Add Network Firewall Policy Policy Packet Mirroring Rule resource #12855
Conversation
modular-magician
added
the
awaiting-approval
mihhalj
force-pushed
the
packet-mirroring-rule-resource
branch
2 times, most recently
from
dbdce51 to
850c9c5
Compare
|
Hello! I am a robot. Tests will require approval from a repository maintainer to run. @roaks3, a repository maintainer, has been assigned to review your changes. If you have not received review feedback within 2 business days, please leave a comment on this PR asking them to take a look. You can help make sure that review is quick by doing a self-review and by running impacted tests locally. |
| insert_minutes: 20 | ||
| update_minutes: 20 | ||
| delete_minutes: 20 | ||
| async: |
There was a problem hiding this comment.
Would you mind rebasing and then removing the fields that are no longer under async supported here?
| primary_resource_id: 'primary' | ||
| vars: | ||
| fw_policy: 'fw-policy' | ||
| network_name: 'network' |
There was a problem hiding this comment.
This should be something with a hyphen, like "fw-network" (we have special handling that relies on the hyphen being present)
| security_profile_group = "//networksecurity.googleapis.com/${google_network_security_security_profile_group.security_profile_group_1.id}" | ||
|
|
||
| target_secure_tags { | ||
| name = "tagValues/${google_tags_tag_value.secure_tag_value_1.name}" |
There was a problem hiding this comment.
Nit: spacing, especially since this will show up on the docs page
| project = "%{project_name}" | ||
| } | ||
|
|
||
| resource "google_compute_network_firewall_policy_packet_mirroring_rule" "primary" { |
There was a problem hiding this comment.
Could you omit the optional fields from either the _basic or _update config, to confirm they can be properly omitted?
There was a problem hiding this comment.
done - I removed description, rule_name, disabled which are optional
modular-magician
removed
the
awaiting-approval
mihhalj
changed the title
mihhalj
force-pushed
the
packet-mirroring-rule-resource
branch
from
f852817 to
2f6ab4a
Compare
modular-magician
added
the
awaiting-approval
|
@roaks3 This PR has been waiting for review for 3 weekdays. Please take a look! Use the label |
modular-magician
added
service/network-security-distributed-firewall
and removed
awaiting-approval
|
Hi there, I'm the Modular magician. I've detected the following information about your changes: Diff reportYour PR generated some diffs in downstreams - here they are.
Missing test reportYour PR includes resource fields which are not covered by any test. Resource: resource "google_compute_network_firewall_policy_packet_mirroring_rule" "primary" {
match {
dest_ip_ranges = # value needed
layer4_configs {
ports = # value needed
}
}
tls_inspect = # value needed
}
|
Tests analyticsTotal tests: 1099 Click here to see the affected service packages
Action takenFound 2 affected test(s) by replaying old test recordings. Starting RECORDING based on the most recent commit. Click here to see the affected tests
|
|
🟢 Tests passed during RECORDING mode: 🟢 No issues found for passed tests after REPLAYING rerun. 🟢 All tests passed! |
bc0b2a9
As part of the work to launch Network Security Integrations (NSI) (b/352252592) we introduce a new resource to allow users to configure Network Firewall Policy Packet Mirroring rules.
In this PR we add Terraform support for the new resource type.