mirrors/terraform-provider-proxmox
0
0
Fork 0
mirror of https://github.com/bpg/terraform-provider-proxmox.git synced 2025-07-04 04:22:59 +00:00
Code
343e8045c1
terraform-provider-proxmox/docs/resources/virtual_environment_cluster_firewall.md
Pavel Boldyrev 98e1cff7fe
feat: Add firewall resources (#246) 
* refactoring existing cluster / firewall API for better composition

* add basic security groups API
fix linter errors

* add rules API

* fix after renaming resourceVirtualEnvironmentClusterIPSet

* fix linter errors

* make linter happy

* even more refactoring

* tidy up datasources

* in refactoring spree

* update examples

* fix firewall resource/datasource & client error handling

* add ipset(s) datasource

* update docs

* add security group resource with rules

* docs

* fix security group update, TODO: rule update

* fix after rebase

* add rule update, extract common rule schema, refactor group

* fix linter  errors

* bump linter for ci

* make alias and ipset reusable

* make security group reusable

* refactor datasources

* add security group datasources

* fix linter errors

* update docs

TODO: documentation for group datasources

* add sg docs, update doc index

* minor cleanup

* fix examples & tests

* stub for firewall-level options and rules

* extract firewall interface

* add firewall options and rules on the cluster level

TODO: issues with rule list management

* refactor all resources format AGAIN, now more flat, without complex subresources

* sort out hierarchy of APIs and remove duplication in API wrappers

* bring back security group

* finally, working rules

* restore cluster firewall option

* add containers support

* add options

* move rules back under security group, update docs

* fix vm_id / container_id attrs

* add examples

* cleanup

* more cleanup


Release-As: 0.17.0-rc1
2023-04-02 18:01:10 -04:00

1.3 KiB
Raw Blame History

layout title permalink nav_order parent subcategory
page proxmox_virtual_environment_cluster_firewall /resources/virtual_environment_cluster_firewall 2 Resources Virtual Environment

Resource: proxmox_virtual_environment_cluster_firewall

Manages firewall options on the cluster level.

Example Usage

resource "proxmox_virtual_environment_cluster_firewall" "example" {
  enabled = false

  ebtables      = false
  input_policy  = "DROP"
  output_policy = "ACCEPT"
  log_ratelimit {
    enabled = false
    burst   = 10
    rate    = "5/second"
  }
}

Argument Reference

  • enabled - (Optional) Enable or disable the firewall cluster wide.
  • ebtables - (Optional) Enable ebtables rules cluster wide.
  • input_policy - (Optional) The default input policy (ACCEPT, DROP, REJECT).
  • output_policy - (Optional) The default output policy (ACCEPT, DROP, REJECT).
  • log_ratelimit - (Optional) The log rate limit.
    • enabled - (Optional) Enable or disable the log rate limit.
    • burst - (Optional) Initial burst of packages which will always get logged before the rate is applied (defaults to 5).
    • rate - (Optional) Frequency with which the burst bucket gets refilled (defaults to 1/second).

Attribute Reference

There are no additional attributes available for this resource.