Config path: /network_policy.yaml

Example:

test_network_policy_1:
  allowed_ip_list:
    - 0.0.0.0/0
  blocked_ip_list:
    - 1.1.1.1
    - 8.8.8.8

Schema

• {key} (ident) - name of network policy

• {value} (dict)

  • allowed_ip_list (list)

    • {items} (str) - IPv4 addresses that are allowed access to Snowflake account

  • blocked_ip_list (list)

    • {items} (str) - IPv4 addresses that are denied access to Snowflake account

  • comment (str)

Usage notes

1. It is recommended to apply changes to NETWORK POLICIES manually due to high security risk. If you use admin role with SYSADMIN + SECURITYADMIN for SnowDDL, make sure manually created NETWORK POLICIES are owned by SECURITYADMIN, not by ACCOUNTADMIN.

Links

• CREATE NETWORK POLICY

• ALTER NETWORK POLICY

• DESC NETWORK POLICY

• Parser & JSON Schema (GitHub)