firewall_policies

Creates, updates, deletes, gets or lists a firewall_policies resource.

Overview

Name	`firewall_policies`
Type	Resource
Id	`azure.network.firewall_policies`

Fields

vw_firewall_policies
firewall_policies

Name	Datatype	Description
`id`	`text`	Resource ID.
`name`	`text`	Resource name.
`base_policy`	`text`	field from the `properties` object
`child_policies`	`text`	field from the `properties` object
`dns_settings`	`text`	field from the `properties` object
`etag`	`text`	A unique read-only string that changes whenever the resource is updated.
`explicit_proxy`	`text`	field from the `properties` object
`firewallPolicyName`	`text`	field from the `properties` object
`firewalls`	`text`	field from the `properties` object
`identity`	`text`	Identity for the resource.
`insights`	`text`	field from the `properties` object
`intrusion_detection`	`text`	field from the `properties` object
`location`	`text`	Resource location.
`provisioning_state`	`text`	field from the `properties` object
`resourceGroupName`	`text`	field from the `properties` object
`rule_collection_groups`	`text`	field from the `properties` object
`size`	`text`	field from the `properties` object
`sku`	`text`	field from the `properties` object
`snat`	`text`	field from the `properties` object
`sql`	`text`	field from the `properties` object
`subscriptionId`	`text`	field from the `properties` object
`tags`	`text`	Resource tags.
`threat_intel_mode`	`text`	field from the `properties` object
`threat_intel_whitelist`	`text`	field from the `properties` object
`transport_security`	`text`	field from the `properties` object
`type`	`text`	Resource type.

Name	Datatype	Description
`id`	`string`	Resource ID.
`name`	`string`	Resource name.
`etag`	`string`	A unique read-only string that changes whenever the resource is updated.
`identity`	`object`	Identity for the resource.
`location`	`string`	Resource location.
`properties`	`object`	Firewall Policy definition.
`tags`	`object`	Resource tags.
`type`	`string`	Resource type.

Methods

Name	Accessible by	Required Params	Description
`get`	`SELECT`	`firewallPolicyName, resourceGroupName, subscriptionId`	Gets the specified Firewall Policy.
`list`	`SELECT`	`resourceGroupName, subscriptionId`	Lists all Firewall Policies in a resource group.
`list_all`	`SELECT`	`subscriptionId`	Gets all the Firewall Policies in a subscription.
`create_or_update`	`INSERT`	`firewallPolicyName, resourceGroupName, subscriptionId`	Creates or updates the specified Firewall Policy.
`delete`	`DELETE`	`firewallPolicyName, resourceGroupName, subscriptionId`	Deletes the specified Firewall Policy.
`update_tags`	`EXEC`	`firewallPolicyName, resourceGroupName, subscriptionId`	Updates tags of a Azure Firewall Policy resource.

`SELECT` examples

Gets all the Firewall Policies in a subscription.

vw_firewall_policies
firewall_policies

SELECT
id,
name,
base_policy,
child_policies,
dns_settings,
etag,
explicit_proxy,
firewallPolicyName,
firewalls,
identity,
insights,
intrusion_detection,
location,
provisioning_state,
resourceGroupName,
rule_collection_groups,
size,
sku,
snat,
sql,
subscriptionId,
tags,
threat_intel_mode,
threat_intel_whitelist,
transport_security,
type
FROM azure.network.vw_firewall_policies
WHERE subscriptionId = '{{ subscriptionId }}';

SELECT
id,
name,
etag,
identity,
location,
properties,
tags,
type
FROM azure.network.firewall_policies
WHERE subscriptionId = '{{ subscriptionId }}';

`INSERT` example

Use the following StackQL query and manifest file to create a new firewall_policies resource.

All Properties
Manifest

/*+ create */
INSERT INTO azure.network.firewall_policies (
firewallPolicyName,
resourceGroupName,
subscriptionId,
properties,
identity,
id,
location,
tags
)
SELECT 
'{{ firewallPolicyName }}',
'{{ resourceGroupName }}',
'{{ subscriptionId }}',
'{{ properties }}',
'{{ identity }}',
'{{ id }}',
'{{ location }}',
'{{ tags }}'
;

- name: your_resource_model_name
  props:
    - name: properties
      value:
        - name: size
          value: string
        - name: ruleCollectionGroups
          value:
            - - name: id
                value: string
        - name: provisioningState
          value: []
        - name: basePolicy
          value:
            - name: id
              value: string
        - name: firewalls
          value:
            - - name: id
                value: string
        - name: childPolicies
          value:
            - - name: id
                value: string
        - name: threatIntelMode
          value: []
        - name: threatIntelWhitelist
          value:
            - name: ipAddresses
              value:
                - string
            - name: fqdns
              value:
                - string
        - name: insights
          value:
            - name: isEnabled
              value: boolean
            - name: retentionDays
              value: integer
            - name: logAnalyticsResources
              value:
                - name: workspaces
                  value:
                    - - name: region
                        value: string
        - name: snat
          value:
            - name: privateRanges
              value:
                - string
            - name: autoLearnPrivateRanges
              value: string
        - name: sql
          value:
            - name: allowSqlRedirect
              value: boolean
        - name: dnsSettings
          value:
            - name: servers
              value:
                - string
            - name: enableProxy
              value: boolean
            - name: requireProxyForNetworkRules
              value: boolean
        - name: explicitProxy
          value:
            - name: enableExplicitProxy
              value: boolean
            - name: httpPort
              value: integer
            - name: httpsPort
              value: integer
            - name: enablePacFile
              value: boolean
            - name: pacFilePort
              value: integer
            - name: pacFile
              value: string
        - name: intrusionDetection
          value:
            - name: mode
              value: []
            - name: profile
              value: []
            - name: configuration
              value:
                - name: signatureOverrides
                  value:
                    - - name: id
                        value: string
                - name: bypassTrafficSettings
                  value:
                    - - name: name
                        value: string
                      - name: description
                        value: string
                      - name: protocol
                        value: []
                      - name: sourceAddresses
                        value:
                          - string
                      - name: destinationAddresses
                        value:
                          - string
                      - name: destinationPorts
                        value:
                          - string
                      - name: sourceIpGroups
                        value:
                          - string
                      - name: destinationIpGroups
                        value:
                          - string
                - name: privateRanges
                  value:
                    - string
        - name: transportSecurity
          value:
            - name: certificateAuthority
              value:
                - name: keyVaultSecretId
                  value: string
                - name: name
                  value: string
        - name: sku
          value:
            - name: tier
              value: string
    - name: etag
      value: string
    - name: identity
      value:
        - name: principalId
          value: string
        - name: tenantId
          value: string
        - name: type
          value: string
        - name: userAssignedIdentities
          value: object
    - name: id
      value: string
    - name: name
      value: string
    - name: type
      value: string
    - name: location
      value: string
    - name: tags
      value: object

`DELETE` example

Deletes the specified firewall_policies resource.

/*+ delete */
DELETE FROM azure.network.firewall_policies
WHERE firewallPolicyName = '{{ firewallPolicyName }}'
AND resourceGroupName = '{{ resourceGroupName }}'
AND subscriptionId = '{{ subscriptionId }}';

Overview​

Fields​

Methods​

SELECT examples​

INSERT example​

DELETE example​