Please note that the contents of this offline web site may be out of date. To access the most recent documentation visit the online version .
Note that links that point to online resources are green in color and will open in a new window.
We would love it if you could give us feedback about this material by filling this form (You have to be online to fill it)



Firewall Commands

Contents

addfirewall 

addfirewall                  Create a new firewall rule to allow incoming
                             traffic to a network.

                             Usage: gcutil [--global_flags] addfirewall
                             [--command_flags] <firewall-name>

                             Flags for addfirewall:

gcutil_lib.firewall_cmds:
  --allowed: [Required] Specifies a list of allowed ports for this firewall.
    Each entry must be a combination of the protocol and the port or port range
    in the following form: '<protocol>:<port>-<port>' or '<protocol>:<port>'. To
    specify multiple ports, protocols, or ranges, provide them as
    comma-separated entries. For example:
    '--allowed=tcp:ssh,udp:5000-6000,tcp:80,icmp'.
    (a comma separated list)
  --allowed_ip_sources: Specifies a list of IP addresses that are allowed to
    talk to instances within the network, through the <protocols>:<ports>
    described by the '--allowed' flag. If no IP or tag sources are listed, all
    sources will be allowed.
    (default: '')
    (a comma separated list)
  --allowed_tag_sources: Specifies a list of instance tags that are allowed to
    talk to instances within the network, through the <protocols>:<ports>
    described by the '--allowed' flag. If specifying multiple tags, provide them
    as comma-separated entries. For example,
    '--allowed_tag_sources=www,database,frontend'. If no tag or ip sources are
    listed, all sources will be allowed.
    (default: '')
    (a comma separated list)
  --description: An optional Firewall description.
    (default: '')
  --network: Specifies which network this firewall applies to.
    (default: 'default')
  --target_tags: Specifies a set of tagged instances that this firewall applies
    to. To specify multiple tags, provide them as comma-separated entries. If no
    tags are listed, this firewall applies to all instances in the network.
    (default: '')
    (a comma separated list)

gflags:
  --flagfile: Insert flag definitions from the given file into the command line.
    (default: '')
  --undefok: comma-separated list of flag names that it is okay to specify on
    the command line even if the program does not define a flag with that name.
    IMPORTANT: flags in this list that have arguments MUST use the --flag=value
    format.
    (default: '')

deletefirewall 

deletefirewall               Delete one or more firewall rules.

                             Specify multiple firewalls as multiple arguments.
                             The firewalls will be deleted in parallel.

                             Usage: gcutil [--global_flags] deletefirewall
                             [--command_flags] <firewall-name-1> ...
                             <firewall-name-n>

                             Flags for deletefirewall:

gcutil_lib.command_base:
  -f,--[no]force: Override the "Delete firewall" prompt
    (default: 'false')

gflags:
  --flagfile: Insert flag definitions from the given file into the command line.
    (default: '')
  --undefok: comma-separated list of flag names that it is okay to specify on
    the command line even if the program does not define a flag with that name.
    IMPORTANT: flags in this list that have arguments MUST use the --flag=value
    format.
    (default: '')

getfirewall 

getfirewall                  Get a firewall.

                             Usage: gcutil [--global_flags] getfirewall
                             [--command_flags] <firewall-name>

listfirewalls 

listfirewalls                List the firewall rules for a project.

                             Usage: gcutil [--global_flags] listfirewalls
                             [--command_flags]

                             Flags for listfirewalls:

gcutil_lib.command_base:
  --columns: A comma-separated list of the desired columns to display. If 'all'
    is specified, then all possible columns will be included. Valid columns are
    <all|name|description|network|source-ips|source-tags|target-tags>.
    (a comma separated list)
  --[no]fetch_all_pages: Deprecated flag.
    (default: 'true')
  --filter: Filter expression for filtering listed resources. See gcutil
    documentation for syntax of the filter expression here:
    http://developers.google.com/compute/docs/gcutil/tips#filtering
  --max_results: Maximum number of items to list [Default is to fetch all].
    (a positive integer)

gcutil_lib.gcutil_flags:
  --sort_by: <name|-name|network|-network>: Sort output results by the given
    field name. Field names starting with a "-" will lead to a descending order.

gflags:
  --flagfile: Insert flag definitions from the given file into the command line.
    (default: '')
  --undefok: comma-separated list of flag names that it is okay to specify on
    the command line even if the program does not define a flag with that name.
    IMPORTANT: flags in this list that have arguments MUST use the --flag=value
    format.
    (default: '')

Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 3.0 License , and code samples are licensed under the Apache 2.0 License . For details, see our Site Policies .

Authentication required

You need to be signed in with Google+ to do that.

Signing you in...

Google Developers needs your permission to do that.