google-apis-compute_v1 0.76.0 → 0.78.0

data/lib/google/apis/compute_v1/classes.rb

@@ -567,6 +567,12 @@ module Google
         # @return [String]
         attr_accessor :public_ptr_domain_name
       
+        # [Output Only] The resource URL for the security policy associated with this
+        # access config.
+        # Corresponds to the JSON property `securityPolicy`
+        # @return [String]
+        attr_accessor :security_policy
+      
         # Specifies whether a public DNS 'PTR' record should be created to map the
         # external IP address of the instance to a DNS domain name. This field is not
         # used in ipv6AccessConfig. A default PTR record will be created if the VM has
@@ -596,6 +602,7 @@ module Google
           @nat_ip = args[:nat_ip] if args.key?(:nat_ip)
           @network_tier = args[:network_tier] if args.key?(:network_tier)
           @public_ptr_domain_name = args[:public_ptr_domain_name] if args.key?(:public_ptr_domain_name)
+          @security_policy = args[:security_policy] if args.key?(:security_policy)
           @set_public_ptr = args[:set_public_ptr] if args.key?(:set_public_ptr)
           @type = args[:type] if args.key?(:type)
         end
@@ -2616,7 +2623,7 @@ module Google
         attr_accessor :schedule
       
         # The time zone to use when interpreting the schedule. The value of this field
-        # must be a time zone name from the tz database: http://en.wikipedia.org/wiki/
+        # must be a time zone name from the tz database: https://en.wikipedia.org/wiki/
         # Tz_database. This field is assigned a default value of “UTC” if left empty.
         # Corresponds to the JSON property `timeZone`
         # @return [String]
@@ -4930,6 +4937,50 @@ module Google
         end
       end
       
+      # 
+      class BulkInsertOperationStatus
+        include Google::Apis::Core::Hashable
+      
+        # [Output Only] Count of VMs successfully created so far.
+        # Corresponds to the JSON property `createdVmCount`
+        # @return [Fixnum]
+        attr_accessor :created_vm_count
+      
+        # [Output Only] Count of VMs that got deleted during rollback.
+        # Corresponds to the JSON property `deletedVmCount`
+        # @return [Fixnum]
+        attr_accessor :deleted_vm_count
+      
+        # [Output Only] Count of VMs that started creating but encountered an error.
+        # Corresponds to the JSON property `failedToCreateVmCount`
+        # @return [Fixnum]
+        attr_accessor :failed_to_create_vm_count
+      
+        # [Output Only] Creation status of BulkInsert operation - information if the
+        # flow is rolling forward or rolling back.
+        # Corresponds to the JSON property `status`
+        # @return [String]
+        attr_accessor :status
+      
+        # [Output Only] Count of VMs originally planned to be created.
+        # Corresponds to the JSON property `targetVmCount`
+        # @return [Fixnum]
+        attr_accessor :target_vm_count
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @created_vm_count = args[:created_vm_count] if args.key?(:created_vm_count)
+          @deleted_vm_count = args[:deleted_vm_count] if args.key?(:deleted_vm_count)
+          @failed_to_create_vm_count = args[:failed_to_create_vm_count] if args.key?(:failed_to_create_vm_count)
+          @status = args[:status] if args.key?(:status)
+          @target_vm_count = args[:target_vm_count] if args.key?(:target_vm_count)
+        end
+      end
+      
       # 
       class CacheInvalidationRule
         include Google::Apis::Core::Hashable
@@ -6152,7 +6203,7 @@ module Google
         # a persistent disk using the sourceImage, sourceSnapshot, or sourceDisk
         # parameter, or specify it alone to create an empty persistent disk. If you
         # specify this field along with a source, the value of sizeGb must not be less
-        # than the size of the source. Acceptable values are 1 to 65536, inclusive.
+        # than the size of the source. Acceptable values are greater than 0.
         # Corresponds to the JSON property `sizeGb`
         # @return [Fixnum]
         attr_accessor :size_gb
@@ -12310,8 +12361,8 @@ module Google
         # weightedBackendServices, service must not be set. Conversely if service is set,
         # routeAction cannot contain any weightedBackendServices. Only one of
         # urlRedirect, service or routeAction.weightedBackendService must be set. URL
-        # maps for Classic external HTTP(S) load balancers only support the urlRewrite
-        # action within a route rule's routeAction.
+        # maps for classic Application Load Balancers only support the urlRewrite action
+        # within a route rule's routeAction.
         # Corresponds to the JSON property `routeAction`
         # @return [Google::Apis::ComputeV1::HttpRouteAction]
         attr_accessor :route_action
@@ -16744,6 +16795,26 @@ module Google
         end
       end
       
+      # 
+      class InstancesBulkInsertOperationMetadata
+        include Google::Apis::Core::Hashable
+      
+        # Status information per location (location name is key). Example key: zones/us-
+        # central1-a
+        # Corresponds to the JSON property `perLocationStatus`
+        # @return [Hash<String,Google::Apis::ComputeV1::BulkInsertOperationStatus>]
+        attr_accessor :per_location_status
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @per_location_status = args[:per_location_status] if args.key?(:per_location_status)
+        end
+      end
+      
       # 
       class InstancesGetEffectiveFirewallsResponse
         include Google::Apis::Core::Hashable
@@ -17037,6 +17108,34 @@ module Google
         end
       end
       
+      # 
+      class InstancesSetSecurityPolicyRequest
+        include Google::Apis::Core::Hashable
+      
+        # The network interfaces that the security policy will be applied to. Network
+        # interfaces use the nicN naming format. You can only set a security policy for
+        # network interfaces with an access config.
+        # Corresponds to the JSON property `networkInterfaces`
+        # @return [Array<String>]
+        attr_accessor :network_interfaces
+      
+        # A full or partial URL to a security policy to add to this instance. If this
+        # field is set to an empty string it will remove the associated security policy.
+        # Corresponds to the JSON property `securityPolicy`
+        # @return [String]
+        attr_accessor :security_policy
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @network_interfaces = args[:network_interfaces] if args.key?(:network_interfaces)
+          @security_policy = args[:security_policy] if args.key?(:security_policy)
+        end
+      end
+      
       # 
       class InstancesSetServiceAccountRequest
         include Google::Apis::Core::Hashable
@@ -17549,9 +17648,8 @@ module Google
         attr_accessor :operational_status
       
         # [Output only for type PARTNER. Input only for PARTNER_PROVIDER. Not present
-        # for DEDICATED]. The opaque identifier of an PARTNER attachment used to
-        # initiate provisioning with a selected partner. Of the form "XXXXX/region/
-        # domain"
+        # for DEDICATED]. The opaque identifier of a PARTNER attachment used to initiate
+        # provisioning with a selected partner. Of the form "XXXXX/region/domain"
         # Corresponds to the JSON property `pairingKey`
         # @return [String]
         attr_accessor :pairing_key
@@ -22158,9 +22256,8 @@ module Google
       
       # Represents a collection of network endpoints. A network endpoint group (NEG)
       # defines how a set of endpoints should be reached, whether they are reachable,
-      # and where they are located. For more information about using NEGs, see Setting
-      # up external HTTP(S) Load Balancing with internet NEGs, Setting up zonal NEGs,
-      # or Setting up external HTTP(S) Load Balancing with serverless NEGs.
+      # and where they are located. For more information about using NEGs for
+      # different use cases, see Network endpoint groups overview.
       class NetworkEndpointGroup
         include Google::Apis::Core::Hashable
       
@@ -25623,6 +25720,11 @@ module Google
         # @return [String]
         attr_accessor :insert_time
       
+        # 
+        # Corresponds to the JSON property `instancesBulkInsertOperationMetadata`
+        # @return [Google::Apis::ComputeV1::InstancesBulkInsertOperationMetadata]
+        attr_accessor :instances_bulk_insert_operation_metadata
+      
         # [Output Only] Type of the resource. Always `compute#operation` for Operation
         # resources.
         # Corresponds to the JSON property `kind`
@@ -25735,6 +25837,7 @@ module Google
           @http_error_status_code = args[:http_error_status_code] if args.key?(:http_error_status_code)
           @id = args[:id] if args.key?(:id)
           @insert_time = args[:insert_time] if args.key?(:insert_time)
+          @instances_bulk_insert_operation_metadata = args[:instances_bulk_insert_operation_metadata] if args.key?(:instances_bulk_insert_operation_metadata)
           @kind = args[:kind] if args.key?(:kind)
           @name = args[:name] if args.key?(:name)
           @operation_group_id = args[:operation_group_id] if args.key?(:operation_group_id)
@@ -27061,8 +27164,8 @@ module Google
         # If defaultRouteAction specifies any weightedBackendServices, defaultService
         # must not be set. Conversely if defaultService is set, defaultRouteAction
         # cannot contain any weightedBackendServices. Only one of defaultRouteAction or
-        # defaultUrlRedirect must be set. URL maps for Classic external HTTP(S) load
-        # balancers only support the urlRewrite action within a path matcher's
+        # defaultUrlRedirect must be set. URL maps for classic Application Load
+        # Balancers only support the urlRewrite action within a path matcher's
         # defaultRouteAction.
         # Corresponds to the JSON property `defaultRouteAction`
         # @return [Google::Apis::ComputeV1::HttpRouteAction]
@@ -27162,9 +27265,8 @@ module Google
         # the request to the selected backend. If routeAction specifies any
         # weightedBackendServices, service must not be set. Conversely if service is set,
         # routeAction cannot contain any weightedBackendServices. Only one of
-        # routeAction or urlRedirect must be set. URL maps for Classic external HTTP(S)
-        # load balancers only support the urlRewrite action within a path rule's
-        # routeAction.
+        # routeAction or urlRedirect must be set. URL maps for classic Application Load
+        # Balancers only support the urlRewrite action within a path rule's routeAction.
         # Corresponds to the JSON property `routeAction`
         # @return [Google::Apis::ComputeV1::HttpRouteAction]
         attr_accessor :route_action
@@ -30117,17 +30219,19 @@ module Google
         # Global](/compute/docs/reference/rest/v1/urlMaps) * [Regional](/compute/docs/
         # reference/rest/v1/regionUrlMaps) A URL map resource is a component of certain
         # types of cloud load balancers and Traffic Director: * urlMaps are used by
-        # external HTTP(S) load balancers and Traffic Director. * regionUrlMaps are used
-        # by internal HTTP(S) load balancers. For a list of supported URL map features
-        # by the load balancer type, see the Load balancing features: Routing and
-        # traffic management table. For a list of supported URL map features for Traffic
-        # Director, see the Traffic Director features: Routing and traffic management
-        # table. This resource defines mappings from hostnames and URL paths to either a
-        # backend service or a backend bucket. To use the global urlMaps resource, the
-        # backend service must have a loadBalancingScheme of either EXTERNAL or
-        # INTERNAL_SELF_MANAGED. To use the regionUrlMaps resource, the backend service
-        # must have a loadBalancingScheme of INTERNAL_MANAGED. For more information,
-        # read URL Map Concepts.
+        # global external Application Load Balancers, classic Application Load Balancers,
+        # and cross-region internal Application Load Balancers. * regionUrlMaps are
+        # used by internal Application Load Balancers, regional external Application
+        # Load Balancers and regional internal Application Load Balancers. For a list of
+        # supported URL map features by the load balancer type, see the Load balancing
+        # features: Routing and traffic management table. For a list of supported URL
+        # map features for Traffic Director, see the Traffic Director features: Routing
+        # and traffic management table. This resource defines mappings from hostnames
+        # and URL paths to either a backend service or a backend bucket. To use the
+        # global urlMaps resource, the backend service must have a loadBalancingScheme
+        # of either EXTERNAL or INTERNAL_SELF_MANAGED. To use the regionUrlMaps resource,
+        # the backend service must have a loadBalancingScheme of INTERNAL_MANAGED. For
+        # more information, read URL Map Concepts.
         # Corresponds to the JSON property `resource`
         # @return [Google::Apis::ComputeV1::UrlMap]
         attr_accessor :resource
@@ -32063,9 +32167,11 @@ module Google
         # @return [Fixnum]
         attr_accessor :id
       
-        # Router interfaces. Each interface requires either one linked resource, (for
-        # example, linkedVpnTunnel), or IP address and IP address range (for example,
-        # ipRange), or both.
+        # Router interfaces. To create a BGP peer that uses a router interface, the
+        # interface must have one of the following fields specified: - linkedVpnTunnel -
+        # linkedInterconnectAttachment - subnetwork You can create a router interface
+        # without any of these fields specified. However, you cannot create a BGP peer
+        # that uses that interface.
         # Corresponds to the JSON property `interfaces`
         # @return [Array<Google::Apis::ComputeV1::RouterInterface>]
         attr_accessor :interfaces
@@ -32592,14 +32698,14 @@ module Google
       
         # URI of the linked Interconnect attachment. It must be in the same region as
         # the router. Each interface can have one linked resource, which can be a VPN
-        # tunnel, an Interconnect attachment, or a virtual machine instance.
+        # tunnel, an Interconnect attachment, or a subnetwork.
         # Corresponds to the JSON property `linkedInterconnectAttachment`
         # @return [String]
         attr_accessor :linked_interconnect_attachment
       
         # URI of the linked VPN tunnel, which must be in the same region as the router.
         # Each interface can have one linked resource, which can be a VPN tunnel, an
-        # Interconnect attachment, or a virtual machine instance.
+        # Interconnect attachment, or a subnetwork.
         # Corresponds to the JSON property `linkedVpnTunnel`
         # @return [String]
         attr_accessor :linked_vpn_tunnel
@@ -32800,7 +32906,7 @@ module Google
         attr_accessor :key
       
         # Name used to identify the key. Must be unique within a router. Must be
-        # referenced by at least one bgpPeer. Must comply with RFC1035.
+        # referenced by exactly one bgpPeer. Must comply with RFC1035.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -32824,8 +32930,9 @@ module Google
       class RouterNat
         include Google::Apis::Core::Hashable
       
-        # The network tier to use when automatically reserving IP addresses. Must be one
-        # of: PREMIUM, STANDARD. If not specified, PREMIUM tier will be used.
+        # The network tier to use when automatically reserving NAT IP addresses. Must be
+        # one of: PREMIUM, STANDARD. If not specified, then the current project-level
+        # default tier is used.
         # Corresponds to the JSON property `autoNetworkTier`
         # @return [String]
         attr_accessor :auto_network_tier
@@ -34410,6 +34517,16 @@ module Google
         # @return [String]
         attr_accessor :type
       
+        # Definitions of user-defined fields for CLOUD_ARMOR_NETWORK policies. A user-
+        # defined field consists of up to 4 bytes extracted from a fixed offset in the
+        # packet, relative to the IPv4, IPv6, TCP, or UDP header, with an optional mask
+        # to select certain bits. Rules may then specify matching values for these
+        # fields. Example: userDefinedFields: - name: "ipv4_fragment_offset" base: IPV4
+        # offset: 6 size: 2 mask: "0x1fff"
+        # Corresponds to the JSON property `userDefinedFields`
+        # @return [Array<Google::Apis::ComputeV1::SecurityPolicyUserDefinedField>]
+        attr_accessor :user_defined_fields
+      
         def initialize(**args)
            update!(**args)
         end
@@ -34432,6 +34549,7 @@ module Google
           @rules = args[:rules] if args.key?(:rules)
           @self_link = args[:self_link] if args.key?(:self_link)
           @type = args[:type] if args.key?(:type)
+          @user_defined_fields = args[:user_defined_fields] if args.key?(:user_defined_fields)
         end
       end
       
@@ -34811,6 +34929,12 @@ module Google
         # @return [Google::Apis::ComputeV1::SecurityPolicyRuleMatcher]
         attr_accessor :match
       
+        # Represents a match condition that incoming network traffic is evaluated
+        # against.
+        # Corresponds to the JSON property `networkMatch`
+        # @return [Google::Apis::ComputeV1::SecurityPolicyRuleNetworkMatcher]
+        attr_accessor :network_match
+      
         # Preconfigured WAF configuration to be applied for the rule. If the rule does
         # not evaluate preconfigured WAF rules, i.e., if evaluatePreconfiguredWaf() is
         # not used, this field will have no effect.
@@ -34856,6 +34980,7 @@ module Google
           @header_action = args[:header_action] if args.key?(:header_action)
           @kind = args[:kind] if args.key?(:kind)
           @match = args[:match] if args.key?(:match)
+          @network_match = args[:network_match] if args.key?(:network_match)
           @preconfigured_waf_config = args[:preconfigured_waf_config] if args.key?(:preconfigured_waf_config)
           @preview = args[:preview] if args.key?(:preview)
           @priority = args[:priority] if args.key?(:priority)
@@ -34978,6 +35103,102 @@ module Google
         end
       end
       
+      # Represents a match condition that incoming network traffic is evaluated
+      # against.
+      class SecurityPolicyRuleNetworkMatcher
+        include Google::Apis::Core::Hashable
+      
+        # Destination IPv4/IPv6 addresses or CIDR prefixes, in standard text format.
+        # Corresponds to the JSON property `destIpRanges`
+        # @return [Array<String>]
+        attr_accessor :dest_ip_ranges
+      
+        # Destination port numbers for TCP/UDP/SCTP. Each element can be a 16-bit
+        # unsigned decimal number (e.g. "80") or range (e.g. "0-1023").
+        # Corresponds to the JSON property `destPorts`
+        # @return [Array<String>]
+        attr_accessor :dest_ports
+      
+        # IPv4 protocol / IPv6 next header (after extension headers). Each element can
+        # be an 8-bit unsigned decimal number (e.g. "6"), range (e.g. "253-254"), or one
+        # of the following protocol names: "tcp", "udp", "icmp", "esp", "ah", "ipip", or
+        # "sctp".
+        # Corresponds to the JSON property `ipProtocols`
+        # @return [Array<String>]
+        attr_accessor :ip_protocols
+      
+        # BGP Autonomous System Number associated with the source IP address.
+        # Corresponds to the JSON property `srcAsns`
+        # @return [Array<Fixnum>]
+        attr_accessor :src_asns
+      
+        # Source IPv4/IPv6 addresses or CIDR prefixes, in standard text format.
+        # Corresponds to the JSON property `srcIpRanges`
+        # @return [Array<String>]
+        attr_accessor :src_ip_ranges
+      
+        # Source port numbers for TCP/UDP/SCTP. Each element can be a 16-bit unsigned
+        # decimal number (e.g. "80") or range (e.g. "0-1023").
+        # Corresponds to the JSON property `srcPorts`
+        # @return [Array<String>]
+        attr_accessor :src_ports
+      
+        # Two-letter ISO 3166-1 alpha-2 country code associated with the source IP
+        # address.
+        # Corresponds to the JSON property `srcRegionCodes`
+        # @return [Array<String>]
+        attr_accessor :src_region_codes
+      
+        # User-defined fields. Each element names a defined field and lists the matching
+        # values for that field.
+        # Corresponds to the JSON property `userDefinedFields`
+        # @return [Array<Google::Apis::ComputeV1::SecurityPolicyRuleNetworkMatcherUserDefinedFieldMatch>]
+        attr_accessor :user_defined_fields
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @dest_ip_ranges = args[:dest_ip_ranges] if args.key?(:dest_ip_ranges)
+          @dest_ports = args[:dest_ports] if args.key?(:dest_ports)
+          @ip_protocols = args[:ip_protocols] if args.key?(:ip_protocols)
+          @src_asns = args[:src_asns] if args.key?(:src_asns)
+          @src_ip_ranges = args[:src_ip_ranges] if args.key?(:src_ip_ranges)
+          @src_ports = args[:src_ports] if args.key?(:src_ports)
+          @src_region_codes = args[:src_region_codes] if args.key?(:src_region_codes)
+          @user_defined_fields = args[:user_defined_fields] if args.key?(:user_defined_fields)
+        end
+      end
+      
+      # 
+      class SecurityPolicyRuleNetworkMatcherUserDefinedFieldMatch
+        include Google::Apis::Core::Hashable
+      
+        # Name of the user-defined field, as given in the definition.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # Matching values of the field. Each element can be a 32-bit unsigned decimal or
+        # hexadecimal (starting with "0x") number (e.g. "64") or range (e.g. "0x400-
+        # 0x7ff").
+        # Corresponds to the JSON property `values`
+        # @return [Array<String>]
+        attr_accessor :values
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @name = args[:name] if args.key?(:name)
+          @values = args[:values] if args.key?(:values)
+        end
+      end
+      
       # 
       class SecurityPolicyRulePreconfiguredWafConfig
         include Google::Apis::Core::Hashable
@@ -35278,6 +35499,59 @@ module Google
         end
       end
       
+      # 
+      class SecurityPolicyUserDefinedField
+        include Google::Apis::Core::Hashable
+      
+        # The base relative to which 'offset' is measured. Possible values are: - IPV4:
+        # Points to the beginning of the IPv4 header. - IPV6: Points to the beginning of
+        # the IPv6 header. - TCP: Points to the beginning of the TCP header, skipping
+        # over any IPv4 options or IPv6 extension headers. Not present for non-first
+        # fragments. - UDP: Points to the beginning of the UDP header, skipping over any
+        # IPv4 options or IPv6 extension headers. Not present for non-first fragments.
+        # required
+        # Corresponds to the JSON property `base`
+        # @return [String]
+        attr_accessor :base
+      
+        # If specified, apply this mask (bitwise AND) to the field to ignore bits before
+        # matching. Encoded as a hexadecimal number (starting with "0x"). The last byte
+        # of the field (in network byte order) corresponds to the least significant byte
+        # of the mask.
+        # Corresponds to the JSON property `mask`
+        # @return [String]
+        attr_accessor :mask
+      
+        # The name of this field. Must be unique within the policy.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # Offset of the first byte of the field (in network byte order) relative to '
+        # base'.
+        # Corresponds to the JSON property `offset`
+        # @return [Fixnum]
+        attr_accessor :offset
+      
+        # Size of the field in bytes. Valid values: 1-4.
+        # Corresponds to the JSON property `size`
+        # @return [Fixnum]
+        attr_accessor :size
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @base = args[:base] if args.key?(:base)
+          @mask = args[:mask] if args.key?(:mask)
+          @name = args[:name] if args.key?(:name)
+          @offset = args[:offset] if args.key?(:offset)
+          @size = args[:size] if args.key?(:size)
+        end
+      end
+      
       # The authentication and authorization settings for a BackendService.
       class SecuritySettings
         include Google::Apis::Core::Hashable
@@ -36757,17 +37031,20 @@ module Google
         end
       end
       
-      # Represents an SSL Certificate resource. Google Compute Engine has two SSL
-      # Certificate resources: * [Global](/compute/docs/reference/rest/v1/
+      # Represents an SSL certificate resource. Google Compute Engine has two SSL
+      # certificate resources: * [Global](/compute/docs/reference/rest/v1/
       # sslCertificates) * [Regional](/compute/docs/reference/rest/v1/
-      # regionSslCertificates) The sslCertificates are used by: - external HTTPS load
-      # balancers - SSL proxy load balancers The regionSslCertificates are used by
-      # internal HTTPS load balancers. Optionally, certificate file contents that you
-      # upload can contain a set of up to five PEM-encoded certificates. The API call
-      # creates an object (sslCertificate) that holds this data. You can use SSL keys
-      # and certificates to secure connections to a load balancer. For more
-      # information, read Creating and using SSL certificates, SSL certificates quotas
-      # and limits, and Troubleshooting SSL certificates.
+      # regionSslCertificates) The global SSL certificates (sslCertificates) are used
+      # by: - Global external Application Load Balancers - Classic Application Load
+      # Balancers - Proxy Network Load Balancers (with target SSL proxies) The
+      # regional SSL certificates (regionSslCertificates) are used by: - Regional
+      # external Application Load Balancers - Regional internal Application Load
+      # Balancers Optionally, certificate file contents that you upload can contain a
+      # set of up to five PEM-encoded certificates. The API call creates an object (
+      # sslCertificate) that holds this data. You can use SSL keys and certificates to
+      # secure connections to a load balancer. For more information, read Creating and
+      # using SSL certificates, SSL certificates quotas and limits, and
+      # Troubleshooting SSL certificates.
       class SslCertificate
         include Google::Apis::Core::Hashable
       
@@ -39063,11 +39340,13 @@ module Google
       # HTTP Proxy resources: * [Global](/compute/docs/reference/rest/v1/
       # targetHttpProxies) * [Regional](/compute/docs/reference/rest/v1/
       # regionTargetHttpProxies) A target HTTP proxy is a component of GCP HTTP load
-      # balancers. * targetHttpProxies are used by external HTTP load balancers and
-      # Traffic Director. * regionTargetHttpProxies are used by internal HTTP load
-      # balancers. Forwarding rules reference a target HTTP proxy, and the target
-      # proxy then references a URL map. For more information, read Using Target
-      # Proxies and Forwarding rule concepts.
+      # balancers. * targetHttpProxies are used by global external Application Load
+      # Balancers, classic Application Load Balancers, cross-region internal
+      # Application Load Balancers, and Traffic Director. * regionTargetHttpProxies
+      # are used by regional internal Application Load Balancers and regional external
+      # Application Load Balancers. Forwarding rules reference a target HTTP proxy,
+      # and the target proxy then references a URL map. For more information, read
+      # Using Target Proxies and Forwarding rule concepts.
       class TargetHttpProxy
         include Google::Apis::Core::Hashable
       
@@ -39095,10 +39374,10 @@ module Google
       
         # Specifies how long to keep a connection open, after completing a response,
         # while there is no matching traffic (in seconds). If an HTTP keep-alive is not
-        # specified, a default value (610 seconds) will be used. For Global external
-        # HTTP(S) load balancer, the minimum allowed value is 5 seconds and the maximum
-        # allowed value is 1200 seconds. For Global external HTTP(S) load balancer (
-        # classic), this option is not available publicly.
+        # specified, a default value (610 seconds) will be used. For global external
+        # Application Load Balancers, the minimum allowed value is 5 seconds and the
+        # maximum allowed value is 1200 seconds. For classic Application Load Balancers,
+        # this option is not supported.
         # Corresponds to the JSON property `httpKeepAliveTimeoutSec`
         # @return [Fixnum]
         attr_accessor :http_keep_alive_timeout_sec
@@ -39503,11 +39782,13 @@ module Google
       # HTTPS Proxy resources: * [Global](/compute/docs/reference/rest/v1/
       # targetHttpsProxies) * [Regional](/compute/docs/reference/rest/v1/
       # regionTargetHttpsProxies) A target HTTPS proxy is a component of GCP HTTPS
-      # load balancers. * targetHttpsProxies are used by external HTTPS load balancers.
-      # * regionTargetHttpsProxies are used by internal HTTPS load balancers.
-      # Forwarding rules reference a target HTTPS proxy, and the target proxy then
-      # references a URL map. For more information, read Using Target Proxies and
-      # Forwarding rule concepts.
+      # load balancers. * targetHttpProxies are used by global external Application
+      # Load Balancers, classic Application Load Balancers, cross-region internal
+      # Application Load Balancers, and Traffic Director. * regionTargetHttpProxies
+      # are used by regional internal Application Load Balancers and regional external
+      # Application Load Balancers. Forwarding rules reference a target HTTPS proxy,
+      # and the target proxy then references a URL map. For more information, read
+      # Using Target Proxies and Forwarding rule concepts.
       class TargetHttpsProxy
         include Google::Apis::Core::Hashable
       
@@ -39555,10 +39836,10 @@ module Google
       
         # Specifies how long to keep a connection open, after completing a response,
         # while there is no matching traffic (in seconds). If an HTTP keep-alive is not
-        # specified, a default value (610 seconds) will be used. For Global external
-        # HTTP(S) load balancer, the minimum allowed value is 5 seconds and the maximum
-        # allowed value is 1200 seconds. For Global external HTTP(S) load balancer (
-        # classic), this option is not available publicly.
+        # specified, a default value (610 seconds) will be used. For global external
+        # Application Load Balancers, the minimum allowed value is 5 seconds and the
+        # maximum allowed value is 1200 seconds. For classic Application Load Balancers,
+        # this option is not supported.
         # Corresponds to the JSON property `httpKeepAliveTimeoutSec`
         # @return [Fixnum]
         attr_accessor :http_keep_alive_timeout_sec
@@ -39989,6 +40270,12 @@ module Google
         # @return [String]
         attr_accessor :network
       
+        # [Output Only] The resource URL for the security policy associated with this
+        # target instance.
+        # Corresponds to the JSON property `securityPolicy`
+        # @return [String]
+        attr_accessor :security_policy
+      
         # [Output Only] Server-defined URL for the resource.
         # Corresponds to the JSON property `selfLink`
         # @return [String]
@@ -40015,6 +40302,7 @@ module Google
           @name = args[:name] if args.key?(:name)
           @nat_policy = args[:nat_policy] if args.key?(:nat_policy)
           @network = args[:network] if args.key?(:network)
+          @security_policy = args[:security_policy] if args.key?(:security_policy)
           @self_link = args[:self_link] if args.key?(:self_link)
           @zone = args[:zone] if args.key?(:zone)
         end
@@ -40438,6 +40726,12 @@ module Google
         # @return [String]
         attr_accessor :region
       
+        # [Output Only] The resource URL for the security policy associated with this
+        # target pool.
+        # Corresponds to the JSON property `securityPolicy`
+        # @return [String]
+        attr_accessor :security_policy
+      
         # [Output Only] Server-defined URL for the resource.
         # Corresponds to the JSON property `selfLink`
         # @return [String]
@@ -40469,6 +40763,7 @@ module Google
           @kind = args[:kind] if args.key?(:kind)
           @name = args[:name] if args.key?(:name)
           @region = args[:region] if args.key?(:region)
+          @security_policy = args[:security_policy] if args.key?(:security_policy)
           @self_link = args[:self_link] if args.key?(:self_link)
           @session_affinity = args[:session_affinity] if args.key?(:session_affinity)
         end
@@ -42288,17 +42583,19 @@ module Google
       # Global](/compute/docs/reference/rest/v1/urlMaps) * [Regional](/compute/docs/
       # reference/rest/v1/regionUrlMaps) A URL map resource is a component of certain
       # types of cloud load balancers and Traffic Director: * urlMaps are used by
-      # external HTTP(S) load balancers and Traffic Director. * regionUrlMaps are used
-      # by internal HTTP(S) load balancers. For a list of supported URL map features
-      # by the load balancer type, see the Load balancing features: Routing and
-      # traffic management table. For a list of supported URL map features for Traffic
-      # Director, see the Traffic Director features: Routing and traffic management
-      # table. This resource defines mappings from hostnames and URL paths to either a
-      # backend service or a backend bucket. To use the global urlMaps resource, the
-      # backend service must have a loadBalancingScheme of either EXTERNAL or
-      # INTERNAL_SELF_MANAGED. To use the regionUrlMaps resource, the backend service
-      # must have a loadBalancingScheme of INTERNAL_MANAGED. For more information,
-      # read URL Map Concepts.
+      # global external Application Load Balancers, classic Application Load Balancers,
+      # and cross-region internal Application Load Balancers. * regionUrlMaps are
+      # used by internal Application Load Balancers, regional external Application
+      # Load Balancers and regional internal Application Load Balancers. For a list of
+      # supported URL map features by the load balancer type, see the Load balancing
+      # features: Routing and traffic management table. For a list of supported URL
+      # map features for Traffic Director, see the Traffic Director features: Routing
+      # and traffic management table. This resource defines mappings from hostnames
+      # and URL paths to either a backend service or a backend bucket. To use the
+      # global urlMaps resource, the backend service must have a loadBalancingScheme
+      # of either EXTERNAL or INTERNAL_SELF_MANAGED. To use the regionUrlMaps resource,
+      # the backend service must have a loadBalancingScheme of INTERNAL_MANAGED. For
+      # more information, read URL Map Concepts.
       class UrlMap
         include Google::Apis::Core::Hashable
       
@@ -42313,8 +42610,8 @@ module Google
         # defaultRouteAction specifies any weightedBackendServices, defaultService must
         # not be set. Conversely if defaultService is set, defaultRouteAction cannot
         # contain any weightedBackendServices. Only one of defaultRouteAction or
-        # defaultUrlRedirect must be set. URL maps for Classic external HTTP(S) load
-        # balancers only support the urlRewrite action within defaultRouteAction.
+        # defaultUrlRedirect must be set. URL maps for classic Application Load
+        # Balancers only support the urlRewrite action within defaultRouteAction.
         # defaultRouteAction has no effect when the URL map is bound to a target gRPC
         # proxy that has the validateForProxyless field set to true.
         # Corresponds to the JSON property `defaultRouteAction`
@@ -42931,16 +43228,16 @@ module Google
         include Google::Apis::Core::Hashable
       
         # Specifies the load balancer type(s) this validation request is for. Use
-        # EXTERNAL_MANAGED for HTTP/HTTPS External Global Load Balancer with Advanced
-        # Traffic Management. Use EXTERNAL for Classic HTTP/HTTPS External Global Load
-        # Balancer. Other load balancer types are not supported. For more information,
-        # refer to Choosing a load balancer. If unspecified, the load balancing scheme
-        # will be inferred from the backend service resources this URL map references.
-        # If that can not be inferred (for example, this URL map only references backend
-        # buckets, or this Url map is for rewrites and redirects only and doesn't
-        # reference any backends), EXTERNAL will be used as the default type. If
-        # specified, the scheme(s) must not conflict with the load balancing scheme of
-        # the backend service resources this Url map references.
+        # EXTERNAL_MANAGED for global external Application Load Balancers and regional
+        # external Application Load Balancers. Use EXTERNAL for classic Application Load
+        # Balancers. Use INTERNAL_MANAGED for internal Application Load Balancers. For
+        # more information, refer to Choosing a load balancer. If unspecified, the load
+        # balancing scheme will be inferred from the backend service resources this URL
+        # map references. If that can not be inferred (for example, this URL map only
+        # references backend buckets, or this Url map is for rewrites and redirects only
+        # and doesn't reference any backends), EXTERNAL will be used as the default type.
+        # If specified, the scheme(s) must not conflict with the load balancing scheme
+        # of the backend service resources this Url map references.
         # Corresponds to the JSON property `loadBalancingSchemes`
         # @return [Array<String>]
         attr_accessor :load_balancing_schemes
@@ -42949,17 +43246,19 @@ module Google
         # Global](/compute/docs/reference/rest/v1/urlMaps) * [Regional](/compute/docs/
         # reference/rest/v1/regionUrlMaps) A URL map resource is a component of certain
         # types of cloud load balancers and Traffic Director: * urlMaps are used by
-        # external HTTP(S) load balancers and Traffic Director. * regionUrlMaps are used
-        # by internal HTTP(S) load balancers. For a list of supported URL map features
-        # by the load balancer type, see the Load balancing features: Routing and
-        # traffic management table. For a list of supported URL map features for Traffic
-        # Director, see the Traffic Director features: Routing and traffic management
-        # table. This resource defines mappings from hostnames and URL paths to either a
-        # backend service or a backend bucket. To use the global urlMaps resource, the
-        # backend service must have a loadBalancingScheme of either EXTERNAL or
-        # INTERNAL_SELF_MANAGED. To use the regionUrlMaps resource, the backend service
-        # must have a loadBalancingScheme of INTERNAL_MANAGED. For more information,
-        # read URL Map Concepts.
+        # global external Application Load Balancers, classic Application Load Balancers,
+        # and cross-region internal Application Load Balancers. * regionUrlMaps are
+        # used by internal Application Load Balancers, regional external Application
+        # Load Balancers and regional internal Application Load Balancers. For a list of
+        # supported URL map features by the load balancer type, see the Load balancing
+        # features: Routing and traffic management table. For a list of supported URL
+        # map features for Traffic Director, see the Traffic Director features: Routing
+        # and traffic management table. This resource defines mappings from hostnames
+        # and URL paths to either a backend service or a backend bucket. To use the
+        # global urlMaps resource, the backend service must have a loadBalancingScheme
+        # of either EXTERNAL or INTERNAL_SELF_MANAGED. To use the regionUrlMaps resource,
+        # the backend service must have a loadBalancingScheme of INTERNAL_MANAGED. For
+        # more information, read URL Map Concepts.
         # Corresponds to the JSON property `resource`
         # @return [Google::Apis::ComputeV1::UrlMap]
         attr_accessor :resource
@@ -44289,12 +44588,12 @@ module Google
         # @return [Fixnum]
         attr_accessor :peer_external_gateway_interface
       
-        # URL of the peer side HA GCP VPN gateway to which this VPN tunnel is connected.
+        # URL of the peer side HA VPN gateway to which this VPN tunnel is connected.
         # Provided by the client when the VPN tunnel is created. This field can be used
         # when creating highly available VPN from VPC network to VPC network, the field
         # is exclusive with the field peerExternalGateway. If provided, the VPN tunnel
-        # will automatically use the same vpnGatewayInterface ID in the peer GCP VPN
-        # gateway.
+        # will automatically use the same vpnGatewayInterface ID in the peer Google
+        # Cloud VPN gateway.
         # Corresponds to the JSON property `peerGcpGateway`
         # @return [String]
         attr_accessor :peer_gcp_gateway