jmcdice/GCP Default FW Rules

## GCP Default FW Rules
#!/usr/bin/env bash
#
# Have you ever deleted the default fw rules in your gcp project?
# Of course you have! Here's how to re-create them.

PROJECT=''

function create_default_ruleset() {

  # Allow ICMP from Anywhere
  gcloud compute --project=${PROJECT} firewall-rules create \
    default-allow-icmp --description=Allow\ ICMP\ --direction=INGRESS \
    --priority=65534 --network=default --action=ALLOW \
    --rules=icmp --source-ranges=0.0.0.0/0

  # default-allow-internal
  gcloud compute --project=${PROJECT} firewall-rules create \
    default-allow-internal --description=Allow\ internal\ traffic\ on\ the\ default\ network \
    --direction=INGRESS --priority=65534 --network=default --action=ALLOW \
    --rules=tcp:0-65535,udp:0-65535,icmp --source-ranges=10.128.0.0/9

  # RDP
  gcloud compute --project=${PROJECT} firewall-rules create \
    default-allow-rdp --description=Allow\ RDP\ from\ anywhere --direction=INGRESS \
    --priority=65534 --network=default --action=ALLOW \
    --rules=tcp:3389 --source-ranges=0.0.0.0/0

  # SSH
  gcloud compute --project=${PROJECT} firewall-rules create \
    default-allow-ssh --description=Allow\ SSH\ from\ anywhere --direction=INGRESS \
    --priority=65534 --network=default --action=ALLOW \
    --rules=tcp:22 --source-ranges=0.0.0.0/0
}


function delete_default_ruleset() {

  # Might or might need to do this.. just to be tidy tho..
  gcloud compute firewall-rules delete default-allow-icmp
  gcloud compute firewall-rules delete default-allow-internal
  gcloud compute firewall-rules delete default-allow-rdp
  gcloud compute firewall-rules delete default-allow-ssh
}

delete_default_ruleset
create_default_ruleset
	#!/usr/bin/env bash
	#
	# Have you ever deleted the default fw rules in your gcp project?
	# Of course you have! Here's how to re-create them.

	PROJECT=''

	function create_default_ruleset() {

	# Allow ICMP from Anywhere
	gcloud compute --project=${PROJECT} firewall-rules create \
	default-allow-icmp --description=Allow\ ICMP\ --direction=INGRESS \
	--priority=65534 --network=default --action=ALLOW \
	--rules=icmp --source-ranges=0.0.0.0/0

	# default-allow-internal
	gcloud compute --project=${PROJECT} firewall-rules create \
	default-allow-internal --description=Allow\ internal\ traffic\ on\ the\ default\ network \
	--direction=INGRESS --priority=65534 --network=default --action=ALLOW \
	--rules=tcp:0-65535,udp:0-65535,icmp --source-ranges=10.128.0.0/9

	# RDP
	gcloud compute --project=${PROJECT} firewall-rules create \
	default-allow-rdp --description=Allow\ RDP\ from\ anywhere --direction=INGRESS \
	--priority=65534 --network=default --action=ALLOW \
	--rules=tcp:3389 --source-ranges=0.0.0.0/0

	# SSH
	gcloud compute --project=${PROJECT} firewall-rules create \
	default-allow-ssh --description=Allow\ SSH\ from\ anywhere --direction=INGRESS \
	--priority=65534 --network=default --action=ALLOW \
	--rules=tcp:22 --source-ranges=0.0.0.0/0
	}


	function delete_default_ruleset() {

	# Might or might need to do this.. just to be tidy tho..
	gcloud compute firewall-rules delete default-allow-icmp
	gcloud compute firewall-rules delete default-allow-internal
	gcloud compute firewall-rules delete default-allow-rdp
	gcloud compute firewall-rules delete default-allow-ssh
	}

	delete_default_ruleset
	create_default_ruleset