fortios.filter/web.Profile
Explore with Pulumi AI
Configure Web filter profiles.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as fortios from "@pulumiverse/fortios";
const trname = new fortios.filter.web.Profile("trname", {
extendedLog: "disable",
ftgdWf: {
exemptQuota: "17",
filters: [
{
action: "warning",
category: 2,
id: 1,
log: "enable",
warnDuration: "5m",
warningDurationType: "timeout",
warningPrompt: "per-category",
},
{
action: "warning",
category: 7,
id: 2,
log: "enable",
warnDuration: "5m",
warningDurationType: "timeout",
warningPrompt: "per-category",
},
],
maxQuotaTimeout: 300,
rateCrlUrls: "enable",
rateCssUrls: "enable",
rateImageUrls: "enable",
rateJavascriptUrls: "enable",
},
httpsReplacemsg: "enable",
inspectionMode: "flow-based",
logAllUrl: "disable",
override: {
ovrdCookie: "deny",
ovrdDur: "15m",
ovrdDurMode: "constant",
ovrdScope: "user",
profileAttribute: "Login-LAT-Service",
profileType: "list",
},
postAction: "normal",
web: {
blacklist: "disable",
bwordTable: 0,
bwordThreshold: 10,
contentHeaderList: 0,
logSearch: "disable",
urlfilterTable: 0,
youtubeRestrict: "none",
},
webContentLog: "enable",
webExtendedAllActionLog: "disable",
webFilterActivexLog: "enable",
webFilterAppletLog: "enable",
webFilterCommandBlockLog: "enable",
webFilterCookieLog: "enable",
webFilterCookieRemovalLog: "enable",
webFilterJsLog: "enable",
webFilterJscriptLog: "enable",
webFilterRefererLog: "enable",
webFilterUnknownLog: "enable",
webFilterVbsLog: "enable",
webFtgdErrLog: "enable",
webFtgdQuotaUsage: "enable",
webInvalidDomainLog: "enable",
webUrlLog: "enable",
wisp: "disable",
wispAlgorithm: "auto-learning",
youtubeChannelStatus: "disable",
});
import pulumi
import pulumiverse_fortios as fortios
trname = fortios.filter.web.Profile("trname",
extended_log="disable",
ftgd_wf=fortios.filter.web.ProfileFtgdWfArgs(
exempt_quota="17",
filters=[
fortios.filter.web.ProfileFtgdWfFilterArgs(
action="warning",
category=2,
id=1,
log="enable",
warn_duration="5m",
warning_duration_type="timeout",
warning_prompt="per-category",
),
fortios.filter.web.ProfileFtgdWfFilterArgs(
action="warning",
category=7,
id=2,
log="enable",
warn_duration="5m",
warning_duration_type="timeout",
warning_prompt="per-category",
),
],
max_quota_timeout=300,
rate_crl_urls="enable",
rate_css_urls="enable",
rate_image_urls="enable",
rate_javascript_urls="enable",
),
https_replacemsg="enable",
inspection_mode="flow-based",
log_all_url="disable",
override=fortios.filter.web.ProfileOverrideArgs(
ovrd_cookie="deny",
ovrd_dur="15m",
ovrd_dur_mode="constant",
ovrd_scope="user",
profile_attribute="Login-LAT-Service",
profile_type="list",
),
post_action="normal",
web=fortios.filter.web.ProfileWebArgs(
blacklist="disable",
bword_table=0,
bword_threshold=10,
content_header_list=0,
log_search="disable",
urlfilter_table=0,
youtube_restrict="none",
),
web_content_log="enable",
web_extended_all_action_log="disable",
web_filter_activex_log="enable",
web_filter_applet_log="enable",
web_filter_command_block_log="enable",
web_filter_cookie_log="enable",
web_filter_cookie_removal_log="enable",
web_filter_js_log="enable",
web_filter_jscript_log="enable",
web_filter_referer_log="enable",
web_filter_unknown_log="enable",
web_filter_vbs_log="enable",
web_ftgd_err_log="enable",
web_ftgd_quota_usage="enable",
web_invalid_domain_log="enable",
web_url_log="enable",
wisp="disable",
wisp_algorithm="auto-learning",
youtube_channel_status="disable")
package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/filter"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := filter.NewProfile(ctx, "trname", &filter.ProfileArgs{
ExtendedLog: pulumi.String("disable"),
FtgdWf: &web.ProfileFtgdWfArgs{
ExemptQuota: pulumi.String("17"),
Filters: web.ProfileFtgdWfFilterArray{
&web.ProfileFtgdWfFilterArgs{
Action: pulumi.String("warning"),
Category: pulumi.Int(2),
Id: pulumi.Int(1),
Log: pulumi.String("enable"),
WarnDuration: pulumi.String("5m"),
WarningDurationType: pulumi.String("timeout"),
WarningPrompt: pulumi.String("per-category"),
},
&web.ProfileFtgdWfFilterArgs{
Action: pulumi.String("warning"),
Category: pulumi.Int(7),
Id: pulumi.Int(2),
Log: pulumi.String("enable"),
WarnDuration: pulumi.String("5m"),
WarningDurationType: pulumi.String("timeout"),
WarningPrompt: pulumi.String("per-category"),
},
},
MaxQuotaTimeout: pulumi.Int(300),
RateCrlUrls: pulumi.String("enable"),
RateCssUrls: pulumi.String("enable"),
RateImageUrls: pulumi.String("enable"),
RateJavascriptUrls: pulumi.String("enable"),
},
HttpsReplacemsg: pulumi.String("enable"),
InspectionMode: pulumi.String("flow-based"),
LogAllUrl: pulumi.String("disable"),
Override: &web.ProfileOverrideArgs{
OvrdCookie: pulumi.String("deny"),
OvrdDur: pulumi.String("15m"),
OvrdDurMode: pulumi.String("constant"),
OvrdScope: pulumi.String("user"),
ProfileAttribute: pulumi.String("Login-LAT-Service"),
ProfileType: pulumi.String("list"),
},
PostAction: pulumi.String("normal"),
Web: &web.ProfileWebArgs{
Blacklist: pulumi.String("disable"),
BwordTable: pulumi.Int(0),
BwordThreshold: pulumi.Int(10),
ContentHeaderList: pulumi.Int(0),
LogSearch: pulumi.String("disable"),
UrlfilterTable: pulumi.Int(0),
YoutubeRestrict: pulumi.String("none"),
},
WebContentLog: pulumi.String("enable"),
WebExtendedAllActionLog: pulumi.String("disable"),
WebFilterActivexLog: pulumi.String("enable"),
WebFilterAppletLog: pulumi.String("enable"),
WebFilterCommandBlockLog: pulumi.String("enable"),
WebFilterCookieLog: pulumi.String("enable"),
WebFilterCookieRemovalLog: pulumi.String("enable"),
WebFilterJsLog: pulumi.String("enable"),
WebFilterJscriptLog: pulumi.String("enable"),
WebFilterRefererLog: pulumi.String("enable"),
WebFilterUnknownLog: pulumi.String("enable"),
WebFilterVbsLog: pulumi.String("enable"),
WebFtgdErrLog: pulumi.String("enable"),
WebFtgdQuotaUsage: pulumi.String("enable"),
WebInvalidDomainLog: pulumi.String("enable"),
WebUrlLog: pulumi.String("enable"),
Wisp: pulumi.String("disable"),
WispAlgorithm: pulumi.String("auto-learning"),
YoutubeChannelStatus: pulumi.String("disable"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fortios = Pulumiverse.Fortios;
return await Deployment.RunAsync(() =>
{
var trname = new Fortios.Filter.Web.Profile("trname", new()
{
ExtendedLog = "disable",
FtgdWf = new Fortios.Filter.Web.Inputs.ProfileFtgdWfArgs
{
ExemptQuota = "17",
Filters = new[]
{
new Fortios.Filter.Web.Inputs.ProfileFtgdWfFilterArgs
{
Action = "warning",
Category = 2,
Id = 1,
Log = "enable",
WarnDuration = "5m",
WarningDurationType = "timeout",
WarningPrompt = "per-category",
},
new Fortios.Filter.Web.Inputs.ProfileFtgdWfFilterArgs
{
Action = "warning",
Category = 7,
Id = 2,
Log = "enable",
WarnDuration = "5m",
WarningDurationType = "timeout",
WarningPrompt = "per-category",
},
},
MaxQuotaTimeout = 300,
RateCrlUrls = "enable",
RateCssUrls = "enable",
RateImageUrls = "enable",
RateJavascriptUrls = "enable",
},
HttpsReplacemsg = "enable",
InspectionMode = "flow-based",
LogAllUrl = "disable",
Override = new Fortios.Filter.Web.Inputs.ProfileOverrideArgs
{
OvrdCookie = "deny",
OvrdDur = "15m",
OvrdDurMode = "constant",
OvrdScope = "user",
ProfileAttribute = "Login-LAT-Service",
ProfileType = "list",
},
PostAction = "normal",
Web = new Fortios.Filter.Web.Inputs.ProfileWebArgs
{
Blacklist = "disable",
BwordTable = 0,
BwordThreshold = 10,
ContentHeaderList = 0,
LogSearch = "disable",
UrlfilterTable = 0,
YoutubeRestrict = "none",
},
WebContentLog = "enable",
WebExtendedAllActionLog = "disable",
WebFilterActivexLog = "enable",
WebFilterAppletLog = "enable",
WebFilterCommandBlockLog = "enable",
WebFilterCookieLog = "enable",
WebFilterCookieRemovalLog = "enable",
WebFilterJsLog = "enable",
WebFilterJscriptLog = "enable",
WebFilterRefererLog = "enable",
WebFilterUnknownLog = "enable",
WebFilterVbsLog = "enable",
WebFtgdErrLog = "enable",
WebFtgdQuotaUsage = "enable",
WebInvalidDomainLog = "enable",
WebUrlLog = "enable",
Wisp = "disable",
WispAlgorithm = "auto-learning",
YoutubeChannelStatus = "disable",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fortios.filter.Profile;
import com.pulumi.fortios.filter.ProfileArgs;
import com.pulumi.fortios.filter.inputs.ProfileFtgdWfArgs;
import com.pulumi.fortios.filter.inputs.ProfileOverrideArgs;
import com.pulumi.fortios.filter.inputs.ProfileWebArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var trname = new Profile("trname", ProfileArgs.builder()
.extendedLog("disable")
.ftgdWf(ProfileFtgdWfArgs.builder()
.exemptQuota("17")
.filters(
ProfileFtgdWfFilterArgs.builder()
.action("warning")
.category(2)
.id(1)
.log("enable")
.warnDuration("5m")
.warningDurationType("timeout")
.warningPrompt("per-category")
.build(),
ProfileFtgdWfFilterArgs.builder()
.action("warning")
.category(7)
.id(2)
.log("enable")
.warnDuration("5m")
.warningDurationType("timeout")
.warningPrompt("per-category")
.build())
.maxQuotaTimeout(300)
.rateCrlUrls("enable")
.rateCssUrls("enable")
.rateImageUrls("enable")
.rateJavascriptUrls("enable")
.build())
.httpsReplacemsg("enable")
.inspectionMode("flow-based")
.logAllUrl("disable")
.override(ProfileOverrideArgs.builder()
.ovrdCookie("deny")
.ovrdDur("15m")
.ovrdDurMode("constant")
.ovrdScope("user")
.profileAttribute("Login-LAT-Service")
.profileType("list")
.build())
.postAction("normal")
.web(ProfileWebArgs.builder()
.blacklist("disable")
.bwordTable(0)
.bwordThreshold(10)
.contentHeaderList(0)
.logSearch("disable")
.urlfilterTable(0)
.youtubeRestrict("none")
.build())
.webContentLog("enable")
.webExtendedAllActionLog("disable")
.webFilterActivexLog("enable")
.webFilterAppletLog("enable")
.webFilterCommandBlockLog("enable")
.webFilterCookieLog("enable")
.webFilterCookieRemovalLog("enable")
.webFilterJsLog("enable")
.webFilterJscriptLog("enable")
.webFilterRefererLog("enable")
.webFilterUnknownLog("enable")
.webFilterVbsLog("enable")
.webFtgdErrLog("enable")
.webFtgdQuotaUsage("enable")
.webInvalidDomainLog("enable")
.webUrlLog("enable")
.wisp("disable")
.wispAlgorithm("auto-learning")
.youtubeChannelStatus("disable")
.build());
}
}
resources:
trname:
type: fortios:filter/web:Profile
properties:
extendedLog: disable
ftgdWf:
exemptQuota: '17'
filters:
- action: warning
category: 2
id: 1
log: enable
warnDuration: 5m
warningDurationType: timeout
warningPrompt: per-category
- action: warning
category: 7
id: 2
log: enable
warnDuration: 5m
warningDurationType: timeout
warningPrompt: per-category
maxQuotaTimeout: 300
rateCrlUrls: enable
rateCssUrls: enable
rateImageUrls: enable
rateJavascriptUrls: enable
httpsReplacemsg: enable
inspectionMode: flow-based
logAllUrl: disable
override:
ovrdCookie: deny
ovrdDur: 15m
ovrdDurMode: constant
ovrdScope: user
profileAttribute: Login-LAT-Service
profileType: list
postAction: normal
web:
blacklist: disable
bwordTable: 0
bwordThreshold: 10
contentHeaderList: 0
logSearch: disable
urlfilterTable: 0
youtubeRestrict: none
webContentLog: enable
webExtendedAllActionLog: disable
webFilterActivexLog: enable
webFilterAppletLog: enable
webFilterCommandBlockLog: enable
webFilterCookieLog: enable
webFilterCookieRemovalLog: enable
webFilterJsLog: enable
webFilterJscriptLog: enable
webFilterRefererLog: enable
webFilterUnknownLog: enable
webFilterVbsLog: enable
webFtgdErrLog: enable
webFtgdQuotaUsage: enable
webInvalidDomainLog: enable
webUrlLog: enable
wisp: disable
wispAlgorithm: auto-learning
youtubeChannelStatus: disable
Create Profile Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Profile(name: string, args?: ProfileArgs, opts?: CustomResourceOptions);
@overload
def Profile(resource_name: str,
args: Optional[ProfileArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def Profile(resource_name: str,
opts: Optional[ResourceOptions] = None,
antiphish: Optional[ProfileAntiphishArgs] = None,
comment: Optional[str] = None,
dynamic_sort_subtable: Optional[str] = None,
extended_log: Optional[str] = None,
feature_set: Optional[str] = None,
file_filter: Optional[ProfileFileFilterArgs] = None,
ftgd_wf: Optional[ProfileFtgdWfArgs] = None,
get_all_tables: Optional[str] = None,
https_replacemsg: Optional[str] = None,
inspection_mode: Optional[str] = None,
log_all_url: Optional[str] = None,
name: Optional[str] = None,
options: Optional[str] = None,
override: Optional[ProfileOverrideArgs] = None,
ovrd_perm: Optional[str] = None,
post_action: Optional[str] = None,
replacemsg_group: Optional[str] = None,
vdomparam: Optional[str] = None,
web: Optional[ProfileWebArgs] = None,
web_antiphishing_log: Optional[str] = None,
web_content_log: Optional[str] = None,
web_extended_all_action_log: Optional[str] = None,
web_filter_activex_log: Optional[str] = None,
web_filter_applet_log: Optional[str] = None,
web_filter_command_block_log: Optional[str] = None,
web_filter_cookie_log: Optional[str] = None,
web_filter_cookie_removal_log: Optional[str] = None,
web_filter_js_log: Optional[str] = None,
web_filter_jscript_log: Optional[str] = None,
web_filter_referer_log: Optional[str] = None,
web_filter_unknown_log: Optional[str] = None,
web_filter_vbs_log: Optional[str] = None,
web_flow_log_encoding: Optional[str] = None,
web_ftgd_err_log: Optional[str] = None,
web_ftgd_quota_usage: Optional[str] = None,
web_invalid_domain_log: Optional[str] = None,
web_url_log: Optional[str] = None,
wisp: Optional[str] = None,
wisp_algorithm: Optional[str] = None,
wisp_servers: Optional[Sequence[ProfileWispServerArgs]] = None,
youtube_channel_filters: Optional[Sequence[ProfileYoutubeChannelFilterArgs]] = None,
youtube_channel_status: Optional[str] = None)
func NewProfile(ctx *Context, name string, args *ProfileArgs, opts ...ResourceOption) (*Profile, error)
public Profile(string name, ProfileArgs? args = null, CustomResourceOptions? opts = null)
public Profile(String name, ProfileArgs args)
public Profile(String name, ProfileArgs args, CustomResourceOptions options)
type: fortios:filter/web/profile:Profile
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Profile Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Profile resource accepts the following input properties:
- Antiphish
Pulumiverse.
Fortios. Filter. Web. Inputs. Profile Antiphish - AntiPhishing profile. The structure of
antiphish
block is documented below. - Comment string
- Optional comments.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Extended
Log string - Enable/disable extended logging for web filtering. Valid values:
enable
,disable
. - Feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - File
Filter Pulumiverse.Fortios. Filter. Web. Inputs. Profile File Filter - File filter. The structure of
file_filter
block is documented below. - Ftgd
Wf Pulumiverse.Fortios. Filter. Web. Inputs. Profile Ftgd Wf - FortiGuard Web Filter settings. The structure of
ftgd_wf
block is documented below. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Https
Replacemsg string - Enable replacement messages for HTTPS. Valid values:
enable
,disable
. - Inspection
Mode string - Web filtering inspection mode. Valid values:
proxy
,flow-based
. - Log
All stringUrl - Enable/disable logging all URLs visited. Valid values:
enable
,disable
. - Name string
- Profile name.
- Options string
- Options.
- Override
Pulumiverse.
Fortios. Filter. Web. Inputs. Profile Override - Web Filter override settings. The structure of
override
block is documented below. - Ovrd
Perm string - Permitted override types. Valid values:
bannedword-override
,urlfilter-override
,fortiguard-wf-override
,contenttype-check-override
. - Post
Action string - Action taken for HTTP POST traffic. Valid values:
normal
,block
. - Replacemsg
Group string - Replacement message group.
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Web
Pulumiverse.
Fortios. Filter. Web. Inputs. Profile Web - Web content filtering settings. The structure of
web
block is documented below. - Web
Antiphishing stringLog - Enable/disable logging of AntiPhishing checks. Valid values:
enable
,disable
. - Web
Content stringLog - Enable/disable logging logging blocked web content. Valid values:
enable
,disable
. - Web
Extended stringAll Action Log - Enable/disable extended any filter action logging for web filtering. Valid values:
enable
,disable
. - Web
Filter stringActivex Log - Enable/disable logging ActiveX. Valid values:
enable
,disable
. - Web
Filter stringApplet Log - Enable/disable logging Java applets. Valid values:
enable
,disable
. - Web
Filter stringCommand Block Log - Enable/disable logging blocked commands. Valid values:
enable
,disable
. - string
- Enable/disable logging cookie filtering. Valid values:
enable
,disable
. - string
- Enable/disable logging blocked cookies. Valid values:
enable
,disable
. - Web
Filter stringJs Log - Enable/disable logging Java scripts. Valid values:
enable
,disable
. - Web
Filter stringJscript Log - Enable/disable logging JScripts. Valid values:
enable
,disable
. - Web
Filter stringReferer Log - Enable/disable logging referrers. Valid values:
enable
,disable
. - Web
Filter stringUnknown Log - Enable/disable logging unknown scripts. Valid values:
enable
,disable
. - Web
Filter stringVbs Log - Enable/disable logging VBS scripts. Valid values:
enable
,disable
. - Web
Flow stringLog Encoding - Log encoding in flow mode. Valid values:
utf-8
,punycode
. - Web
Ftgd stringErr Log - Enable/disable logging rating errors. Valid values:
enable
,disable
. - Web
Ftgd stringQuota Usage - Enable/disable logging daily quota usage. Valid values:
enable
,disable
. - Web
Invalid stringDomain Log - Enable/disable logging invalid domain names. Valid values:
enable
,disable
. - Web
Url stringLog - Enable/disable logging URL filtering. Valid values:
enable
,disable
. - Wisp string
- Enable/disable web proxy WISP. Valid values:
enable
,disable
. - Wisp
Algorithm string - WISP server selection algorithm. Valid values:
primary-secondary
,round-robin
,auto-learning
. - Wisp
Servers List<Pulumiverse.Fortios. Filter. Web. Inputs. Profile Wisp Server> - WISP servers. The structure of
wisp_servers
block is documented below. - Youtube
Channel List<Pulumiverse.Filters Fortios. Filter. Web. Inputs. Profile Youtube Channel Filter> - YouTube channel filter. The structure of
youtube_channel_filter
block is documented below. - Youtube
Channel stringStatus - YouTube channel filter status.
- Antiphish
Profile
Antiphish Args - AntiPhishing profile. The structure of
antiphish
block is documented below. - Comment string
- Optional comments.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Extended
Log string - Enable/disable extended logging for web filtering. Valid values:
enable
,disable
. - Feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - File
Filter ProfileFile Filter Args - File filter. The structure of
file_filter
block is documented below. - Ftgd
Wf ProfileFtgd Wf Args - FortiGuard Web Filter settings. The structure of
ftgd_wf
block is documented below. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Https
Replacemsg string - Enable replacement messages for HTTPS. Valid values:
enable
,disable
. - Inspection
Mode string - Web filtering inspection mode. Valid values:
proxy
,flow-based
. - Log
All stringUrl - Enable/disable logging all URLs visited. Valid values:
enable
,disable
. - Name string
- Profile name.
- Options string
- Options.
- Override
Profile
Override Args - Web Filter override settings. The structure of
override
block is documented below. - Ovrd
Perm string - Permitted override types. Valid values:
bannedword-override
,urlfilter-override
,fortiguard-wf-override
,contenttype-check-override
. - Post
Action string - Action taken for HTTP POST traffic. Valid values:
normal
,block
. - Replacemsg
Group string - Replacement message group.
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Web
Profile
Web Args - Web content filtering settings. The structure of
web
block is documented below. - Web
Antiphishing stringLog - Enable/disable logging of AntiPhishing checks. Valid values:
enable
,disable
. - Web
Content stringLog - Enable/disable logging logging blocked web content. Valid values:
enable
,disable
. - Web
Extended stringAll Action Log - Enable/disable extended any filter action logging for web filtering. Valid values:
enable
,disable
. - Web
Filter stringActivex Log - Enable/disable logging ActiveX. Valid values:
enable
,disable
. - Web
Filter stringApplet Log - Enable/disable logging Java applets. Valid values:
enable
,disable
. - Web
Filter stringCommand Block Log - Enable/disable logging blocked commands. Valid values:
enable
,disable
. - string
- Enable/disable logging cookie filtering. Valid values:
enable
,disable
. - string
- Enable/disable logging blocked cookies. Valid values:
enable
,disable
. - Web
Filter stringJs Log - Enable/disable logging Java scripts. Valid values:
enable
,disable
. - Web
Filter stringJscript Log - Enable/disable logging JScripts. Valid values:
enable
,disable
. - Web
Filter stringReferer Log - Enable/disable logging referrers. Valid values:
enable
,disable
. - Web
Filter stringUnknown Log - Enable/disable logging unknown scripts. Valid values:
enable
,disable
. - Web
Filter stringVbs Log - Enable/disable logging VBS scripts. Valid values:
enable
,disable
. - Web
Flow stringLog Encoding - Log encoding in flow mode. Valid values:
utf-8
,punycode
. - Web
Ftgd stringErr Log - Enable/disable logging rating errors. Valid values:
enable
,disable
. - Web
Ftgd stringQuota Usage - Enable/disable logging daily quota usage. Valid values:
enable
,disable
. - Web
Invalid stringDomain Log - Enable/disable logging invalid domain names. Valid values:
enable
,disable
. - Web
Url stringLog - Enable/disable logging URL filtering. Valid values:
enable
,disable
. - Wisp string
- Enable/disable web proxy WISP. Valid values:
enable
,disable
. - Wisp
Algorithm string - WISP server selection algorithm. Valid values:
primary-secondary
,round-robin
,auto-learning
. - Wisp
Servers []ProfileWisp Server Args - WISP servers. The structure of
wisp_servers
block is documented below. - Youtube
Channel []ProfileFilters Youtube Channel Filter Args - YouTube channel filter. The structure of
youtube_channel_filter
block is documented below. - Youtube
Channel stringStatus - YouTube channel filter status.
- antiphish
Profile
Antiphish - AntiPhishing profile. The structure of
antiphish
block is documented below. - comment String
- Optional comments.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log String - Enable/disable extended logging for web filtering. Valid values:
enable
,disable
. - feature
Set String - Flow/proxy feature set. Valid values:
flow
,proxy
. - file
Filter ProfileFile Filter - File filter. The structure of
file_filter
block is documented below. - ftgd
Wf ProfileFtgd Wf - FortiGuard Web Filter settings. The structure of
ftgd_wf
block is documented below. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- https
Replacemsg String - Enable replacement messages for HTTPS. Valid values:
enable
,disable
. - inspection
Mode String - Web filtering inspection mode. Valid values:
proxy
,flow-based
. - log
All StringUrl - Enable/disable logging all URLs visited. Valid values:
enable
,disable
. - name String
- Profile name.
- options String
- Options.
- override
Profile
Override - Web Filter override settings. The structure of
override
block is documented below. - ovrd
Perm String - Permitted override types. Valid values:
bannedword-override
,urlfilter-override
,fortiguard-wf-override
,contenttype-check-override
. - post
Action String - Action taken for HTTP POST traffic. Valid values:
normal
,block
. - replacemsg
Group String - Replacement message group.
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- web
Profile
Web - Web content filtering settings. The structure of
web
block is documented below. - web
Antiphishing StringLog - Enable/disable logging of AntiPhishing checks. Valid values:
enable
,disable
. - web
Content StringLog - Enable/disable logging logging blocked web content. Valid values:
enable
,disable
. - web
Extended StringAll Action Log - Enable/disable extended any filter action logging for web filtering. Valid values:
enable
,disable
. - web
Filter StringActivex Log - Enable/disable logging ActiveX. Valid values:
enable
,disable
. - web
Filter StringApplet Log - Enable/disable logging Java applets. Valid values:
enable
,disable
. - web
Filter StringCommand Block Log - Enable/disable logging blocked commands. Valid values:
enable
,disable
. - String
- Enable/disable logging cookie filtering. Valid values:
enable
,disable
. - String
- Enable/disable logging blocked cookies. Valid values:
enable
,disable
. - web
Filter StringJs Log - Enable/disable logging Java scripts. Valid values:
enable
,disable
. - web
Filter StringJscript Log - Enable/disable logging JScripts. Valid values:
enable
,disable
. - web
Filter StringReferer Log - Enable/disable logging referrers. Valid values:
enable
,disable
. - web
Filter StringUnknown Log - Enable/disable logging unknown scripts. Valid values:
enable
,disable
. - web
Filter StringVbs Log - Enable/disable logging VBS scripts. Valid values:
enable
,disable
. - web
Flow StringLog Encoding - Log encoding in flow mode. Valid values:
utf-8
,punycode
. - web
Ftgd StringErr Log - Enable/disable logging rating errors. Valid values:
enable
,disable
. - web
Ftgd StringQuota Usage - Enable/disable logging daily quota usage. Valid values:
enable
,disable
. - web
Invalid StringDomain Log - Enable/disable logging invalid domain names. Valid values:
enable
,disable
. - web
Url StringLog - Enable/disable logging URL filtering. Valid values:
enable
,disable
. - wisp String
- Enable/disable web proxy WISP. Valid values:
enable
,disable
. - wisp
Algorithm String - WISP server selection algorithm. Valid values:
primary-secondary
,round-robin
,auto-learning
. - wisp
Servers List<ProfileWisp Server> - WISP servers. The structure of
wisp_servers
block is documented below. - youtube
Channel List<ProfileFilters Youtube Channel Filter> - YouTube channel filter. The structure of
youtube_channel_filter
block is documented below. - youtube
Channel StringStatus - YouTube channel filter status.
- antiphish
Profile
Antiphish - AntiPhishing profile. The structure of
antiphish
block is documented below. - comment string
- Optional comments.
- dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log string - Enable/disable extended logging for web filtering. Valid values:
enable
,disable
. - feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - file
Filter ProfileFile Filter - File filter. The structure of
file_filter
block is documented below. - ftgd
Wf ProfileFtgd Wf - FortiGuard Web Filter settings. The structure of
ftgd_wf
block is documented below. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- https
Replacemsg string - Enable replacement messages for HTTPS. Valid values:
enable
,disable
. - inspection
Mode string - Web filtering inspection mode. Valid values:
proxy
,flow-based
. - log
All stringUrl - Enable/disable logging all URLs visited. Valid values:
enable
,disable
. - name string
- Profile name.
- options string
- Options.
- override
Profile
Override - Web Filter override settings. The structure of
override
block is documented below. - ovrd
Perm string - Permitted override types. Valid values:
bannedword-override
,urlfilter-override
,fortiguard-wf-override
,contenttype-check-override
. - post
Action string - Action taken for HTTP POST traffic. Valid values:
normal
,block
. - replacemsg
Group string - Replacement message group.
- vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- web
Profile
Web - Web content filtering settings. The structure of
web
block is documented below. - web
Antiphishing stringLog - Enable/disable logging of AntiPhishing checks. Valid values:
enable
,disable
. - web
Content stringLog - Enable/disable logging logging blocked web content. Valid values:
enable
,disable
. - web
Extended stringAll Action Log - Enable/disable extended any filter action logging for web filtering. Valid values:
enable
,disable
. - web
Filter stringActivex Log - Enable/disable logging ActiveX. Valid values:
enable
,disable
. - web
Filter stringApplet Log - Enable/disable logging Java applets. Valid values:
enable
,disable
. - web
Filter stringCommand Block Log - Enable/disable logging blocked commands. Valid values:
enable
,disable
. - string
- Enable/disable logging cookie filtering. Valid values:
enable
,disable
. - string
- Enable/disable logging blocked cookies. Valid values:
enable
,disable
. - web
Filter stringJs Log - Enable/disable logging Java scripts. Valid values:
enable
,disable
. - web
Filter stringJscript Log - Enable/disable logging JScripts. Valid values:
enable
,disable
. - web
Filter stringReferer Log - Enable/disable logging referrers. Valid values:
enable
,disable
. - web
Filter stringUnknown Log - Enable/disable logging unknown scripts. Valid values:
enable
,disable
. - web
Filter stringVbs Log - Enable/disable logging VBS scripts. Valid values:
enable
,disable
. - web
Flow stringLog Encoding - Log encoding in flow mode. Valid values:
utf-8
,punycode
. - web
Ftgd stringErr Log - Enable/disable logging rating errors. Valid values:
enable
,disable
. - web
Ftgd stringQuota Usage - Enable/disable logging daily quota usage. Valid values:
enable
,disable
. - web
Invalid stringDomain Log - Enable/disable logging invalid domain names. Valid values:
enable
,disable
. - web
Url stringLog - Enable/disable logging URL filtering. Valid values:
enable
,disable
. - wisp string
- Enable/disable web proxy WISP. Valid values:
enable
,disable
. - wisp
Algorithm string - WISP server selection algorithm. Valid values:
primary-secondary
,round-robin
,auto-learning
. - wisp
Servers ProfileWisp Server[] - WISP servers. The structure of
wisp_servers
block is documented below. - youtube
Channel ProfileFilters Youtube Channel Filter[] - YouTube channel filter. The structure of
youtube_channel_filter
block is documented below. - youtube
Channel stringStatus - YouTube channel filter status.
- antiphish
Profile
Antiphish Args - AntiPhishing profile. The structure of
antiphish
block is documented below. - comment str
- Optional comments.
- dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended_
log str - Enable/disable extended logging for web filtering. Valid values:
enable
,disable
. - feature_
set str - Flow/proxy feature set. Valid values:
flow
,proxy
. - file_
filter ProfileFile Filter Args - File filter. The structure of
file_filter
block is documented below. - ftgd_
wf ProfileFtgd Wf Args - FortiGuard Web Filter settings. The structure of
ftgd_wf
block is documented below. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- https_
replacemsg str - Enable replacement messages for HTTPS. Valid values:
enable
,disable
. - inspection_
mode str - Web filtering inspection mode. Valid values:
proxy
,flow-based
. - log_
all_ strurl - Enable/disable logging all URLs visited. Valid values:
enable
,disable
. - name str
- Profile name.
- options str
- Options.
- override
Profile
Override Args - Web Filter override settings. The structure of
override
block is documented below. - ovrd_
perm str - Permitted override types. Valid values:
bannedword-override
,urlfilter-override
,fortiguard-wf-override
,contenttype-check-override
. - post_
action str - Action taken for HTTP POST traffic. Valid values:
normal
,block
. - replacemsg_
group str - Replacement message group.
- vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- web
Profile
Web Args - Web content filtering settings. The structure of
web
block is documented below. - web_
antiphishing_ strlog - Enable/disable logging of AntiPhishing checks. Valid values:
enable
,disable
. - web_
content_ strlog - Enable/disable logging logging blocked web content. Valid values:
enable
,disable
. - web_
extended_ strall_ action_ log - Enable/disable extended any filter action logging for web filtering. Valid values:
enable
,disable
. - web_
filter_ stractivex_ log - Enable/disable logging ActiveX. Valid values:
enable
,disable
. - web_
filter_ strapplet_ log - Enable/disable logging Java applets. Valid values:
enable
,disable
. - web_
filter_ strcommand_ block_ log - Enable/disable logging blocked commands. Valid values:
enable
,disable
. - str
- Enable/disable logging cookie filtering. Valid values:
enable
,disable
. - str
- Enable/disable logging blocked cookies. Valid values:
enable
,disable
. - web_
filter_ strjs_ log - Enable/disable logging Java scripts. Valid values:
enable
,disable
. - web_
filter_ strjscript_ log - Enable/disable logging JScripts. Valid values:
enable
,disable
. - web_
filter_ strreferer_ log - Enable/disable logging referrers. Valid values:
enable
,disable
. - web_
filter_ strunknown_ log - Enable/disable logging unknown scripts. Valid values:
enable
,disable
. - web_
filter_ strvbs_ log - Enable/disable logging VBS scripts. Valid values:
enable
,disable
. - web_
flow_ strlog_ encoding - Log encoding in flow mode. Valid values:
utf-8
,punycode
. - web_
ftgd_ strerr_ log - Enable/disable logging rating errors. Valid values:
enable
,disable
. - web_
ftgd_ strquota_ usage - Enable/disable logging daily quota usage. Valid values:
enable
,disable
. - web_
invalid_ strdomain_ log - Enable/disable logging invalid domain names. Valid values:
enable
,disable
. - web_
url_ strlog - Enable/disable logging URL filtering. Valid values:
enable
,disable
. - wisp str
- Enable/disable web proxy WISP. Valid values:
enable
,disable
. - wisp_
algorithm str - WISP server selection algorithm. Valid values:
primary-secondary
,round-robin
,auto-learning
. - wisp_
servers Sequence[ProfileWisp Server Args] - WISP servers. The structure of
wisp_servers
block is documented below. - youtube_
channel_ Sequence[Profilefilters Youtube Channel Filter Args] - YouTube channel filter. The structure of
youtube_channel_filter
block is documented below. - youtube_
channel_ strstatus - YouTube channel filter status.
- antiphish Property Map
- AntiPhishing profile. The structure of
antiphish
block is documented below. - comment String
- Optional comments.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log String - Enable/disable extended logging for web filtering. Valid values:
enable
,disable
. - feature
Set String - Flow/proxy feature set. Valid values:
flow
,proxy
. - file
Filter Property Map - File filter. The structure of
file_filter
block is documented below. - ftgd
Wf Property Map - FortiGuard Web Filter settings. The structure of
ftgd_wf
block is documented below. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- https
Replacemsg String - Enable replacement messages for HTTPS. Valid values:
enable
,disable
. - inspection
Mode String - Web filtering inspection mode. Valid values:
proxy
,flow-based
. - log
All StringUrl - Enable/disable logging all URLs visited. Valid values:
enable
,disable
. - name String
- Profile name.
- options String
- Options.
- override Property Map
- Web Filter override settings. The structure of
override
block is documented below. - ovrd
Perm String - Permitted override types. Valid values:
bannedword-override
,urlfilter-override
,fortiguard-wf-override
,contenttype-check-override
. - post
Action String - Action taken for HTTP POST traffic. Valid values:
normal
,block
. - replacemsg
Group String - Replacement message group.
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- web Property Map
- Web content filtering settings. The structure of
web
block is documented below. - web
Antiphishing StringLog - Enable/disable logging of AntiPhishing checks. Valid values:
enable
,disable
. - web
Content StringLog - Enable/disable logging logging blocked web content. Valid values:
enable
,disable
. - web
Extended StringAll Action Log - Enable/disable extended any filter action logging for web filtering. Valid values:
enable
,disable
. - web
Filter StringActivex Log - Enable/disable logging ActiveX. Valid values:
enable
,disable
. - web
Filter StringApplet Log - Enable/disable logging Java applets. Valid values:
enable
,disable
. - web
Filter StringCommand Block Log - Enable/disable logging blocked commands. Valid values:
enable
,disable
. - String
- Enable/disable logging cookie filtering. Valid values:
enable
,disable
. - String
- Enable/disable logging blocked cookies. Valid values:
enable
,disable
. - web
Filter StringJs Log - Enable/disable logging Java scripts. Valid values:
enable
,disable
. - web
Filter StringJscript Log - Enable/disable logging JScripts. Valid values:
enable
,disable
. - web
Filter StringReferer Log - Enable/disable logging referrers. Valid values:
enable
,disable
. - web
Filter StringUnknown Log - Enable/disable logging unknown scripts. Valid values:
enable
,disable
. - web
Filter StringVbs Log - Enable/disable logging VBS scripts. Valid values:
enable
,disable
. - web
Flow StringLog Encoding - Log encoding in flow mode. Valid values:
utf-8
,punycode
. - web
Ftgd StringErr Log - Enable/disable logging rating errors. Valid values:
enable
,disable
. - web
Ftgd StringQuota Usage - Enable/disable logging daily quota usage. Valid values:
enable
,disable
. - web
Invalid StringDomain Log - Enable/disable logging invalid domain names. Valid values:
enable
,disable
. - web
Url StringLog - Enable/disable logging URL filtering. Valid values:
enable
,disable
. - wisp String
- Enable/disable web proxy WISP. Valid values:
enable
,disable
. - wisp
Algorithm String - WISP server selection algorithm. Valid values:
primary-secondary
,round-robin
,auto-learning
. - wisp
Servers List<Property Map> - WISP servers. The structure of
wisp_servers
block is documented below. - youtube
Channel List<Property Map>Filters - YouTube channel filter. The structure of
youtube_channel_filter
block is documented below. - youtube
Channel StringStatus - YouTube channel filter status.
Outputs
All input properties are implicitly available as output properties. Additionally, the Profile resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Profile Resource
Get an existing Profile resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ProfileState, opts?: CustomResourceOptions): Profile
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
antiphish: Optional[ProfileAntiphishArgs] = None,
comment: Optional[str] = None,
dynamic_sort_subtable: Optional[str] = None,
extended_log: Optional[str] = None,
feature_set: Optional[str] = None,
file_filter: Optional[ProfileFileFilterArgs] = None,
ftgd_wf: Optional[ProfileFtgdWfArgs] = None,
get_all_tables: Optional[str] = None,
https_replacemsg: Optional[str] = None,
inspection_mode: Optional[str] = None,
log_all_url: Optional[str] = None,
name: Optional[str] = None,
options: Optional[str] = None,
override: Optional[ProfileOverrideArgs] = None,
ovrd_perm: Optional[str] = None,
post_action: Optional[str] = None,
replacemsg_group: Optional[str] = None,
vdomparam: Optional[str] = None,
web: Optional[ProfileWebArgs] = None,
web_antiphishing_log: Optional[str] = None,
web_content_log: Optional[str] = None,
web_extended_all_action_log: Optional[str] = None,
web_filter_activex_log: Optional[str] = None,
web_filter_applet_log: Optional[str] = None,
web_filter_command_block_log: Optional[str] = None,
web_filter_cookie_log: Optional[str] = None,
web_filter_cookie_removal_log: Optional[str] = None,
web_filter_js_log: Optional[str] = None,
web_filter_jscript_log: Optional[str] = None,
web_filter_referer_log: Optional[str] = None,
web_filter_unknown_log: Optional[str] = None,
web_filter_vbs_log: Optional[str] = None,
web_flow_log_encoding: Optional[str] = None,
web_ftgd_err_log: Optional[str] = None,
web_ftgd_quota_usage: Optional[str] = None,
web_invalid_domain_log: Optional[str] = None,
web_url_log: Optional[str] = None,
wisp: Optional[str] = None,
wisp_algorithm: Optional[str] = None,
wisp_servers: Optional[Sequence[ProfileWispServerArgs]] = None,
youtube_channel_filters: Optional[Sequence[ProfileYoutubeChannelFilterArgs]] = None,
youtube_channel_status: Optional[str] = None) -> Profile
func GetProfile(ctx *Context, name string, id IDInput, state *ProfileState, opts ...ResourceOption) (*Profile, error)
public static Profile Get(string name, Input<string> id, ProfileState? state, CustomResourceOptions? opts = null)
public static Profile get(String name, Output<String> id, ProfileState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Antiphish
Pulumiverse.
Fortios. Filter. Web. Inputs. Profile Antiphish - AntiPhishing profile. The structure of
antiphish
block is documented below. - Comment string
- Optional comments.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Extended
Log string - Enable/disable extended logging for web filtering. Valid values:
enable
,disable
. - Feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - File
Filter Pulumiverse.Fortios. Filter. Web. Inputs. Profile File Filter - File filter. The structure of
file_filter
block is documented below. - Ftgd
Wf Pulumiverse.Fortios. Filter. Web. Inputs. Profile Ftgd Wf - FortiGuard Web Filter settings. The structure of
ftgd_wf
block is documented below. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Https
Replacemsg string - Enable replacement messages for HTTPS. Valid values:
enable
,disable
. - Inspection
Mode string - Web filtering inspection mode. Valid values:
proxy
,flow-based
. - Log
All stringUrl - Enable/disable logging all URLs visited. Valid values:
enable
,disable
. - Name string
- Profile name.
- Options string
- Options.
- Override
Pulumiverse.
Fortios. Filter. Web. Inputs. Profile Override - Web Filter override settings. The structure of
override
block is documented below. - Ovrd
Perm string - Permitted override types. Valid values:
bannedword-override
,urlfilter-override
,fortiguard-wf-override
,contenttype-check-override
. - Post
Action string - Action taken for HTTP POST traffic. Valid values:
normal
,block
. - Replacemsg
Group string - Replacement message group.
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Web
Pulumiverse.
Fortios. Filter. Web. Inputs. Profile Web - Web content filtering settings. The structure of
web
block is documented below. - Web
Antiphishing stringLog - Enable/disable logging of AntiPhishing checks. Valid values:
enable
,disable
. - Web
Content stringLog - Enable/disable logging logging blocked web content. Valid values:
enable
,disable
. - Web
Extended stringAll Action Log - Enable/disable extended any filter action logging for web filtering. Valid values:
enable
,disable
. - Web
Filter stringActivex Log - Enable/disable logging ActiveX. Valid values:
enable
,disable
. - Web
Filter stringApplet Log - Enable/disable logging Java applets. Valid values:
enable
,disable
. - Web
Filter stringCommand Block Log - Enable/disable logging blocked commands. Valid values:
enable
,disable
. - string
- Enable/disable logging cookie filtering. Valid values:
enable
,disable
. - string
- Enable/disable logging blocked cookies. Valid values:
enable
,disable
. - Web
Filter stringJs Log - Enable/disable logging Java scripts. Valid values:
enable
,disable
. - Web
Filter stringJscript Log - Enable/disable logging JScripts. Valid values:
enable
,disable
. - Web
Filter stringReferer Log - Enable/disable logging referrers. Valid values:
enable
,disable
. - Web
Filter stringUnknown Log - Enable/disable logging unknown scripts. Valid values:
enable
,disable
. - Web
Filter stringVbs Log - Enable/disable logging VBS scripts. Valid values:
enable
,disable
. - Web
Flow stringLog Encoding - Log encoding in flow mode. Valid values:
utf-8
,punycode
. - Web
Ftgd stringErr Log - Enable/disable logging rating errors. Valid values:
enable
,disable
. - Web
Ftgd stringQuota Usage - Enable/disable logging daily quota usage. Valid values:
enable
,disable
. - Web
Invalid stringDomain Log - Enable/disable logging invalid domain names. Valid values:
enable
,disable
. - Web
Url stringLog - Enable/disable logging URL filtering. Valid values:
enable
,disable
. - Wisp string
- Enable/disable web proxy WISP. Valid values:
enable
,disable
. - Wisp
Algorithm string - WISP server selection algorithm. Valid values:
primary-secondary
,round-robin
,auto-learning
. - Wisp
Servers List<Pulumiverse.Fortios. Filter. Web. Inputs. Profile Wisp Server> - WISP servers. The structure of
wisp_servers
block is documented below. - Youtube
Channel List<Pulumiverse.Filters Fortios. Filter. Web. Inputs. Profile Youtube Channel Filter> - YouTube channel filter. The structure of
youtube_channel_filter
block is documented below. - Youtube
Channel stringStatus - YouTube channel filter status.
- Antiphish
Profile
Antiphish Args - AntiPhishing profile. The structure of
antiphish
block is documented below. - Comment string
- Optional comments.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Extended
Log string - Enable/disable extended logging for web filtering. Valid values:
enable
,disable
. - Feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - File
Filter ProfileFile Filter Args - File filter. The structure of
file_filter
block is documented below. - Ftgd
Wf ProfileFtgd Wf Args - FortiGuard Web Filter settings. The structure of
ftgd_wf
block is documented below. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Https
Replacemsg string - Enable replacement messages for HTTPS. Valid values:
enable
,disable
. - Inspection
Mode string - Web filtering inspection mode. Valid values:
proxy
,flow-based
. - Log
All stringUrl - Enable/disable logging all URLs visited. Valid values:
enable
,disable
. - Name string
- Profile name.
- Options string
- Options.
- Override
Profile
Override Args - Web Filter override settings. The structure of
override
block is documented below. - Ovrd
Perm string - Permitted override types. Valid values:
bannedword-override
,urlfilter-override
,fortiguard-wf-override
,contenttype-check-override
. - Post
Action string - Action taken for HTTP POST traffic. Valid values:
normal
,block
. - Replacemsg
Group string - Replacement message group.
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Web
Profile
Web Args - Web content filtering settings. The structure of
web
block is documented below. - Web
Antiphishing stringLog - Enable/disable logging of AntiPhishing checks. Valid values:
enable
,disable
. - Web
Content stringLog - Enable/disable logging logging blocked web content. Valid values:
enable
,disable
. - Web
Extended stringAll Action Log - Enable/disable extended any filter action logging for web filtering. Valid values:
enable
,disable
. - Web
Filter stringActivex Log - Enable/disable logging ActiveX. Valid values:
enable
,disable
. - Web
Filter stringApplet Log - Enable/disable logging Java applets. Valid values:
enable
,disable
. - Web
Filter stringCommand Block Log - Enable/disable logging blocked commands. Valid values:
enable
,disable
. - string
- Enable/disable logging cookie filtering. Valid values:
enable
,disable
. - string
- Enable/disable logging blocked cookies. Valid values:
enable
,disable
. - Web
Filter stringJs Log - Enable/disable logging Java scripts. Valid values:
enable
,disable
. - Web
Filter stringJscript Log - Enable/disable logging JScripts. Valid values:
enable
,disable
. - Web
Filter stringReferer Log - Enable/disable logging referrers. Valid values:
enable
,disable
. - Web
Filter stringUnknown Log - Enable/disable logging unknown scripts. Valid values:
enable
,disable
. - Web
Filter stringVbs Log - Enable/disable logging VBS scripts. Valid values:
enable
,disable
. - Web
Flow stringLog Encoding - Log encoding in flow mode. Valid values:
utf-8
,punycode
. - Web
Ftgd stringErr Log - Enable/disable logging rating errors. Valid values:
enable
,disable
. - Web
Ftgd stringQuota Usage - Enable/disable logging daily quota usage. Valid values:
enable
,disable
. - Web
Invalid stringDomain Log - Enable/disable logging invalid domain names. Valid values:
enable
,disable
. - Web
Url stringLog - Enable/disable logging URL filtering. Valid values:
enable
,disable
. - Wisp string
- Enable/disable web proxy WISP. Valid values:
enable
,disable
. - Wisp
Algorithm string - WISP server selection algorithm. Valid values:
primary-secondary
,round-robin
,auto-learning
. - Wisp
Servers []ProfileWisp Server Args - WISP servers. The structure of
wisp_servers
block is documented below. - Youtube
Channel []ProfileFilters Youtube Channel Filter Args - YouTube channel filter. The structure of
youtube_channel_filter
block is documented below. - Youtube
Channel stringStatus - YouTube channel filter status.
- antiphish
Profile
Antiphish - AntiPhishing profile. The structure of
antiphish
block is documented below. - comment String
- Optional comments.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log String - Enable/disable extended logging for web filtering. Valid values:
enable
,disable
. - feature
Set String - Flow/proxy feature set. Valid values:
flow
,proxy
. - file
Filter ProfileFile Filter - File filter. The structure of
file_filter
block is documented below. - ftgd
Wf ProfileFtgd Wf - FortiGuard Web Filter settings. The structure of
ftgd_wf
block is documented below. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- https
Replacemsg String - Enable replacement messages for HTTPS. Valid values:
enable
,disable
. - inspection
Mode String - Web filtering inspection mode. Valid values:
proxy
,flow-based
. - log
All StringUrl - Enable/disable logging all URLs visited. Valid values:
enable
,disable
. - name String
- Profile name.
- options String
- Options.
- override
Profile
Override - Web Filter override settings. The structure of
override
block is documented below. - ovrd
Perm String - Permitted override types. Valid values:
bannedword-override
,urlfilter-override
,fortiguard-wf-override
,contenttype-check-override
. - post
Action String - Action taken for HTTP POST traffic. Valid values:
normal
,block
. - replacemsg
Group String - Replacement message group.
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- web
Profile
Web - Web content filtering settings. The structure of
web
block is documented below. - web
Antiphishing StringLog - Enable/disable logging of AntiPhishing checks. Valid values:
enable
,disable
. - web
Content StringLog - Enable/disable logging logging blocked web content. Valid values:
enable
,disable
. - web
Extended StringAll Action Log - Enable/disable extended any filter action logging for web filtering. Valid values:
enable
,disable
. - web
Filter StringActivex Log - Enable/disable logging ActiveX. Valid values:
enable
,disable
. - web
Filter StringApplet Log - Enable/disable logging Java applets. Valid values:
enable
,disable
. - web
Filter StringCommand Block Log - Enable/disable logging blocked commands. Valid values:
enable
,disable
. - String
- Enable/disable logging cookie filtering. Valid values:
enable
,disable
. - String
- Enable/disable logging blocked cookies. Valid values:
enable
,disable
. - web
Filter StringJs Log - Enable/disable logging Java scripts. Valid values:
enable
,disable
. - web
Filter StringJscript Log - Enable/disable logging JScripts. Valid values:
enable
,disable
. - web
Filter StringReferer Log - Enable/disable logging referrers. Valid values:
enable
,disable
. - web
Filter StringUnknown Log - Enable/disable logging unknown scripts. Valid values:
enable
,disable
. - web
Filter StringVbs Log - Enable/disable logging VBS scripts. Valid values:
enable
,disable
. - web
Flow StringLog Encoding - Log encoding in flow mode. Valid values:
utf-8
,punycode
. - web
Ftgd StringErr Log - Enable/disable logging rating errors. Valid values:
enable
,disable
. - web
Ftgd StringQuota Usage - Enable/disable logging daily quota usage. Valid values:
enable
,disable
. - web
Invalid StringDomain Log - Enable/disable logging invalid domain names. Valid values:
enable
,disable
. - web
Url StringLog - Enable/disable logging URL filtering. Valid values:
enable
,disable
. - wisp String
- Enable/disable web proxy WISP. Valid values:
enable
,disable
. - wisp
Algorithm String - WISP server selection algorithm. Valid values:
primary-secondary
,round-robin
,auto-learning
. - wisp
Servers List<ProfileWisp Server> - WISP servers. The structure of
wisp_servers
block is documented below. - youtube
Channel List<ProfileFilters Youtube Channel Filter> - YouTube channel filter. The structure of
youtube_channel_filter
block is documented below. - youtube
Channel StringStatus - YouTube channel filter status.
- antiphish
Profile
Antiphish - AntiPhishing profile. The structure of
antiphish
block is documented below. - comment string
- Optional comments.
- dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log string - Enable/disable extended logging for web filtering. Valid values:
enable
,disable
. - feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - file
Filter ProfileFile Filter - File filter. The structure of
file_filter
block is documented below. - ftgd
Wf ProfileFtgd Wf - FortiGuard Web Filter settings. The structure of
ftgd_wf
block is documented below. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- https
Replacemsg string - Enable replacement messages for HTTPS. Valid values:
enable
,disable
. - inspection
Mode string - Web filtering inspection mode. Valid values:
proxy
,flow-based
. - log
All stringUrl - Enable/disable logging all URLs visited. Valid values:
enable
,disable
. - name string
- Profile name.
- options string
- Options.
- override
Profile
Override - Web Filter override settings. The structure of
override
block is documented below. - ovrd
Perm string - Permitted override types. Valid values:
bannedword-override
,urlfilter-override
,fortiguard-wf-override
,contenttype-check-override
. - post
Action string - Action taken for HTTP POST traffic. Valid values:
normal
,block
. - replacemsg
Group string - Replacement message group.
- vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- web
Profile
Web - Web content filtering settings. The structure of
web
block is documented below. - web
Antiphishing stringLog - Enable/disable logging of AntiPhishing checks. Valid values:
enable
,disable
. - web
Content stringLog - Enable/disable logging logging blocked web content. Valid values:
enable
,disable
. - web
Extended stringAll Action Log - Enable/disable extended any filter action logging for web filtering. Valid values:
enable
,disable
. - web
Filter stringActivex Log - Enable/disable logging ActiveX. Valid values:
enable
,disable
. - web
Filter stringApplet Log - Enable/disable logging Java applets. Valid values:
enable
,disable
. - web
Filter stringCommand Block Log - Enable/disable logging blocked commands. Valid values:
enable
,disable
. - string
- Enable/disable logging cookie filtering. Valid values:
enable
,disable
. - string
- Enable/disable logging blocked cookies. Valid values:
enable
,disable
. - web
Filter stringJs Log - Enable/disable logging Java scripts. Valid values:
enable
,disable
. - web
Filter stringJscript Log - Enable/disable logging JScripts. Valid values:
enable
,disable
. - web
Filter stringReferer Log - Enable/disable logging referrers. Valid values:
enable
,disable
. - web
Filter stringUnknown Log - Enable/disable logging unknown scripts. Valid values:
enable
,disable
. - web
Filter stringVbs Log - Enable/disable logging VBS scripts. Valid values:
enable
,disable
. - web
Flow stringLog Encoding - Log encoding in flow mode. Valid values:
utf-8
,punycode
. - web
Ftgd stringErr Log - Enable/disable logging rating errors. Valid values:
enable
,disable
. - web
Ftgd stringQuota Usage - Enable/disable logging daily quota usage. Valid values:
enable
,disable
. - web
Invalid stringDomain Log - Enable/disable logging invalid domain names. Valid values:
enable
,disable
. - web
Url stringLog - Enable/disable logging URL filtering. Valid values:
enable
,disable
. - wisp string
- Enable/disable web proxy WISP. Valid values:
enable
,disable
. - wisp
Algorithm string - WISP server selection algorithm. Valid values:
primary-secondary
,round-robin
,auto-learning
. - wisp
Servers ProfileWisp Server[] - WISP servers. The structure of
wisp_servers
block is documented below. - youtube
Channel ProfileFilters Youtube Channel Filter[] - YouTube channel filter. The structure of
youtube_channel_filter
block is documented below. - youtube
Channel stringStatus - YouTube channel filter status.
- antiphish
Profile
Antiphish Args - AntiPhishing profile. The structure of
antiphish
block is documented below. - comment str
- Optional comments.
- dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended_
log str - Enable/disable extended logging for web filtering. Valid values:
enable
,disable
. - feature_
set str - Flow/proxy feature set. Valid values:
flow
,proxy
. - file_
filter ProfileFile Filter Args - File filter. The structure of
file_filter
block is documented below. - ftgd_
wf ProfileFtgd Wf Args - FortiGuard Web Filter settings. The structure of
ftgd_wf
block is documented below. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- https_
replacemsg str - Enable replacement messages for HTTPS. Valid values:
enable
,disable
. - inspection_
mode str - Web filtering inspection mode. Valid values:
proxy
,flow-based
. - log_
all_ strurl - Enable/disable logging all URLs visited. Valid values:
enable
,disable
. - name str
- Profile name.
- options str
- Options.
- override
Profile
Override Args - Web Filter override settings. The structure of
override
block is documented below. - ovrd_
perm str - Permitted override types. Valid values:
bannedword-override
,urlfilter-override
,fortiguard-wf-override
,contenttype-check-override
. - post_
action str - Action taken for HTTP POST traffic. Valid values:
normal
,block
. - replacemsg_
group str - Replacement message group.
- vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- web
Profile
Web Args - Web content filtering settings. The structure of
web
block is documented below. - web_
antiphishing_ strlog - Enable/disable logging of AntiPhishing checks. Valid values:
enable
,disable
. - web_
content_ strlog - Enable/disable logging logging blocked web content. Valid values:
enable
,disable
. - web_
extended_ strall_ action_ log - Enable/disable extended any filter action logging for web filtering. Valid values:
enable
,disable
. - web_
filter_ stractivex_ log - Enable/disable logging ActiveX. Valid values:
enable
,disable
. - web_
filter_ strapplet_ log - Enable/disable logging Java applets. Valid values:
enable
,disable
. - web_
filter_ strcommand_ block_ log - Enable/disable logging blocked commands. Valid values:
enable
,disable
. - str
- Enable/disable logging cookie filtering. Valid values:
enable
,disable
. - str
- Enable/disable logging blocked cookies. Valid values:
enable
,disable
. - web_
filter_ strjs_ log - Enable/disable logging Java scripts. Valid values:
enable
,disable
. - web_
filter_ strjscript_ log - Enable/disable logging JScripts. Valid values:
enable
,disable
. - web_
filter_ strreferer_ log - Enable/disable logging referrers. Valid values:
enable
,disable
. - web_
filter_ strunknown_ log - Enable/disable logging unknown scripts. Valid values:
enable
,disable
. - web_
filter_ strvbs_ log - Enable/disable logging VBS scripts. Valid values:
enable
,disable
. - web_
flow_ strlog_ encoding - Log encoding in flow mode. Valid values:
utf-8
,punycode
. - web_
ftgd_ strerr_ log - Enable/disable logging rating errors. Valid values:
enable
,disable
. - web_
ftgd_ strquota_ usage - Enable/disable logging daily quota usage. Valid values:
enable
,disable
. - web_
invalid_ strdomain_ log - Enable/disable logging invalid domain names. Valid values:
enable
,disable
. - web_
url_ strlog - Enable/disable logging URL filtering. Valid values:
enable
,disable
. - wisp str
- Enable/disable web proxy WISP. Valid values:
enable
,disable
. - wisp_
algorithm str - WISP server selection algorithm. Valid values:
primary-secondary
,round-robin
,auto-learning
. - wisp_
servers Sequence[ProfileWisp Server Args] - WISP servers. The structure of
wisp_servers
block is documented below. - youtube_
channel_ Sequence[Profilefilters Youtube Channel Filter Args] - YouTube channel filter. The structure of
youtube_channel_filter
block is documented below. - youtube_
channel_ strstatus - YouTube channel filter status.
- antiphish Property Map
- AntiPhishing profile. The structure of
antiphish
block is documented below. - comment String
- Optional comments.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log String - Enable/disable extended logging for web filtering. Valid values:
enable
,disable
. - feature
Set String - Flow/proxy feature set. Valid values:
flow
,proxy
. - file
Filter Property Map - File filter. The structure of
file_filter
block is documented below. - ftgd
Wf Property Map - FortiGuard Web Filter settings. The structure of
ftgd_wf
block is documented below. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- https
Replacemsg String - Enable replacement messages for HTTPS. Valid values:
enable
,disable
. - inspection
Mode String - Web filtering inspection mode. Valid values:
proxy
,flow-based
. - log
All StringUrl - Enable/disable logging all URLs visited. Valid values:
enable
,disable
. - name String
- Profile name.
- options String
- Options.
- override Property Map
- Web Filter override settings. The structure of
override
block is documented below. - ovrd
Perm String - Permitted override types. Valid values:
bannedword-override
,urlfilter-override
,fortiguard-wf-override
,contenttype-check-override
. - post
Action String - Action taken for HTTP POST traffic. Valid values:
normal
,block
. - replacemsg
Group String - Replacement message group.
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- web Property Map
- Web content filtering settings. The structure of
web
block is documented below. - web
Antiphishing StringLog - Enable/disable logging of AntiPhishing checks. Valid values:
enable
,disable
. - web
Content StringLog - Enable/disable logging logging blocked web content. Valid values:
enable
,disable
. - web
Extended StringAll Action Log - Enable/disable extended any filter action logging for web filtering. Valid values:
enable
,disable
. - web
Filter StringActivex Log - Enable/disable logging ActiveX. Valid values:
enable
,disable
. - web
Filter StringApplet Log - Enable/disable logging Java applets. Valid values:
enable
,disable
. - web
Filter StringCommand Block Log - Enable/disable logging blocked commands. Valid values:
enable
,disable
. - String
- Enable/disable logging cookie filtering. Valid values:
enable
,disable
. - String
- Enable/disable logging blocked cookies. Valid values:
enable
,disable
. - web
Filter StringJs Log - Enable/disable logging Java scripts. Valid values:
enable
,disable
. - web
Filter StringJscript Log - Enable/disable logging JScripts. Valid values:
enable
,disable
. - web
Filter StringReferer Log - Enable/disable logging referrers. Valid values:
enable
,disable
. - web
Filter StringUnknown Log - Enable/disable logging unknown scripts. Valid values:
enable
,disable
. - web
Filter StringVbs Log - Enable/disable logging VBS scripts. Valid values:
enable
,disable
. - web
Flow StringLog Encoding - Log encoding in flow mode. Valid values:
utf-8
,punycode
. - web
Ftgd StringErr Log - Enable/disable logging rating errors. Valid values:
enable
,disable
. - web
Ftgd StringQuota Usage - Enable/disable logging daily quota usage. Valid values:
enable
,disable
. - web
Invalid StringDomain Log - Enable/disable logging invalid domain names. Valid values:
enable
,disable
. - web
Url StringLog - Enable/disable logging URL filtering. Valid values:
enable
,disable
. - wisp String
- Enable/disable web proxy WISP. Valid values:
enable
,disable
. - wisp
Algorithm String - WISP server selection algorithm. Valid values:
primary-secondary
,round-robin
,auto-learning
. - wisp
Servers List<Property Map> - WISP servers. The structure of
wisp_servers
block is documented below. - youtube
Channel List<Property Map>Filters - YouTube channel filter. The structure of
youtube_channel_filter
block is documented below. - youtube
Channel StringStatus - YouTube channel filter status.
Supporting Types
ProfileAntiphish, ProfileAntiphishArgs
- Authentication string
- Authentication methods. Valid values:
domain-controller
,ldap
. - Check
Basic stringAuth - Enable/disable checking of HTTP Basic Auth field for known credentials. Valid values:
enable
,disable
. - Check
Uri string - Enable/disable checking of GET URI parameters for known credentials. Valid values:
enable
,disable
. - Check
Username stringOnly - Enable/disable acting only on valid username credentials. Action will be taken for valid usernames regardless of password validity. Valid values:
enable
,disable
. - Custom
Patterns List<Pulumiverse.Fortios. Filter. Web. Inputs. Profile Antiphish Custom Pattern> - Custom username and password regex patterns. The structure of
custom_patterns
block is documented below. - Default
Action string - Action to be taken when there is no matching rule. Valid values:
exempt
,log
,block
. - Domain
Controller string - Domain for which to verify received credentials against.
- Inspection
Entries List<Pulumiverse.Fortios. Filter. Web. Inputs. Profile Antiphish Inspection Entry> - AntiPhishing entries. The structure of
inspection_entries
block is documented below. - Ldap string
- LDAP server for which to verify received credentials against.
- Max
Body intLen - Maximum size of a POST body to check for credentials.
- Status string
- Toggle AntiPhishing functionality. Valid values:
enable
,disable
.
- Authentication string
- Authentication methods. Valid values:
domain-controller
,ldap
. - Check
Basic stringAuth - Enable/disable checking of HTTP Basic Auth field for known credentials. Valid values:
enable
,disable
. - Check
Uri string - Enable/disable checking of GET URI parameters for known credentials. Valid values:
enable
,disable
. - Check
Username stringOnly - Enable/disable acting only on valid username credentials. Action will be taken for valid usernames regardless of password validity. Valid values:
enable
,disable
. - Custom
Patterns []ProfileAntiphish Custom Pattern - Custom username and password regex patterns. The structure of
custom_patterns
block is documented below. - Default
Action string - Action to be taken when there is no matching rule. Valid values:
exempt
,log
,block
. - Domain
Controller string - Domain for which to verify received credentials against.
- Inspection
Entries []ProfileAntiphish Inspection Entry - AntiPhishing entries. The structure of
inspection_entries
block is documented below. - Ldap string
- LDAP server for which to verify received credentials against.
- Max
Body intLen - Maximum size of a POST body to check for credentials.
- Status string
- Toggle AntiPhishing functionality. Valid values:
enable
,disable
.
- authentication String
- Authentication methods. Valid values:
domain-controller
,ldap
. - check
Basic StringAuth - Enable/disable checking of HTTP Basic Auth field for known credentials. Valid values:
enable
,disable
. - check
Uri String - Enable/disable checking of GET URI parameters for known credentials. Valid values:
enable
,disable
. - check
Username StringOnly - Enable/disable acting only on valid username credentials. Action will be taken for valid usernames regardless of password validity. Valid values:
enable
,disable
. - custom
Patterns List<ProfileAntiphish Custom Pattern> - Custom username and password regex patterns. The structure of
custom_patterns
block is documented below. - default
Action String - Action to be taken when there is no matching rule. Valid values:
exempt
,log
,block
. - domain
Controller String - Domain for which to verify received credentials against.
- inspection
Entries List<ProfileAntiphish Inspection Entry> - AntiPhishing entries. The structure of
inspection_entries
block is documented below. - ldap String
- LDAP server for which to verify received credentials against.
- max
Body IntegerLen - Maximum size of a POST body to check for credentials.
- status String
- Toggle AntiPhishing functionality. Valid values:
enable
,disable
.
- authentication string
- Authentication methods. Valid values:
domain-controller
,ldap
. - check
Basic stringAuth - Enable/disable checking of HTTP Basic Auth field for known credentials. Valid values:
enable
,disable
. - check
Uri string - Enable/disable checking of GET URI parameters for known credentials. Valid values:
enable
,disable
. - check
Username stringOnly - Enable/disable acting only on valid username credentials. Action will be taken for valid usernames regardless of password validity. Valid values:
enable
,disable
. - custom
Patterns ProfileAntiphish Custom Pattern[] - Custom username and password regex patterns. The structure of
custom_patterns
block is documented below. - default
Action string - Action to be taken when there is no matching rule. Valid values:
exempt
,log
,block
. - domain
Controller string - Domain for which to verify received credentials against.
- inspection
Entries ProfileAntiphish Inspection Entry[] - AntiPhishing entries. The structure of
inspection_entries
block is documented below. - ldap string
- LDAP server for which to verify received credentials against.
- max
Body numberLen - Maximum size of a POST body to check for credentials.
- status string
- Toggle AntiPhishing functionality. Valid values:
enable
,disable
.
- authentication str
- Authentication methods. Valid values:
domain-controller
,ldap
. - check_
basic_ strauth - Enable/disable checking of HTTP Basic Auth field for known credentials. Valid values:
enable
,disable
. - check_
uri str - Enable/disable checking of GET URI parameters for known credentials. Valid values:
enable
,disable
. - check_
username_ stronly - Enable/disable acting only on valid username credentials. Action will be taken for valid usernames regardless of password validity. Valid values:
enable
,disable
. - custom_
patterns Sequence[ProfileAntiphish Custom Pattern] - Custom username and password regex patterns. The structure of
custom_patterns
block is documented below. - default_
action str - Action to be taken when there is no matching rule. Valid values:
exempt
,log
,block
. - domain_
controller str - Domain for which to verify received credentials against.
- inspection_
entries Sequence[ProfileAntiphish Inspection Entry] - AntiPhishing entries. The structure of
inspection_entries
block is documented below. - ldap str
- LDAP server for which to verify received credentials against.
- max_
body_ intlen - Maximum size of a POST body to check for credentials.
- status str
- Toggle AntiPhishing functionality. Valid values:
enable
,disable
.
- authentication String
- Authentication methods. Valid values:
domain-controller
,ldap
. - check
Basic StringAuth - Enable/disable checking of HTTP Basic Auth field for known credentials. Valid values:
enable
,disable
. - check
Uri String - Enable/disable checking of GET URI parameters for known credentials. Valid values:
enable
,disable
. - check
Username StringOnly - Enable/disable acting only on valid username credentials. Action will be taken for valid usernames regardless of password validity. Valid values:
enable
,disable
. - custom
Patterns List<Property Map> - Custom username and password regex patterns. The structure of
custom_patterns
block is documented below. - default
Action String - Action to be taken when there is no matching rule. Valid values:
exempt
,log
,block
. - domain
Controller String - Domain for which to verify received credentials against.
- inspection
Entries List<Property Map> - AntiPhishing entries. The structure of
inspection_entries
block is documented below. - ldap String
- LDAP server for which to verify received credentials against.
- max
Body NumberLen - Maximum size of a POST body to check for credentials.
- status String
- Toggle AntiPhishing functionality. Valid values:
enable
,disable
.
ProfileAntiphishCustomPattern, ProfileAntiphishCustomPatternArgs
ProfileAntiphishInspectionEntry, ProfileAntiphishInspectionEntryArgs
- Action string
- Action to be taken upon an AntiPhishing match. Valid values:
exempt
,log
,block
. - Fortiguard
Category string - FortiGuard category to match.
- Name string
- Inspection target name.
- Action string
- Action to be taken upon an AntiPhishing match. Valid values:
exempt
,log
,block
. - Fortiguard
Category string - FortiGuard category to match.
- Name string
- Inspection target name.
- action String
- Action to be taken upon an AntiPhishing match. Valid values:
exempt
,log
,block
. - fortiguard
Category String - FortiGuard category to match.
- name String
- Inspection target name.
- action string
- Action to be taken upon an AntiPhishing match. Valid values:
exempt
,log
,block
. - fortiguard
Category string - FortiGuard category to match.
- name string
- Inspection target name.
- action str
- Action to be taken upon an AntiPhishing match. Valid values:
exempt
,log
,block
. - fortiguard_
category str - FortiGuard category to match.
- name str
- Inspection target name.
- action String
- Action to be taken upon an AntiPhishing match. Valid values:
exempt
,log
,block
. - fortiguard
Category String - FortiGuard category to match.
- name String
- Inspection target name.
ProfileFileFilter, ProfileFileFilterArgs
- Entries
List<Pulumiverse.
Fortios. Filter. Web. Inputs. Profile File Filter Entry> - File filter entries. The structure of
entries
block is documented below. - Log string
- Enable/disable file filter logging. Valid values:
enable
,disable
. - Scan
Archive stringContents - Enable/disable file filter archive contents scan. Valid values:
enable
,disable
. - Status string
- Enable/disable file filter. Valid values:
enable
,disable
.
- Entries
[]Profile
File Filter Entry - File filter entries. The structure of
entries
block is documented below. - Log string
- Enable/disable file filter logging. Valid values:
enable
,disable
. - Scan
Archive stringContents - Enable/disable file filter archive contents scan. Valid values:
enable
,disable
. - Status string
- Enable/disable file filter. Valid values:
enable
,disable
.
- entries
List<Profile
File Filter Entry> - File filter entries. The structure of
entries
block is documented below. - log String
- Enable/disable file filter logging. Valid values:
enable
,disable
. - scan
Archive StringContents - Enable/disable file filter archive contents scan. Valid values:
enable
,disable
. - status String
- Enable/disable file filter. Valid values:
enable
,disable
.
- entries
Profile
File Filter Entry[] - File filter entries. The structure of
entries
block is documented below. - log string
- Enable/disable file filter logging. Valid values:
enable
,disable
. - scan
Archive stringContents - Enable/disable file filter archive contents scan. Valid values:
enable
,disable
. - status string
- Enable/disable file filter. Valid values:
enable
,disable
.
- entries
Sequence[Profile
File Filter Entry] - File filter entries. The structure of
entries
block is documented below. - log str
- Enable/disable file filter logging. Valid values:
enable
,disable
. - scan_
archive_ strcontents - Enable/disable file filter archive contents scan. Valid values:
enable
,disable
. - status str
- Enable/disable file filter. Valid values:
enable
,disable
.
- entries List<Property Map>
- File filter entries. The structure of
entries
block is documented below. - log String
- Enable/disable file filter logging. Valid values:
enable
,disable
. - scan
Archive StringContents - Enable/disable file filter archive contents scan. Valid values:
enable
,disable
. - status String
- Enable/disable file filter. Valid values:
enable
,disable
.
ProfileFileFilterEntry, ProfileFileFilterEntryArgs
- Action string
- Action taken for matched file. Valid values:
log
,block
. - Comment string
- Comment.
- Direction string
- Match files transmitted in the session's originating or reply direction. Valid values:
incoming
,outgoing
,any
. - File
Types List<Pulumiverse.Fortios. Filter. Web. Inputs. Profile File Filter Entry File Type> - Select file type. The structure of
file_type
block is documented below. - Filter string
- Add a file filter.
- Password
Protected string - Match password-protected files. Valid values:
yes
,any
. - Protocol string
- Protocols to apply with. Valid values:
http
,ftp
.
- Action string
- Action taken for matched file. Valid values:
log
,block
. - Comment string
- Comment.
- Direction string
- Match files transmitted in the session's originating or reply direction. Valid values:
incoming
,outgoing
,any
. - File
Types []ProfileFile Filter Entry File Type - Select file type. The structure of
file_type
block is documented below. - Filter string
- Add a file filter.
- Password
Protected string - Match password-protected files. Valid values:
yes
,any
. - Protocol string
- Protocols to apply with. Valid values:
http
,ftp
.
- action String
- Action taken for matched file. Valid values:
log
,block
. - comment String
- Comment.
- direction String
- Match files transmitted in the session's originating or reply direction. Valid values:
incoming
,outgoing
,any
. - file
Types List<ProfileFile Filter Entry File Type> - Select file type. The structure of
file_type
block is documented below. - filter String
- Add a file filter.
- password
Protected String - Match password-protected files. Valid values:
yes
,any
. - protocol String
- Protocols to apply with. Valid values:
http
,ftp
.
- action string
- Action taken for matched file. Valid values:
log
,block
. - comment string
- Comment.
- direction string
- Match files transmitted in the session's originating or reply direction. Valid values:
incoming
,outgoing
,any
. - file
Types ProfileFile Filter Entry File Type[] - Select file type. The structure of
file_type
block is documented below. - filter string
- Add a file filter.
- password
Protected string - Match password-protected files. Valid values:
yes
,any
. - protocol string
- Protocols to apply with. Valid values:
http
,ftp
.
- action str
- Action taken for matched file. Valid values:
log
,block
. - comment str
- Comment.
- direction str
- Match files transmitted in the session's originating or reply direction. Valid values:
incoming
,outgoing
,any
. - file_
types Sequence[ProfileFile Filter Entry File Type] - Select file type. The structure of
file_type
block is documented below. - filter str
- Add a file filter.
- password_
protected str - Match password-protected files. Valid values:
yes
,any
. - protocol str
- Protocols to apply with. Valid values:
http
,ftp
.
- action String
- Action taken for matched file. Valid values:
log
,block
. - comment String
- Comment.
- direction String
- Match files transmitted in the session's originating or reply direction. Valid values:
incoming
,outgoing
,any
. - file
Types List<Property Map> - Select file type. The structure of
file_type
block is documented below. - filter String
- Add a file filter.
- password
Protected String - Match password-protected files. Valid values:
yes
,any
. - protocol String
- Protocols to apply with. Valid values:
http
,ftp
.
ProfileFileFilterEntryFileType, ProfileFileFilterEntryFileTypeArgs
- Name string
- File type name.
- Name string
- File type name.
- name String
- File type name.
- name string
- File type name.
- name str
- File type name.
- name String
- File type name.
ProfileFtgdWf, ProfileFtgdWfArgs
- Exempt
Quota string - Do not stop quota for these categories.
- Filters
List<Pulumiverse.
Fortios. Filter. Web. Inputs. Profile Ftgd Wf Filter> - FortiGuard filters. The structure of
filters
block is documented below. - Max
Quota intTimeout - Maximum FortiGuard quota used by single page view in seconds (excludes streams).
- Options string
- Options for FortiGuard Web Filter. Valid values:
error-allow
,rate-server-ip
,connect-request-bypass
,ftgd-disable
. - Ovrd string
- Allow web filter profile overrides.
- Quotas
List<Pulumiverse.
Fortios. Filter. Web. Inputs. Profile Ftgd Wf Quota> - FortiGuard traffic quota settings. The structure of
quota
block is documented below. - Rate
Crl stringUrls - Enable/disable rating CRL by URL. Valid values:
disable
,enable
. - Rate
Css stringUrls - Enable/disable rating CSS by URL. Valid values:
disable
,enable
. - Rate
Image stringUrls - Enable/disable rating images by URL. Valid values:
disable
,enable
. - Rate
Javascript stringUrls - Enable/disable rating JavaScript by URL. Valid values:
disable
,enable
.
- Exempt
Quota string - Do not stop quota for these categories.
- Filters
[]Profile
Ftgd Wf Filter - FortiGuard filters. The structure of
filters
block is documented below. - Max
Quota intTimeout - Maximum FortiGuard quota used by single page view in seconds (excludes streams).
- Options string
- Options for FortiGuard Web Filter. Valid values:
error-allow
,rate-server-ip
,connect-request-bypass
,ftgd-disable
. - Ovrd string
- Allow web filter profile overrides.
- Quotas
[]Profile
Ftgd Wf Quota - FortiGuard traffic quota settings. The structure of
quota
block is documented below. - Rate
Crl stringUrls - Enable/disable rating CRL by URL. Valid values:
disable
,enable
. - Rate
Css stringUrls - Enable/disable rating CSS by URL. Valid values:
disable
,enable
. - Rate
Image stringUrls - Enable/disable rating images by URL. Valid values:
disable
,enable
. - Rate
Javascript stringUrls - Enable/disable rating JavaScript by URL. Valid values:
disable
,enable
.
- exempt
Quota String - Do not stop quota for these categories.
- filters
List<Profile
Ftgd Wf Filter> - FortiGuard filters. The structure of
filters
block is documented below. - max
Quota IntegerTimeout - Maximum FortiGuard quota used by single page view in seconds (excludes streams).
- options String
- Options for FortiGuard Web Filter. Valid values:
error-allow
,rate-server-ip
,connect-request-bypass
,ftgd-disable
. - ovrd String
- Allow web filter profile overrides.
- quotas
List<Profile
Ftgd Wf Quota> - FortiGuard traffic quota settings. The structure of
quota
block is documented below. - rate
Crl StringUrls - Enable/disable rating CRL by URL. Valid values:
disable
,enable
. - rate
Css StringUrls - Enable/disable rating CSS by URL. Valid values:
disable
,enable
. - rate
Image StringUrls - Enable/disable rating images by URL. Valid values:
disable
,enable
. - rate
Javascript StringUrls - Enable/disable rating JavaScript by URL. Valid values:
disable
,enable
.
- exempt
Quota string - Do not stop quota for these categories.
- filters
Profile
Ftgd Wf Filter[] - FortiGuard filters. The structure of
filters
block is documented below. - max
Quota numberTimeout - Maximum FortiGuard quota used by single page view in seconds (excludes streams).
- options string
- Options for FortiGuard Web Filter. Valid values:
error-allow
,rate-server-ip
,connect-request-bypass
,ftgd-disable
. - ovrd string
- Allow web filter profile overrides.
- quotas
Profile
Ftgd Wf Quota[] - FortiGuard traffic quota settings. The structure of
quota
block is documented below. - rate
Crl stringUrls - Enable/disable rating CRL by URL. Valid values:
disable
,enable
. - rate
Css stringUrls - Enable/disable rating CSS by URL. Valid values:
disable
,enable
. - rate
Image stringUrls - Enable/disable rating images by URL. Valid values:
disable
,enable
. - rate
Javascript stringUrls - Enable/disable rating JavaScript by URL. Valid values:
disable
,enable
.
- exempt_
quota str - Do not stop quota for these categories.
- filters
Sequence[Profile
Ftgd Wf Filter] - FortiGuard filters. The structure of
filters
block is documented below. - max_
quota_ inttimeout - Maximum FortiGuard quota used by single page view in seconds (excludes streams).
- options str
- Options for FortiGuard Web Filter. Valid values:
error-allow
,rate-server-ip
,connect-request-bypass
,ftgd-disable
. - ovrd str
- Allow web filter profile overrides.
- quotas
Sequence[Profile
Ftgd Wf Quota] - FortiGuard traffic quota settings. The structure of
quota
block is documented below. - rate_
crl_ strurls - Enable/disable rating CRL by URL. Valid values:
disable
,enable
. - rate_
css_ strurls - Enable/disable rating CSS by URL. Valid values:
disable
,enable
. - rate_
image_ strurls - Enable/disable rating images by URL. Valid values:
disable
,enable
. - rate_
javascript_ strurls - Enable/disable rating JavaScript by URL. Valid values:
disable
,enable
.
- exempt
Quota String - Do not stop quota for these categories.
- filters List<Property Map>
- FortiGuard filters. The structure of
filters
block is documented below. - max
Quota NumberTimeout - Maximum FortiGuard quota used by single page view in seconds (excludes streams).
- options String
- Options for FortiGuard Web Filter. Valid values:
error-allow
,rate-server-ip
,connect-request-bypass
,ftgd-disable
. - ovrd String
- Allow web filter profile overrides.
- quotas List<Property Map>
- FortiGuard traffic quota settings. The structure of
quota
block is documented below. - rate
Crl StringUrls - Enable/disable rating CRL by URL. Valid values:
disable
,enable
. - rate
Css StringUrls - Enable/disable rating CSS by URL. Valid values:
disable
,enable
. - rate
Image StringUrls - Enable/disable rating images by URL. Valid values:
disable
,enable
. - rate
Javascript StringUrls - Enable/disable rating JavaScript by URL. Valid values:
disable
,enable
.
ProfileFtgdWfFilter, ProfileFtgdWfFilterArgs
- Action string
- Action to take for matches. Valid values:
block
,authenticate
,monitor
,warning
. - Auth
Usr List<Pulumiverse.Grps Fortios. Filter. Web. Inputs. Profile Ftgd Wf Filter Auth Usr Grp> - Groups with permission to authenticate. The structure of
auth_usr_grp
block is documented below. - Category int
- Categories and groups the filter examines.
- Id int
- ID number.
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Override
Replacemsg string - Override replacement message.
- Warn
Duration string - Duration of warnings.
- Warning
Duration stringType - Re-display warning after closing browser or after a timeout. Valid values:
session
,timeout
. - Warning
Prompt string - Warning prompts in each category or each domain. Valid values:
per-domain
,per-category
.
- Action string
- Action to take for matches. Valid values:
block
,authenticate
,monitor
,warning
. - Auth
Usr []ProfileGrps Ftgd Wf Filter Auth Usr Grp - Groups with permission to authenticate. The structure of
auth_usr_grp
block is documented below. - Category int
- Categories and groups the filter examines.
- Id int
- ID number.
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Override
Replacemsg string - Override replacement message.
- Warn
Duration string - Duration of warnings.
- Warning
Duration stringType - Re-display warning after closing browser or after a timeout. Valid values:
session
,timeout
. - Warning
Prompt string - Warning prompts in each category or each domain. Valid values:
per-domain
,per-category
.
- action String
- Action to take for matches. Valid values:
block
,authenticate
,monitor
,warning
. - auth
Usr List<ProfileGrps Ftgd Wf Filter Auth Usr Grp> - Groups with permission to authenticate. The structure of
auth_usr_grp
block is documented below. - category Integer
- Categories and groups the filter examines.
- id Integer
- ID number.
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - override
Replacemsg String - Override replacement message.
- warn
Duration String - Duration of warnings.
- warning
Duration StringType - Re-display warning after closing browser or after a timeout. Valid values:
session
,timeout
. - warning
Prompt String - Warning prompts in each category or each domain. Valid values:
per-domain
,per-category
.
- action string
- Action to take for matches. Valid values:
block
,authenticate
,monitor
,warning
. - auth
Usr ProfileGrps Ftgd Wf Filter Auth Usr Grp[] - Groups with permission to authenticate. The structure of
auth_usr_grp
block is documented below. - category number
- Categories and groups the filter examines.
- id number
- ID number.
- log string
- Enable/disable logging. Valid values:
enable
,disable
. - override
Replacemsg string - Override replacement message.
- warn
Duration string - Duration of warnings.
- warning
Duration stringType - Re-display warning after closing browser or after a timeout. Valid values:
session
,timeout
. - warning
Prompt string - Warning prompts in each category or each domain. Valid values:
per-domain
,per-category
.
- action str
- Action to take for matches. Valid values:
block
,authenticate
,monitor
,warning
. - auth_
usr_ Sequence[Profilegrps Ftgd Wf Filter Auth Usr Grp] - Groups with permission to authenticate. The structure of
auth_usr_grp
block is documented below. - category int
- Categories and groups the filter examines.
- id int
- ID number.
- log str
- Enable/disable logging. Valid values:
enable
,disable
. - override_
replacemsg str - Override replacement message.
- warn_
duration str - Duration of warnings.
- warning_
duration_ strtype - Re-display warning after closing browser or after a timeout. Valid values:
session
,timeout
. - warning_
prompt str - Warning prompts in each category or each domain. Valid values:
per-domain
,per-category
.
- action String
- Action to take for matches. Valid values:
block
,authenticate
,monitor
,warning
. - auth
Usr List<Property Map>Grps - Groups with permission to authenticate. The structure of
auth_usr_grp
block is documented below. - category Number
- Categories and groups the filter examines.
- id Number
- ID number.
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - override
Replacemsg String - Override replacement message.
- warn
Duration String - Duration of warnings.
- warning
Duration StringType - Re-display warning after closing browser or after a timeout. Valid values:
session
,timeout
. - warning
Prompt String - Warning prompts in each category or each domain. Valid values:
per-domain
,per-category
.
ProfileFtgdWfFilterAuthUsrGrp, ProfileFtgdWfFilterAuthUsrGrpArgs
- Name string
- User group name.
- Name string
- User group name.
- name String
- User group name.
- name string
- User group name.
- name str
- User group name.
- name String
- User group name.
ProfileFtgdWfQuota, ProfileFtgdWfQuotaArgs
- Category string
- FortiGuard categories to apply quota to (category action must be set to monitor).
- Duration string
- Duration of quota.
- Id int
- ID number.
- Override
Replacemsg string - Override replacement message.
- Type string
- Quota type. Valid values:
time
,traffic
. - Unit string
- Traffic quota unit of measurement. Valid values:
B
,KB
,MB
,GB
. - Value int
- Traffic quota value.
- Category string
- FortiGuard categories to apply quota to (category action must be set to monitor).
- Duration string
- Duration of quota.
- Id int
- ID number.
- Override
Replacemsg string - Override replacement message.
- Type string
- Quota type. Valid values:
time
,traffic
. - Unit string
- Traffic quota unit of measurement. Valid values:
B
,KB
,MB
,GB
. - Value int
- Traffic quota value.
- category String
- FortiGuard categories to apply quota to (category action must be set to monitor).
- duration String
- Duration of quota.
- id Integer
- ID number.
- override
Replacemsg String - Override replacement message.
- type String
- Quota type. Valid values:
time
,traffic
. - unit String
- Traffic quota unit of measurement. Valid values:
B
,KB
,MB
,GB
. - value Integer
- Traffic quota value.
- category string
- FortiGuard categories to apply quota to (category action must be set to monitor).
- duration string
- Duration of quota.
- id number
- ID number.
- override
Replacemsg string - Override replacement message.
- type string
- Quota type. Valid values:
time
,traffic
. - unit string
- Traffic quota unit of measurement. Valid values:
B
,KB
,MB
,GB
. - value number
- Traffic quota value.
- category str
- FortiGuard categories to apply quota to (category action must be set to monitor).
- duration str
- Duration of quota.
- id int
- ID number.
- override_
replacemsg str - Override replacement message.
- type str
- Quota type. Valid values:
time
,traffic
. - unit str
- Traffic quota unit of measurement. Valid values:
B
,KB
,MB
,GB
. - value int
- Traffic quota value.
- category String
- FortiGuard categories to apply quota to (category action must be set to monitor).
- duration String
- Duration of quota.
- id Number
- ID number.
- override
Replacemsg String - Override replacement message.
- type String
- Quota type. Valid values:
time
,traffic
. - unit String
- Traffic quota unit of measurement. Valid values:
B
,KB
,MB
,GB
. - value Number
- Traffic quota value.
ProfileOverride, ProfileOverrideArgs
- string
- Allow/deny browser-based (cookie) overrides. Valid values:
allow
,deny
. - Ovrd
Dur string - Override duration.
- Ovrd
Dur stringMode - Override duration mode. Valid values:
constant
,ask
. - Ovrd
Scope string - Override scope. Valid values:
user
,user-group
,ip
,browser
,ask
. - Ovrd
User List<Pulumiverse.Groups Fortios. Filter. Web. Inputs. Profile Override Ovrd User Group> - User groups with permission to use the override. The structure of
ovrd_user_group
block is documented below. - Profile
Attribute string - Profile attribute to retrieve from the RADIUS server. Valid values:
User-Name
,NAS-IP-Address
,Framed-IP-Address
,Framed-IP-Netmask
,Filter-Id
,Login-IP-Host
,Reply-Message
,Callback-Number
,Callback-Id
,Framed-Route
,Framed-IPX-Network
,Class
,Called-Station-Id
,Calling-Station-Id
,NAS-Identifier
,Proxy-State
,Login-LAT-Service
,Login-LAT-Node
,Login-LAT-Group
,Framed-AppleTalk-Zone
,Acct-Session-Id
,Acct-Multi-Session-Id
. - Profile
Type string - Override profile type. Valid values:
list
,radius
. - Profiles
List<Pulumiverse.
Fortios. Filter. Web. Inputs. Profile Override Profile> - Web filter profile with permission to create overrides. The structure of
profile
block is documented below.
- string
- Allow/deny browser-based (cookie) overrides. Valid values:
allow
,deny
. - Ovrd
Dur string - Override duration.
- Ovrd
Dur stringMode - Override duration mode. Valid values:
constant
,ask
. - Ovrd
Scope string - Override scope. Valid values:
user
,user-group
,ip
,browser
,ask
. - Ovrd
User []ProfileGroups Override Ovrd User Group - User groups with permission to use the override. The structure of
ovrd_user_group
block is documented below. - Profile
Attribute string - Profile attribute to retrieve from the RADIUS server. Valid values:
User-Name
,NAS-IP-Address
,Framed-IP-Address
,Framed-IP-Netmask
,Filter-Id
,Login-IP-Host
,Reply-Message
,Callback-Number
,Callback-Id
,Framed-Route
,Framed-IPX-Network
,Class
,Called-Station-Id
,Calling-Station-Id
,NAS-Identifier
,Proxy-State
,Login-LAT-Service
,Login-LAT-Node
,Login-LAT-Group
,Framed-AppleTalk-Zone
,Acct-Session-Id
,Acct-Multi-Session-Id
. - Profile
Type string - Override profile type. Valid values:
list
,radius
. - Profiles
[]Profile
Override Profile - Web filter profile with permission to create overrides. The structure of
profile
block is documented below.
- String
- Allow/deny browser-based (cookie) overrides. Valid values:
allow
,deny
. - ovrd
Dur String - Override duration.
- ovrd
Dur StringMode - Override duration mode. Valid values:
constant
,ask
. - ovrd
Scope String - Override scope. Valid values:
user
,user-group
,ip
,browser
,ask
. - ovrd
User List<ProfileGroups Override Ovrd User Group> - User groups with permission to use the override. The structure of
ovrd_user_group
block is documented below. - profile
Attribute String - Profile attribute to retrieve from the RADIUS server. Valid values:
User-Name
,NAS-IP-Address
,Framed-IP-Address
,Framed-IP-Netmask
,Filter-Id
,Login-IP-Host
,Reply-Message
,Callback-Number
,Callback-Id
,Framed-Route
,Framed-IPX-Network
,Class
,Called-Station-Id
,Calling-Station-Id
,NAS-Identifier
,Proxy-State
,Login-LAT-Service
,Login-LAT-Node
,Login-LAT-Group
,Framed-AppleTalk-Zone
,Acct-Session-Id
,Acct-Multi-Session-Id
. - profile
Type String - Override profile type. Valid values:
list
,radius
. - profiles
List<Profile
Override Profile> - Web filter profile with permission to create overrides. The structure of
profile
block is documented below.
- string
- Allow/deny browser-based (cookie) overrides. Valid values:
allow
,deny
. - ovrd
Dur string - Override duration.
- ovrd
Dur stringMode - Override duration mode. Valid values:
constant
,ask
. - ovrd
Scope string - Override scope. Valid values:
user
,user-group
,ip
,browser
,ask
. - ovrd
User ProfileGroups Override Ovrd User Group[] - User groups with permission to use the override. The structure of
ovrd_user_group
block is documented below. - profile
Attribute string - Profile attribute to retrieve from the RADIUS server. Valid values:
User-Name
,NAS-IP-Address
,Framed-IP-Address
,Framed-IP-Netmask
,Filter-Id
,Login-IP-Host
,Reply-Message
,Callback-Number
,Callback-Id
,Framed-Route
,Framed-IPX-Network
,Class
,Called-Station-Id
,Calling-Station-Id
,NAS-Identifier
,Proxy-State
,Login-LAT-Service
,Login-LAT-Node
,Login-LAT-Group
,Framed-AppleTalk-Zone
,Acct-Session-Id
,Acct-Multi-Session-Id
. - profile
Type string - Override profile type. Valid values:
list
,radius
. - profiles
Profile
Override Profile[] - Web filter profile with permission to create overrides. The structure of
profile
block is documented below.
- str
- Allow/deny browser-based (cookie) overrides. Valid values:
allow
,deny
. - ovrd_
dur str - Override duration.
- ovrd_
dur_ strmode - Override duration mode. Valid values:
constant
,ask
. - ovrd_
scope str - Override scope. Valid values:
user
,user-group
,ip
,browser
,ask
. - ovrd_
user_ Sequence[Profilegroups Override Ovrd User Group] - User groups with permission to use the override. The structure of
ovrd_user_group
block is documented below. - profile_
attribute str - Profile attribute to retrieve from the RADIUS server. Valid values:
User-Name
,NAS-IP-Address
,Framed-IP-Address
,Framed-IP-Netmask
,Filter-Id
,Login-IP-Host
,Reply-Message
,Callback-Number
,Callback-Id
,Framed-Route
,Framed-IPX-Network
,Class
,Called-Station-Id
,Calling-Station-Id
,NAS-Identifier
,Proxy-State
,Login-LAT-Service
,Login-LAT-Node
,Login-LAT-Group
,Framed-AppleTalk-Zone
,Acct-Session-Id
,Acct-Multi-Session-Id
. - profile_
type str - Override profile type. Valid values:
list
,radius
. - profiles
Sequence[Profile
Override Profile] - Web filter profile with permission to create overrides. The structure of
profile
block is documented below.
- String
- Allow/deny browser-based (cookie) overrides. Valid values:
allow
,deny
. - ovrd
Dur String - Override duration.
- ovrd
Dur StringMode - Override duration mode. Valid values:
constant
,ask
. - ovrd
Scope String - Override scope. Valid values:
user
,user-group
,ip
,browser
,ask
. - ovrd
User List<Property Map>Groups - User groups with permission to use the override. The structure of
ovrd_user_group
block is documented below. - profile
Attribute String - Profile attribute to retrieve from the RADIUS server. Valid values:
User-Name
,NAS-IP-Address
,Framed-IP-Address
,Framed-IP-Netmask
,Filter-Id
,Login-IP-Host
,Reply-Message
,Callback-Number
,Callback-Id
,Framed-Route
,Framed-IPX-Network
,Class
,Called-Station-Id
,Calling-Station-Id
,NAS-Identifier
,Proxy-State
,Login-LAT-Service
,Login-LAT-Node
,Login-LAT-Group
,Framed-AppleTalk-Zone
,Acct-Session-Id
,Acct-Multi-Session-Id
. - profile
Type String - Override profile type. Valid values:
list
,radius
. - profiles List<Property Map>
- Web filter profile with permission to create overrides. The structure of
profile
block is documented below.
ProfileOverrideOvrdUserGroup, ProfileOverrideOvrdUserGroupArgs
- Name string
- User group name.
- Name string
- User group name.
- name String
- User group name.
- name string
- User group name.
- name str
- User group name.
- name String
- User group name.
ProfileOverrideProfile, ProfileOverrideProfileArgs
- Name string
- Web profile.
- Name string
- Web profile.
- name String
- Web profile.
- name string
- Web profile.
- name str
- Web profile.
- name String
- Web profile.
ProfileWeb, ProfileWebArgs
- Allowlist string
- FortiGuard allowlist settings. Valid values:
exempt-av
,exempt-webcontent
,exempt-activex-java-cookie
,exempt-dlp
,exempt-rangeblock
,extended-log-others
. - Blacklist string
- Enable/disable automatic addition of URLs detected by FortiSandbox to blacklist. Valid values:
enable
,disable
. - Blocklist string
- Enable/disable automatic addition of URLs detected by FortiSandbox to blocklist. Valid values:
enable
,disable
. - Bword
Table int - Banned word table ID.
- Bword
Threshold int - Banned word score threshold.
- Content
Header intList - Content header list.
- Keyword
Matches List<Pulumiverse.Fortios. Filter. Web. Inputs. Profile Web Keyword Match> - Search keywords to log when match is found. The structure of
keyword_match
block is documented below. - Log
Search string - Enable/disable logging all search phrases. Valid values:
enable
,disable
. - Safe
Search string - Safe search type. Valid values:
url
,header
. - Urlfilter
Table int - URL filter table ID.
- Vimeo
Restrict string - Set Vimeo-restrict ("7" = don't show mature content, "134" = don't show unrated and mature content). A value of cookie "content_rating".
- Whitelist string
- FortiGuard whitelist settings. Valid values:
exempt-av
,exempt-webcontent
,exempt-activex-java-cookie
,exempt-dlp
,exempt-rangeblock
,extended-log-others
. - Youtube
Restrict string - YouTube EDU filter level. Valid values:
none
,strict
,moderate
.
- Allowlist string
- FortiGuard allowlist settings. Valid values:
exempt-av
,exempt-webcontent
,exempt-activex-java-cookie
,exempt-dlp
,exempt-rangeblock
,extended-log-others
. - Blacklist string
- Enable/disable automatic addition of URLs detected by FortiSandbox to blacklist. Valid values:
enable
,disable
. - Blocklist string
- Enable/disable automatic addition of URLs detected by FortiSandbox to blocklist. Valid values:
enable
,disable
. - Bword
Table int - Banned word table ID.
- Bword
Threshold int - Banned word score threshold.
- Content
Header intList - Content header list.
- Keyword
Matches []ProfileWeb Keyword Match - Search keywords to log when match is found. The structure of
keyword_match
block is documented below. - Log
Search string - Enable/disable logging all search phrases. Valid values:
enable
,disable
. - Safe
Search string - Safe search type. Valid values:
url
,header
. - Urlfilter
Table int - URL filter table ID.
- Vimeo
Restrict string - Set Vimeo-restrict ("7" = don't show mature content, "134" = don't show unrated and mature content). A value of cookie "content_rating".
- Whitelist string
- FortiGuard whitelist settings. Valid values:
exempt-av
,exempt-webcontent
,exempt-activex-java-cookie
,exempt-dlp
,exempt-rangeblock
,extended-log-others
. - Youtube
Restrict string - YouTube EDU filter level. Valid values:
none
,strict
,moderate
.
- allowlist String
- FortiGuard allowlist settings. Valid values:
exempt-av
,exempt-webcontent
,exempt-activex-java-cookie
,exempt-dlp
,exempt-rangeblock
,extended-log-others
. - blacklist String
- Enable/disable automatic addition of URLs detected by FortiSandbox to blacklist. Valid values:
enable
,disable
. - blocklist String
- Enable/disable automatic addition of URLs detected by FortiSandbox to blocklist. Valid values:
enable
,disable
. - bword
Table Integer - Banned word table ID.
- bword
Threshold Integer - Banned word score threshold.
- content
Header IntegerList - Content header list.
- keyword
Matches List<ProfileWeb Keyword Match> - Search keywords to log when match is found. The structure of
keyword_match
block is documented below. - log
Search String - Enable/disable logging all search phrases. Valid values:
enable
,disable
. - safe
Search String - Safe search type. Valid values:
url
,header
. - urlfilter
Table Integer - URL filter table ID.
- vimeo
Restrict String - Set Vimeo-restrict ("7" = don't show mature content, "134" = don't show unrated and mature content). A value of cookie "content_rating".
- whitelist String
- FortiGuard whitelist settings. Valid values:
exempt-av
,exempt-webcontent
,exempt-activex-java-cookie
,exempt-dlp
,exempt-rangeblock
,extended-log-others
. - youtube
Restrict String - YouTube EDU filter level. Valid values:
none
,strict
,moderate
.
- allowlist string
- FortiGuard allowlist settings. Valid values:
exempt-av
,exempt-webcontent
,exempt-activex-java-cookie
,exempt-dlp
,exempt-rangeblock
,extended-log-others
. - blacklist string
- Enable/disable automatic addition of URLs detected by FortiSandbox to blacklist. Valid values:
enable
,disable
. - blocklist string
- Enable/disable automatic addition of URLs detected by FortiSandbox to blocklist. Valid values:
enable
,disable
. - bword
Table number - Banned word table ID.
- bword
Threshold number - Banned word score threshold.
- content
Header numberList - Content header list.
- keyword
Matches ProfileWeb Keyword Match[] - Search keywords to log when match is found. The structure of
keyword_match
block is documented below. - log
Search string - Enable/disable logging all search phrases. Valid values:
enable
,disable
. - safe
Search string - Safe search type. Valid values:
url
,header
. - urlfilter
Table number - URL filter table ID.
- vimeo
Restrict string - Set Vimeo-restrict ("7" = don't show mature content, "134" = don't show unrated and mature content). A value of cookie "content_rating".
- whitelist string
- FortiGuard whitelist settings. Valid values:
exempt-av
,exempt-webcontent
,exempt-activex-java-cookie
,exempt-dlp
,exempt-rangeblock
,extended-log-others
. - youtube
Restrict string - YouTube EDU filter level. Valid values:
none
,strict
,moderate
.
- allowlist str
- FortiGuard allowlist settings. Valid values:
exempt-av
,exempt-webcontent
,exempt-activex-java-cookie
,exempt-dlp
,exempt-rangeblock
,extended-log-others
. - blacklist str
- Enable/disable automatic addition of URLs detected by FortiSandbox to blacklist. Valid values:
enable
,disable
. - blocklist str
- Enable/disable automatic addition of URLs detected by FortiSandbox to blocklist. Valid values:
enable
,disable
. - bword_
table int - Banned word table ID.
- bword_
threshold int - Banned word score threshold.
- content_
header_ intlist - Content header list.
- keyword_
matches Sequence[ProfileWeb Keyword Match] - Search keywords to log when match is found. The structure of
keyword_match
block is documented below. - log_
search str - Enable/disable logging all search phrases. Valid values:
enable
,disable
. - safe_
search str - Safe search type. Valid values:
url
,header
. - urlfilter_
table int - URL filter table ID.
- vimeo_
restrict str - Set Vimeo-restrict ("7" = don't show mature content, "134" = don't show unrated and mature content). A value of cookie "content_rating".
- whitelist str
- FortiGuard whitelist settings. Valid values:
exempt-av
,exempt-webcontent
,exempt-activex-java-cookie
,exempt-dlp
,exempt-rangeblock
,extended-log-others
. - youtube_
restrict str - YouTube EDU filter level. Valid values:
none
,strict
,moderate
.
- allowlist String
- FortiGuard allowlist settings. Valid values:
exempt-av
,exempt-webcontent
,exempt-activex-java-cookie
,exempt-dlp
,exempt-rangeblock
,extended-log-others
. - blacklist String
- Enable/disable automatic addition of URLs detected by FortiSandbox to blacklist. Valid values:
enable
,disable
. - blocklist String
- Enable/disable automatic addition of URLs detected by FortiSandbox to blocklist. Valid values:
enable
,disable
. - bword
Table Number - Banned word table ID.
- bword
Threshold Number - Banned word score threshold.
- content
Header NumberList - Content header list.
- keyword
Matches List<Property Map> - Search keywords to log when match is found. The structure of
keyword_match
block is documented below. - log
Search String - Enable/disable logging all search phrases. Valid values:
enable
,disable
. - safe
Search String - Safe search type. Valid values:
url
,header
. - urlfilter
Table Number - URL filter table ID.
- vimeo
Restrict String - Set Vimeo-restrict ("7" = don't show mature content, "134" = don't show unrated and mature content). A value of cookie "content_rating".
- whitelist String
- FortiGuard whitelist settings. Valid values:
exempt-av
,exempt-webcontent
,exempt-activex-java-cookie
,exempt-dlp
,exempt-rangeblock
,extended-log-others
. - youtube
Restrict String - YouTube EDU filter level. Valid values:
none
,strict
,moderate
.
ProfileWebKeywordMatch, ProfileWebKeywordMatchArgs
- Pattern string
- Pattern/keyword to search for.
- Pattern string
- Pattern/keyword to search for.
- pattern String
- Pattern/keyword to search for.
- pattern string
- Pattern/keyword to search for.
- pattern str
- Pattern/keyword to search for.
- pattern String
- Pattern/keyword to search for.
ProfileWispServer, ProfileWispServerArgs
- Name string
- Server name.
- Name string
- Server name.
- name String
- Server name.
- name string
- Server name.
- name str
- Server name.
- name String
- Server name.
ProfileYoutubeChannelFilter, ProfileYoutubeChannelFilterArgs
- channel_
id str - YouTube channel ID to be filtered.
- comment str
- Comment.
- id int
- ID.
Import
Webfilter Profile can be imported using any of these accepted formats:
$ pulumi import fortios:filter/web/profile:Profile labelname {{name}}
If you do not want to import arguments of block:
$ export “FORTIOS_IMPORT_TABLE”=“false”
$ pulumi import fortios:filter/web/profile:Profile labelname {{name}}
$ unset “FORTIOS_IMPORT_TABLE”
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- fortios pulumiverse/pulumi-fortios
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
fortios
Terraform Provider.