mdZddlmZddlmZddlmZddlmZddlmZddlmZddl m Z dd l m Z dd l m Z dd lm Zdd lmZe j$e j&e j(j*e j(j,e j(j.Gd d e j0e j2Zddde_y)zSCommand for getting the effective firewalls applied on instance network interfaces.)absolute_import)division)unicode_literals) base_classes)firewalls_utils)lister)base) exceptions)flags)logc,eZdZdZedZdZdZy)GetEffectiveFirewallsanGet the effective firewalls for a Compute Engine virtual machine network interface. ## EXAMPLES To get the effective firewalls for an instance, run: $ {command} example-instance --zone us-central1-a gets the effective firewalls applied on the default network interface of a Compute Engine virtual machine "example-instance" in zone us-central1-a ctjj||jddd|jj t jtj|y)Nz--network-interfacenic0zEThe name of the network interface to get the effective firewalls for.)defaulthelp) instances_flags INSTANCE_ARG AddArgument add_argument display_info AddFormatrEFFECTIVE_FIREWALL_LIST_FORMATrAddBaseListerArgs)parsers Klib/surface/compute/instances/network_interfaces/get_effective_firewalls.pyArgszGetEffectiveFirewalls.Args1sc  ,,V4    !!66 V$c 0tj|j}|j}|jj}t j j||jtj|j}|jjj|jdi|j}|j D]}|j"|j$k(snbt'j(ddj+|j$dj-|j Dcgc]}|j"c}|j/|j0|j2|j4|j$}|jjj7|} g} g} g} t9| dr t;j<|| j>} t9| dr| j@rg} | j@D]}t;jB||jD}t;jB||jF}|jjI|j"|||jJ|jL}| jO|t;jP|| } nst9| d rg| jRD]X}t;jT||jD}| jO|jjW|jX| Z|j[d rL|j*d k(r=| r|jj]| | | S|jj]| | Sg}| D]'}|j_t;j`||)| D]&}|j_t;jb|(|j_t;jd| |Scc}w)N) scope_listerznetwork-interfacezMInstance does not have a network interface [{}], present interfaces are [{}].z, )projectinstancezonenetworkInterface firewallsfirewallPolicys)namerulespacketMirroringRulestypepriorityorganizationFirewalls)idr(formatjson)r,r%r&)r%r&)3rComputeApiHolder ReleaseTrackclientmessagesrrResolveAsResource resourcesr GetDefaultScopeListerapitools_client instancesGetComputeInstancesGetRequestAsDictnetworkInterfacesr'network_interfacer UnknownArgumentExceptionr.join,ComputeInstancesGetEffectiveFirewallsRequestr!r"r#rhasattrrSortNetworkFirewallRulesr%r&SortFirewallPolicyRulesr(r)=InstancesGetEffectiveFirewallsResponseEffectiveFirewallPolicyr*r+appendSortFirewallPoliciesr,SortOrgFirewallRules@InstancesGetEffectiveFirewallsResponseOrganizationFirewallPolicyr- IsSpecified&InstancesGetEffectiveFirewallsResponseextend,ConvertFirewallPolicyRulesToEffectiveFwRules/ConvertOrgSecurityPolicyRulesToEffectiveFwRules-ConvertNetworkFirewallRulesToEffectiveFwRules)selfargsholderr3r4 instance_refr"irequestres org_firewallnetwork_firewallall_firewall_policyall_unsorted_firewall_policyfpfirewall_policy_rulepacket_mirroring_rules fp_responsesporg_firewall_ruleresults rRunzGetEffectiveFirewalls.RunAs  * *4+<+<+> ?F ]]F}}%%H"//AA 00?BL %%//33+++Dl.A.A.CDH ' ' 4)) ) (  / /  ))/$$ii)C)CD)CA)CDE*  CC$$&&   // DG  * * @ @ ICLsK (AA #--s%&3+>+>%'"##".FF BHH "1!H!H B++" oocc&!7[[ d  %++K8!$",@@ . - .))"+@@ BHH   OO \ \55 1 ]  * !dkkV&; EE".&/F  EE&8KF  F! mm  F Fb "  mm  I I" M MMEE   McEs=Pcf~tjjdtjzy)N )r statusPrintr LIST_NOTICE)rPresources_were_displayeds rEpilogzGetEffectiveFirewalls.Epilogs" JJTO7778rN)__name__ __module__ __qualname____doc__ staticmethodrrbrir0rrrrs'  % %hT9rrz *{command}* is used to get the effective firewalls applied to the network interfaces of a Compute Engine virtual machine. a To get the effective firewalls of instance with name example-instance, run: $ {command} example-instance To show all fields of the firewall rules, please show in JSON format with option --format=json To see more firewall rule fields in table format, run the following for "example-instance": $ {command} example-instance --format="table( type, firewall_policy_name, rule_type, priority, action, direction, ip_ranges.list():label=IP_RANGES, target_svc_acct, enableLogging, description, name, disabled, target_tags, src_svc_acct, src_tags, ruleTupleCount, targetResources:label=TARGET_RESOURCES)" ) DESCRIPTIONEXAMPLESN)rm __future__rrrgooglecloudsdk.api_lib.computerrrgooglecloudsdk.callioper r "googlecloudsdk.command_lib.computer ,googlecloudsdk.command_lib.compute.instancesrgooglecloudsdk.corer DefaultUniverseOnly ReleaseTracksr2GABETAALPHADescribeCommand ListCommandr detailed_helpr0rrrsZ&'7:1(.4Q#$++00$2C2C2I2IJ9D00$2B2BJ9J9\ #'#r