Table: fastly_acl - Query Fastly Access Control Lists using SQL
Fastly Access Control Lists (ACLs) are a security feature that allows you to manage client access to your Fastly services. ACLs enable you to create rules that allow or deny requests from specific IP addresses, subnets, or geographical regions. They are essential for maintaining the security and integrity of your Fastly services.
Table Usage Guide
The fastly_acl table provides insights into Access Control Lists within Fastly. As a security or DevOps professional, explore ACL-specific details through this table, including associated services, rules, and IP addresses. Utilize it to uncover information about the access control mechanisms, such as the allowed or denied IP addresses and the corresponding services, ensuring the robust security of your Fastly services.
Examples
Basic info
Explore which Access Control Lists (ACLs) have been created or updated in Fastly, a crucial step in managing network access and ensuring optimal security measures are in place.
select id, name, service_id, service_version, created_at, updated_atfrom fastly_acl;select id, name, service_id, service_version, created_at, updated_atfrom fastly_acl;List ACLs created in the last 30 days
Explore ACLs that have been established in the past month. This can help you understand recent changes and maintain up-to-date security configurations.
select id, name, service_id, service_version, created_at, updated_atfrom fastly_aclwhere created_at >= now() - interval '30 days';select id, name, service_id, service_version, created_at, updated_atfrom fastly_aclwhere created_at >= datetime('now', '-30 days');List ACLs that are not deleted
Discover the segments that have active Access Control Lists (ACLs) in Fastly. This can help in maintaining security by ensuring only authorized users have access to specific services.
select id, name, service_id, service_version, created_at, updated_atfrom fastly_aclwhere deleted_at is null;select id, name, service_id, service_version, created_at, updated_atfrom fastly_aclwhere deleted_at is null;List ACLs where the service version is inactive
Explore which Access Control Lists (ACLs) are associated with inactive versions of services. This can be useful in identifying potential security risks or redundant ACLs that need to be updated or removed.
select id, name, a.service_id, service_version, a.created_atfrom fastly_acl as a, fastly_service_version as vwhere a.service_id = v.service_id and a.service_version = v.number and not v.active;select a.id, a.name, a.service_id, a.service_version, a.created_atfrom fastly_acl as a, fastly_service_version as vwhere a.service_id = v.service_id and a.service_version = v.number and not v.active;Schema for fastly_acl
| Name | Type | Operators | Description |
|---|---|---|---|
| _ctx | jsonb | Steampipe context in JSON form. | |
| created_at | timestamp with time zone | Timestamp (UTC) of when the ACL was created. | |
| deleted_at | timestamp with time zone | Timestamp (UTC) of when the ACL was deleted. | |
| id | text | The ID of the ACL. | |
| name | text | = | The name of the ACL. |
| service_id | text | =, !=, ~~, ~~*, !~~, !~~* | Alphanumeric string identifying the service. |
| service_version | bigint | Integer identifying a service version. | |
| sp_connection_name | text | =, !=, ~~, ~~*, !~~, !~~* | Steampipe connection name. |
| sp_ctx | jsonb | Steampipe context in JSON form. | |
| title | text | Title of the resource. | |
| updated_at | timestamp with time zone | Timestamp (UTC) of when the ACL was updated. |
Export
This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.
You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:
/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- fastlyYou can pass the configuration to the command with the --config argument:
steampipe_export_fastly --config '<your_config>' fastly_acl