Segmentation Troubleshooting Service
The segmentation feature is in an early access alpha state. Before trying this in a non production environment, please reach out to Tetrate first.
Troubleshooting
The Troubleshooting service provides methods to debug segmentation policies and rules.
Operations
ResourceAccess
OperationsRequest
Request message for retrieving allowed operations between resources.
Field | Description | Validation Rule |
---|---|---|
orgFqn | string | string = { |
sourceFqn | string | string = { |
targetFqn | string | string = { |
OperationsResponse
The response contains the operations that are allowed from a source resource to a given target.
Field | Description | Validation Rule |
---|---|---|
operations | List of string
| – |
ResourceAccessRequest
Request message for retrieving allowed access relationships between resources.
Either source_fqn
or target_fqn
must be set, but not both.
-
If
source_fqn
is set, returns the target resources the source is allowed to access. -
If
target_fqn
is set, returns the source resources allowed to access the target.
Field | Description | Validation Rule |
---|---|---|
orgFqn | string | string = { |
sourceFqn | string oneof _resource_fqn | – |
targetFqn | string oneof _resource_fqn | – |
ResourceAccessResponse
Response message for an ResourceAccessRequest.
Field | Description | Validation Rule |
---|---|---|
accesses | map<string, google.protobuf.ListValue>
That means that the source is allowed to connect to these 4 resources and their descendants. | – |