gcloud ids endpoints create

NAME
gcloud ids endpoints create - create a Cloud IDS endpoint
SYNOPSIS
gcloud ids endpoints create(ENDPOINT :--zone=ZONE)--network=NETWORK--severity=SEVERITY[--async][--description=DESCRIPTION][--enable-traffic-logs][--labels=[KEY=VALUE,…]][--max-wait=MAX_WAIT; default="60m"][--threat-exceptions=[exc1,exc2,…,…]][GCLOUD_WIDE_FLAG]
DESCRIPTION
Create an endpoint for the specified VPC network. Successful creation of anendpoint results in an endpoint in READY state. Check the progress of endpointcreation by usinggcloud alpha ids endpoints list.

For more examples, refer to the EXAMPLES section below.

EXAMPLES
To create an endpoint calledmy-endpoint for VPC networkmy-net, in zoneus-central1-a, alerting on LOW threatsor higher, run:
gcloudidsendpointscreatemy-endpoint--network=my-net--zone=us-central1-a--project=my-project--severity=LOW

To create an endpoint calledmy-endpoint for VPC networkmy-net, in zoneus-central1-a, alerting on LOW threatsor higher, excluding threat IDs 1000 and 2000, run:

gcloudidsendpointscreatemy-endpoint--network=my-net--zone=us-central1-a--project=my-project--severity=LOW--threat-exceptions=1000,2000
POSITIONAL ARGUMENTS
Endpoint resource - endpoint. The arguments in this group can be used to specifythe attributes of this resource. (NOTE) Some attributes are not given argumentsin this group but can be set in other ways.

To set theproject attribute:

  • provide the argumentendpoint on the command line with a fullyspecified name;
  • provide the argument--project on the command line;
  • set the propertycore/project.

This must be specified.

ENDPOINT
ID of the endpoint or fully qualified identifier for the endpoint.

To set theendpoint attribute:

  • provide the argumentendpoint on the command line.

This positional argument must be specified if any of the other arguments in thisgroup are specified.

--zone=ZONE
Zone of the endpoint.

To set thezone attribute:

  • provide the argumentendpoint on the command line with a fullyspecified name;
  • provide the argument--zone on the command line.
REQUIRED FLAGS
--network=NETWORK
Name of the VPC network to monitor
--severity=SEVERITY
Minimum severity of threats to report on.SEVERITY mustbe one of:INFORMATIONAL,LOW,MEDIUM,HIGH,CRITICAL.
OPTIONAL FLAGS
--async
Return immediately, without waiting for the operation in progress to complete.The default isTrue. Enabled by default, use--no-async to disable.
--description=DESCRIPTION
Description of the endpoint.
--enable-traffic-logs
Whether to enable traffic logs on the endpoint. Enabling traffic logs cangenerate a large number of logs which can increase costs in Cloud Logging.
--labels=[KEY=VALUE,…]
List of label KEY=VALUE pairs to add.

Keys must start with a lowercase character and contain only hyphens(-), underscores (_), lowercase characters, andnumbers. Values must contain only hyphens (-), underscores(_), lowercase characters, and numbers.

--max-wait=MAX_WAIT; default="60m"
Time to synchronously wait for the operation to complete, after which theoperation continues asynchronously. Ignored if --no-async isn't specified. See $gcloud topic datetimes forinformation on time formats.
--threat-exceptions=[exc1,exc2,…,…]
List of threat IDs to be excepted from alerting. Passing empty list clears theexceptions.
GCLOUD WIDE FLAGS
These flags are available to all commands:--access-token-file,--account,--billing-project,--configuration,--flags-file,--flatten,--format,--help,--impersonate-service-account,--log-http,--project,--quiet,--trace-token,--user-output-enabled,--verbosity.

Run$gcloud help for details.

NOTES
These variants are also available:
gcloudalphaidsendpointscreate
gcloudbetaidsendpointscreate

Except as otherwise noted, the content of this page is licensed under theCreative Commons Attribution 4.0 License, and code samples are licensed under theApache 2.0 License. For details, see theGoogle Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.

Last updated 2025-05-07 UTC.