HEX
Server: Apache/2.4.65 (Ubuntu)
System: Linux ielts-store-v2 6.8.0-1036-gcp #38~22.04.1-Ubuntu SMP Thu Aug 14 01:19:18 UTC 2025 x86_64
User: root (0)
PHP: 7.2.34-54+ubuntu20.04.1+deb.sury.org+1
Disabled: pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,
$ pwd: /snap/google-cloud-cli/394/help/man/man1/
Upload Files
File: //snap/google-cloud-cli/394/help/man/man1/gcloud_compute_security-policies.1
.TH "GCLOUD_COMPUTE_SECURITY\-POLICIES" 1



.SH "NAME"
.HP
gcloud compute security\-policies \- read and manipulate Cloud Armor security policies



.SH "SYNOPSIS"
.HP
\f5gcloud compute security\-policies\fR \fIGROUP\fR | \fICOMMAND\fR [\fIGCLOUD_WIDE_FLAG\ ...\fR]



.SH "DESCRIPTION"

Read and manipulate Cloud Armor security policies.

Security policies are used to control access to Google Cloud HTTP/HTTPS load
balancers.

For more information about security policies, see Security policies for HTTPS
load balancing
(https://cloud.google.com/armor/docs/security\-policy\-concepts#security_policies_for_https_load_balancing).

See also: Security policies API
(https://cloud.google.com/compute/docs/reference/rest/v1/securityPolicies).



.SH "GCLOUD WIDE FLAGS"

These flags are available to all commands: \-\-help.

Run \fB$ gcloud help\fR for details.



.SH "GROUPS"

\f5\fIGROUP\fR\fR is one of the following:

.RS 2m
.TP 2m
\fBrules\fR

Read and manipulate Compute Engine security policies rules.


.RE
.sp

.SH "COMMANDS"

\f5\fICOMMAND\fR\fR is one of the following:

.RS 2m
.TP 2m
\fBadd\-layer7\-ddos\-defense\-threshold\-config\fR

Add a layer7 ddos defense threshold config to a Compute Engine security policy.

.TP 2m
\fBadd\-user\-defined\-field\fR

Add a user defined field to a Compute Engine security policy.

.TP 2m
\fBcreate\fR

Create a Compute Engine security policy.

.TP 2m
\fBdelete\fR

Delete security policies.

.TP 2m
\fBdescribe\fR

Describe a Compute Engine security policy.

.TP 2m
\fBexport\fR

Export security policy configs into YAML or JSON files.

.TP 2m
\fBimport\fR

Import security policy configs into your project.

.TP 2m
\fBlist\fR

List Google Compute Engine security policies.

.TP 2m
\fBlist\-preconfigured\-expression\-sets\fR

List all available preconfigured expression sets.

.TP 2m
\fBremove\-layer7\-ddos\-defense\-threshold\-config\fR

Remove a layer7 ddos defense threshold config from a Compute Engine security
policy.

.TP 2m
\fBremove\-user\-defined\-field\fR

Remove a user defined field from a Compute Engine security policy.

.TP 2m
\fBupdate\fR

Update a Compute Engine security policy.


.RE
.sp

.SH "NOTES"

These variants are also available:

.RS 2m
$ gcloud alpha compute security\-policies
.RE

.RS 2m
$ gcloud beta compute security\-policies
.RE
@ Telegram