@pulumi/openstack 3.13.0-alpha.1686636327 → 3.13.0

package/firewall/policyV2.d.ts

@@ -0,0 +1,210 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * Manages a v2 firewall policy resource within OpenStack.
+ *
+ * > **Note:** Firewall v2 has no support for OVN currently.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as openstack from "@pulumi/openstack";
+ *
+ * const rule1 = new openstack.firewall.RuleV2("rule1", {
+ *     description: "drop TELNET traffic",
+ *     action: "deny",
+ *     protocol: "tcp",
+ *     destinationPort: "23",
+ *     enabled: true,
+ * });
+ * const rule2 = new openstack.firewall.RuleV2("rule2", {
+ *     description: "drop NTP traffic",
+ *     action: "deny",
+ *     protocol: "udp",
+ *     destinationPort: "123",
+ *     enabled: false,
+ * });
+ * const policy1 = new openstack.firewall.PolicyV2("policy1", {rules: [
+ *     rule1.id,
+ *     rule2.id,
+ * ]});
+ * ```
+ *
+ * ## Import
+ *
+ * Firewall Policies can be imported using the `id`, e.g.
+ *
+ * ```sh
+ *  $ pulumi import openstack:firewall/policyV2:PolicyV2 policy_1 07f422e6-c596-474b-8b94-fe2c12506ce0
+ * ```
+ */
+export declare class PolicyV2 extends pulumi.CustomResource {
+    /**
+     * Get an existing PolicyV2 resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: PolicyV2State, opts?: pulumi.CustomResourceOptions): PolicyV2;
+    /**
+     * Returns true if the given object is an instance of PolicyV2.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is PolicyV2;
+    /**
+     * Audit status of the firewall policy
+     * (must be "true" or "false" if provided - defaults to "false").
+     * This status is set to "false" whenever the firewall policy or any of its
+     * rules are changed. Changing this updates the `audited` status of an existing
+     * firewall policy.
+     */
+    readonly audited: pulumi.Output<boolean | undefined>;
+    /**
+     * A description for the firewall policy. Changing
+     * this updates the `description` of an existing firewall policy.
+     */
+    readonly description: pulumi.Output<string | undefined>;
+    /**
+     * A name for the firewall policy. Changing this
+     * updates the `name` of an existing firewall policy.
+     */
+    readonly name: pulumi.Output<string>;
+    /**
+     * The region in which to obtain the v2 networking client.
+     * A networking client is needed to create a firewall policy. If omitted, the
+     * `region` argument of the provider is used. Changing this creates a new
+     * firewall policy.
+     */
+    readonly region: pulumi.Output<string>;
+    /**
+     * An array of one or more firewall rules that comprise
+     * the policy. Changing this results in adding/removing rules from the
+     * existing firewall policy.
+     */
+    readonly rules: pulumi.Output<string[] | undefined>;
+    /**
+     * Sharing status of the firewall policy (must be "true"
+     * or "false" if provided). If this is "true" the policy is visible to, and
+     * can be used in, firewalls in other tenants. Changing this updates the
+     * `shared` status of an existing firewall policy. Only administrative users
+     * can specify if the policy should be shared.
+     */
+    readonly shared: pulumi.Output<boolean | undefined>;
+    /**
+     * The owner of the firewall policy. Required if admin
+     * wants to create a firewall policy for another tenant. Changing this
+     * creates a new firewall policy.
+     */
+    readonly tenantId: pulumi.Output<string>;
+    /**
+     * Create a PolicyV2 resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args?: PolicyV2Args, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering PolicyV2 resources.
+ */
+export interface PolicyV2State {
+    /**
+     * Audit status of the firewall policy
+     * (must be "true" or "false" if provided - defaults to "false").
+     * This status is set to "false" whenever the firewall policy or any of its
+     * rules are changed. Changing this updates the `audited` status of an existing
+     * firewall policy.
+     */
+    audited?: pulumi.Input<boolean>;
+    /**
+     * A description for the firewall policy. Changing
+     * this updates the `description` of an existing firewall policy.
+     */
+    description?: pulumi.Input<string>;
+    /**
+     * A name for the firewall policy. Changing this
+     * updates the `name` of an existing firewall policy.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * The region in which to obtain the v2 networking client.
+     * A networking client is needed to create a firewall policy. If omitted, the
+     * `region` argument of the provider is used. Changing this creates a new
+     * firewall policy.
+     */
+    region?: pulumi.Input<string>;
+    /**
+     * An array of one or more firewall rules that comprise
+     * the policy. Changing this results in adding/removing rules from the
+     * existing firewall policy.
+     */
+    rules?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Sharing status of the firewall policy (must be "true"
+     * or "false" if provided). If this is "true" the policy is visible to, and
+     * can be used in, firewalls in other tenants. Changing this updates the
+     * `shared` status of an existing firewall policy. Only administrative users
+     * can specify if the policy should be shared.
+     */
+    shared?: pulumi.Input<boolean>;
+    /**
+     * The owner of the firewall policy. Required if admin
+     * wants to create a firewall policy for another tenant. Changing this
+     * creates a new firewall policy.
+     */
+    tenantId?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a PolicyV2 resource.
+ */
+export interface PolicyV2Args {
+    /**
+     * Audit status of the firewall policy
+     * (must be "true" or "false" if provided - defaults to "false").
+     * This status is set to "false" whenever the firewall policy or any of its
+     * rules are changed. Changing this updates the `audited` status of an existing
+     * firewall policy.
+     */
+    audited?: pulumi.Input<boolean>;
+    /**
+     * A description for the firewall policy. Changing
+     * this updates the `description` of an existing firewall policy.
+     */
+    description?: pulumi.Input<string>;
+    /**
+     * A name for the firewall policy. Changing this
+     * updates the `name` of an existing firewall policy.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * The region in which to obtain the v2 networking client.
+     * A networking client is needed to create a firewall policy. If omitted, the
+     * `region` argument of the provider is used. Changing this creates a new
+     * firewall policy.
+     */
+    region?: pulumi.Input<string>;
+    /**
+     * An array of one or more firewall rules that comprise
+     * the policy. Changing this results in adding/removing rules from the
+     * existing firewall policy.
+     */
+    rules?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Sharing status of the firewall policy (must be "true"
+     * or "false" if provided). If this is "true" the policy is visible to, and
+     * can be used in, firewalls in other tenants. Changing this updates the
+     * `shared` status of an existing firewall policy. Only administrative users
+     * can specify if the policy should be shared.
+     */
+    shared?: pulumi.Input<boolean>;
+    /**
+     * The owner of the firewall policy. Required if admin
+     * wants to create a firewall policy for another tenant. Changing this
+     * creates a new firewall policy.
+     */
+    tenantId?: pulumi.Input<string>;
+}

package/firewall/policyV2.js

@@ -0,0 +1,100 @@
+"use strict";
+// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PolicyV2 = void 0;
+const pulumi = require("@pulumi/pulumi");
+const utilities = require("../utilities");
+/**
+ * Manages a v2 firewall policy resource within OpenStack.
+ *
+ * > **Note:** Firewall v2 has no support for OVN currently.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as openstack from "@pulumi/openstack";
+ *
+ * const rule1 = new openstack.firewall.RuleV2("rule1", {
+ *     description: "drop TELNET traffic",
+ *     action: "deny",
+ *     protocol: "tcp",
+ *     destinationPort: "23",
+ *     enabled: true,
+ * });
+ * const rule2 = new openstack.firewall.RuleV2("rule2", {
+ *     description: "drop NTP traffic",
+ *     action: "deny",
+ *     protocol: "udp",
+ *     destinationPort: "123",
+ *     enabled: false,
+ * });
+ * const policy1 = new openstack.firewall.PolicyV2("policy1", {rules: [
+ *     rule1.id,
+ *     rule2.id,
+ * ]});
+ * ```
+ *
+ * ## Import
+ *
+ * Firewall Policies can be imported using the `id`, e.g.
+ *
+ * ```sh
+ *  $ pulumi import openstack:firewall/policyV2:PolicyV2 policy_1 07f422e6-c596-474b-8b94-fe2c12506ce0
+ * ```
+ */
+class PolicyV2 extends pulumi.CustomResource {
+    /**
+     * Get an existing PolicyV2 resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name, id, state, opts) {
+        return new PolicyV2(name, state, Object.assign(Object.assign({}, opts), { id: id }));
+    }
+    /**
+     * Returns true if the given object is an instance of PolicyV2.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj) {
+        if (obj === undefined || obj === null) {
+            return false;
+        }
+        return obj['__pulumiType'] === PolicyV2.__pulumiType;
+    }
+    constructor(name, argsOrState, opts) {
+        let resourceInputs = {};
+        opts = opts || {};
+        if (opts.id) {
+            const state = argsOrState;
+            resourceInputs["audited"] = state ? state.audited : undefined;
+            resourceInputs["description"] = state ? state.description : undefined;
+            resourceInputs["name"] = state ? state.name : undefined;
+            resourceInputs["region"] = state ? state.region : undefined;
+            resourceInputs["rules"] = state ? state.rules : undefined;
+            resourceInputs["shared"] = state ? state.shared : undefined;
+            resourceInputs["tenantId"] = state ? state.tenantId : undefined;
+        }
+        else {
+            const args = argsOrState;
+            resourceInputs["audited"] = args ? args.audited : undefined;
+            resourceInputs["description"] = args ? args.description : undefined;
+            resourceInputs["name"] = args ? args.name : undefined;
+            resourceInputs["region"] = args ? args.region : undefined;
+            resourceInputs["rules"] = args ? args.rules : undefined;
+            resourceInputs["shared"] = args ? args.shared : undefined;
+            resourceInputs["tenantId"] = args ? args.tenantId : undefined;
+        }
+        opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+        super(PolicyV2.__pulumiType, name, resourceInputs, opts);
+    }
+}
+exports.PolicyV2 = PolicyV2;
+/** @internal */
+PolicyV2.__pulumiType = 'openstack:firewall/policyV2:PolicyV2';
+//# sourceMappingURL=policyV2.js.map

package/firewall/policyV2.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"policyV2.js","sourceRoot":"","sources":["../../firewall/policyV2.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAsCG;AACH,MAAa,QAAS,SAAQ,MAAM,CAAC,cAAc;IAC/C;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAqB,EAAE,IAAmC;QACnH,OAAO,IAAI,QAAQ,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC/D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,QAAQ,CAAC,YAAY,CAAC;IACzD,CAAC;IAwDD,YAAY,IAAY,EAAE,WAA0C,EAAE,IAAmC;QACrG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAwC,CAAC;YACvD,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;SACnE;aAAM;YACH,MAAM,IAAI,GAAG,WAAuC,CAAC;YACrD,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;SACjE;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,QAAQ,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC7D,CAAC;;AA1GL,4BA2GC;AA7FG,gBAAgB;AACO,qBAAY,GAAG,sCAAsC,CAAC"}

package/firewall/ruleV2.d.ts

@@ -0,0 +1,298 @@
+import * as pulumi from "@pulumi/pulumi";
+/**
+ * Manages a v2 firewall rule resource within OpenStack.
+ *
+ * > **Note:** Firewall v2 has no support for OVN currently.
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as openstack from "@pulumi/openstack";
+ *
+ * const rule2 = new openstack.firewall.RuleV2("rule2", {
+ *     action: "deny",
+ *     description: "drop TELNET traffic",
+ *     destinationPort: "23",
+ *     enabled: true,
+ *     protocol: "tcp",
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * Firewall Rules can be imported using the `id`, e.g.
+ *
+ * ```sh
+ *  $ pulumi import openstack:firewall/ruleV2:RuleV2 rule_1 8dbc0c28-e49c-463f-b712-5c5d1bbac327
+ * ```
+ */
+export declare class RuleV2 extends pulumi.CustomResource {
+    /**
+     * Get an existing RuleV2 resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: RuleV2State, opts?: pulumi.CustomResourceOptions): RuleV2;
+    /**
+     * Returns true if the given object is an instance of RuleV2.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is RuleV2;
+    /**
+     * Action to be taken (must be "allow", "deny" or "reject")
+     * when the firewall rule matches. Changing this updates the `action` of an
+     * existing firewall rule. Default is `deny`.
+     */
+    readonly action: pulumi.Output<string | undefined>;
+    /**
+     * A description for the firewall rule. Changing this
+     * updates the `description` of an existing firewall rule.
+     */
+    readonly description: pulumi.Output<string | undefined>;
+    /**
+     * The destination IP address on which the
+     * firewall rule operates. Changing this updates the `destinationIpAddress`
+     * of an existing firewall rule.
+     */
+    readonly destinationIpAddress: pulumi.Output<string | undefined>;
+    /**
+     * The destination port on which the firewall
+     * rule operates. Changing this updates the `destinationPort` of an existing
+     * firewall rule. Require not `any` or empty protocol.
+     */
+    readonly destinationPort: pulumi.Output<string | undefined>;
+    /**
+     * Enabled status for the firewall rule (must be "true"
+     * or "false" if provided - defaults to "true"). Changing this updates the
+     * `enabled` status of an existing firewall rule.
+     */
+    readonly enabled: pulumi.Output<boolean | undefined>;
+    /**
+     * IP version, either 4 or 6. Changing this
+     * updates the `ipVersion` of an existing firewall rule. Default is `4`.
+     */
+    readonly ipVersion: pulumi.Output<number | undefined>;
+    /**
+     * A unique name for the firewall rule. Changing this
+     * updates the `name` of an existing firewall rule.
+     */
+    readonly name: pulumi.Output<string>;
+    /**
+     * (Optional; Required if `sourcePort` or `destinationPort` is not
+     * empty) The protocol type on which the firewall rule operates.
+     * Valid values are: `tcp`, `udp`, `icmp`, and `any`. Changing this updates the
+     * `protocol` of an existing firewall rule. Default is `any`.
+     */
+    readonly protocol: pulumi.Output<string | undefined>;
+    /**
+     * The region in which to obtain the v2 networking client.
+     * A networking client is needed to create a firewall rule. If omitted, the
+     * `region` argument of the provider is used. Changing this creates a new
+     * firewall rule.
+     */
+    readonly region: pulumi.Output<string>;
+    /**
+     * Sharing status of the firewall rule (must be "true"
+     * or "false" if provided). If this is "true" the policy is visible to, and
+     * can be used in, firewalls in other tenants. Changing this updates the
+     * `shared` status of an existing firewall policy. On
+     */
+    readonly shared: pulumi.Output<boolean | undefined>;
+    /**
+     * The source IP address on which the firewall
+     * rule operates. Changing this updates the `sourceIpAddress` of an existing
+     * firewall rule.
+     */
+    readonly sourceIpAddress: pulumi.Output<string | undefined>;
+    /**
+     * The source port on which the firewall
+     * rule operates. Changing this updates the `sourcePort` of an existing
+     * firewall rule. Require not `any` or empty protocol.
+     */
+    readonly sourcePort: pulumi.Output<string | undefined>;
+    /**
+     * The owner of the firewall rule. Required if admin
+     * wants to create a firewall rule for another tenant. Changing this creates a
+     * new firewall rule.
+     */
+    readonly tenantId: pulumi.Output<string | undefined>;
+    /**
+     * Create a RuleV2 resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args?: RuleV2Args, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering RuleV2 resources.
+ */
+export interface RuleV2State {
+    /**
+     * Action to be taken (must be "allow", "deny" or "reject")
+     * when the firewall rule matches. Changing this updates the `action` of an
+     * existing firewall rule. Default is `deny`.
+     */
+    action?: pulumi.Input<string>;
+    /**
+     * A description for the firewall rule. Changing this
+     * updates the `description` of an existing firewall rule.
+     */
+    description?: pulumi.Input<string>;
+    /**
+     * The destination IP address on which the
+     * firewall rule operates. Changing this updates the `destinationIpAddress`
+     * of an existing firewall rule.
+     */
+    destinationIpAddress?: pulumi.Input<string>;
+    /**
+     * The destination port on which the firewall
+     * rule operates. Changing this updates the `destinationPort` of an existing
+     * firewall rule. Require not `any` or empty protocol.
+     */
+    destinationPort?: pulumi.Input<string>;
+    /**
+     * Enabled status for the firewall rule (must be "true"
+     * or "false" if provided - defaults to "true"). Changing this updates the
+     * `enabled` status of an existing firewall rule.
+     */
+    enabled?: pulumi.Input<boolean>;
+    /**
+     * IP version, either 4 or 6. Changing this
+     * updates the `ipVersion` of an existing firewall rule. Default is `4`.
+     */
+    ipVersion?: pulumi.Input<number>;
+    /**
+     * A unique name for the firewall rule. Changing this
+     * updates the `name` of an existing firewall rule.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * (Optional; Required if `sourcePort` or `destinationPort` is not
+     * empty) The protocol type on which the firewall rule operates.
+     * Valid values are: `tcp`, `udp`, `icmp`, and `any`. Changing this updates the
+     * `protocol` of an existing firewall rule. Default is `any`.
+     */
+    protocol?: pulumi.Input<string>;
+    /**
+     * The region in which to obtain the v2 networking client.
+     * A networking client is needed to create a firewall rule. If omitted, the
+     * `region` argument of the provider is used. Changing this creates a new
+     * firewall rule.
+     */
+    region?: pulumi.Input<string>;
+    /**
+     * Sharing status of the firewall rule (must be "true"
+     * or "false" if provided). If this is "true" the policy is visible to, and
+     * can be used in, firewalls in other tenants. Changing this updates the
+     * `shared` status of an existing firewall policy. On
+     */
+    shared?: pulumi.Input<boolean>;
+    /**
+     * The source IP address on which the firewall
+     * rule operates. Changing this updates the `sourceIpAddress` of an existing
+     * firewall rule.
+     */
+    sourceIpAddress?: pulumi.Input<string>;
+    /**
+     * The source port on which the firewall
+     * rule operates. Changing this updates the `sourcePort` of an existing
+     * firewall rule. Require not `any` or empty protocol.
+     */
+    sourcePort?: pulumi.Input<string>;
+    /**
+     * The owner of the firewall rule. Required if admin
+     * wants to create a firewall rule for another tenant. Changing this creates a
+     * new firewall rule.
+     */
+    tenantId?: pulumi.Input<string>;
+}
+/**
+ * The set of arguments for constructing a RuleV2 resource.
+ */
+export interface RuleV2Args {
+    /**
+     * Action to be taken (must be "allow", "deny" or "reject")
+     * when the firewall rule matches. Changing this updates the `action` of an
+     * existing firewall rule. Default is `deny`.
+     */
+    action?: pulumi.Input<string>;
+    /**
+     * A description for the firewall rule. Changing this
+     * updates the `description` of an existing firewall rule.
+     */
+    description?: pulumi.Input<string>;
+    /**
+     * The destination IP address on which the
+     * firewall rule operates. Changing this updates the `destinationIpAddress`
+     * of an existing firewall rule.
+     */
+    destinationIpAddress?: pulumi.Input<string>;
+    /**
+     * The destination port on which the firewall
+     * rule operates. Changing this updates the `destinationPort` of an existing
+     * firewall rule. Require not `any` or empty protocol.
+     */
+    destinationPort?: pulumi.Input<string>;
+    /**
+     * Enabled status for the firewall rule (must be "true"
+     * or "false" if provided - defaults to "true"). Changing this updates the
+     * `enabled` status of an existing firewall rule.
+     */
+    enabled?: pulumi.Input<boolean>;
+    /**
+     * IP version, either 4 or 6. Changing this
+     * updates the `ipVersion` of an existing firewall rule. Default is `4`.
+     */
+    ipVersion?: pulumi.Input<number>;
+    /**
+     * A unique name for the firewall rule. Changing this
+     * updates the `name` of an existing firewall rule.
+     */
+    name?: pulumi.Input<string>;
+    /**
+     * (Optional; Required if `sourcePort` or `destinationPort` is not
+     * empty) The protocol type on which the firewall rule operates.
+     * Valid values are: `tcp`, `udp`, `icmp`, and `any`. Changing this updates the
+     * `protocol` of an existing firewall rule. Default is `any`.
+     */
+    protocol?: pulumi.Input<string>;
+    /**
+     * The region in which to obtain the v2 networking client.
+     * A networking client is needed to create a firewall rule. If omitted, the
+     * `region` argument of the provider is used. Changing this creates a new
+     * firewall rule.
+     */
+    region?: pulumi.Input<string>;
+    /**
+     * Sharing status of the firewall rule (must be "true"
+     * or "false" if provided). If this is "true" the policy is visible to, and
+     * can be used in, firewalls in other tenants. Changing this updates the
+     * `shared` status of an existing firewall policy. On
+     */
+    shared?: pulumi.Input<boolean>;
+    /**
+     * The source IP address on which the firewall
+     * rule operates. Changing this updates the `sourceIpAddress` of an existing
+     * firewall rule.
+     */
+    sourceIpAddress?: pulumi.Input<string>;
+    /**
+     * The source port on which the firewall
+     * rule operates. Changing this updates the `sourcePort` of an existing
+     * firewall rule. Require not `any` or empty protocol.
+     */
+    sourcePort?: pulumi.Input<string>;
+    /**
+     * The owner of the firewall rule. Required if admin
+     * wants to create a firewall rule for another tenant. Changing this creates a
+     * new firewall rule.
+     */
+    tenantId?: pulumi.Input<string>;
+}