Represents an Address resource.
Persistent disks can be attached to a compute instance using the attached_disk
section within the compute instance configuration.
However there may be situations where managing the attached disks via the compute
instance config isn’t preferable or possible, such as attaching dynamic
numbers of disks using the count variable.
Represents an Autoscaler resource.
Backend buckets allow you to use Google Cloud Storage buckets with HTTP(S)
load balancing.
Import
Import
Import
A key for signing Cloud CDN signed URLs for BackendBuckets.
A Backend Service defines a group of virtual machines that will serve
traffic for load balancing. This resource is a global backend service,
appropriate for external load balancing or self-managed internal load balancing.
For managed internal load balancing, use a regional backend service instead.
Import
Import
Import
A key for signing Cloud CDN signed URLs for Backend Services.
A representation of an ExternalAccountKey used for external account binding within ACME.
Persistent disks are durable storage devices that function similarly to
the physical disks in a desktop or a server. Compute Engine manages the
hardware behind these devices to ensure data redundancy and optimize
performance for you. Persistent disks are available as either standard
hard disk drives (HDD) or solid-state drives (SSD).
Three different resources help you manage your IAM policy for Compute Engine Disk. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine Disk. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine Disk. Each of these resources serves a different use case:
Adds existing resource policies to a disk. You can only add one policy
which will be applied to this disk for scheduling snapshot creation.
Represents a VPN gateway managed outside of GCP.
Each network has its own firewall controlling access to and from the
instances.
Hierarchical firewall policy rules let you create and enforce a consistent firewall policy across your organization. Rules can explicitly allow or deny connections or delegate evaluation to lower level policies. Policies can be created within organizations or folders.
Allows associating hierarchical firewall policies with the target where they are applied. This allows creating policies and rules in a different location than they are applied.
Represents a rule that describes one or more match conditions along with the action to be taken when traffic matches this condition (allow or deny).
Example Usage
A ForwardingRule resource. A ForwardingRule resource specifies which pool
of target virtual machines to forward a packet to if it matches the given
[IPAddress, IPProtocol, portRange] tuple.
Represents a Global Address resource. Global addresses are used for
HTTP(S) load balancing.
Represents a GlobalForwardingRule resource. Global forwarding rules are
used to forward traffic to the correct load balancer for HTTP load
balancing. Global forwarding rules can only be used for HTTP load
balancing.
A Global Network endpoint represents a IP address and port combination that exists outside of GCP.
NOTE: Global network endpoints cannot be created outside of a
global network endpoint group.
A global network endpoint group contains endpoints that reside outside of Google Cloud.
Currently a global network endpoint group can only support a single endpoint.
Represents a VPN gateway running in GCP. This virtual device is managed
by Google, but used only by you. This type of VPN Gateway allows for the creation
of VPN solutions with higher availability than classic Target VPN Gateways.
Health Checks determine whether instances are responsive and able to do work.
They are an important part of a comprehensive load balancing configuration,
as they enable monitoring instances behind load balancers.
An HttpHealthCheck resource. This resource defines a template for how
individual VMs should be checked for health, via HTTP.
An HttpsHealthCheck resource. This resource defines a template for how
individual VMs should be checked for health, via HTTPS.
Represents an Image resource.
Three different resources help you manage your IAM policy for Compute Engine Image. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine Image. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine Image. Each of these resources serves a different use case:
The Google Compute Engine Instance Group Manager API creates and manages pools
of homogeneous Compute Engine virtual machine instances from a common instance
template. For more information, see
the official documentation
and
APIRepresents the Instance membership to the Instance Group.
Mange the named ports setting for a managed instance group without
managing the group as whole. This resource is primarily intended for use
with GKE-generated groups that shouldn’t otherwise be managed by other
tools.
Three different resources help you manage your IAM policy for Compute Engine Instance. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine Instance. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine Instance. Each of these resources serves a different use case:
Represents an Instance Settings resource. Instance settings are centralized configuration parameters that allow users to configure the default values for specific VM parameters that are normally set using GCE instance API methods.
Note: Global instance templates can be used in any region. To lower the impact of outages outside your region and gain data residency within your region, use google_compute_region_instance_template.
Represents an Interconnect resource. The Interconnect resource is a dedicated connection between
Google’s network and your on-premises network.
Represents an InterconnectAttachment (VLAN attachment) resource. For more
information, see Creating VLAN Attachments.
Represents a Machine Image resource. Machine images store all the configuration,
metadata, permissions, and data from one or more disks required to create a
Virtual machine (VM) instance.
Three different resources help you manage your IAM policy for Compute Engine MachineImage. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine MachineImage. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine MachineImage. Each of these resources serves a different use case:
An SslCertificate resource, used for HTTPS load balancing. This resource
represents a certificate for which the certificate secrets are created and
managed by Google.
An SslCertificate resource, used for HTTPS load balancing. This resource
represents a certificate for which the certificate secrets are created and
managed by Google.
Manages a VPC network or legacy network resource on GCP.
A network attachment is a resource that lets a producer Virtual Private Cloud (VPC) network initiate connections to a consumer VPC network through a Private Service Connect interface.
Example Usage
A Network endpoint represents a IP address and port combination that is
part of a specific network endpoint group (NEG). NEGs are zonal
collections of these endpoints for GCP resources within a
single subnet. NOTE: Network endpoints cannot be created outside of a
network endpoint group.
Network endpoint groups (NEGs) are zonal resources that represent
collections of IP address and port combinations for GCP resources within a
single subnet. Each IP address and port combination is called a network
endpoint.
A set of network endpoints belonging to a network endpoint group (NEG). A
single network endpoint represents a IP address and port combination that is
part of a specific network endpoint group (NEG). NEGs are zonal collections
of these endpoints for GCP resources within a single subnet. NOTE:
Network endpoints cannot be created outside of a network endpoint group.
The Compute NetworkFirewallPolicy resource
The Compute NetworkFirewallPolicyAssociation resource
Represents a rule that describes one or more match conditions along with the action to be taken when traffic matches this condition (allow or deny).
Example Usage
Manage a network peering’s route settings without managing the peering as
a whole. This resource is primarily intended for use with GCP-generated
peerings that shouldn’t otherwise be managed by other tools. Deleting this
resource is a no-op and the peering will not be modified.
Represents a NodeGroup resource to manage a group of sole-tenant nodes.
Represents a NodeTemplate resource. Node templates specify properties
for creating sole-tenant nodes, such as node type, vCPU and memory
requirements, node affinity labels, and region.
Organization security policies are used to control incoming/outgoing traffic.
An association for the OrganizationSecurityPolicy.
A rule for the OrganizationSecurityPolicy.
Packet Mirroring mirrors traffic to and from particular VM instances.
You can use the collected traffic to help you detect security threats
and monitor application performance.
A config defined for a single managed instance that belongs to an instance group manager. It preserves the instance name
across instance group manager operations and can define stateful disks or metadata that are unique to the instance.
Sets the Cloud Armor tier of the project.
Manages a single key/value pair on metadata common to all instances for
a project in GCE. Using gcp.compute.ProjectMetadataItem lets you
manage a single key/value setting in the provider rather than the entire
project metadata map.
Represents a PublicAdvertisedPrefix for use with bring your own IP addresses (BYOIP).
Represents a PublicDelegatedPrefix for use with bring your own IP addresses (BYOIP).
Represents an Autoscaler resource.
A Region Backend Service defines a regionally-scoped group of virtual
machines that will serve traffic for load balancing.
Import
Import
Import
Represents a regional Commitment resource.
Persistent disks are durable storage devices that function similarly to
the physical disks in a desktop or a server. Compute Engine manages the
hardware behind these devices to ensure data redundancy and optimize
performance for you. Persistent disks are available as either standard
hard disk drives (HDD) or solid-state drives (SSD).
Three different resources help you manage your IAM policy for Compute Engine RegionDisk. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine RegionDisk. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine RegionDisk. Each of these resources serves a different use case:
Adds existing resource policies to a disk. You can only add one policy
which will be applied to this disk for scheduling snapshot creation.
Health Checks determine whether instances are responsive and able to do work.
They are an important part of a comprehensive load balancing configuration,
as they enable monitoring instances behind load balancers.
The Google Compute Engine Regional Instance Group Manager API creates and manages pools
of homogeneous Compute Engine virtual machine instances from a common instance
template.
Import
A Region network endpoint represents a IP address/FQDN and port combination that is
part of a specific network endpoint group (NEG).
A regional NEG that can support Serverless Products, proxying traffic to
external backends and providing traffic to the PSC port mapping endpoints.
The Compute NetworkFirewallPolicy resource
The Compute NetworkFirewallPolicyAssociation resource
Represents a rule that describes one or more match conditions along with the action to be taken when traffic matches this condition (allow or deny).
Example Usage
A config defined for a single managed instance that belongs to an instance group manager. It preserves the instance name
across instance group manager operations and can define stateful disks or metadata that are unique to the instance.
This resource works with regional instance group managers.
Example Usage
Example Usage
Example Usage
A RegionSslCertificate resource, used for HTTPS load balancing. This resource
provides a mechanism to upload an SSL key and certificate to
the load balancer to serve secure connections from the user.
Represents a Regional SSL policy. SSL policies give you the ability to control the
features of SSL that your SSL proxy or HTTPS load balancer negotiates.
Represents a RegionTargetHttpProxy resource, which is used by one or more
forwarding rules to route incoming HTTP requests to a URL map.
Represents a RegionTargetHttpsProxy resource, which is used by one or more
forwarding rules to route incoming HTTPS requests to a URL map.
Represents a RegionTargetTcpProxy resource, which is used by one or more
forwarding rules to route incoming TCP requests to a regional TCP proxy load
balancer.
UrlMaps are used to route requests to a backend service based on rules
that you define for the host and path of an incoming URL.
Represents a reservation resource. A reservation ensures that capacity is
held in a specific zone even if the reserved VMs are not running.
Represents a Managed Instance Group Resize Request
A policy that can be attached to a resource to specify or schedule actions on that resource.
Represents a Route resource.
Represents a Router resource.
A NAT service created in a router.
A resource used to set the list of IP addresses to be used in a NAT service and manage the draining of destroyed IPs.
BGP information that must be configured into the routing stack to
establish BGP peering. This information must specify the peer ASN
and either the interface name, IP address, or peer IP address.
Please refer to RFC4273.
Example Usage
A Security Policy defines an IP blacklist or whitelist that protects load balanced Google Cloud services by denying or permitting traffic from specified IP ranges. For more information
see the
official documentation
and the
API.
A rule for the SecurityPolicy.
A ScanConfig resource contains the configurations to launch a scan.
Represents a ServiceAttachment resource.
Enables the Google Compute Engine
Shared VPC
feature for a project, assigning it as a Shared VPC host project.
Enables the Google Compute Engine
Shared VPC
feature for a project, assigning it as a Shared VPC service project associated
with a given host project.
Represents a Persistent Disk Snapshot resource.
Three different resources help you manage your IAM policy for Compute Engine Snapshot. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine Snapshot. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine Snapshot. Each of these resources serves a different use case:
An SslCertificate resource, used for HTTPS load balancing. This resource
provides a mechanism to upload an SSL key and certificate to
the load balancer to serve secure connections from the user.
Represents a SSL policy. SSL policies give you the ability to control the
features of SSL that your SSL proxy or HTTPS load balancer negotiates.
A VPC network is a virtual version of the traditional physical networks
that exist within and between physical data centers. A VPC network
provides connectivity for your Compute Engine virtual machine (VM)
instances, Container Engine containers, App Engine Flex services, and
other network-related resources.
Three different resources help you manage your IAM policy for Compute Engine Subnetwork. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine Subnetwork. Each of these resources serves a different use case:
Three different resources help you manage your IAM policy for Compute Engine Subnetwork. Each of these resources serves a different use case:
Represents a Target gRPC Proxy resource. A target gRPC proxy is a component
of load balancers intended for load balancing gRPC traffic. Global forwarding
rules reference a target gRPC proxy. The Target gRPC Proxy references
a URL map which specifies how traffic routes to gRPC backend services.
Represents a TargetHttpProxy resource, which is used by one or more global
forwarding rule to route incoming HTTP requests to a URL map.
Represents a TargetHttpsProxy resource, which is used by one or more
global forwarding rule to route incoming HTTPS requests to a URL map.
Represents a TargetInstance resource which defines an endpoint instance
that terminates traffic of certain protocols. In particular, they are used
in Protocol Forwarding, where forwarding rules can send packets to a
non-NAT’ed target instance. Each target instance contains a single
virtual machine instance that receives and handles traffic from the
corresponding forwarding rules.
Manages a Target Pool within GCE. This is a collection of instances used as
target of a network load balancer (Forwarding Rule). For more information see
the official
documentation
and
API.
Represents a TargetSslProxy resource, which is used by one or more
global forwarding rule to route incoming SSL requests to a backend
service.
Represents a TargetTcpProxy resource, which is used by one or more
global forwarding rule to route incoming TCP requests to a Backend
service.
UrlMaps are used to route requests to a backend service based on rules
that you define for the host and path of an incoming URL.
Represents a VPN gateway running in GCP. This virtual device is managed
by Google, but used only by you.
VPN tunnel resource.