apis::Core::Hashable
       
+        # Specifies the load balancer type(s) this validation request is for. Use
+        # EXTERNAL_MANAGED for HTTP/HTTPS External Global Load Balancer with Advanced
+        # Traffic Management. Use EXTERNAL for Classic HTTP/HTTPS External Global Load
+        # Balancer. Other load balancer types are not supported. For more information,
+        # refer to Choosing a load balancer. If unspecified, the load balancing scheme
+        # will be inferred from the backend service resources this URL map references.
+        # If that can not be inferred (for example, this URL map only references backend
+        # buckets, or this Url map is for rewrites and redirects only and doesn't
+        # reference any backends), EXTERNAL will be used as the default type. If
+        # specified, the scheme(s) must not conflict with the load balancing scheme of
+        # the backend service resources this Url map references.
+        # Corresponds to the JSON property `loadBalancingSchemes`
+        # @return [Array<String>]
+        attr_accessor :load_balancing_schemes
+      
         # Represents a URL Map resource. Compute Engine has two URL Map resources: * [
         # Global](/compute/docs/reference/rest/v1/urlMaps) * [Regional](/compute/docs/
         # reference/rest/v1/regionUrlMaps) A URL map resource is a component of certain
@@ -38063,6 +38869,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @load_balancing_schemes = args[:load_balancing_schemes] if args.key?(:load_balancing_schemes)
           @resource = args[:resource] if args.key?(:resource)
         end
       end