az palo-alto cloudngfw local-rulestack local-rule
Note
This reference is part of the palo-alto-networks extension for the Azure CLI (version 2.51.0 or higher). The extension will automatically install the first time you run an az palo-alto cloudngfw local-rulestack local-rule command. Learn more about extensions.
Manage local-rulestack local-rule resource.
Commands
| Name | Description | Type | Status |
|---|---|---|---|
| az palo-alto cloudngfw local-rulestack local-rule create |
Create a LocalRulesResource. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule delete |
Delete a LocalRulesResource. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule list |
List LocalRulesResource resources by LocalRulestacks. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule refresh-counter |
Refresh counters. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule reset-counter |
Reset counters. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule show |
Get a LocalRulesResource. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule show-counter |
Get counters. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule wait |
Place the CLI in a waiting state until a condition is met. |
Extension | GA |
az palo-alto cloudngfw local-rulestack local-rule create
Create a LocalRulesResource.
az palo-alto cloudngfw local-rulestack local-rule create --local-rulestack-name
--priority
--resource-group
--rule-name
[--action-type {Allow, DenyResetBoth, DenyResetServer, DenySilent}]
[--applications]
[--audit-comment]
[--category]
[--decryption-rule-type {None, SSLInboundInspection, SSLOutboundInspection}]
[--description]
[--destination]
[--enable-logging {DISABLED, ENABLED}]
[--etag]
[--inbound-certificate]
[--negate-destination {FALSE, TRUE}]
[--negate-source {FALSE, TRUE}]
[--no-wait {0, 1, f, false, n, no, t, true, y, yes}]
[--protocol]
[--protocol-port-list]
[--rule-state {DISABLED, ENABLED}]
[--source]
[--tags]Examples
Create a LocalRulesResource
az palo-alto cloudngfw local-rulestack local-rule create -g MyResourceGroup --local-rulestack-name MyLocalRulestacks --rule-name MyLocalRule --priority "1" --action-type "Allow" --enable-logging "DISABLED" --rule-state "DISABLED"Required Parameters
LocalRulestack resource name.
Local Rule priority.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Rule name.
Optional Parameters
Rule action.
Array of rule applications Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Rule comment.
Rule category Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Enable or disable decryption.
Rule description.
Destination address Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Enable or disable logging.
Etag info.
Inbound Inspection Certificate.
Cidr should not be 'any'.
Cidr should not be 'any'.
Do not wait for the long-running operation to finish.
Any, application-default, TCP:number, UDP:number.
Prot port list Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
State of this rule.
Source address Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Tag for rule Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az palo-alto cloudngfw local-rulestack local-rule delete
Delete a LocalRulesResource.
az palo-alto cloudngfw local-rulestack local-rule delete [--ids]
[--local-rulestack-name]
[--no-wait {0, 1, f, false, n, no, t, true, y, yes}]
[--priority]
[--resource-group]
[--subscription]Examples
Delete a LocalRulesResource
az palo-alto cloudngfw local-rulestack local-rule delete -g MyResourceGroup --local-rulestack-name MyLocalRulestacks --priority "1"Optional Parameters
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
LocalRulestack resource name.
Do not wait for the long-running operation to finish.
Local Rule priority.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az palo-alto cloudngfw local-rulestack local-rule list
List LocalRulesResource resources by LocalRulestacks.
az palo-alto cloudngfw local-rulestack local-rule list --local-rulestack-name
--resource-group
[--max-items]
[--next-token]Examples
List LocalRulesResource resources by LocalRulestacks
az palo-alto cloudngfw local-rulestack local-rule list -g MyResourceGroup --local-rulestack-name MyLocalRulestacksRequired Parameters
LocalRulestack resource name.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Optional Parameters
Total number of items to return in the command's output. If the total number of items available is more than the value specified, a token is provided in the command's output. To resume pagination, provide the token value in --next-token argument of a subsequent command.
Token to specify where to start paginating. This is the token value from a previously truncated response.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az palo-alto cloudngfw local-rulestack local-rule refresh-counter
Refresh counters.
az palo-alto cloudngfw local-rulestack local-rule refresh-counter [--firewall-name]
[--ids]
[--local-rulestack-name]
[--priority]
[--resource-group]
[--subscription]Examples
Refresh counters
az palo-alto cloudngfw local-rulestack local-rule refresh-counter -g MyResourceGroup --local-rulestack-name MyLocalRulestacks --priority "1"Optional Parameters
Firewall resource name.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
LocalRulestack resource name.
Local Rule priority.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az palo-alto cloudngfw local-rulestack local-rule reset-counter
Reset counters.
az palo-alto cloudngfw local-rulestack local-rule reset-counter [--firewall-name]
[--ids]
[--local-rulestack-name]
[--priority]
[--resource-group]
[--subscription]Examples
Reset counters
az palo-alto cloudngfw local-rulestack local-rule reset-counter -g MyResourceGroup --local-rulestack-name MyLocalRulestacks --priority "1"Optional Parameters
Firewall resource name.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
LocalRulestack resource name.
Local Rule priority.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az palo-alto cloudngfw local-rulestack local-rule show
Get a LocalRulesResource.
az palo-alto cloudngfw local-rulestack local-rule show [--ids]
[--local-rulestack-name]
[--priority]
[--resource-group]
[--subscription]Examples
Get a LocalRulesResource
az palo-alto cloudngfw local-rulestack local-rule show -g MyResourceGroup --local-rulestack-name MyLocalRulestacks --priority "1"Optional Parameters
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
LocalRulestack resource name.
Local Rule priority.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az palo-alto cloudngfw local-rulestack local-rule show-counter
Get counters.
az palo-alto cloudngfw local-rulestack local-rule show-counter [--firewall-name]
[--ids]
[--local-rulestack-name]
[--priority]
[--resource-group]
[--subscription]Examples
Get counters
az palo-alto cloudngfw local-rulestack local-rule get-counter -g MyResourceGroup --local-rulestack-name MyLocalRulestacks --priority "1"Optional Parameters
Firewall resource name.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
LocalRulestack resource name.
Local Rule priority.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az palo-alto cloudngfw local-rulestack local-rule wait
Place the CLI in a waiting state until a condition is met.
az palo-alto cloudngfw local-rulestack local-rule wait [--created]
[--custom]
[--deleted]
[--exists]
[--ids]
[--interval]
[--local-rulestack-name]
[--priority]
[--resource-group]
[--subscription]
[--timeout]
[--updated]Optional Parameters
Wait until created with 'provisioningState' at 'Succeeded'.
Wait until the condition satisfies a custom JMESPath query. E.g. provisioningState!='InProgress', instanceView.statuses[?code=='PowerState/running'].
Wait until deleted.
Wait until the resource exists.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Polling interval in seconds.
LocalRulestack resource name.
Local Rule priority.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Maximum wait in seconds.
Wait until updated with provisioningState at 'Succeeded'.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
