azure-native.cloudngfw.LocalRule
Explore with Pulumi AI
LocalRulestack rule list Azure REST API version: 2023-09-01.
Other available API versions: 2022-08-29, 2022-08-29-preview, 2023-09-01-preview, 2023-10-10-preview, 2024-01-19-preview, 2024-02-07-preview.
Example Usage
LocalRules_CreateOrUpdate_MaximumSet_Gen
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var localRule = new AzureNative.Cloudngfw.LocalRule("localRule", new()
{
ActionType = AzureNative.Cloudngfw.ActionEnum.Allow,
Applications = new[]
{
"app1",
},
AuditComment = "example comment",
Category = new AzureNative.Cloudngfw.Inputs.CategoryArgs
{
Feeds = new[]
{
"feed",
},
UrlCustom = new[]
{
"https://microsoft.com",
},
},
DecryptionRuleType = AzureNative.Cloudngfw.DecryptionRuleTypeEnum.SSLOutboundInspection,
Description = "description of local rule",
Destination = new AzureNative.Cloudngfw.Inputs.DestinationAddrArgs
{
Cidrs = new[]
{
"1.0.0.1/10",
},
Countries = new[]
{
"India",
},
Feeds = new[]
{
"feed",
},
FqdnLists = new[]
{
"FQDN1",
},
PrefixLists = new[]
{
"PL1",
},
},
EnableLogging = AzureNative.Cloudngfw.StateEnum.DISABLED,
InboundInspectionCertificate = "cert1",
LocalRulestackName = "lrs1",
NegateDestination = AzureNative.Cloudngfw.BooleanEnum.TRUE,
NegateSource = AzureNative.Cloudngfw.BooleanEnum.TRUE,
Priority = "1",
Protocol = "HTTP",
ProtocolPortList = new[]
{
"80",
},
ResourceGroupName = "firewall-rg",
RuleName = "localRule1",
RuleState = AzureNative.Cloudngfw.StateEnum.DISABLED,
Source = new AzureNative.Cloudngfw.Inputs.SourceAddrArgs
{
Cidrs = new[]
{
"1.0.0.1/10",
},
Countries = new[]
{
"India",
},
Feeds = new[]
{
"feed",
},
PrefixLists = new[]
{
"PL1",
},
},
Tags = new[]
{
new AzureNative.Cloudngfw.Inputs.TagInfoArgs
{
Key = "keyName",
Value = "value",
},
},
});
});
package main
import (
cloudngfw "github.com/pulumi/pulumi-azure-native-sdk/cloudngfw/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := cloudngfw.NewLocalRule(ctx, "localRule", &cloudngfw.LocalRuleArgs{
ActionType: pulumi.String(cloudngfw.ActionEnumAllow),
Applications: pulumi.StringArray{
pulumi.String("app1"),
},
AuditComment: pulumi.String("example comment"),
Category: &cloudngfw.CategoryArgs{
Feeds: pulumi.StringArray{
pulumi.String("feed"),
},
UrlCustom: pulumi.StringArray{
pulumi.String("https://microsoft.com"),
},
},
DecryptionRuleType: pulumi.String(cloudngfw.DecryptionRuleTypeEnumSSLOutboundInspection),
Description: pulumi.String("description of local rule"),
Destination: &cloudngfw.DestinationAddrArgs{
Cidrs: pulumi.StringArray{
pulumi.String("1.0.0.1/10"),
},
Countries: pulumi.StringArray{
pulumi.String("India"),
},
Feeds: pulumi.StringArray{
pulumi.String("feed"),
},
FqdnLists: pulumi.StringArray{
pulumi.String("FQDN1"),
},
PrefixLists: pulumi.StringArray{
pulumi.String("PL1"),
},
},
EnableLogging: pulumi.String(cloudngfw.StateEnumDISABLED),
InboundInspectionCertificate: pulumi.String("cert1"),
LocalRulestackName: pulumi.String("lrs1"),
NegateDestination: pulumi.String(cloudngfw.BooleanEnumTRUE),
NegateSource: pulumi.String(cloudngfw.BooleanEnumTRUE),
Priority: pulumi.String("1"),
Protocol: pulumi.String("HTTP"),
ProtocolPortList: pulumi.StringArray{
pulumi.String("80"),
},
ResourceGroupName: pulumi.String("firewall-rg"),
RuleName: pulumi.String("localRule1"),
RuleState: pulumi.String(cloudngfw.StateEnumDISABLED),
Source: &cloudngfw.SourceAddrArgs{
Cidrs: pulumi.StringArray{
pulumi.String("1.0.0.1/10"),
},
Countries: pulumi.StringArray{
pulumi.String("India"),
},
Feeds: pulumi.StringArray{
pulumi.String("feed"),
},
PrefixLists: pulumi.StringArray{
pulumi.String("PL1"),
},
},
Tags: cloudngfw.TagInfoArray{
&cloudngfw.TagInfoArgs{
Key: pulumi.String("keyName"),
Value: pulumi.String("value"),
},
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.cloudngfw.LocalRule;
import com.pulumi.azurenative.cloudngfw.LocalRuleArgs;
import com.pulumi.azurenative.cloudngfw.inputs.CategoryArgs;
import com.pulumi.azurenative.cloudngfw.inputs.DestinationAddrArgs;
import com.pulumi.azurenative.cloudngfw.inputs.SourceAddrArgs;
import com.pulumi.azurenative.cloudngfw.inputs.TagInfoArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var localRule = new LocalRule("localRule", LocalRuleArgs.builder()
.actionType("Allow")
.applications("app1")
.auditComment("example comment")
.category(CategoryArgs.builder()
.feeds("feed")
.urlCustom("https://microsoft.com")
.build())
.decryptionRuleType("SSLOutboundInspection")
.description("description of local rule")
.destination(DestinationAddrArgs.builder()
.cidrs("1.0.0.1/10")
.countries("India")
.feeds("feed")
.fqdnLists("FQDN1")
.prefixLists("PL1")
.build())
.enableLogging("DISABLED")
.inboundInspectionCertificate("cert1")
.localRulestackName("lrs1")
.negateDestination("TRUE")
.negateSource("TRUE")
.priority("1")
.protocol("HTTP")
.protocolPortList("80")
.resourceGroupName("firewall-rg")
.ruleName("localRule1")
.ruleState("DISABLED")
.source(SourceAddrArgs.builder()
.cidrs("1.0.0.1/10")
.countries("India")
.feeds("feed")
.prefixLists("PL1")
.build())
.tags(TagInfoArgs.builder()
.key("keyName")
.value("value")
.build())
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
local_rule = azure_native.cloudngfw.LocalRule("localRule",
action_type=azure_native.cloudngfw.ActionEnum.ALLOW,
applications=["app1"],
audit_comment="example comment",
category={
"feeds": ["feed"],
"url_custom": ["https://microsoft.com"],
},
decryption_rule_type=azure_native.cloudngfw.DecryptionRuleTypeEnum.SSL_OUTBOUND_INSPECTION,
description="description of local rule",
destination={
"cidrs": ["1.0.0.1/10"],
"countries": ["India"],
"feeds": ["feed"],
"fqdn_lists": ["FQDN1"],
"prefix_lists": ["PL1"],
},
enable_logging=azure_native.cloudngfw.StateEnum.DISABLED,
inbound_inspection_certificate="cert1",
local_rulestack_name="lrs1",
negate_destination=azure_native.cloudngfw.BooleanEnum.TRUE,
negate_source=azure_native.cloudngfw.BooleanEnum.TRUE,
priority="1",
protocol="HTTP",
protocol_port_list=["80"],
resource_group_name="firewall-rg",
rule_name="localRule1",
rule_state=azure_native.cloudngfw.StateEnum.DISABLED,
source={
"cidrs": ["1.0.0.1/10"],
"countries": ["India"],
"feeds": ["feed"],
"prefix_lists": ["PL1"],
},
tags=[{
"key": "keyName",
"value": "value",
}])
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const localRule = new azure_native.cloudngfw.LocalRule("localRule", {
actionType: azure_native.cloudngfw.ActionEnum.Allow,
applications: ["app1"],
auditComment: "example comment",
category: {
feeds: ["feed"],
urlCustom: ["https://microsoft.com"],
},
decryptionRuleType: azure_native.cloudngfw.DecryptionRuleTypeEnum.SSLOutboundInspection,
description: "description of local rule",
destination: {
cidrs: ["1.0.0.1/10"],
countries: ["India"],
feeds: ["feed"],
fqdnLists: ["FQDN1"],
prefixLists: ["PL1"],
},
enableLogging: azure_native.cloudngfw.StateEnum.DISABLED,
inboundInspectionCertificate: "cert1",
localRulestackName: "lrs1",
negateDestination: azure_native.cloudngfw.BooleanEnum.TRUE,
negateSource: azure_native.cloudngfw.BooleanEnum.TRUE,
priority: "1",
protocol: "HTTP",
protocolPortList: ["80"],
resourceGroupName: "firewall-rg",
ruleName: "localRule1",
ruleState: azure_native.cloudngfw.StateEnum.DISABLED,
source: {
cidrs: ["1.0.0.1/10"],
countries: ["India"],
feeds: ["feed"],
prefixLists: ["PL1"],
},
tags: [{
key: "keyName",
value: "value",
}],
});
resources:
localRule:
type: azure-native:cloudngfw:LocalRule
properties:
actionType: Allow
applications:
- app1
auditComment: example comment
category:
feeds:
- feed
urlCustom:
- https://microsoft.com
decryptionRuleType: SSLOutboundInspection
description: description of local rule
destination:
cidrs:
- 1.0.0.1/10
countries:
- India
feeds:
- feed
fqdnLists:
- FQDN1
prefixLists:
- PL1
enableLogging: DISABLED
inboundInspectionCertificate: cert1
localRulestackName: lrs1
negateDestination: TRUE
negateSource: TRUE
priority: '1'
protocol: HTTP
protocolPortList:
- '80'
resourceGroupName: firewall-rg
ruleName: localRule1
ruleState: DISABLED
source:
cidrs:
- 1.0.0.1/10
countries:
- India
feeds:
- feed
prefixLists:
- PL1
tags:
- key: keyName
value: value
LocalRules_CreateOrUpdate_MinimumSet_Gen
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var localRule = new AzureNative.Cloudngfw.LocalRule("localRule", new()
{
LocalRulestackName = "lrs1",
Priority = "1",
ResourceGroupName = "firewall-rg",
RuleName = "localRule1",
});
});
package main
import (
cloudngfw "github.com/pulumi/pulumi-azure-native-sdk/cloudngfw/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := cloudngfw.NewLocalRule(ctx, "localRule", &cloudngfw.LocalRuleArgs{
LocalRulestackName: pulumi.String("lrs1"),
Priority: pulumi.String("1"),
ResourceGroupName: pulumi.String("firewall-rg"),
RuleName: pulumi.String("localRule1"),
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.cloudngfw.LocalRule;
import com.pulumi.azurenative.cloudngfw.LocalRuleArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var localRule = new LocalRule("localRule", LocalRuleArgs.builder()
.localRulestackName("lrs1")
.priority("1")
.resourceGroupName("firewall-rg")
.ruleName("localRule1")
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
local_rule = azure_native.cloudngfw.LocalRule("localRule",
local_rulestack_name="lrs1",
priority="1",
resource_group_name="firewall-rg",
rule_name="localRule1")
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const localRule = new azure_native.cloudngfw.LocalRule("localRule", {
localRulestackName: "lrs1",
priority: "1",
resourceGroupName: "firewall-rg",
ruleName: "localRule1",
});
resources:
localRule:
type: azure-native:cloudngfw:LocalRule
properties:
localRulestackName: lrs1
priority: '1'
resourceGroupName: firewall-rg
ruleName: localRule1
Create LocalRule Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new LocalRule(name: string, args: LocalRuleArgs, opts?: CustomResourceOptions);
@overload
def LocalRule(resource_name: str,
args: LocalRuleArgs,
opts: Optional[ResourceOptions] = None)
@overload
def LocalRule(resource_name: str,
opts: Optional[ResourceOptions] = None,
local_rulestack_name: Optional[str] = None,
rule_name: Optional[str] = None,
resource_group_name: Optional[str] = None,
description: Optional[str] = None,
priority: Optional[str] = None,
action_type: Optional[Union[str, ActionEnum]] = None,
destination: Optional[DestinationAddrArgs] = None,
enable_logging: Optional[Union[str, StateEnum]] = None,
inbound_inspection_certificate: Optional[str] = None,
category: Optional[CategoryArgs] = None,
negate_destination: Optional[Union[str, BooleanEnum]] = None,
negate_source: Optional[Union[str, BooleanEnum]] = None,
decryption_rule_type: Optional[Union[str, DecryptionRuleTypeEnum]] = None,
protocol: Optional[str] = None,
protocol_port_list: Optional[Sequence[str]] = None,
audit_comment: Optional[str] = None,
applications: Optional[Sequence[str]] = None,
rule_state: Optional[Union[str, StateEnum]] = None,
source: Optional[SourceAddrArgs] = None,
tags: Optional[Sequence[TagInfoArgs]] = None)
func NewLocalRule(ctx *Context, name string, args LocalRuleArgs, opts ...ResourceOption) (*LocalRule, error)
public LocalRule(string name, LocalRuleArgs args, CustomResourceOptions? opts = null)
public LocalRule(String name, LocalRuleArgs args)
public LocalRule(String name, LocalRuleArgs args, CustomResourceOptions options)
type: azure-native:cloudngfw:LocalRule
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args LocalRuleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args LocalRuleArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args LocalRuleArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args LocalRuleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args LocalRuleArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var localRuleResource = new AzureNative.Cloudngfw.LocalRule("localRuleResource", new()
{
LocalRulestackName = "string",
RuleName = "string",
ResourceGroupName = "string",
Description = "string",
Priority = "string",
ActionType = "string",
Destination = new AzureNative.Cloudngfw.Inputs.DestinationAddrArgs
{
Cidrs = new[]
{
"string",
},
Countries = new[]
{
"string",
},
Feeds = new[]
{
"string",
},
FqdnLists = new[]
{
"string",
},
PrefixLists = new[]
{
"string",
},
},
EnableLogging = "string",
InboundInspectionCertificate = "string",
Category = new AzureNative.Cloudngfw.Inputs.CategoryArgs
{
Feeds = new[]
{
"string",
},
UrlCustom = new[]
{
"string",
},
},
NegateDestination = "string",
NegateSource = "string",
DecryptionRuleType = "string",
Protocol = "string",
ProtocolPortList = new[]
{
"string",
},
AuditComment = "string",
Applications = new[]
{
"string",
},
RuleState = "string",
Source = new AzureNative.Cloudngfw.Inputs.SourceAddrArgs
{
Cidrs = new[]
{
"string",
},
Countries = new[]
{
"string",
},
Feeds = new[]
{
"string",
},
PrefixLists = new[]
{
"string",
},
},
Tags = new[]
{
new AzureNative.Cloudngfw.Inputs.TagInfoArgs
{
Key = "string",
Value = "string",
},
},
});
example, err := cloudngfw.NewLocalRule(ctx, "localRuleResource", &cloudngfw.LocalRuleArgs{
LocalRulestackName: pulumi.String("string"),
RuleName: pulumi.String("string"),
ResourceGroupName: pulumi.String("string"),
Description: pulumi.String("string"),
Priority: pulumi.String("string"),
ActionType: pulumi.String("string"),
Destination: &cloudngfw.DestinationAddrArgs{
Cidrs: pulumi.StringArray{
pulumi.String("string"),
},
Countries: pulumi.StringArray{
pulumi.String("string"),
},
Feeds: pulumi.StringArray{
pulumi.String("string"),
},
FqdnLists: pulumi.StringArray{
pulumi.String("string"),
},
PrefixLists: pulumi.StringArray{
pulumi.String("string"),
},
},
EnableLogging: pulumi.String("string"),
InboundInspectionCertificate: pulumi.String("string"),
Category: &cloudngfw.CategoryArgs{
Feeds: pulumi.StringArray{
pulumi.String("string"),
},
UrlCustom: pulumi.StringArray{
pulumi.String("string"),
},
},
NegateDestination: pulumi.String("string"),
NegateSource: pulumi.String("string"),
DecryptionRuleType: pulumi.String("string"),
Protocol: pulumi.String("string"),
ProtocolPortList: pulumi.StringArray{
pulumi.String("string"),
},
AuditComment: pulumi.String("string"),
Applications: pulumi.StringArray{
pulumi.String("string"),
},
RuleState: pulumi.String("string"),
Source: &cloudngfw.SourceAddrArgs{
Cidrs: pulumi.StringArray{
pulumi.String("string"),
},
Countries: pulumi.StringArray{
pulumi.String("string"),
},
Feeds: pulumi.StringArray{
pulumi.String("string"),
},
PrefixLists: pulumi.StringArray{
pulumi.String("string"),
},
},
Tags: cloudngfw.TagInfoArray{
&cloudngfw.TagInfoArgs{
Key: pulumi.String("string"),
Value: pulumi.String("string"),
},
},
})
var localRuleResource = new LocalRule("localRuleResource", LocalRuleArgs.builder()
.localRulestackName("string")
.ruleName("string")
.resourceGroupName("string")
.description("string")
.priority("string")
.actionType("string")
.destination(DestinationAddrArgs.builder()
.cidrs("string")
.countries("string")
.feeds("string")
.fqdnLists("string")
.prefixLists("string")
.build())
.enableLogging("string")
.inboundInspectionCertificate("string")
.category(CategoryArgs.builder()
.feeds("string")
.urlCustom("string")
.build())
.negateDestination("string")
.negateSource("string")
.decryptionRuleType("string")
.protocol("string")
.protocolPortList("string")
.auditComment("string")
.applications("string")
.ruleState("string")
.source(SourceAddrArgs.builder()
.cidrs("string")
.countries("string")
.feeds("string")
.prefixLists("string")
.build())
.tags(TagInfoArgs.builder()
.key("string")
.value("string")
.build())
.build());
local_rule_resource = azure_native.cloudngfw.LocalRule("localRuleResource",
local_rulestack_name="string",
rule_name="string",
resource_group_name="string",
description="string",
priority="string",
action_type="string",
destination={
"cidrs": ["string"],
"countries": ["string"],
"feeds": ["string"],
"fqdn_lists": ["string"],
"prefix_lists": ["string"],
},
enable_logging="string",
inbound_inspection_certificate="string",
category={
"feeds": ["string"],
"url_custom": ["string"],
},
negate_destination="string",
negate_source="string",
decryption_rule_type="string",
protocol="string",
protocol_port_list=["string"],
audit_comment="string",
applications=["string"],
rule_state="string",
source={
"cidrs": ["string"],
"countries": ["string"],
"feeds": ["string"],
"prefix_lists": ["string"],
},
tags=[{
"key": "string",
"value": "string",
}])
const localRuleResource = new azure_native.cloudngfw.LocalRule("localRuleResource", {
localRulestackName: "string",
ruleName: "string",
resourceGroupName: "string",
description: "string",
priority: "string",
actionType: "string",
destination: {
cidrs: ["string"],
countries: ["string"],
feeds: ["string"],
fqdnLists: ["string"],
prefixLists: ["string"],
},
enableLogging: "string",
inboundInspectionCertificate: "string",
category: {
feeds: ["string"],
urlCustom: ["string"],
},
negateDestination: "string",
negateSource: "string",
decryptionRuleType: "string",
protocol: "string",
protocolPortList: ["string"],
auditComment: "string",
applications: ["string"],
ruleState: "string",
source: {
cidrs: ["string"],
countries: ["string"],
feeds: ["string"],
prefixLists: ["string"],
},
tags: [{
key: "string",
value: "string",
}],
});
type: azure-native:cloudngfw:LocalRule
properties:
actionType: string
applications:
- string
auditComment: string
category:
feeds:
- string
urlCustom:
- string
decryptionRuleType: string
description: string
destination:
cidrs:
- string
countries:
- string
feeds:
- string
fqdnLists:
- string
prefixLists:
- string
enableLogging: string
inboundInspectionCertificate: string
localRulestackName: string
negateDestination: string
negateSource: string
priority: string
protocol: string
protocolPortList:
- string
resourceGroupName: string
ruleName: string
ruleState: string
source:
cidrs:
- string
countries:
- string
feeds:
- string
prefixLists:
- string
tags:
- key: string
value: string
LocalRule Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The LocalRule resource accepts the following input properties:
- Local
Rulestack stringName - LocalRulestack resource name
- Resource
Group stringName - The name of the resource group. The name is case insensitive.
- Rule
Name string - rule name
- Action
Type string | Pulumi.Azure Native. Cloudngfw. Action Enum - rule action
- Applications List<string>
- array of rule applications
- Audit
Comment string - rule comment
- Category
Pulumi.
Azure Native. Cloudngfw. Inputs. Category - rule category
- Decryption
Rule string | Pulumi.Type Azure Native. Cloudngfw. Decryption Rule Type Enum - enable or disable decryption
- Description string
- rule description
- Destination
Pulumi.
Azure Native. Cloudngfw. Inputs. Destination Addr - destination address
- Enable
Logging string | Pulumi.Azure Native. Cloudngfw. State Enum - enable or disable logging
- Inbound
Inspection stringCertificate - inbound Inspection Certificate
- Negate
Destination string | Pulumi.Azure Native. Cloudngfw. Boolean Enum - cidr should not be 'any'
- Negate
Source string | Pulumi.Azure Native. Cloudngfw. Boolean Enum - cidr should not be 'any'
- Priority string
- Local Rule priority
- Protocol string
- any, application-default, TCP:number, UDP:number
- Protocol
Port List<string>List - prot port list
- Rule
State string | Pulumi.Azure Native. Cloudngfw. State Enum - state of this rule
- Source
Pulumi.
Azure Native. Cloudngfw. Inputs. Source Addr - source address
- List<Pulumi.
Azure Native. Cloudngfw. Inputs. Tag Info> - tag for rule
- Local
Rulestack stringName - LocalRulestack resource name
- Resource
Group stringName - The name of the resource group. The name is case insensitive.
- Rule
Name string - rule name
- Action
Type string | ActionEnum - rule action
- Applications []string
- array of rule applications
- Audit
Comment string - rule comment
- Category
Category
Args - rule category
- Decryption
Rule string | DecryptionType Rule Type Enum - enable or disable decryption
- Description string
- rule description
- Destination
Destination
Addr Args - destination address
- Enable
Logging string | StateEnum - enable or disable logging
- Inbound
Inspection stringCertificate - inbound Inspection Certificate
- Negate
Destination string | BooleanEnum - cidr should not be 'any'
- Negate
Source string | BooleanEnum - cidr should not be 'any'
- Priority string
- Local Rule priority
- Protocol string
- any, application-default, TCP:number, UDP:number
- Protocol
Port []stringList - prot port list
- Rule
State string | StateEnum - state of this rule
- Source
Source
Addr Args - source address
- []Tag
Info Args - tag for rule
- local
Rulestack StringName - LocalRulestack resource name
- resource
Group StringName - The name of the resource group. The name is case insensitive.
- rule
Name String - rule name
- action
Type String | ActionEnum - rule action
- applications List<String>
- array of rule applications
- audit
Comment String - rule comment
- category Category
- rule category
- decryption
Rule String | DecryptionType Rule Type Enum - enable or disable decryption
- description String
- rule description
- destination
Destination
Addr - destination address
- enable
Logging String | StateEnum - enable or disable logging
- inbound
Inspection StringCertificate - inbound Inspection Certificate
- negate
Destination String | BooleanEnum - cidr should not be 'any'
- negate
Source String | BooleanEnum - cidr should not be 'any'
- priority String
- Local Rule priority
- protocol String
- any, application-default, TCP:number, UDP:number
- protocol
Port List<String>List - prot port list
- rule
State String | StateEnum - state of this rule
- source
Source
Addr - source address
- List<Tag
Info> - tag for rule
- local
Rulestack stringName - LocalRulestack resource name
- resource
Group stringName - The name of the resource group. The name is case insensitive.
- rule
Name string - rule name
- action
Type string | ActionEnum - rule action
- applications string[]
- array of rule applications
- audit
Comment string - rule comment
- category Category
- rule category
- decryption
Rule string | DecryptionType Rule Type Enum - enable or disable decryption
- description string
- rule description
- destination
Destination
Addr - destination address
- enable
Logging string | StateEnum - enable or disable logging
- inbound
Inspection stringCertificate - inbound Inspection Certificate
- negate
Destination string | BooleanEnum - cidr should not be 'any'
- negate
Source string | BooleanEnum - cidr should not be 'any'
- priority string
- Local Rule priority
- protocol string
- any, application-default, TCP:number, UDP:number
- protocol
Port string[]List - prot port list
- rule
State string | StateEnum - state of this rule
- source
Source
Addr - source address
- Tag
Info[] - tag for rule
- local_
rulestack_ strname - LocalRulestack resource name
- resource_
group_ strname - The name of the resource group. The name is case insensitive.
- rule_
name str - rule name
- action_
type str | ActionEnum - rule action
- applications Sequence[str]
- array of rule applications
- audit_
comment str - rule comment
- category
Category
Args - rule category
- decryption_
rule_ str | Decryptiontype Rule Type Enum - enable or disable decryption
- description str
- rule description
- destination
Destination
Addr Args - destination address
- enable_
logging str | StateEnum - enable or disable logging
- inbound_
inspection_ strcertificate - inbound Inspection Certificate
- negate_
destination str | BooleanEnum - cidr should not be 'any'
- negate_
source str | BooleanEnum - cidr should not be 'any'
- priority str
- Local Rule priority
- protocol str
- any, application-default, TCP:number, UDP:number
- protocol_
port_ Sequence[str]list - prot port list
- rule_
state str | StateEnum - state of this rule
- source
Source
Addr Args - source address
- Sequence[Tag
Info Args] - tag for rule
- local
Rulestack StringName - LocalRulestack resource name
- resource
Group StringName - The name of the resource group. The name is case insensitive.
- rule
Name String - rule name
- action
Type String | "Allow" | "DenySilent" | "Deny Reset Server" | "Deny Reset Both" - rule action
- applications List<String>
- array of rule applications
- audit
Comment String - rule comment
- category Property Map
- rule category
- decryption
Rule String | "SSLOutboundType Inspection" | "SSLInbound Inspection" | "None" - enable or disable decryption
- description String
- rule description
- destination Property Map
- destination address
- enable
Logging String | "DISABLED" | "ENABLED" - enable or disable logging
- inbound
Inspection StringCertificate - inbound Inspection Certificate
- negate
Destination String | "TRUE" | "FALSE" - cidr should not be 'any'
- negate
Source String | "TRUE" | "FALSE" - cidr should not be 'any'
- priority String
- Local Rule priority
- protocol String
- any, application-default, TCP:number, UDP:number
- protocol
Port List<String>List - prot port list
- rule
State String | "DISABLED" | "ENABLED" - state of this rule
- source Property Map
- source address
- List<Property Map>
- tag for rule
Outputs
All input properties are implicitly available as output properties. Additionally, the LocalRule resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Name string
- The name of the resource
- Provisioning
State string - Provisioning state of the resource.
- System
Data Pulumi.Azure Native. Cloudngfw. Outputs. System Data Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- Type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Etag string
- etag info
- Id string
- The provider-assigned unique ID for this managed resource.
- Name string
- The name of the resource
- Provisioning
State string - Provisioning state of the resource.
- System
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- Type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Etag string
- etag info
- id String
- The provider-assigned unique ID for this managed resource.
- name String
- The name of the resource
- provisioning
State String - Provisioning state of the resource.
- system
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type String
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- etag String
- etag info
- id string
- The provider-assigned unique ID for this managed resource.
- name string
- The name of the resource
- provisioning
State string - Provisioning state of the resource.
- system
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- etag string
- etag info
- id str
- The provider-assigned unique ID for this managed resource.
- name str
- The name of the resource
- provisioning_
state str - Provisioning state of the resource.
- system_
data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type str
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- etag str
- etag info
- id String
- The provider-assigned unique ID for this managed resource.
- name String
- The name of the resource
- provisioning
State String - Provisioning state of the resource.
- system
Data Property Map - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type String
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- etag String
- etag info
Supporting Types
ActionEnum, ActionEnumArgs
- Allow
- Allow
- Deny
Silent - DenySilent
- Deny
Reset Server - DenyResetServer
- Deny
Reset Both - DenyResetBoth
- Action
Enum Allow - Allow
- Action
Enum Deny Silent - DenySilent
- Action
Enum Deny Reset Server - DenyResetServer
- Action
Enum Deny Reset Both - DenyResetBoth
- Allow
- Allow
- Deny
Silent - DenySilent
- Deny
Reset Server - DenyResetServer
- Deny
Reset Both - DenyResetBoth
- Allow
- Allow
- Deny
Silent - DenySilent
- Deny
Reset Server - DenyResetServer
- Deny
Reset Both - DenyResetBoth
- ALLOW
- Allow
- DENY_SILENT
- DenySilent
- DENY_RESET_SERVER
- DenyResetServer
- DENY_RESET_BOTH
- DenyResetBoth
- "Allow"
- Allow
- "Deny
Silent" - DenySilent
- "Deny
Reset Server" - DenyResetServer
- "Deny
Reset Both" - DenyResetBoth
BooleanEnum, BooleanEnumArgs
- TRUE
- TRUE
- FALSE
- FALSE
- Boolean
Enum TRUE - TRUE
- Boolean
Enum FALSE - FALSE
- TRUE
- TRUE
- FALSE
- FALSE
- TRUE
- TRUE
- FALSE
- FALSE
- TRUE
- TRUE
- FALSE
- FALSE
- "TRUE"
- TRUE
- "FALSE"
- FALSE
Category, CategoryArgs
- feeds Sequence[str]
- feed list
- url_
custom Sequence[str] - custom URL
CategoryResponse, CategoryResponseArgs
- feeds Sequence[str]
- feed list
- url_
custom Sequence[str] - custom URL
DecryptionRuleTypeEnum, DecryptionRuleTypeEnumArgs
- SSLOutbound
Inspection - SSLOutboundInspection
- SSLInbound
Inspection - SSLInboundInspection
- None
- None
- Decryption
Rule Type Enum SSLOutbound Inspection - SSLOutboundInspection
- Decryption
Rule Type Enum SSLInbound Inspection - SSLInboundInspection
- Decryption
Rule Type Enum None - None
- SSLOutbound
Inspection - SSLOutboundInspection
- SSLInbound
Inspection - SSLInboundInspection
- None
- None
- SSLOutbound
Inspection - SSLOutboundInspection
- SSLInbound
Inspection - SSLInboundInspection
- None
- None
- SSL_OUTBOUND_INSPECTION
- SSLOutboundInspection
- SSL_INBOUND_INSPECTION
- SSLInboundInspection
- NONE
- None
- "SSLOutbound
Inspection" - SSLOutboundInspection
- "SSLInbound
Inspection" - SSLInboundInspection
- "None"
- None
DestinationAddr, DestinationAddrArgs
- Cidrs List<string>
- special value 'any'
- Countries List<string>
- list of countries
- Feeds List<string>
- list of feeds
- Fqdn
Lists List<string> - fqdn list
- Prefix
Lists List<string> - prefix list
- Cidrs []string
- special value 'any'
- Countries []string
- list of countries
- Feeds []string
- list of feeds
- Fqdn
Lists []string - fqdn list
- Prefix
Lists []string - prefix list
- cidrs List<String>
- special value 'any'
- countries List<String>
- list of countries
- feeds List<String>
- list of feeds
- fqdn
Lists List<String> - fqdn list
- prefix
Lists List<String> - prefix list
- cidrs string[]
- special value 'any'
- countries string[]
- list of countries
- feeds string[]
- list of feeds
- fqdn
Lists string[] - fqdn list
- prefix
Lists string[] - prefix list
- cidrs Sequence[str]
- special value 'any'
- countries Sequence[str]
- list of countries
- feeds Sequence[str]
- list of feeds
- fqdn_
lists Sequence[str] - fqdn list
- prefix_
lists Sequence[str] - prefix list
- cidrs List<String>
- special value 'any'
- countries List<String>
- list of countries
- feeds List<String>
- list of feeds
- fqdn
Lists List<String> - fqdn list
- prefix
Lists List<String> - prefix list
DestinationAddrResponse, DestinationAddrResponseArgs
- Cidrs List<string>
- special value 'any'
- Countries List<string>
- list of countries
- Feeds List<string>
- list of feeds
- Fqdn
Lists List<string> - fqdn list
- Prefix
Lists List<string> - prefix list
- Cidrs []string
- special value 'any'
- Countries []string
- list of countries
- Feeds []string
- list of feeds
- Fqdn
Lists []string - fqdn list
- Prefix
Lists []string - prefix list
- cidrs List<String>
- special value 'any'
- countries List<String>
- list of countries
- feeds List<String>
- list of feeds
- fqdn
Lists List<String> - fqdn list
- prefix
Lists List<String> - prefix list
- cidrs string[]
- special value 'any'
- countries string[]
- list of countries
- feeds string[]
- list of feeds
- fqdn
Lists string[] - fqdn list
- prefix
Lists string[] - prefix list
- cidrs Sequence[str]
- special value 'any'
- countries Sequence[str]
- list of countries
- feeds Sequence[str]
- list of feeds
- fqdn_
lists Sequence[str] - fqdn list
- prefix_
lists Sequence[str] - prefix list
- cidrs List<String>
- special value 'any'
- countries List<String>
- list of countries
- feeds List<String>
- list of feeds
- fqdn
Lists List<String> - fqdn list
- prefix
Lists List<String> - prefix list
SourceAddr, SourceAddrArgs
- Cidrs List<string>
- special value 'any'
- Countries List<string>
- list of countries
- Feeds List<string>
- list of feeds
- Prefix
Lists List<string> - prefix list
- Cidrs []string
- special value 'any'
- Countries []string
- list of countries
- Feeds []string
- list of feeds
- Prefix
Lists []string - prefix list
- cidrs List<String>
- special value 'any'
- countries List<String>
- list of countries
- feeds List<String>
- list of feeds
- prefix
Lists List<String> - prefix list
- cidrs string[]
- special value 'any'
- countries string[]
- list of countries
- feeds string[]
- list of feeds
- prefix
Lists string[] - prefix list
- cidrs Sequence[str]
- special value 'any'
- countries Sequence[str]
- list of countries
- feeds Sequence[str]
- list of feeds
- prefix_
lists Sequence[str] - prefix list
- cidrs List<String>
- special value 'any'
- countries List<String>
- list of countries
- feeds List<String>
- list of feeds
- prefix
Lists List<String> - prefix list
SourceAddrResponse, SourceAddrResponseArgs
- Cidrs List<string>
- special value 'any'
- Countries List<string>
- list of countries
- Feeds List<string>
- list of feeds
- Prefix
Lists List<string> - prefix list
- Cidrs []string
- special value 'any'
- Countries []string
- list of countries
- Feeds []string
- list of feeds
- Prefix
Lists []string - prefix list
- cidrs List<String>
- special value 'any'
- countries List<String>
- list of countries
- feeds List<String>
- list of feeds
- prefix
Lists List<String> - prefix list
- cidrs string[]
- special value 'any'
- countries string[]
- list of countries
- feeds string[]
- list of feeds
- prefix
Lists string[] - prefix list
- cidrs Sequence[str]
- special value 'any'
- countries Sequence[str]
- list of countries
- feeds Sequence[str]
- list of feeds
- prefix_
lists Sequence[str] - prefix list
- cidrs List<String>
- special value 'any'
- countries List<String>
- list of countries
- feeds List<String>
- list of feeds
- prefix
Lists List<String> - prefix list
StateEnum, StateEnumArgs
- DISABLED
- DISABLED
- ENABLED
- ENABLED
- State
Enum DISABLED - DISABLED
- State
Enum ENABLED - ENABLED
- DISABLED
- DISABLED
- ENABLED
- ENABLED
- DISABLED
- DISABLED
- ENABLED
- ENABLED
- DISABLED
- DISABLED
- ENABLED
- ENABLED
- "DISABLED"
- DISABLED
- "ENABLED"
- ENABLED
SystemDataResponse, SystemDataResponseArgs
- Created
At string - The timestamp of resource creation (UTC).
- Created
By string - The identity that created the resource.
- Created
By stringType - The type of identity that created the resource.
- Last
Modified stringAt - The timestamp of resource last modification (UTC)
- Last
Modified stringBy - The identity that last modified the resource.
- Last
Modified stringBy Type - The type of identity that last modified the resource.
- Created
At string - The timestamp of resource creation (UTC).
- Created
By string - The identity that created the resource.
- Created
By stringType - The type of identity that created the resource.
- Last
Modified stringAt - The timestamp of resource last modification (UTC)
- Last
Modified stringBy - The identity that last modified the resource.
- Last
Modified stringBy Type - The type of identity that last modified the resource.
- created
At String - The timestamp of resource creation (UTC).
- created
By String - The identity that created the resource.
- created
By StringType - The type of identity that created the resource.
- last
Modified StringAt - The timestamp of resource last modification (UTC)
- last
Modified StringBy - The identity that last modified the resource.
- last
Modified StringBy Type - The type of identity that last modified the resource.
- created
At string - The timestamp of resource creation (UTC).
- created
By string - The identity that created the resource.
- created
By stringType - The type of identity that created the resource.
- last
Modified stringAt - The timestamp of resource last modification (UTC)
- last
Modified stringBy - The identity that last modified the resource.
- last
Modified stringBy Type - The type of identity that last modified the resource.
- created_
at str - The timestamp of resource creation (UTC).
- created_
by str - The identity that created the resource.
- created_
by_ strtype - The type of identity that created the resource.
- last_
modified_ strat - The timestamp of resource last modification (UTC)
- last_
modified_ strby - The identity that last modified the resource.
- last_
modified_ strby_ type - The type of identity that last modified the resource.
- created
At String - The timestamp of resource creation (UTC).
- created
By String - The identity that created the resource.
- created
By StringType - The type of identity that created the resource.
- last
Modified StringAt - The timestamp of resource last modification (UTC)
- last
Modified StringBy - The identity that last modified the resource.
- last
Modified StringBy Type - The type of identity that last modified the resource.
TagInfo, TagInfoArgs
TagInfoResponse, TagInfoResponseArgs
Import
An existing resource can be imported using its type token, name, and identifier, e.g.
$ pulumi import azure-native:cloudngfw:LocalRule aaaaaaaaa /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/PaloAltoNetworks.Cloudngfw/localRulestacks/{localRulestackName}/localRules/{priority}
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Azure Native pulumi/pulumi-azure-native
- License
- Apache-2.0