Skip to main content

🔌 Google GCE Firewall Rule - object.extracts.yaml

  • Contextual name: 🔌 object.extracts.yaml
  • ID: /types/CA10__CaGoogleGceFirewallRule__c/object.extracts.yaml

Used In

LogicPolicyFlags
🧠 prod.logic.yaml🟢🛡️ Google GCE Firewall Rule logging is disabled🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted CiscoSecure/WebSM traffic🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted DNS traffic🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted FTP traffic🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted HTTP traffic🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted LDAP traffic🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted NetBIOS traffic🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted POP3 traffic🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted RDP traffic🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted SMTP traffic🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted SSH traffic🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted traffic to all ports🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted traffic to Cassandra🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted traffic to Directory services"🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted traffic to Elasticsearch🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted traffic to Memcached🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted traffic to MongoDB🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted traffic to MySQL🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted traffic to OracleDB🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted traffic to PostgreSQL🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted traffic to Redis🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network allows unrestricted Telnet traffic🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ Google GCE Network has no egress deny Firewall Rule🟢🟢 x3

Content

Open File

---
extracts:
  - name: "CA10__direction__c"
    value: 
      FIELD:
        path: "CA10__direction__c"
        undeterminedIf:
         isEmpty: "Direction is not populated yet."
  - name: "CA10__sourceRanges__c"
    value: 
      FIELD:
        path: "CA10__sourceRanges__c"
        undeterminedIf:
          isEmpty: "Source ranges are not populated yet."
  - name: "CA10__allowedProtocolsPorts__c"
    value: 
      FIELD:
        path: "CA10__allowedProtocolsPorts__c"
        undeterminedIf:
          isEmpty: "Allowed protocol ports are not populated yet."
# 22 port variants: tcp: 22 / tcp: 22, 80 / tcp: 1-65535
  - name: "caJsonFrom__allowedProtocolsPortsJson__c"
    value:
      JSON_FROM:
        arg:
          FIELD: 
            path: "CA10__allowedProtocolsPortsJson__c"
            returnType: BYTES
        undeterminedIf:
          isInvalid: "Allowed protocol ports JSON is invalid."
          isEmpty: "Allowed protocol ports JSON is empty."
  - name: "caJsonFrom__deniedProtocolsPortsJson__c"
    value:
      JSON_FROM:
        arg:
          FIELD: 
            path: "CA10__deniedProtocolsPortsJson__c"
            returnType: BYTES
        undeterminedIf:
          isInvalid: "Denied protocol ports JSON is invalid."
          isEmpty: "Denied protocol ports JSON is empty."
  - name: "CA10__destinationRanges__c"
    value: 
      FIELD:
        path: "CA10__destinationRanges__c"
        undeterminedIf:
          isEmpty: "Destination ranges are not populated yet."
  - name: "CA10__logState__c"
    value: 
      FIELD:
        path: "CA10__logState__c"
        undeterminedIf:
         isEmpty: "Logging status undetermined."