--- title: Getting Started with Datadog description: Datadog, the leading service for cloud-scale monitoring. breadcrumbs: Docs > Infrastructure > Datadog Resource Catalog --- # gcp_networksecurity_gateway_security_policy_rule{% #gcp_networksecurity_gateway_security_policy_rule %} ## `ancestors`{% #ancestors %} **Type**: `UNORDERED_LIST_STRING` ## `application_matcher`{% #application_matcher %} **Type**: `STRING` **Provider name**: `applicationMatcher` **Description**: Optional. CEL expression for matching on L7/application level criteria. ## `basic_profile`{% #basic_profile %} **Type**: `STRING` **Provider name**: `basicProfile` **Description**: Required. Profile which tells what the primitive action should be. **Possible values**: - `BASIC_PROFILE_UNSPECIFIED` - If there is not a mentioned action for the target. - `ALLOW` - Allow the matched traffic. - `DENY` - Deny the matched traffic. ## `create_time`{% #create_time %} **Type**: `TIMESTAMP` **Provider name**: `createTime` **Description**: Output only. Time when the rule was created. ## `description`{% #description %} **Type**: `STRING` **Provider name**: `description` **Description**: Optional. Free-text description of the resource. ## `enabled`{% #enabled %} **Type**: `BOOLEAN` **Provider name**: `enabled` **Description**: Required. Whether the rule is enforced. ## `labels`{% #labels %} **Type**: `UNORDERED_LIST_STRING` ## `name`{% #name %} **Type**: `STRING` **Provider name**: `name` **Description**: Required. Immutable. Name of the resource. ame is the full resource name so projects/{project}/locations/{location}/gatewaySecurityPolicies/{gateway_security_policy}/rules/{rule} rule should match the pattern: (^a-z?$). ## `organization_id`{% #organization_id %} **Type**: `STRING` ## `parent`{% #parent %} **Type**: `STRING` ## `priority`{% #priority %} **Type**: `INT32` **Provider name**: `priority` **Description**: Required. Priority of the rule. Lower number corresponds to higher precedence. ## `project_id`{% #project_id %} **Type**: `STRING` ## `project_number`{% #project_number %} **Type**: `STRING` ## `region_id`{% #region_id %} **Type**: `STRING` ## `resource_name`{% #resource_name %} **Type**: `STRING` ## `session_matcher`{% #session_matcher %} **Type**: `STRING` **Provider name**: `sessionMatcher` **Description**: Required. CEL expression for matching on session criteria. ## `tags`{% #tags %} **Type**: `UNORDERED_LIST_STRING` ## `tls_inspection_enabled`{% #tls_inspection_enabled %} **Type**: `BOOLEAN` **Provider name**: `tlsInspectionEnabled` **Description**: Optional. Flag to enable TLS inspection of traffic matching on , can only be true if the parent GatewaySecurityPolicy references a TLSInspectionConfig. ## `update_time`{% #update_time %} **Type**: `TIMESTAMP` **Provider name**: `updateTime` **Description**: Output only. Time when the rule was updated. ## `zone_id`{% #zone_id %} **Type**: `STRING`