Create Firewall Rule

Use the Create Firewall Rule activity to create a new firewall rule for the specified project within Google Cloud Platform.

Usage

Complete the following properties to use this activity:

  • Google Cloud Platform - Specify the following information or click the Variable Reference icon to choose a variable:
    • Project ID - Enter the unique identifier of the project (required).
    • Firewall Rule Name - Enter the name for the firewall rule (required).
    • Firewall Action - Click the drop-down list and choose Allow or Deny (required).
    • Firewall Description - Enter a description for the firewall rule (optional).
    • Network - Enter the network where the firewall rule will be applied (required).
    • Direction of Traffic - Click the drop-down list and choose Egress (outgoing traffic) or Ingress (incoming traffic) (required).
    • Priority for this Rule - Enter an integer from 0 to 65535, inclusive. A lower integer indicates a higher priority (required).
    • IP Protocol - Click the drop-down list and choose the specific IP protocol to narrow the scope of the firewall rule. The available options are AH, ESP, ICMP, IPIP, SCTP, TCP, UDP (required).
    • Ports - Click Add to enter the port number or port range for the firewall rule (optional).
    • Source Range - Click Add to enter the ranges of IP addresses as sources of packets. This parameter is only applicable to ingress rules (optional).
    • Destination Range - Click Add to specify the ranges of IP addresses. This parameter is only applicable to egress rules (optional).
    • Source Tags - Click Add to enter the source tags to limit the source by network tag. This parameter is only applicable to ingress rules (optional).
    • Target Tags - Click Add to enter the target tags, if you want to apply the rule to select instances by network (target) tags. This parameter is only applicable to egress rules (optional).
    • Source Service Accounts - Click Add to enter the service account name to limit the source by service account. This parameter is only applicable to ingress rules (optional).
    • Target Service Accounts - Click Add to enter the service account name to apply the rule to select instances by associated service accounts. This parameter is only applicable to egress rules (optional).