yandex_container_registry_ip_permission (Resource)

Written by

Updated at August 7, 2025

Example usage
Schema
Import

Creates a new Container Registry IP Permission. For more information, see the official documentation

Example usage

//
// Create a new Container Registry and new IP Permissions for it.
//
resource "yandex_container_registry" "my_registry" {
  name      = "test-registry"
  folder_id = "test_folder_id"

  labels = {
    my-label = "my-label-value"
  }
}

resource "yandex_container_registry_ip_permission" "my_ip_permission" {
  registry_id = yandex_container_registry.my_registry.id
  push        = ["10.1.0.0/16", "10.2.0.0/16", "10.3.0.0/16"]
  pull        = ["10.1.0.0/16", "10.5.0/16"]
}

Schema

Required

registry_id (String) The ID of the registry that ip restrictions applied to.

Optional

pull (Set of String) List of configured CIDRs, from which pull is allowed.
push (Set of String) List of configured CIDRs, from which push is allowed.
timeouts (Block, Optional) (see below for nested schema)

Read-Only

id (String) The ID of this resource.

Nested Schema for `timeouts`

Optional:

default (String) A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).

Import

The resource can be imported by using their resource ID. For getting the resource ID you can use Yandex Cloud Web Console or YC CLI.

# terraform import yandex_container_registry_ip_permission.<resource Name> <registry_id>
terraform import yandex_container_registry_ip_permission.my_ip_permission crps9**********k9psn

yandex_container_registry_ip_permission (Resource)

Example usageExample usage

SchemaSchema

RequiredRequired

OptionalOptional

Read-OnlyRead-Only

Nested Schema for Nested Schema for timeouts

ImportImport

Was the article helpful?