turbot/digitalocean

steampipe plugin install digitaloceansteampipe plugin install digitalocean

Table: digitalocean_firewall

DigitalOcean Cloud Firewalls are a network-based, stateful firewall service for Droplets provided at no additional cost. Cloud firewalls block all traffic that isn’t expressly permitted by a rule.

Examples

Basic info

select
id,
name,
created_at,
status
from
digitalocean_firewall;

List firewalls whose inbound access is not restricted

select
id,
name,
created_at,
status
from
digitalocean_firewall,
jsonb_array_elements(inbound_rules) as i
where
i -> 'sources' -> 'addresses' = '["0.0.0.0/0","::/0"]';

List failed firewalls

select
id,
name,
created_at,
status
from
digitalocean_firewall
where
status = 'failed';

.inspect digitalocean_firewall

DigitalOcean Cloud Firewalls are a network-based, stateful firewall service for Droplets provided at no additional cost. Cloud firewalls block all traffic that isn’t expressly permitted by a rule.

NameTypeDescription
akasjsonbArray of globally unique identifier strings (also known as) for the resource.
created_attimestamp without time zoneA time value given in ISO8601 combined date and time format that represents when the Firewall was created.
droplet_idsjsonbThe list of the IDs of the Droplets assigned to the Firewall.
idtextThe unique universal identifier of this firewall.
inbound_rulesjsonbThe inbound access rule block for the Firewall.
nametextThe name of the Firewall.
outbound_rulesjsonbThe outbound access rule block for the Firewall.
pending_changesjsonbAn list of object containing the fields, `droplet_id`, `removing`, and `status`. It is provided to detail exactly which Droplets are having their security policies updated. When empty, all changes have been successfully applied.
statustextA status string indicating the current state of the Firewall.
tagsjsonbA map of tags for the resource.
titletextTitle of the resource.
urntextThe uniform resource name (URN) for the Firewall.