Cloud IDS Endpoint

Cloud IDS Endpoint is a managed intrusion detection service in Google Cloud that inspects network traffic for threats and vulnerabilities. It provides deep packet inspection and threat signature matching to detect malicious activity in real time. The service integrates with Virtual Private Cloud (VPC) networks, allowing organizations to monitor traffic between workloads and the internet or between internal segments. It helps enhance network security visibility without requiring complex infrastructure management.

gcp.ids_endpoint

Fields

TitleIDTypeData TypeDescription
_keycorestring
ancestorscorearray<string>
create_timecoretimestampOutput only. The create time timestamp.
datadog_display_namecorestring
descriptioncorestringUser-provided description of the endpoint
endpoint_forwarding_rulecorestringOutput only. The fully qualified URL of the endpoint's ILB Forwarding Rule.
endpoint_ipcorestringOutput only. The IP address of the IDS Endpoint's ILB.
labelscorearray<string>The labels of the endpoint.
namecorestringOutput only. The name of the endpoint.
networkcorestringRequired. The fully qualified URL of the network to which the IDS Endpoint is attached.
organization_idcorestring
parentcorestring
project_idcorestring
project_numbercorestring
region_idcorestring
resource_namecorestring
satisfies_pzicoreboolOutput only. [Output Only] Reserved for future use.
satisfies_pzscoreboolOutput only. [Output Only] Reserved for future use.
severitycorestringRequired. Lowest threat severity that this endpoint will alert on.
statecorestringOutput only. Current state of the endpoint.
tagscorehstore_csv
threat_exceptionscorearray<string>List of threat IDs to be excepted from generating alerts.
traffic_logscoreboolWhether the endpoint should report traffic logs in addition to threat logs.
update_timecoretimestampOutput only. The update time timestamp.
zone_idcorestring