HEX
Server: Apache/2.4.65 (Ubuntu)
System: Linux ielts-store-v2 6.8.0-1036-gcp #38~22.04.1-Ubuntu SMP Thu Aug 14 01:19:18 UTC 2025 x86_64
User: root (0)
PHP: 7.2.34-54+ubuntu20.04.1+deb.sury.org+1
Disabled: pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,
$ pwd: /snap/google-cloud-cli/current/help/man/man1/
Upload Files
File: //snap/google-cloud-cli/current/help/man/man1/gcloud_compute_target-ssl-proxies_update.1
.TH "GCLOUD_COMPUTE_TARGET\-SSL\-PROXIES_UPDATE" 1



.SH "NAME"
.HP
gcloud compute target\-ssl\-proxies update \- update a target SSL proxy



.SH "SYNOPSIS"
.HP
\f5gcloud compute target\-ssl\-proxies update\fR \fINAME\fR [\fB\-\-backend\-service\fR=\fIBACKEND_SERVICE\fR] [\fB\-\-proxy\-header\fR=\fIPROXY_HEADER\fR] [\fB\-\-clear\-ssl\-policy\fR\ |\ \fB\-\-ssl\-policy\fR=\fISSL_POLICY\fR\ \fB\-\-global\-ssl\-policy\fR\ |\ \fB\-\-ssl\-policy\-region\fR=\fISSL_POLICY_REGION\fR] [\fB\-\-ssl\-certificates\fR=\fISSL_CERTIFICATE\fR,[...]\ |\ \fB\-\-clear\-ssl\-certificates\fR\ |\ \fB\-\-certificate\-map\fR=\fICERTIFICATE_MAP\fR\ |\ \fB\-\-clear\-certificate\-map\fR] [\fIGCLOUD_WIDE_FLAG\ ...\fR]



.SH "DESCRIPTION"

\fBgcloud compute target\-ssl\-proxies update\fR is used to replace the SSL
certificate, backend service, proxy header or SSL policy of existing target SSL
proxies. A target SSL proxy is referenced by one or more forwarding rules which
define which packets the proxy is responsible for routing. The target SSL proxy
in turn points to a backend service which will handle the requests. The target
SSL proxy also points to at most 15 SSL certificates used for server\-side
authentication or one certificate map. The target SSL proxy can be associated
with at most one SSL policy.



.SH "POSITIONAL ARGUMENTS"

.RS 2m
.TP 2m
\fINAME\fR

Name of the target SSL proxy to update.


.RE
.sp

.SH "FLAGS"

.RS 2m
.TP 2m
\fB\-\-backend\-service\fR=\fIBACKEND_SERVICE\fR

A backend service that will be used for connections to the target SSL proxy.

.TP 2m
\fB\-\-proxy\-header\fR=\fIPROXY_HEADER\fR

The type of proxy protocol header to be sent to the backend. \fIPROXY_HEADER\fR
must be one of:

.RS 2m
.TP 2m
\fBNONE\fR
No proxy header is added.
.TP 2m
\fBPROXY_V1\fR
Enables PROXY protocol (version 1) for passing client connection information.
.RE
.sp


.TP 2m

At most one of these can be specified:


.RS 2m
.TP 2m
\fB\-\-clear\-ssl\-policy\fR

Removes any attached SSL policy from the SSL proxy.

.TP 2m
\fB\-\-ssl\-policy\fR=\fISSL_POLICY\fR

A reference to an SSL policy resource that defines the server\-side support for
SSL features and affects the connections between clients and load balancers that
are using the SSL proxy. The SSL policy must exist and cannot be deleted while
referenced by a target SSL proxy.

.TP 2m

At most one of these can be specified:


.RS 2m
.TP 2m
\fB\-\-global\-ssl\-policy\fR

If set, the SSL policy is global.

.TP 2m
\fB\-\-ssl\-policy\-region\fR=\fISSL_POLICY_REGION\fR

Region of the SSL policy to operate on. Overrides the default
\fBcompute/region\fR property value for this command invocation.

.RE
.RE
.sp
.TP 2m

At most one of these can be specified:


.RS 2m
.TP 2m
\fB\-\-ssl\-certificates\fR=\fISSL_CERTIFICATE\fR,[...]

References to at most 15 SSL certificate resources that are used for
server\-side authentication. The first SSL certificate in this list is
considered the primary SSL certificate associated with the load balancer. The
SSL certificates must exist and cannot be deleted while referenced by a target
SSL proxy.

.TP 2m
\fB\-\-clear\-ssl\-certificates\fR

Remove any attached SSL certificates from the SSL proxy.

.TP 2m

Certificate map resource \- The certificate map to attach. This represents a
Cloud resource. (NOTE) Some attributes are not given arguments in this group but
can be set in other ways.

To set the \f5project\fR attribute:
.RS 2m
.IP "\(bu" 2m
provide the argument \f5\-\-certificate\-map\fR on the command line with a fully
specified name;
.IP "\(bu" 2m
provide the argument \f5\-\-project\fR on the command line;
.IP "\(bu" 2m
set the property \f5core/project\fR.
.RE
.sp

To set the \f5location\fR attribute:
.RS 2m
.IP "\(bu" 2m
provide the argument \f5\-\-certificate\-map\fR on the command line with a fully
specified name;
.IP "\(bu" 2m
default value of location is [global].
.RE
.sp


.RS 2m
.TP 2m
\fB\-\-certificate\-map\fR=\fICERTIFICATE_MAP\fR

ID of the certificate map or fully qualified identifier for the certificate map.

To set the \f5map\fR attribute:
.RS 2m
.IP "\(em" 2m
provide the argument \f5\-\-certificate\-map\fR on the command line.
.RE
.sp

.RE
.sp
.TP 2m
\fB\-\-clear\-certificate\-map\fR

Removes any attached certificate map from the SSL proxy.


.RE
.RE
.sp

.SH "GCLOUD WIDE FLAGS"

These flags are available to all commands: \-\-access\-token\-file, \-\-account,
\-\-billing\-project, \-\-configuration, \-\-flags\-file, \-\-flatten,
\-\-format, \-\-help, \-\-impersonate\-service\-account, \-\-log\-http,
\-\-project, \-\-quiet, \-\-trace\-token, \-\-user\-output\-enabled,
\-\-verbosity.

Run \fB$ gcloud help\fR for details.



.SH "NOTES"

These variants are also available:

.RS 2m
$ gcloud alpha compute target\-ssl\-proxies update
.RE

.RS 2m
$ gcloud beta compute target\-ssl\-proxies update
.RE
@ Telegram