updated

imrannayer · imrannayer · commit af2baca05023 · 2025-04-10T14:04:37.000Z
diff --git a/modules/fabric-net-svpc-access/README.md b/modules/fabric-net-svpc-access/README.md
@@ -19,7 +19,8 @@ Basic usage of this module is as follows:
 ```hcl
 module "net-shared-vpc-access" {
   source              = "terraform-google-modules/network/google//modules/fabric-net-svpc-access"
-  version             = "~> 1.4.0"
+  version             = "~> 11.0"
+  
   host_project_id     = "my-host-project-id"
   service_project_num = 1
   service_project_ids = ["my-service-project-id"]
diff --git a/modules/hierarchical-firewall-policy/README.md b/modules/hierarchical-firewall-policy/README.md
@@ -232,8 +232,8 @@ In a [firewall policy rule](https://cloud.google.com/firewall/docs/firewall-poli
 ## Requirements
 ### Installed Software
 - [Terraform](https://www.terraform.io/downloads.html) >= 1.3
-- [Terraform Provider for GCP](https://github.com/terraform-providers/terraform-provider-google) >= 4.64
-- [Terraform Provider for GCP Beta](https://github.com/terraform-providers/terraform-provider-google-beta) >= 4.64
+- [Terraform Provider for GCP](https://github.com/terraform-providers/terraform-provider-google) >= 6.18
+- [Terraform Provider for GCP Beta](https://github.com/terraform-providers/terraform-provider-google-beta) >= 6.18
 
 ### Configure a Service Account
 In order to execute this module you must have a Service Account with the following roles:
diff --git a/modules/network-connectivity-center/README.md b/modules/network-connectivity-center/README.md
@@ -9,7 +9,7 @@ Basic usage of this submodule is as follows:
 ```hcl
 module "ncc" {
     source  = "terraform-google-modules/network/google//modules/network-connectivity-center"
-    version = "~> 9.0.0"
+    version = "~> 11.0"
 
     project_id   = "<PROJECT ID>"
 }
diff --git a/modules/network-firewall-policy/README.md b/modules/network-firewall-policy/README.md
@@ -135,7 +135,7 @@ module "network_firewall_policy" {
 | policy\_name | User-provided name of the Network firewall policy | `string` | n/a | yes |
 | policy\_region | Location of the firewall policy. Needed for regional firewall policies. Default is null (Global firewall policy) | `string` | `null` | no |
 | project\_id | Project ID of the Network firewall policy | `string` | n/a | yes |
-| rules | List of Ingress/Egress rules | <pre>list(object({<br>    priority                = number<br>    direction               = string<br>    action                  = string<br>    rule_name               = optional(string)<br>    disabled                = optional(bool)<br>    description             = optional(string)<br>    enable_logging          = optional(bool)<br>    target_secure_tags      = optional(list(string))<br>    target_service_accounts = optional(list(string))<br>    match = object({<br>      src_ip_ranges             = optional(list(string), [])<br>      src_fqdns                 = optional(list(string), [])<br>      src_region_codes          = optional(list(string), [])<br>      src_secure_tags           = optional(list(string), [])<br>      src_threat_intelligences  = optional(list(string), [])<br>      src_address_groups        = optional(list(string), [])<br>      dest_ip_ranges            = optional(list(string), [])<br>      dest_fqdns                = optional(list(string), [])<br>      dest_region_codes         = optional(list(string), [])<br>      dest_threat_intelligences = optional(list(string), [])<br>      dest_address_groups       = optional(list(string), [])<br>      layer4_configs = optional(list(object({<br>        ip_protocol = optional(string, "all")<br>        ports       = optional(list(string), [])<br>      })), [{}])<br>    })<br>    is_mirroring              = optional(bool, false)<br>    tls_inspect               = optional(bool, false)<br>    security_profile_group_id = optional(string)<br>  }))</pre> | `[]` | no |
+| rules | List of Ingress/Egress rules | <pre>list(object({<br>    priority                = number<br>    direction               = string<br>    action                  = string<br>    rule_name               = optional(string)<br>    disabled                = optional(bool)<br>    description             = optional(string)<br>    enable_logging          = optional(bool)<br>    target_secure_tags      = optional(list(string))<br>    target_service_accounts = optional(list(string))<br>    match = object({<br>      src_ip_ranges             = optional(list(string), [])<br>      src_fqdns                 = optional(list(string), [])<br>      src_region_codes          = optional(list(string), [])<br>      src_secure_tags           = optional(list(string), [])<br>      src_threat_intelligences  = optional(list(string), [])<br>      src_address_groups        = optional(list(string), [])<br>      dest_ip_ranges            = optional(list(string), [])<br>      dest_fqdns                = optional(list(string), [])<br>      dest_region_codes         = optional(list(string), [])<br>      dest_threat_intelligences = optional(list(string), [])<br>      dest_address_groups       = optional(list(string), [])<br>      layer4_configs = optional(list(object({<br>        ip_protocol = optional(string, "all")<br>        ports       = optional(list(string), [])<br>      })), [{}])<br>    })<br>    is_mirroring              = optional(bool, false)<br>    tls_inspect               = optional(bool, false)<br>    security_profile_group_id = optional(string)<br>    src_networks              = optional(list(string), [])<br>    src_network_scope         = optional(string)<br>    dest_network_scope        = optional(string)<br>  }))</pre> | `[]` | no |
 | target\_vpcs | List of target VPC IDs that the firewall policy will be attached to | `list(string)` | `[]` | no |
 
 ## Outputs
@@ -203,8 +203,8 @@ In a [firewall policy rule](https://cloud.google.com/firewall/docs/firewall-poli
 ## Requirements
 ### Installed Software
 - [Terraform](https://www.terraform.io/downloads.html) >= 1.3
-- [Terraform Provider for GCP](https://github.com/terraform-providers/terraform-provider-google) >= 4.64
-- [Terraform Provider for GCP Beta](https://github.com/terraform-providers/terraform-provider-google-beta) >= 4.64
+- [Terraform Provider for GCP](https://github.com/terraform-providers/terraform-provider-google) >= 6.28
+- [Terraform Provider for GCP Beta](https://github.com/terraform-providers/terraform-provider-google-beta) >= 6.28
 
 ### Configure a Service Account
 In order to execute this module you must have a Service Account with the following roles:
diff --git a/modules/network-firewall-policy/main.tf b/modules/network-firewall-policy/main.tf
@@ -70,6 +70,9 @@ resource "google_compute_network_firewall_policy_rule" "rules" {
     dest_region_codes         = each.value.direction == "EGRESS" ? lookup(each.value.match, "dest_region_codes", []) : []
     dest_threat_intelligences = each.value.direction == "EGRESS" ? lookup(each.value.match, "dest_threat_intelligences", []) : []
     dest_address_groups       = each.value.direction == "EGRESS" ? lookup(each.value.match, "dest_address_groups", []) : []
+    src_networks              = lookup(each.value.match, "src_networks", [])
+    src_network_scope         = lookup(each.value.match, "src_network_scope", null)
+    dest_network_scope        = lookup(each.value.match, "dest_network_scope", null)
 
     dynamic "src_secure_tags" {
       for_each = each.value.direction != "INGRESS" || each.value.match.src_secure_tags == null ? [] : toset(each.value.match.src_secure_tags)
@@ -184,6 +187,9 @@ resource "google_compute_region_network_firewall_policy_rule" "rules" {
     dest_region_codes         = each.value.direction == "EGRESS" ? lookup(each.value.match, "dest_region_codes", []) : []
     dest_threat_intelligences = each.value.direction == "EGRESS" ? lookup(each.value.match, "dest_threat_intelligences", []) : []
     dest_address_groups       = each.value.direction == "EGRESS" ? lookup(each.value.match, "dest_address_groups", []) : []
+    src_networks              = lookup(each.value.match, "src_networks", [])
+    src_network_scope         = lookup(each.value.match, "src_network_scope", null)
+    dest_network_scope        = lookup(each.value.match, "dest_network_scope", null)
 
     dynamic "src_secure_tags" {
       for_each = each.value.direction != "INGRESS" || each.value.match.src_secure_tags == null ? [] : toset(each.value.match.src_secure_tags)
diff --git a/modules/network-firewall-policy/variables.tf b/modules/network-firewall-policy/variables.tf
@@ -78,6 +78,9 @@ variable "rules" {
     is_mirroring              = optional(bool, false)
     tls_inspect               = optional(bool, false)
     security_profile_group_id = optional(string)
+    src_networks              = optional(list(string), [])
+    src_network_scope         = optional(string)
+    dest_network_scope        = optional(string)
   }))
   default = []
   validation {
diff --git a/modules/network-peering/README.md b/modules/network-peering/README.md
@@ -13,7 +13,8 @@ Basic usage of this module is as follows:
 
 ```hcl
 module "peering" {
-  source = "terraform-google-modules/network/google//modules/network-peering"
+  source  = "terraform-google-modules/network/google//modules/network-peering"
+  version = "~> 11.0"
 
   prefix        = "name-prefix"
   local_network = "<FIRST NETWORK SELF LINK>"
diff --git a/modules/private-service-connect/README.md b/modules/private-service-connect/README.md
@@ -16,7 +16,8 @@ Basic usage of this module is as follows:
 
 ```hcl
 module "private_service_connect" {
-  source                     = "terraform-google-modules/network/google//modules/private-service-connect"
+  source  = "terraform-google-modules/network/google//modules/private-service-connect"
+  version = "~> 11.0"
 
   project_id                 = "<PROJECT_ID>"
   network_self_link          = "<NETWORK_SELF_LINK>"
diff --git a/modules/routes-beta/README.md b/modules/routes-beta/README.md
@@ -18,7 +18,7 @@ Basic usage of this submodule is as follows:
 ```hcl
 module "vpc" {
     source  = "terraform-google-modules/network/google//modules/routes-beta"
-    version = "~> 2.0.0"
+    version = "~> 11.0"
 
     project_id   = "<PROJECT ID>"
     network_name = "example-vpc"
diff --git a/modules/routes/README.md b/modules/routes/README.md
@@ -14,7 +14,7 @@ Basic usage of this submodule is as follows:
 ```hcl
 module "vpc" {
     source  = "terraform-google-modules/network/google//modules/routes"
-    version = "~> 2.0.0"
+    version = "~> 11.0"
 
     project_id   = "<PROJECT ID>"
     network_name = "example-vpc"
diff --git a/modules/subnets-beta/README.md b/modules/subnets-beta/README.md
@@ -13,7 +13,7 @@ Basic usage of this submodule is as follows:
 ```hcl
 module "vpc" {
     source  = "terraform-google-modules/network/google//modules/subnets-beta"
-    version = "~> 2.0.0"
+    version = "~> 11.0"
 
     project_id   = "<PROJECT ID>"
     network_name = "example-vpc"
diff --git a/modules/subnets-beta/versions.tf b/modules/subnets-beta/versions.tf
@@ -15,7 +15,7 @@
  */
 
 terraform {
-  required_version = ">= 0.13.0"
+  required_version = ">= 1.3"
 
   required_providers {
     google-beta = {
diff --git a/modules/subnets/README.md b/modules/subnets/README.md
@@ -13,7 +13,7 @@ Basic usage of this submodule is as follows:
 ```hcl
 module "vpc" {
     source  = "terraform-google-modules/network/google//modules/subnets"
-    version = "~> 2.0.0"
+    version = "~> 11.0"
 
     project_id   = "<PROJECT ID>"
     network_name = "example-vpc"
diff --git a/modules/vpc/README.md b/modules/vpc/README.md
@@ -14,7 +14,7 @@ Basic usage of this submodule is as follows:
 ```hcl
 module "vpc" {
     source  = "terraform-google-modules/network/google//modules/vpc"
-    version = "~> 2.0.0"
+    version = "~> 11.0"
 
     project_id   = "<PROJECT ID>"
     network_name = "example-vpc"
diff --git a/modules/vpc/versions.tf b/modules/vpc/versions.tf
@@ -15,7 +15,7 @@
  */
 
 terraform {
-  required_version = ">= 0.13.0"
+  required_version = ">= 1.3"
 
   required_providers {
     google = {

Original file line number	Diff line number	Diff line change
`@@ -9,7 +9,7 @@ Basic usage of this submodule is as follows:`
`9`	`9`	```hcl
`10`	`10`	`module "ncc" {`
`11`	`11`	`source = "terraform-google-modules/network/google//modules/network-connectivity-center"`
`12`		`- version = "~> 9.0.0"`
	`12`	`+ version = "~> 11.0"`
`13`	`13`
`14`	`14`	`project_id = "<PROJECT ID>"`
`15`	`15`	`}`