turbot/cloudflare

steampipe plugin install cloudflaresteampipe plugin install cloudflare

Table: cloudflare_firewall_rule

Firewall rules use filter expressions to control what traffic is allowed. A filter expression permits selecting traffic by multiple criteria allowing greater freedom in rule creation.

Examples

Basic info

select
id,
zone_id,
created_on
from
cloudflare_firewall_rule;

List paused firewall rules

select
id,
zone_id,
paused
from
cloudflare_firewall_rule
where
paused;

List firewall rules that block requests based on IP reputation

select
id,
zone_id,
filter,
action
from
cloudflare_firewall_rule
where
action = 'block'
and filter ->> 'expression' = '(cf.threat_score gt 1)';

.inspect cloudflare_firewall_rule

Cloudflare Firewall Rule

NameTypeDescription
actiontextThe action to apply to a matched request.
created_ontimestamp without time zoneThe time when the firewall rule is created.
descriptiontextA description of the rule to help identify it..
filterjsonbA set of firewall properties.
idtextSpecifies the Firewall Rule identifier.
modified_ontimestamp without time zoneThe time when the firewall rule is updated.
pausedbooleanIndicates whether the firewall rule is currently paused.
prioritybigintThe priority of the rule to allow control of processing order. A lower number indicates high priority. If not provided, any rules with a priority will be sequenced before those without.
productsjsonbA list of products to bypass for a request when the bypass action is used.
titletextTitle of the resource.
zone_idtextSpecifies the zone identifier.