blockstorage_volume_1_year_countblockstorage_volume_24_hours_countblockstorage_volume_30_90_days_countblockstorage_volume_30_days_countblockstorage_volume_90_365_days_countblockstorage_volume_age_tableblockstorage_volume_attached_dropletsblockstorage_volume_attached_droplets_countblockstorage_volume_by_droplet_attachedblockstorage_volume_by_filesystem_typeblockstorage_volume_by_regionblockstorage_volume_countblockstorage_volume_creation_monthblockstorage_volume_droplet_attached_countblockstorage_volume_filesystem_typeblockstorage_volume_inputblockstorage_volume_overviewblockstorage_volume_storageblockstorage_volume_storage_by_filesystem_typeblockstorage_volume_storage_creation_monthblockstorage_volume_tagsblockstorage_volume_total_storageblockstorage_volume_volume_by_regionblockstorage_volumes_for_dropletdatabase_cluster_1_year_countdatabase_cluster_24_hours_countdatabase_cluster_30_90_days_countdatabase_cluster_30_days_countdatabase_cluster_90_365_days_countdatabase_cluster_age_tabledatabase_cluster_by_creation_monthdatabase_cluster_by_enginedatabase_cluster_by_regiondatabase_cluster_by_statusdatabase_cluster_countdatabase_cluster_engine_versiondatabase_cluster_firewall_enableddatabase_cluster_firewall_enabled_countdatabase_cluster_firewall_rulesdatabase_cluster_inputdatabase_cluster_maintenance_windowdatabase_cluster_node_countdatabase_cluster_overviewdatabase_cluster_private_connectiondatabase_cluster_ssl_enableddatabase_cluster_ssl_enabled_countdatabase_cluster_statusdatabase_cluster_tagsdatabase_clusters_for_kubernetes_clusterdatabase_clusters_for_network_vpcdigitalocean_droplet_1_year_countdigitalocean_droplet_24_hours_countdigitalocean_droplet_30_90_days_countdigitalocean_droplet_30_days_countdigitalocean_droplet_90_365_days_countdigitalocean_droplet_age_tabledigitalocean_project_countdigitalocean_project_tabledroplet_attached_volumesdroplet_backup_disableddroplet_backup_statusdroplet_by_backup_statusdroplet_by_distribution_typedroplet_by_firewall_statusdroplet_by_monitoring_statusdroplet_by_public_accessdroplet_by_regiondroplet_by_ssl_statusdroplet_by_statusdroplet_countdroplet_creation_monthdroplet_droplets_for_blockstorage_volumedroplet_droplets_for_database_clusterdroplet_droplets_for_network_firewalldroplet_droplets_for_network_vpcdroplet_firewall_configurationdroplet_inputdroplet_monitoring_statusdroplet_monitoring_status_countdroplet_network_vpc_detailsdroplet_overviewdroplet_public_accessdroplet_publicly_accessibledroplet_statusdroplet_storagedroplet_tagsdroplet_total_sizedroplet_vcpusimage_images_for_dropletkubernetes_cluster_1_year_countkubernetes_cluster_24_hours_countkubernetes_cluster_30_90_days_countkubernetes_cluster_30_days_countkubernetes_cluster_90_365_days_countkubernetes_cluster_age_tablekubernetes_cluster_auto_upgrade_countkubernetes_cluster_auto_upgrade_statuskubernetes_cluster_by_auto_upgrade_statuskubernetes_cluster_by_regionkubernetes_cluster_by_statuskubernetes_cluster_by_surge_upgrade_statuskubernetes_cluster_countkubernetes_cluster_creation_monthkubernetes_cluster_degraded_countkubernetes_cluster_detail_statuskubernetes_cluster_inputkubernetes_cluster_network_vpc_detailskubernetes_cluster_node_pool_detailskubernetes_cluster_nodes_for_kubernetes_clusterkubernetes_cluster_overviewkubernetes_cluster_registry_enabledkubernetes_cluster_statuskubernetes_cluster_surge_upgrade_countkubernetes_cluster_surge_upgrade_statuskubernetes_cluster_tagskubernetes_clusters_for_database_clusterkubernetes_clusters_for_network_vpckubernetes_node_pools_for_kubernetes_clusternetwork_firewall_1_year_countnetwork_firewall_24_hours_countnetwork_firewall_30_90_days_countnetwork_firewall_30_days_countnetwork_firewall_90_365_days_countnetwork_firewall_age_tablenetwork_firewall_attachednetwork_firewall_by_statusnetwork_firewall_countnetwork_firewall_creation_monthnetwork_firewall_inbound_analysisnetwork_firewall_inputnetwork_firewall_outbound_analysisnetwork_firewall_overviewnetwork_firewall_statusnetwork_firewall_tagsnetwork_firewall_unrestricted_inbound_rulesnetwork_firewall_unrestricted_inbound_rules_countnetwork_firewall_unrestricted_inbound_statusnetwork_firewall_unrestricted_outbound_rulesnetwork_firewall_unrestricted_outbound_rules_countnetwork_firewall_unrestricted_outbound_statusnetwork_firewalls_for_dropletnetwork_firewalls_for_network_vpcnetwork_floating_ips_for_blockstorage_volumenetwork_floating_ips_for_dropletnetwork_floating_ips_for_snapshotnetwork_load_balancers_for_dropletnetwork_load_balancers_for_network_vpcnetwork_vpc_associationnetwork_vpc_by_regionnetwork_vpc_by_rfc1918_rangenetwork_vpc_countnetwork_vpc_creation_monthnetwork_vpc_default_countnetwork_vpc_default_statusnetwork_vpc_inputnetwork_vpc_ip_rangenetwork_vpc_is_defaultnetwork_vpc_overviewnetwork_vpc_tagsnetwork_vpcs_for_database_clusternetwork_vpcs_for_dropletnetwork_vpcs_for_kubernetes_clusternetwork_vpcs_for_network_firewallsnapshot_1_year_countsnapshot_24_hours_countsnapshot_30_90_days_countsnapshot_30_days_countsnapshot_90_365_days_countsnapshot_age_tablesnapshot_by_regionsnapshot_by_resource_typesnapshot_countsnapshot_creation_monthsnapshot_inputsnapshot_minimum_disk_sizesnapshot_overviewsnapshot_resource_typesnapshot_sizesnapshot_snapshots_for_dropletsnapshot_source_blockstorage_volumesnapshot_source_dropletsnapshot_tagssnapshot_total_storagesource_blockstorage_volumes_for_snapshotsource_droplet_droplets_for_snapshotstorage_snapshot_by_regionstorage_snapshot_by_resource_typestorage_snapshot_creation_monthtarget_droplet_droplets_for_snapshottarget_snapshot_snapshots_for_blockstorage_volume
Query: network_firewall_inbound_analysis
Usage
powerpipe query digitalocean_insights.query.network_firewall_inbound_analysisSteampipe Tables
SQL
with rules as ( select urn, title, id, i ->> 'protocol' as protocol_number, cidr as cidr_block, i ->> 'ports' as ports, case when i->>'protocol' = 'icmp' and i ->> 'ports' = '0' then 'All ICMP' when i->>'protocol' = 'tcp' and i ->> 'ports' = '0' then 'All TCP' when i->>'protocol' = 'udp' and i ->> 'ports' = '0' then 'All UDP' when i->>'protocol' = 'tcp' and i ->> 'ports' <> '0' then concat(i ->> 'ports', '/TCP') when i->>'protocol' = 'udp' and i ->> 'ports' <> '0' then concat(i ->> 'ports', '/UDP') else concat('Procotol: ', i->>'protocol') end as rule_description from digitalocean_firewall, jsonb_array_elements(inbound_rules) as i, jsonb_array_elements_text(i -> 'sources' -> 'addresses') as cidr where urn = $1 union select urn, title, id, i ->> 'protocol' as protocol_number, cidr as cidr_block, i ->> 'ports' as ports, case when i->>'protocol' = 'icmp' and i ->> 'ports' = '0' then 'All ICMP' when i->>'protocol' = 'tcp' and i ->> 'ports' = '0' then 'All TCP' when i->>'protocol' = 'udp' and i ->> 'ports' = '0' then 'All UDP' when i->>'protocol' = 'tcp' and i ->> 'ports' <> '0' then concat(i ->> 'ports', '/TCP') when i->>'protocol' = 'udp' and i ->> 'ports' <> '0' then concat(i ->> 'ports', '/UDP') else concat('Procotol: ', i->>'protocol') end as rule_description from digitalocean_firewall, jsonb_array_elements(inbound_rules) as i, jsonb_array_elements_text(i -> 'sources' -> 'droplet_ids') as cidr where urn = $1 union select urn, title, id, i ->> 'protocol' as protocol_number, cidr as cidr_block, i ->> 'ports' as ports, case when i->>'protocol' = 'icmp' and i ->> 'ports' = '0' then 'All ICMP' when i->>'protocol' = 'tcp' and i ->> 'ports' = '0' then 'All TCP' when i->>'protocol' = 'udp' and i ->> 'ports' = '0' then 'All UDP' when i->>'protocol' = 'tcp' and i ->> 'ports' <> '0' then concat(i ->> 'ports', '/TCP') when i->>'protocol' = 'udp' and i ->> 'ports' <> '0' then concat(i ->> 'ports', '/UDP') else concat('Procotol: ', i->>'protocol') end as rule_description from digitalocean_firewall, jsonb_array_elements(inbound_rules) as i, jsonb_array_elements_text(i -> 'sources' -> 'kubernetes_ids') as cidr where urn = $1 union select urn, title, id, i ->> 'protocol' as protocol_number, cidr as cidr_block, i ->> 'ports' as ports, case when i->>'protocol' = 'icmp' and i ->> 'ports' = '0' then 'All ICMP' when i->>'protocol' = 'tcp' and i ->> 'ports' = '0' then 'All TCP' when i->>'protocol' = 'udp' and i ->> 'ports' = '0' then 'All UDP' when i->>'protocol' = 'tcp' and i ->> 'ports' <> '0' then concat(i ->> 'ports', '/TCP') when i->>'protocol' = 'udp' and i ->> 'ports' <> '0' then concat(i ->> 'ports', '/UDP') else concat('Procotol: ', i->>'protocol') end as rule_description from digitalocean_firewall, jsonb_array_elements(inbound_rules) as i, jsonb_array_elements_text(i -> 'sources' -> 'load_balancer_uids') as cidr where urn = $1)
-- CIDR Nodesselect distinct cidr_block as id, cidr_block as title, 'cidr_block' as category, null as from_id, null as to_idfrom rules
-- Rule Nodesunion select concat(title,'_',rule_description) as id, rule_description as title, 'rule' as category, null as from_id, null as to_idfrom rules
-- Firewall Nodesunion select distinct title as id, title as title, 'inbound' as category, null as from_id, null as to_idfrom rules
-- ip -> rule edgeunion select null as id, null as title, protocol_number as category, cidr_block as from_id, concat(title,'_',rule_description) as to_idfrom rules
-- rule -> Firewall edgeunion select null as id, null as title, protocol_number as category, concat(title,'_',rule_description) as from_id, title as to_idfrom rules
Dashboards
The query is used in the dashboards: