Table: gcp_compute_target_ssl_proxy - Query GCP Compute Engine Target SSL Proxies using SQL
A Target SSL Proxy is a component of Google Cloud Platform's Compute Engine that is used to forward SSL requests to a backend service. It is associated with SSL certificates and provides SSL termination for HTTPS load balancers. This resource is crucial for managing and controlling the traffic to your backend services.
Table Usage Guide
The gcp_compute_target_ssl_proxy table provides valuable insights into the Target SSL Proxies within Google Cloud Platform's Compute Engine. As a network engineer, you can use this table to explore the details of each proxy, including its associated SSL certificates, the backend service it is linked to, and its current status. Utilize it to monitor and manage the traffic flow to your backend services, ensuring optimal performance and security.
Examples
Basic info
Explore the basic details of your SSL proxies in Google Cloud Platform's Compute Engine service. This can help you manage and organize your proxies for efficient network traffic control.
select name, id, self_linkfrom gcp_compute_target_ssl_proxy;select name, id, self_linkfrom gcp_compute_target_ssl_proxy;Get SSL policy details for each target SSL proxy
Explore the security configurations of your network by identifying the SSL policies applied to each target SSL proxy within your Google Cloud Platform compute environment. This can help in maintaining the security standards and compliance of your network infrastructure.
select name, id, ssl_policyfrom gcp_compute_target_ssl_proxy;select name, id, ssl_policyfrom gcp_compute_target_ssl_proxy;Control examples
- 3.9 Ensure no HTTPS or SSL proxy load balancers permit SSL policies with weak cipher suites
- 3.9 Ensure no HTTPS or SSL proxy load balancers permit SSL policies with weak cipher suites
- 3.9 Ensure no HTTPS or SSL proxy load balancers permit SSL policies with weak cipher suites
- Ensure no HTTPS or SSL proxy load balancers permit SSL policies with weak cipher suites
Schema for gcp_compute_target_ssl_proxy
| Name | Type | Operators | Description |
|---|---|---|---|
| _ctx | jsonb | Steampipe context in JSON form, e.g. connection_name. | |
| akas | jsonb | Array of globally unique identifier strings (also known as) for the resource. | |
| creation_timestamp | timestamp with time zone | The creation timestamp of the resource. | |
| description | text | A user-specified, human-readable description of the target ssl proxy. | |
| id | bigint | The unique identifier for the resource. | |
| kind | text | The type of the resource. Always compute#targetSslProxy for target SSL proxies. | |
| location | text | The GCP multi-region, region, or zone in which the resource is located. | |
| name | text | = | A friendly name that identifies the resource. |
| project | text | The GCP Project in which the resource is located. | |
| proxy_header | text | !=, = | Specifies the type of proxy header to append before sending data to the backend, either NONE or PROXY_V1. The default is NONE. |
| self_link | text | The server-defined URL for the resource. | |
| service | text | Specifies the url of the backend service. | |
| ssl_certificates | jsonb | A list of urls to SslCertificate resources that are used to authenticate connections to Backends. | |
| ssl_policy | text | The URL of the SslPolicy resource that will be associated with the resource. | |
| title | text | Title of the resource. |
Export
This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.
You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:
/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- gcpYou can pass the configuration to the command with the --config argument:
steampipe_export_gcp --config '<your_config>' gcp_compute_target_ssl_proxy