- Resource: Policy
- Network
- AlternativeNameServerConfig
- TargetNameServer
- ForwardingPath
- Dns64Config
- Scope
- Methods
Resource: Policy
A policy is a collection of DNS rules applied to one or more Virtual Private Cloud resources.
| JSON representation |
|---|
{ "id" : string , "name" : string , "enableInboundForwarding" : boolean , "description" : string , "networks" : [ { object ( |
| Fields | |
|---|---|
id
|
Unique identifier for the resource; defined by the server (output only). |
name
|
User-assigned name for this policy. |
enableInboundForwarding
|
Allows networks bound to this policy to receive DNS queries sent by VMs or applications over VPN connections. When enabled, a virtual IP address is allocated from each of the subnetworks that are bound to this policy. |
description
|
A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the policy's function. |
networks[]
|
policies.list of network names specifying networks to which this policy is applied. |
alternativeNameServerConfig
|
Sets an alternative name server for the associated networks. When specified, all DNS queries are forwarded to a name server that you choose. Names such as .internal are not available when an alternative name server is specified. |
enableLogging
|
Controls whether logging is enabled for the networks bound to this policy. Defaults to no logging if not set. |
dns64Config
|
Configurations related to DNS64 for this policy. |
kind
|
|
Network
| JSON representation |
|---|
{ "networkUrl" : string , "kind" : string } |
| Fields | |
|---|---|
networkUrl
|
The fully qualified URL of the VPC network to bind to. This should be formatted like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network } |
kind
|
|
AlternativeNameServerConfig
| JSON representation |
|---|
{
"targetNameServers"
:
[
{
object (
|
| Fields | |
|---|---|
targetNameServers[]
|
Sets an alternative name server for the associated networks. When specified, all DNS queries are forwarded to a name server that you choose. Names such as .internal are not available when an alternative name server is specified. |
kind
|
|
TargetNameServer
| JSON representation |
|---|
{
"ipv4Address"
:
string
,
"forwardingPath"
:
enum (
|
| Fields | |
|---|---|
ipv4Address
|
IPv4 address to forward queries to. |
forwardingPath
|
Forwarding path for this TargetNameServer. If unset or set to DEFAULT, Cloud DNS makes forwarding decisions based on address ranges; that is, RFC1918 addresses go to the VPC network, non-RFC1918 addresses go to the internet. When set to PRIVATE, Cloud DNS always sends queries through the VPC network for this target. |
ipv6Address
|
IPv6 address to forward to. Does not accept both fields (ipv4 & ipv6) being populated. Public preview as of November 2022. |
kind
|
|
ForwardingPath
| Enums | |
|---|---|
default
|
Cloud DNS makes forwarding decision based on IP address ranges; that is, RFC1918 addresses forward to the target through the VPC and non-RFC1918 addresses forward to the target through the internet |
private
|
Cloud DNS always forwards to this target through the VPC. |
Dns64Config
DNS64 policies
| JSON representation |
|---|
{
"scope"
:
{
object (
|
| Fields | |
|---|---|
scope
|
The scope to which DNS64 config will be applied to. |
kind
|
|
Scope
| JSON representation |
|---|
{ "allQueries" : boolean , "kind" : string } |
| Fields | |
|---|---|
allQueries
|
Controls whether DNS64 is enabled globally for all networks bound to the policy. |
kind
|
|
Methods |
|
|---|---|
|
Creates a new policy. |
|
Deletes a previously created policy. |
|
Fetches the representation of an existing policy. |
|
Enumerates all policies associated with a project. |
|
Applies a partial update to an existing policy. |
|
Updates an existing policy. |
