NAME

gcloud alpha ids endpoints create - create a Cloud IDS endpoint

SYNOPSIS

gcloud alpha ids endpoints create (ENDPOINT : --zone=ZONE) --network=NETWORK --severity=SEVERITY [--async] [--description=DESCRIPTION] [--enable-traffic-logs] [--labels=[KEY=VALUE,...]] [--max-wait=MAX_WAIT; default="60m"] [--threat-exceptions=[exc1,exc2,...,...]] [GCLOUD_WIDE_FLAG ...]

DESCRIPTION

(ALPHA) Create an endpoint for the specified VPC network. Successful creation of an endpoint results in an endpoint in READY state. Check the progress of endpoint creation by using gcloud alpha ids endpoints list.

For more examples, refer to the EXAMPLES section below.

EXAMPLES

To create an endpoint called my-endpoint for VPC network my-net, in zone us-central1-a, alerting on LOW threats or higher, run:

$ gcloud alpha ids endpoints create my-endpoint --network=my-net \ --zone=us-central1-a --project=my-project --severity=LOW

To create an endpoint called my-endpoint for VPC network my-net, in zone us-central1-a, alerting on LOW threats or higher, excluding threat IDs 1000 and 2000, run:

$ gcloud alpha ids endpoints create my-endpoint --network=my-net \ --zone=us-central1-a --project=my-project --severity=LOW \ --threat-exceptions=1000,2000

POSITIONAL ARGUMENTS

Endpoint resource - endpoint. The arguments in this group can be used to

specify the attributes of this resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute:

provide the argument endpoint on the command line with a fully specified name;

provide the argument --project on the command line;

set the property core/project.

This must be specified.

ENDPOINT

ID of the endpoint or fully qualified identifier for the endpoint. To set the endpoint attribute:

  • provide the argument endpoint on the command line.

This positional argument must be specified if any of the other arguments in this group are specified.

--zone=ZONE

Zone of the endpoint. To set the zone attribute:

  • provide the argument endpoint on the command line with a fully specified name;

  • provide the argument --zone on the command line.

REQUIRED FLAGS

--network=NETWORK

Name of the VPC network to monitor

--severity=SEVERITY

Minimum severity of threats to report on. SEVERITY must be one of: INFORMATIONAL, LOW, MEDIUM, HIGH, CRITICAL.

OPTIONAL FLAGS

--async

Return immediately, without waiting for the operation in progress to complete. The default is True. Enabled by default, use --no-async to disable.

--description=DESCRIPTION

Description of the endpoint.

--enable-traffic-logs

Whether to enable traffic logs on the endpoint. Enabling traffic logs can generate a large number of logs which can increase costs in Cloud Logging.

--labels=[KEY=VALUE,...]

List of label KEY=VALUE pairs to add.

Keys must start with a lowercase character and contain only hyphens (-), underscores (_), lowercase characters, and numbers. Values must contain only hyphens (-), underscores (_), lowercase characters, and numbers.

--max-wait=MAX_WAIT; default="60m"

Time to synchronously wait for the operation to complete, after which the operation continues asynchronously. Ignored if --no-async isn't specified. See $ gcloud topic datetimes for information on time formats.

--threat-exceptions=[exc1,exc2,...,...]

List of threat IDs to be excepted from alerting. Passing empty list clears the exceptions.

GCLOUD WIDE FLAGS

These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.

Run $ gcloud help for details.

NOTES

This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early access allowlist. These variants are also available:

$ gcloud ids endpoints create

$ gcloud beta ids endpoints create