chore: Added Terraform example for firewall rule with logging (#293)

betsy-lichtenberg · web-flow · commit 95daff5e7932 · 2021-05-10T18:59:29.000-07:00
diff --git a/examples/firewall_logging/README.md b/examples/firewall_logging/README.md
@@ -0,0 +1,21 @@
+#  Firewall Rule
+
+This example configures a single firewall rule with firewall logging enabled.
+
+<!-- BEGINNING OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
+## Inputs
+
+| Name | Description | Type | Default | Required |
+|------|-------------|------|---------|:--------:|
+| project\_id | The project ID to host the network in | `any` | n/a | yes |
+
+## Outputs
+
+| Name | Description |
+|------|-------------|
+| name | The name of the firewall rule being created |
+| network\_name | The name of the VPC network where the firewall rule will be applied |
+| project\_id | Google Cloud project ID |
+| rule\_self\_link | The URI of the firewall rule  being created |
+
+<!-- END OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
diff --git a/examples/firewall_logging/main.tf b/examples/firewall_logging/main.tf
@@ -0,0 +1,43 @@
+/**
+ * Copyright 2019 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+
+provider "null" {
+  version = "~> 2.1"
+}
+
+provider "google" {
+  version = "~> 3.45.0"
+}
+
+# [START vpc_firewall_create]
+resource "google_compute_firewall" "rules" {
+  project     = var.project_id # Replace this with your project ID in quotes
+  name        = "my-firewall-rule"
+  network     = "default"
+  description = "Creates firewall rule targeting tagged instances"
+
+  log_config {
+    metadata = "INCLUDE_ALL_METADATA"
+  }
+
+  allow {
+    protocol = "tcp"
+    ports    = ["80", "8080", "1000-2000"]
+  }
+  target_tags = ["web"]
+}
+# [END vpc_firewall_create]
diff --git a/examples/firewall_logging/outputs.tf b/examples/firewall_logging/outputs.tf
@@ -0,0 +1,35 @@
+/**
+ * Copyright 2019 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+output "name" {
+  value       = google_compute_firewall.rules.name
+  description = "The name of the firewall rule being created"
+}
+
+output "network_name" {
+  value       = google_compute_firewall.rules.network
+  description = "The name of the VPC network where the firewall rule will be applied"
+}
+
+output "rule_self_link" {
+  value       = google_compute_firewall.rules.self_link
+  description = "The URI of the firewall rule  being created"
+}
+
+output "project_id" {
+  value       = google_compute_firewall.rules.project
+  description = "Google Cloud project ID"
+}
diff --git a/examples/firewall_logging/variables.tf b/examples/firewall_logging/variables.tf
@@ -0,0 +1,20 @@
+/**
+ * Copyright 2019 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+variable "project_id" {
+  description = "The project ID to host the network in"
+}
+
diff --git a/examples/firewall_logging/versions.tf b/examples/firewall_logging/versions.tf
@@ -0,0 +1,20 @@
+/**
+ * Copyright 2019 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+terraform {
+  required_version = ">=0.12.6"
+}
+
