1. Packages
  2. Fortios
  3. API Docs
  4. firewall
  5. Accessproxy
Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

fortios.firewall.Accessproxy

Explore with Pulumi AI

fortios logo
Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

    Configure IPv4 access proxy. Applies to FortiOS Version >= 7.0.1.

    Create Accessproxy Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new Accessproxy(name: string, args?: AccessproxyArgs, opts?: CustomResourceOptions);
    @overload
    def Accessproxy(resource_name: str,
                    args: Optional[AccessproxyArgs] = None,
                    opts: Optional[ResourceOptions] = None)
    
    @overload
    def Accessproxy(resource_name: str,
                    opts: Optional[ResourceOptions] = None,
                    add_vhost_domain_to_dnsdb: Optional[str] = None,
                    api_gateway6s: Optional[Sequence[AccessproxyApiGateway6Args]] = None,
                    api_gateways: Optional[Sequence[AccessproxyApiGatewayArgs]] = None,
                    auth_portal: Optional[str] = None,
                    auth_virtual_host: Optional[str] = None,
                    client_cert: Optional[str] = None,
                    decrypted_traffic_mirror: Optional[str] = None,
                    dynamic_sort_subtable: Optional[str] = None,
                    empty_cert_action: Optional[str] = None,
                    get_all_tables: Optional[str] = None,
                    http_supported_max_version: Optional[str] = None,
                    log_blocked_traffic: Optional[str] = None,
                    name: Optional[str] = None,
                    svr_pool_multiplex: Optional[str] = None,
                    svr_pool_server_max_concurrent_request: Optional[int] = None,
                    svr_pool_server_max_request: Optional[int] = None,
                    svr_pool_ttl: Optional[int] = None,
                    user_agent_detect: Optional[str] = None,
                    vdomparam: Optional[str] = None,
                    vip: Optional[str] = None)
    func NewAccessproxy(ctx *Context, name string, args *AccessproxyArgs, opts ...ResourceOption) (*Accessproxy, error)
    public Accessproxy(string name, AccessproxyArgs? args = null, CustomResourceOptions? opts = null)
    public Accessproxy(String name, AccessproxyArgs args)
    public Accessproxy(String name, AccessproxyArgs args, CustomResourceOptions options)
    
    type: fortios:firewall:Accessproxy
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args AccessproxyArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args AccessproxyArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args AccessproxyArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args AccessproxyArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args AccessproxyArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var accessproxyResource = new Fortios.Firewall.Accessproxy("accessproxyResource", new()
    {
        AddVhostDomainToDnsdb = "string",
        ApiGateway6s = new[]
        {
            new Fortios.Firewall.Inputs.AccessproxyApiGateway6Args
            {
                Applications = new[]
                {
                    new Fortios.Firewall.Inputs.AccessproxyApiGateway6ApplicationArgs
                    {
                        Name = "string",
                    },
                },
                H2Support = "string",
                H3Support = "string",
                HttpCookieAge = 0,
                HttpCookieDomain = "string",
                HttpCookieDomainFromHost = "string",
                HttpCookieGeneration = 0,
                HttpCookiePath = "string",
                HttpCookieShare = "string",
                HttpsCookieSecure = "string",
                Id = 0,
                LdbMethod = "string",
                Persistence = "string",
                Quic = new Fortios.Firewall.Inputs.AccessproxyApiGateway6QuicArgs
                {
                    AckDelayExponent = 0,
                    ActiveConnectionIdLimit = 0,
                    ActiveMigration = "string",
                    GreaseQuicBit = "string",
                    MaxAckDelay = 0,
                    MaxDatagramFrameSize = 0,
                    MaxIdleTimeout = 0,
                    MaxUdpPayloadSize = 0,
                },
                Realservers = new[]
                {
                    new Fortios.Firewall.Inputs.AccessproxyApiGateway6RealserverArgs
                    {
                        AddrType = "string",
                        Address = "string",
                        Domain = "string",
                        ExternalAuth = "string",
                        HealthCheck = "string",
                        HealthCheckProto = "string",
                        HolddownInterval = "string",
                        HttpHost = "string",
                        Id = 0,
                        Ip = "string",
                        Mappedport = "string",
                        Port = 0,
                        SshClientCert = "string",
                        SshHostKeyValidation = "string",
                        SshHostKeys = new[]
                        {
                            new Fortios.Firewall.Inputs.AccessproxyApiGateway6RealserverSshHostKeyArgs
                            {
                                Name = "string",
                            },
                        },
                        Status = "string",
                        TranslateHost = "string",
                        TunnelEncryption = "string",
                        Type = "string",
                        Weight = 0,
                    },
                },
                SamlRedirect = "string",
                SamlServer = "string",
                Service = "string",
                SslAlgorithm = "string",
                SslCipherSuites = new[]
                {
                    new Fortios.Firewall.Inputs.AccessproxyApiGateway6SslCipherSuiteArgs
                    {
                        Cipher = "string",
                        Priority = 0,
                        Versions = "string",
                    },
                },
                SslDhBits = "string",
                SslMaxVersion = "string",
                SslMinVersion = "string",
                SslRenegotiation = "string",
                SslVpnWebPortal = "string",
                UrlMap = "string",
                UrlMapType = "string",
                VirtualHost = "string",
            },
        },
        ApiGateways = new[]
        {
            new Fortios.Firewall.Inputs.AccessproxyApiGatewayArgs
            {
                Applications = new[]
                {
                    new Fortios.Firewall.Inputs.AccessproxyApiGatewayApplicationArgs
                    {
                        Name = "string",
                    },
                },
                H2Support = "string",
                H3Support = "string",
                HttpCookieAge = 0,
                HttpCookieDomain = "string",
                HttpCookieDomainFromHost = "string",
                HttpCookieGeneration = 0,
                HttpCookiePath = "string",
                HttpCookieShare = "string",
                HttpsCookieSecure = "string",
                Id = 0,
                LdbMethod = "string",
                Persistence = "string",
                Quic = new Fortios.Firewall.Inputs.AccessproxyApiGatewayQuicArgs
                {
                    AckDelayExponent = 0,
                    ActiveConnectionIdLimit = 0,
                    ActiveMigration = "string",
                    GreaseQuicBit = "string",
                    MaxAckDelay = 0,
                    MaxDatagramFrameSize = 0,
                    MaxIdleTimeout = 0,
                    MaxUdpPayloadSize = 0,
                },
                Realservers = new[]
                {
                    new Fortios.Firewall.Inputs.AccessproxyApiGatewayRealserverArgs
                    {
                        AddrType = "string",
                        Address = "string",
                        Domain = "string",
                        ExternalAuth = "string",
                        HealthCheck = "string",
                        HealthCheckProto = "string",
                        HolddownInterval = "string",
                        HttpHost = "string",
                        Id = 0,
                        Ip = "string",
                        Mappedport = "string",
                        Port = 0,
                        SshClientCert = "string",
                        SshHostKeyValidation = "string",
                        SshHostKeys = new[]
                        {
                            new Fortios.Firewall.Inputs.AccessproxyApiGatewayRealserverSshHostKeyArgs
                            {
                                Name = "string",
                            },
                        },
                        Status = "string",
                        TranslateHost = "string",
                        TunnelEncryption = "string",
                        Type = "string",
                        Weight = 0,
                    },
                },
                SamlRedirect = "string",
                SamlServer = "string",
                Service = "string",
                SslAlgorithm = "string",
                SslCipherSuites = new[]
                {
                    new Fortios.Firewall.Inputs.AccessproxyApiGatewaySslCipherSuiteArgs
                    {
                        Cipher = "string",
                        Priority = 0,
                        Versions = "string",
                    },
                },
                SslDhBits = "string",
                SslMaxVersion = "string",
                SslMinVersion = "string",
                SslRenegotiation = "string",
                SslVpnWebPortal = "string",
                UrlMap = "string",
                UrlMapType = "string",
                VirtualHost = "string",
            },
        },
        AuthPortal = "string",
        AuthVirtualHost = "string",
        ClientCert = "string",
        DecryptedTrafficMirror = "string",
        DynamicSortSubtable = "string",
        EmptyCertAction = "string",
        GetAllTables = "string",
        HttpSupportedMaxVersion = "string",
        LogBlockedTraffic = "string",
        Name = "string",
        SvrPoolMultiplex = "string",
        SvrPoolServerMaxConcurrentRequest = 0,
        SvrPoolServerMaxRequest = 0,
        SvrPoolTtl = 0,
        UserAgentDetect = "string",
        Vdomparam = "string",
        Vip = "string",
    });
    
    example, err := firewall.NewAccessproxy(ctx, "accessproxyResource", &firewall.AccessproxyArgs{
    	AddVhostDomainToDnsdb: pulumi.String("string"),
    	ApiGateway6s: firewall.AccessproxyApiGateway6Array{
    		&firewall.AccessproxyApiGateway6Args{
    			Applications: firewall.AccessproxyApiGateway6ApplicationArray{
    				&firewall.AccessproxyApiGateway6ApplicationArgs{
    					Name: pulumi.String("string"),
    				},
    			},
    			H2Support:                pulumi.String("string"),
    			H3Support:                pulumi.String("string"),
    			HttpCookieAge:            pulumi.Int(0),
    			HttpCookieDomain:         pulumi.String("string"),
    			HttpCookieDomainFromHost: pulumi.String("string"),
    			HttpCookieGeneration:     pulumi.Int(0),
    			HttpCookiePath:           pulumi.String("string"),
    			HttpCookieShare:          pulumi.String("string"),
    			HttpsCookieSecure:        pulumi.String("string"),
    			Id:                       pulumi.Int(0),
    			LdbMethod:                pulumi.String("string"),
    			Persistence:              pulumi.String("string"),
    			Quic: &firewall.AccessproxyApiGateway6QuicArgs{
    				AckDelayExponent:        pulumi.Int(0),
    				ActiveConnectionIdLimit: pulumi.Int(0),
    				ActiveMigration:         pulumi.String("string"),
    				GreaseQuicBit:           pulumi.String("string"),
    				MaxAckDelay:             pulumi.Int(0),
    				MaxDatagramFrameSize:    pulumi.Int(0),
    				MaxIdleTimeout:          pulumi.Int(0),
    				MaxUdpPayloadSize:       pulumi.Int(0),
    			},
    			Realservers: firewall.AccessproxyApiGateway6RealserverArray{
    				&firewall.AccessproxyApiGateway6RealserverArgs{
    					AddrType:             pulumi.String("string"),
    					Address:              pulumi.String("string"),
    					Domain:               pulumi.String("string"),
    					ExternalAuth:         pulumi.String("string"),
    					HealthCheck:          pulumi.String("string"),
    					HealthCheckProto:     pulumi.String("string"),
    					HolddownInterval:     pulumi.String("string"),
    					HttpHost:             pulumi.String("string"),
    					Id:                   pulumi.Int(0),
    					Ip:                   pulumi.String("string"),
    					Mappedport:           pulumi.String("string"),
    					Port:                 pulumi.Int(0),
    					SshClientCert:        pulumi.String("string"),
    					SshHostKeyValidation: pulumi.String("string"),
    					SshHostKeys: firewall.AccessproxyApiGateway6RealserverSshHostKeyArray{
    						&firewall.AccessproxyApiGateway6RealserverSshHostKeyArgs{
    							Name: pulumi.String("string"),
    						},
    					},
    					Status:           pulumi.String("string"),
    					TranslateHost:    pulumi.String("string"),
    					TunnelEncryption: pulumi.String("string"),
    					Type:             pulumi.String("string"),
    					Weight:           pulumi.Int(0),
    				},
    			},
    			SamlRedirect: pulumi.String("string"),
    			SamlServer:   pulumi.String("string"),
    			Service:      pulumi.String("string"),
    			SslAlgorithm: pulumi.String("string"),
    			SslCipherSuites: firewall.AccessproxyApiGateway6SslCipherSuiteArray{
    				&firewall.AccessproxyApiGateway6SslCipherSuiteArgs{
    					Cipher:   pulumi.String("string"),
    					Priority: pulumi.Int(0),
    					Versions: pulumi.String("string"),
    				},
    			},
    			SslDhBits:        pulumi.String("string"),
    			SslMaxVersion:    pulumi.String("string"),
    			SslMinVersion:    pulumi.String("string"),
    			SslRenegotiation: pulumi.String("string"),
    			SslVpnWebPortal:  pulumi.String("string"),
    			UrlMap:           pulumi.String("string"),
    			UrlMapType:       pulumi.String("string"),
    			VirtualHost:      pulumi.String("string"),
    		},
    	},
    	ApiGateways: firewall.AccessproxyApiGatewayArray{
    		&firewall.AccessproxyApiGatewayArgs{
    			Applications: firewall.AccessproxyApiGatewayApplicationArray{
    				&firewall.AccessproxyApiGatewayApplicationArgs{
    					Name: pulumi.String("string"),
    				},
    			},
    			H2Support:                pulumi.String("string"),
    			H3Support:                pulumi.String("string"),
    			HttpCookieAge:            pulumi.Int(0),
    			HttpCookieDomain:         pulumi.String("string"),
    			HttpCookieDomainFromHost: pulumi.String("string"),
    			HttpCookieGeneration:     pulumi.Int(0),
    			HttpCookiePath:           pulumi.String("string"),
    			HttpCookieShare:          pulumi.String("string"),
    			HttpsCookieSecure:        pulumi.String("string"),
    			Id:                       pulumi.Int(0),
    			LdbMethod:                pulumi.String("string"),
    			Persistence:              pulumi.String("string"),
    			Quic: &firewall.AccessproxyApiGatewayQuicArgs{
    				AckDelayExponent:        pulumi.Int(0),
    				ActiveConnectionIdLimit: pulumi.Int(0),
    				ActiveMigration:         pulumi.String("string"),
    				GreaseQuicBit:           pulumi.String("string"),
    				MaxAckDelay:             pulumi.Int(0),
    				MaxDatagramFrameSize:    pulumi.Int(0),
    				MaxIdleTimeout:          pulumi.Int(0),
    				MaxUdpPayloadSize:       pulumi.Int(0),
    			},
    			Realservers: firewall.AccessproxyApiGatewayRealserverArray{
    				&firewall.AccessproxyApiGatewayRealserverArgs{
    					AddrType:             pulumi.String("string"),
    					Address:              pulumi.String("string"),
    					Domain:               pulumi.String("string"),
    					ExternalAuth:         pulumi.String("string"),
    					HealthCheck:          pulumi.String("string"),
    					HealthCheckProto:     pulumi.String("string"),
    					HolddownInterval:     pulumi.String("string"),
    					HttpHost:             pulumi.String("string"),
    					Id:                   pulumi.Int(0),
    					Ip:                   pulumi.String("string"),
    					Mappedport:           pulumi.String("string"),
    					Port:                 pulumi.Int(0),
    					SshClientCert:        pulumi.String("string"),
    					SshHostKeyValidation: pulumi.String("string"),
    					SshHostKeys: firewall.AccessproxyApiGatewayRealserverSshHostKeyArray{
    						&firewall.AccessproxyApiGatewayRealserverSshHostKeyArgs{
    							Name: pulumi.String("string"),
    						},
    					},
    					Status:           pulumi.String("string"),
    					TranslateHost:    pulumi.String("string"),
    					TunnelEncryption: pulumi.String("string"),
    					Type:             pulumi.String("string"),
    					Weight:           pulumi.Int(0),
    				},
    			},
    			SamlRedirect: pulumi.String("string"),
    			SamlServer:   pulumi.String("string"),
    			Service:      pulumi.String("string"),
    			SslAlgorithm: pulumi.String("string"),
    			SslCipherSuites: firewall.AccessproxyApiGatewaySslCipherSuiteArray{
    				&firewall.AccessproxyApiGatewaySslCipherSuiteArgs{
    					Cipher:   pulumi.String("string"),
    					Priority: pulumi.Int(0),
    					Versions: pulumi.String("string"),
    				},
    			},
    			SslDhBits:        pulumi.String("string"),
    			SslMaxVersion:    pulumi.String("string"),
    			SslMinVersion:    pulumi.String("string"),
    			SslRenegotiation: pulumi.String("string"),
    			SslVpnWebPortal:  pulumi.String("string"),
    			UrlMap:           pulumi.String("string"),
    			UrlMapType:       pulumi.String("string"),
    			VirtualHost:      pulumi.String("string"),
    		},
    	},
    	AuthPortal:                        pulumi.String("string"),
    	AuthVirtualHost:                   pulumi.String("string"),
    	ClientCert:                        pulumi.String("string"),
    	DecryptedTrafficMirror:            pulumi.String("string"),
    	DynamicSortSubtable:               pulumi.String("string"),
    	EmptyCertAction:                   pulumi.String("string"),
    	GetAllTables:                      pulumi.String("string"),
    	HttpSupportedMaxVersion:           pulumi.String("string"),
    	LogBlockedTraffic:                 pulumi.String("string"),
    	Name:                              pulumi.String("string"),
    	SvrPoolMultiplex:                  pulumi.String("string"),
    	SvrPoolServerMaxConcurrentRequest: pulumi.Int(0),
    	SvrPoolServerMaxRequest:           pulumi.Int(0),
    	SvrPoolTtl:                        pulumi.Int(0),
    	UserAgentDetect:                   pulumi.String("string"),
    	Vdomparam:                         pulumi.String("string"),
    	Vip:                               pulumi.String("string"),
    })
    
    var accessproxyResource = new Accessproxy("accessproxyResource", AccessproxyArgs.builder()
        .addVhostDomainToDnsdb("string")
        .apiGateway6s(AccessproxyApiGateway6Args.builder()
            .applications(AccessproxyApiGateway6ApplicationArgs.builder()
                .name("string")
                .build())
            .h2Support("string")
            .h3Support("string")
            .httpCookieAge(0)
            .httpCookieDomain("string")
            .httpCookieDomainFromHost("string")
            .httpCookieGeneration(0)
            .httpCookiePath("string")
            .httpCookieShare("string")
            .httpsCookieSecure("string")
            .id(0)
            .ldbMethod("string")
            .persistence("string")
            .quic(AccessproxyApiGateway6QuicArgs.builder()
                .ackDelayExponent(0)
                .activeConnectionIdLimit(0)
                .activeMigration("string")
                .greaseQuicBit("string")
                .maxAckDelay(0)
                .maxDatagramFrameSize(0)
                .maxIdleTimeout(0)
                .maxUdpPayloadSize(0)
                .build())
            .realservers(AccessproxyApiGateway6RealserverArgs.builder()
                .addrType("string")
                .address("string")
                .domain("string")
                .externalAuth("string")
                .healthCheck("string")
                .healthCheckProto("string")
                .holddownInterval("string")
                .httpHost("string")
                .id(0)
                .ip("string")
                .mappedport("string")
                .port(0)
                .sshClientCert("string")
                .sshHostKeyValidation("string")
                .sshHostKeys(AccessproxyApiGateway6RealserverSshHostKeyArgs.builder()
                    .name("string")
                    .build())
                .status("string")
                .translateHost("string")
                .tunnelEncryption("string")
                .type("string")
                .weight(0)
                .build())
            .samlRedirect("string")
            .samlServer("string")
            .service("string")
            .sslAlgorithm("string")
            .sslCipherSuites(AccessproxyApiGateway6SslCipherSuiteArgs.builder()
                .cipher("string")
                .priority(0)
                .versions("string")
                .build())
            .sslDhBits("string")
            .sslMaxVersion("string")
            .sslMinVersion("string")
            .sslRenegotiation("string")
            .sslVpnWebPortal("string")
            .urlMap("string")
            .urlMapType("string")
            .virtualHost("string")
            .build())
        .apiGateways(AccessproxyApiGatewayArgs.builder()
            .applications(AccessproxyApiGatewayApplicationArgs.builder()
                .name("string")
                .build())
            .h2Support("string")
            .h3Support("string")
            .httpCookieAge(0)
            .httpCookieDomain("string")
            .httpCookieDomainFromHost("string")
            .httpCookieGeneration(0)
            .httpCookiePath("string")
            .httpCookieShare("string")
            .httpsCookieSecure("string")
            .id(0)
            .ldbMethod("string")
            .persistence("string")
            .quic(AccessproxyApiGatewayQuicArgs.builder()
                .ackDelayExponent(0)
                .activeConnectionIdLimit(0)
                .activeMigration("string")
                .greaseQuicBit("string")
                .maxAckDelay(0)
                .maxDatagramFrameSize(0)
                .maxIdleTimeout(0)
                .maxUdpPayloadSize(0)
                .build())
            .realservers(AccessproxyApiGatewayRealserverArgs.builder()
                .addrType("string")
                .address("string")
                .domain("string")
                .externalAuth("string")
                .healthCheck("string")
                .healthCheckProto("string")
                .holddownInterval("string")
                .httpHost("string")
                .id(0)
                .ip("string")
                .mappedport("string")
                .port(0)
                .sshClientCert("string")
                .sshHostKeyValidation("string")
                .sshHostKeys(AccessproxyApiGatewayRealserverSshHostKeyArgs.builder()
                    .name("string")
                    .build())
                .status("string")
                .translateHost("string")
                .tunnelEncryption("string")
                .type("string")
                .weight(0)
                .build())
            .samlRedirect("string")
            .samlServer("string")
            .service("string")
            .sslAlgorithm("string")
            .sslCipherSuites(AccessproxyApiGatewaySslCipherSuiteArgs.builder()
                .cipher("string")
                .priority(0)
                .versions("string")
                .build())
            .sslDhBits("string")
            .sslMaxVersion("string")
            .sslMinVersion("string")
            .sslRenegotiation("string")
            .sslVpnWebPortal("string")
            .urlMap("string")
            .urlMapType("string")
            .virtualHost("string")
            .build())
        .authPortal("string")
        .authVirtualHost("string")
        .clientCert("string")
        .decryptedTrafficMirror("string")
        .dynamicSortSubtable("string")
        .emptyCertAction("string")
        .getAllTables("string")
        .httpSupportedMaxVersion("string")
        .logBlockedTraffic("string")
        .name("string")
        .svrPoolMultiplex("string")
        .svrPoolServerMaxConcurrentRequest(0)
        .svrPoolServerMaxRequest(0)
        .svrPoolTtl(0)
        .userAgentDetect("string")
        .vdomparam("string")
        .vip("string")
        .build());
    
    accessproxy_resource = fortios.firewall.Accessproxy("accessproxyResource",
        add_vhost_domain_to_dnsdb="string",
        api_gateway6s=[{
            "applications": [{
                "name": "string",
            }],
            "h2_support": "string",
            "h3_support": "string",
            "http_cookie_age": 0,
            "http_cookie_domain": "string",
            "http_cookie_domain_from_host": "string",
            "http_cookie_generation": 0,
            "http_cookie_path": "string",
            "http_cookie_share": "string",
            "https_cookie_secure": "string",
            "id": 0,
            "ldb_method": "string",
            "persistence": "string",
            "quic": {
                "ack_delay_exponent": 0,
                "active_connection_id_limit": 0,
                "active_migration": "string",
                "grease_quic_bit": "string",
                "max_ack_delay": 0,
                "max_datagram_frame_size": 0,
                "max_idle_timeout": 0,
                "max_udp_payload_size": 0,
            },
            "realservers": [{
                "addr_type": "string",
                "address": "string",
                "domain": "string",
                "external_auth": "string",
                "health_check": "string",
                "health_check_proto": "string",
                "holddown_interval": "string",
                "http_host": "string",
                "id": 0,
                "ip": "string",
                "mappedport": "string",
                "port": 0,
                "ssh_client_cert": "string",
                "ssh_host_key_validation": "string",
                "ssh_host_keys": [{
                    "name": "string",
                }],
                "status": "string",
                "translate_host": "string",
                "tunnel_encryption": "string",
                "type": "string",
                "weight": 0,
            }],
            "saml_redirect": "string",
            "saml_server": "string",
            "service": "string",
            "ssl_algorithm": "string",
            "ssl_cipher_suites": [{
                "cipher": "string",
                "priority": 0,
                "versions": "string",
            }],
            "ssl_dh_bits": "string",
            "ssl_max_version": "string",
            "ssl_min_version": "string",
            "ssl_renegotiation": "string",
            "ssl_vpn_web_portal": "string",
            "url_map": "string",
            "url_map_type": "string",
            "virtual_host": "string",
        }],
        api_gateways=[{
            "applications": [{
                "name": "string",
            }],
            "h2_support": "string",
            "h3_support": "string",
            "http_cookie_age": 0,
            "http_cookie_domain": "string",
            "http_cookie_domain_from_host": "string",
            "http_cookie_generation": 0,
            "http_cookie_path": "string",
            "http_cookie_share": "string",
            "https_cookie_secure": "string",
            "id": 0,
            "ldb_method": "string",
            "persistence": "string",
            "quic": {
                "ack_delay_exponent": 0,
                "active_connection_id_limit": 0,
                "active_migration": "string",
                "grease_quic_bit": "string",
                "max_ack_delay": 0,
                "max_datagram_frame_size": 0,
                "max_idle_timeout": 0,
                "max_udp_payload_size": 0,
            },
            "realservers": [{
                "addr_type": "string",
                "address": "string",
                "domain": "string",
                "external_auth": "string",
                "health_check": "string",
                "health_check_proto": "string",
                "holddown_interval": "string",
                "http_host": "string",
                "id": 0,
                "ip": "string",
                "mappedport": "string",
                "port": 0,
                "ssh_client_cert": "string",
                "ssh_host_key_validation": "string",
                "ssh_host_keys": [{
                    "name": "string",
                }],
                "status": "string",
                "translate_host": "string",
                "tunnel_encryption": "string",
                "type": "string",
                "weight": 0,
            }],
            "saml_redirect": "string",
            "saml_server": "string",
            "service": "string",
            "ssl_algorithm": "string",
            "ssl_cipher_suites": [{
                "cipher": "string",
                "priority": 0,
                "versions": "string",
            }],
            "ssl_dh_bits": "string",
            "ssl_max_version": "string",
            "ssl_min_version": "string",
            "ssl_renegotiation": "string",
            "ssl_vpn_web_portal": "string",
            "url_map": "string",
            "url_map_type": "string",
            "virtual_host": "string",
        }],
        auth_portal="string",
        auth_virtual_host="string",
        client_cert="string",
        decrypted_traffic_mirror="string",
        dynamic_sort_subtable="string",
        empty_cert_action="string",
        get_all_tables="string",
        http_supported_max_version="string",
        log_blocked_traffic="string",
        name="string",
        svr_pool_multiplex="string",
        svr_pool_server_max_concurrent_request=0,
        svr_pool_server_max_request=0,
        svr_pool_ttl=0,
        user_agent_detect="string",
        vdomparam="string",
        vip="string")
    
    const accessproxyResource = new fortios.firewall.Accessproxy("accessproxyResource", {
        addVhostDomainToDnsdb: "string",
        apiGateway6s: [{
            applications: [{
                name: "string",
            }],
            h2Support: "string",
            h3Support: "string",
            httpCookieAge: 0,
            httpCookieDomain: "string",
            httpCookieDomainFromHost: "string",
            httpCookieGeneration: 0,
            httpCookiePath: "string",
            httpCookieShare: "string",
            httpsCookieSecure: "string",
            id: 0,
            ldbMethod: "string",
            persistence: "string",
            quic: {
                ackDelayExponent: 0,
                activeConnectionIdLimit: 0,
                activeMigration: "string",
                greaseQuicBit: "string",
                maxAckDelay: 0,
                maxDatagramFrameSize: 0,
                maxIdleTimeout: 0,
                maxUdpPayloadSize: 0,
            },
            realservers: [{
                addrType: "string",
                address: "string",
                domain: "string",
                externalAuth: "string",
                healthCheck: "string",
                healthCheckProto: "string",
                holddownInterval: "string",
                httpHost: "string",
                id: 0,
                ip: "string",
                mappedport: "string",
                port: 0,
                sshClientCert: "string",
                sshHostKeyValidation: "string",
                sshHostKeys: [{
                    name: "string",
                }],
                status: "string",
                translateHost: "string",
                tunnelEncryption: "string",
                type: "string",
                weight: 0,
            }],
            samlRedirect: "string",
            samlServer: "string",
            service: "string",
            sslAlgorithm: "string",
            sslCipherSuites: [{
                cipher: "string",
                priority: 0,
                versions: "string",
            }],
            sslDhBits: "string",
            sslMaxVersion: "string",
            sslMinVersion: "string",
            sslRenegotiation: "string",
            sslVpnWebPortal: "string",
            urlMap: "string",
            urlMapType: "string",
            virtualHost: "string",
        }],
        apiGateways: [{
            applications: [{
                name: "string",
            }],
            h2Support: "string",
            h3Support: "string",
            httpCookieAge: 0,
            httpCookieDomain: "string",
            httpCookieDomainFromHost: "string",
            httpCookieGeneration: 0,
            httpCookiePath: "string",
            httpCookieShare: "string",
            httpsCookieSecure: "string",
            id: 0,
            ldbMethod: "string",
            persistence: "string",
            quic: {
                ackDelayExponent: 0,
                activeConnectionIdLimit: 0,
                activeMigration: "string",
                greaseQuicBit: "string",
                maxAckDelay: 0,
                maxDatagramFrameSize: 0,
                maxIdleTimeout: 0,
                maxUdpPayloadSize: 0,
            },
            realservers: [{
                addrType: "string",
                address: "string",
                domain: "string",
                externalAuth: "string",
                healthCheck: "string",
                healthCheckProto: "string",
                holddownInterval: "string",
                httpHost: "string",
                id: 0,
                ip: "string",
                mappedport: "string",
                port: 0,
                sshClientCert: "string",
                sshHostKeyValidation: "string",
                sshHostKeys: [{
                    name: "string",
                }],
                status: "string",
                translateHost: "string",
                tunnelEncryption: "string",
                type: "string",
                weight: 0,
            }],
            samlRedirect: "string",
            samlServer: "string",
            service: "string",
            sslAlgorithm: "string",
            sslCipherSuites: [{
                cipher: "string",
                priority: 0,
                versions: "string",
            }],
            sslDhBits: "string",
            sslMaxVersion: "string",
            sslMinVersion: "string",
            sslRenegotiation: "string",
            sslVpnWebPortal: "string",
            urlMap: "string",
            urlMapType: "string",
            virtualHost: "string",
        }],
        authPortal: "string",
        authVirtualHost: "string",
        clientCert: "string",
        decryptedTrafficMirror: "string",
        dynamicSortSubtable: "string",
        emptyCertAction: "string",
        getAllTables: "string",
        httpSupportedMaxVersion: "string",
        logBlockedTraffic: "string",
        name: "string",
        svrPoolMultiplex: "string",
        svrPoolServerMaxConcurrentRequest: 0,
        svrPoolServerMaxRequest: 0,
        svrPoolTtl: 0,
        userAgentDetect: "string",
        vdomparam: "string",
        vip: "string",
    });
    
    type: fortios:firewall:Accessproxy
    properties:
        addVhostDomainToDnsdb: string
        apiGateway6s:
            - applications:
                - name: string
              h2Support: string
              h3Support: string
              httpCookieAge: 0
              httpCookieDomain: string
              httpCookieDomainFromHost: string
              httpCookieGeneration: 0
              httpCookiePath: string
              httpCookieShare: string
              httpsCookieSecure: string
              id: 0
              ldbMethod: string
              persistence: string
              quic:
                ackDelayExponent: 0
                activeConnectionIdLimit: 0
                activeMigration: string
                greaseQuicBit: string
                maxAckDelay: 0
                maxDatagramFrameSize: 0
                maxIdleTimeout: 0
                maxUdpPayloadSize: 0
              realservers:
                - addrType: string
                  address: string
                  domain: string
                  externalAuth: string
                  healthCheck: string
                  healthCheckProto: string
                  holddownInterval: string
                  httpHost: string
                  id: 0
                  ip: string
                  mappedport: string
                  port: 0
                  sshClientCert: string
                  sshHostKeyValidation: string
                  sshHostKeys:
                    - name: string
                  status: string
                  translateHost: string
                  tunnelEncryption: string
                  type: string
                  weight: 0
              samlRedirect: string
              samlServer: string
              service: string
              sslAlgorithm: string
              sslCipherSuites:
                - cipher: string
                  priority: 0
                  versions: string
              sslDhBits: string
              sslMaxVersion: string
              sslMinVersion: string
              sslRenegotiation: string
              sslVpnWebPortal: string
              urlMap: string
              urlMapType: string
              virtualHost: string
        apiGateways:
            - applications:
                - name: string
              h2Support: string
              h3Support: string
              httpCookieAge: 0
              httpCookieDomain: string
              httpCookieDomainFromHost: string
              httpCookieGeneration: 0
              httpCookiePath: string
              httpCookieShare: string
              httpsCookieSecure: string
              id: 0
              ldbMethod: string
              persistence: string
              quic:
                ackDelayExponent: 0
                activeConnectionIdLimit: 0
                activeMigration: string
                greaseQuicBit: string
                maxAckDelay: 0
                maxDatagramFrameSize: 0
                maxIdleTimeout: 0
                maxUdpPayloadSize: 0
              realservers:
                - addrType: string
                  address: string
                  domain: string
                  externalAuth: string
                  healthCheck: string
                  healthCheckProto: string
                  holddownInterval: string
                  httpHost: string
                  id: 0
                  ip: string
                  mappedport: string
                  port: 0
                  sshClientCert: string
                  sshHostKeyValidation: string
                  sshHostKeys:
                    - name: string
                  status: string
                  translateHost: string
                  tunnelEncryption: string
                  type: string
                  weight: 0
              samlRedirect: string
              samlServer: string
              service: string
              sslAlgorithm: string
              sslCipherSuites:
                - cipher: string
                  priority: 0
                  versions: string
              sslDhBits: string
              sslMaxVersion: string
              sslMinVersion: string
              sslRenegotiation: string
              sslVpnWebPortal: string
              urlMap: string
              urlMapType: string
              virtualHost: string
        authPortal: string
        authVirtualHost: string
        clientCert: string
        decryptedTrafficMirror: string
        dynamicSortSubtable: string
        emptyCertAction: string
        getAllTables: string
        httpSupportedMaxVersion: string
        logBlockedTraffic: string
        name: string
        svrPoolMultiplex: string
        svrPoolServerMaxConcurrentRequest: 0
        svrPoolServerMaxRequest: 0
        svrPoolTtl: 0
        userAgentDetect: string
        vdomparam: string
        vip: string
    

    Accessproxy Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The Accessproxy resource accepts the following input properties:

    AddVhostDomainToDnsdb string
    Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
    ApiGateway6s List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6>
    Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
    ApiGateways List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway>
    Set IPv4 API Gateway. The structure of api_gateway block is documented below.
    AuthPortal string
    Enable/disable authentication portal. Valid values: disable, enable.
    AuthVirtualHost string
    Virtual host for authentication portal.
    ClientCert string
    Enable/disable to request client certificate. Valid values: disable, enable.
    DecryptedTrafficMirror string
    Decrypted traffic mirror.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EmptyCertAction string
    Action of an empty client certificate.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    HttpSupportedMaxVersion string
    Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
    LogBlockedTraffic string
    Enable/disable logging of blocked traffic. Valid values: enable, disable.
    Name string
    Access Proxy name.
    SvrPoolMultiplex string
    Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
    SvrPoolServerMaxConcurrentRequest int
    Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
    SvrPoolServerMaxRequest int
    Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
    SvrPoolTtl int
    Time-to-live in the server pool for idle connections to servers.
    UserAgentDetect string
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    Vip string
    Virtual IP name.
    AddVhostDomainToDnsdb string
    Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
    ApiGateway6s []AccessproxyApiGateway6Args
    Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
    ApiGateways []AccessproxyApiGatewayArgs
    Set IPv4 API Gateway. The structure of api_gateway block is documented below.
    AuthPortal string
    Enable/disable authentication portal. Valid values: disable, enable.
    AuthVirtualHost string
    Virtual host for authentication portal.
    ClientCert string
    Enable/disable to request client certificate. Valid values: disable, enable.
    DecryptedTrafficMirror string
    Decrypted traffic mirror.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EmptyCertAction string
    Action of an empty client certificate.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    HttpSupportedMaxVersion string
    Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
    LogBlockedTraffic string
    Enable/disable logging of blocked traffic. Valid values: enable, disable.
    Name string
    Access Proxy name.
    SvrPoolMultiplex string
    Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
    SvrPoolServerMaxConcurrentRequest int
    Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
    SvrPoolServerMaxRequest int
    Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
    SvrPoolTtl int
    Time-to-live in the server pool for idle connections to servers.
    UserAgentDetect string
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    Vip string
    Virtual IP name.
    addVhostDomainToDnsdb String
    Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
    apiGateway6s List<AccessproxyApiGateway6>
    Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
    apiGateways List<AccessproxyApiGateway>
    Set IPv4 API Gateway. The structure of api_gateway block is documented below.
    authPortal String
    Enable/disable authentication portal. Valid values: disable, enable.
    authVirtualHost String
    Virtual host for authentication portal.
    clientCert String
    Enable/disable to request client certificate. Valid values: disable, enable.
    decryptedTrafficMirror String
    Decrypted traffic mirror.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emptyCertAction String
    Action of an empty client certificate.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    httpSupportedMaxVersion String
    Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
    logBlockedTraffic String
    Enable/disable logging of blocked traffic. Valid values: enable, disable.
    name String
    Access Proxy name.
    svrPoolMultiplex String
    Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
    svrPoolServerMaxConcurrentRequest Integer
    Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
    svrPoolServerMaxRequest Integer
    Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
    svrPoolTtl Integer
    Time-to-live in the server pool for idle connections to servers.
    userAgentDetect String
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    vip String
    Virtual IP name.
    addVhostDomainToDnsdb string
    Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
    apiGateway6s AccessproxyApiGateway6[]
    Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
    apiGateways AccessproxyApiGateway[]
    Set IPv4 API Gateway. The structure of api_gateway block is documented below.
    authPortal string
    Enable/disable authentication portal. Valid values: disable, enable.
    authVirtualHost string
    Virtual host for authentication portal.
    clientCert string
    Enable/disable to request client certificate. Valid values: disable, enable.
    decryptedTrafficMirror string
    Decrypted traffic mirror.
    dynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emptyCertAction string
    Action of an empty client certificate.
    getAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    httpSupportedMaxVersion string
    Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
    logBlockedTraffic string
    Enable/disable logging of blocked traffic. Valid values: enable, disable.
    name string
    Access Proxy name.
    svrPoolMultiplex string
    Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
    svrPoolServerMaxConcurrentRequest number
    Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
    svrPoolServerMaxRequest number
    Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
    svrPoolTtl number
    Time-to-live in the server pool for idle connections to servers.
    userAgentDetect string
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    vip string
    Virtual IP name.
    add_vhost_domain_to_dnsdb str
    Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
    api_gateway6s Sequence[AccessproxyApiGateway6Args]
    Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
    api_gateways Sequence[AccessproxyApiGatewayArgs]
    Set IPv4 API Gateway. The structure of api_gateway block is documented below.
    auth_portal str
    Enable/disable authentication portal. Valid values: disable, enable.
    auth_virtual_host str
    Virtual host for authentication portal.
    client_cert str
    Enable/disable to request client certificate. Valid values: disable, enable.
    decrypted_traffic_mirror str
    Decrypted traffic mirror.
    dynamic_sort_subtable str
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    empty_cert_action str
    Action of an empty client certificate.
    get_all_tables str
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    http_supported_max_version str
    Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
    log_blocked_traffic str
    Enable/disable logging of blocked traffic. Valid values: enable, disable.
    name str
    Access Proxy name.
    svr_pool_multiplex str
    Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
    svr_pool_server_max_concurrent_request int
    Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
    svr_pool_server_max_request int
    Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
    svr_pool_ttl int
    Time-to-live in the server pool for idle connections to servers.
    user_agent_detect str
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam str
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    vip str
    Virtual IP name.
    addVhostDomainToDnsdb String
    Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
    apiGateway6s List<Property Map>
    Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
    apiGateways List<Property Map>
    Set IPv4 API Gateway. The structure of api_gateway block is documented below.
    authPortal String
    Enable/disable authentication portal. Valid values: disable, enable.
    authVirtualHost String
    Virtual host for authentication portal.
    clientCert String
    Enable/disable to request client certificate. Valid values: disable, enable.
    decryptedTrafficMirror String
    Decrypted traffic mirror.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emptyCertAction String
    Action of an empty client certificate.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    httpSupportedMaxVersion String
    Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
    logBlockedTraffic String
    Enable/disable logging of blocked traffic. Valid values: enable, disable.
    name String
    Access Proxy name.
    svrPoolMultiplex String
    Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
    svrPoolServerMaxConcurrentRequest Number
    Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
    svrPoolServerMaxRequest Number
    Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
    svrPoolTtl Number
    Time-to-live in the server pool for idle connections to servers.
    userAgentDetect String
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    vip String
    Virtual IP name.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the Accessproxy resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Id string
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.
    id string
    The provider-assigned unique ID for this managed resource.
    id str
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.

    Look up Existing Accessproxy Resource

    Get an existing Accessproxy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: AccessproxyState, opts?: CustomResourceOptions): Accessproxy
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            add_vhost_domain_to_dnsdb: Optional[str] = None,
            api_gateway6s: Optional[Sequence[AccessproxyApiGateway6Args]] = None,
            api_gateways: Optional[Sequence[AccessproxyApiGatewayArgs]] = None,
            auth_portal: Optional[str] = None,
            auth_virtual_host: Optional[str] = None,
            client_cert: Optional[str] = None,
            decrypted_traffic_mirror: Optional[str] = None,
            dynamic_sort_subtable: Optional[str] = None,
            empty_cert_action: Optional[str] = None,
            get_all_tables: Optional[str] = None,
            http_supported_max_version: Optional[str] = None,
            log_blocked_traffic: Optional[str] = None,
            name: Optional[str] = None,
            svr_pool_multiplex: Optional[str] = None,
            svr_pool_server_max_concurrent_request: Optional[int] = None,
            svr_pool_server_max_request: Optional[int] = None,
            svr_pool_ttl: Optional[int] = None,
            user_agent_detect: Optional[str] = None,
            vdomparam: Optional[str] = None,
            vip: Optional[str] = None) -> Accessproxy
    func GetAccessproxy(ctx *Context, name string, id IDInput, state *AccessproxyState, opts ...ResourceOption) (*Accessproxy, error)
    public static Accessproxy Get(string name, Input<string> id, AccessproxyState? state, CustomResourceOptions? opts = null)
    public static Accessproxy get(String name, Output<String> id, AccessproxyState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    AddVhostDomainToDnsdb string
    Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
    ApiGateway6s List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6>
    Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
    ApiGateways List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway>
    Set IPv4 API Gateway. The structure of api_gateway block is documented below.
    AuthPortal string
    Enable/disable authentication portal. Valid values: disable, enable.
    AuthVirtualHost string
    Virtual host for authentication portal.
    ClientCert string
    Enable/disable to request client certificate. Valid values: disable, enable.
    DecryptedTrafficMirror string
    Decrypted traffic mirror.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EmptyCertAction string
    Action of an empty client certificate.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    HttpSupportedMaxVersion string
    Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
    LogBlockedTraffic string
    Enable/disable logging of blocked traffic. Valid values: enable, disable.
    Name string
    Access Proxy name.
    SvrPoolMultiplex string
    Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
    SvrPoolServerMaxConcurrentRequest int
    Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
    SvrPoolServerMaxRequest int
    Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
    SvrPoolTtl int
    Time-to-live in the server pool for idle connections to servers.
    UserAgentDetect string
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    Vip string
    Virtual IP name.
    AddVhostDomainToDnsdb string
    Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
    ApiGateway6s []AccessproxyApiGateway6Args
    Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
    ApiGateways []AccessproxyApiGatewayArgs
    Set IPv4 API Gateway. The structure of api_gateway block is documented below.
    AuthPortal string
    Enable/disable authentication portal. Valid values: disable, enable.
    AuthVirtualHost string
    Virtual host for authentication portal.
    ClientCert string
    Enable/disable to request client certificate. Valid values: disable, enable.
    DecryptedTrafficMirror string
    Decrypted traffic mirror.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EmptyCertAction string
    Action of an empty client certificate.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    HttpSupportedMaxVersion string
    Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
    LogBlockedTraffic string
    Enable/disable logging of blocked traffic. Valid values: enable, disable.
    Name string
    Access Proxy name.
    SvrPoolMultiplex string
    Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
    SvrPoolServerMaxConcurrentRequest int
    Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
    SvrPoolServerMaxRequest int
    Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
    SvrPoolTtl int
    Time-to-live in the server pool for idle connections to servers.
    UserAgentDetect string
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    Vip string
    Virtual IP name.
    addVhostDomainToDnsdb String
    Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
    apiGateway6s List<AccessproxyApiGateway6>
    Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
    apiGateways List<AccessproxyApiGateway>
    Set IPv4 API Gateway. The structure of api_gateway block is documented below.
    authPortal String
    Enable/disable authentication portal. Valid values: disable, enable.
    authVirtualHost String
    Virtual host for authentication portal.
    clientCert String
    Enable/disable to request client certificate. Valid values: disable, enable.
    decryptedTrafficMirror String
    Decrypted traffic mirror.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emptyCertAction String
    Action of an empty client certificate.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    httpSupportedMaxVersion String
    Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
    logBlockedTraffic String
    Enable/disable logging of blocked traffic. Valid values: enable, disable.
    name String
    Access Proxy name.
    svrPoolMultiplex String
    Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
    svrPoolServerMaxConcurrentRequest Integer
    Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
    svrPoolServerMaxRequest Integer
    Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
    svrPoolTtl Integer
    Time-to-live in the server pool for idle connections to servers.
    userAgentDetect String
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    vip String
    Virtual IP name.
    addVhostDomainToDnsdb string
    Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
    apiGateway6s AccessproxyApiGateway6[]
    Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
    apiGateways AccessproxyApiGateway[]
    Set IPv4 API Gateway. The structure of api_gateway block is documented below.
    authPortal string
    Enable/disable authentication portal. Valid values: disable, enable.
    authVirtualHost string
    Virtual host for authentication portal.
    clientCert string
    Enable/disable to request client certificate. Valid values: disable, enable.
    decryptedTrafficMirror string
    Decrypted traffic mirror.
    dynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emptyCertAction string
    Action of an empty client certificate.
    getAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    httpSupportedMaxVersion string
    Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
    logBlockedTraffic string
    Enable/disable logging of blocked traffic. Valid values: enable, disable.
    name string
    Access Proxy name.
    svrPoolMultiplex string
    Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
    svrPoolServerMaxConcurrentRequest number
    Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
    svrPoolServerMaxRequest number
    Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
    svrPoolTtl number
    Time-to-live in the server pool for idle connections to servers.
    userAgentDetect string
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    vip string
    Virtual IP name.
    add_vhost_domain_to_dnsdb str
    Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
    api_gateway6s Sequence[AccessproxyApiGateway6Args]
    Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
    api_gateways Sequence[AccessproxyApiGatewayArgs]
    Set IPv4 API Gateway. The structure of api_gateway block is documented below.
    auth_portal str
    Enable/disable authentication portal. Valid values: disable, enable.
    auth_virtual_host str
    Virtual host for authentication portal.
    client_cert str
    Enable/disable to request client certificate. Valid values: disable, enable.
    decrypted_traffic_mirror str
    Decrypted traffic mirror.
    dynamic_sort_subtable str
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    empty_cert_action str
    Action of an empty client certificate.
    get_all_tables str
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    http_supported_max_version str
    Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
    log_blocked_traffic str
    Enable/disable logging of blocked traffic. Valid values: enable, disable.
    name str
    Access Proxy name.
    svr_pool_multiplex str
    Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
    svr_pool_server_max_concurrent_request int
    Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
    svr_pool_server_max_request int
    Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
    svr_pool_ttl int
    Time-to-live in the server pool for idle connections to servers.
    user_agent_detect str
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam str
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    vip str
    Virtual IP name.
    addVhostDomainToDnsdb String
    Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
    apiGateway6s List<Property Map>
    Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
    apiGateways List<Property Map>
    Set IPv4 API Gateway. The structure of api_gateway block is documented below.
    authPortal String
    Enable/disable authentication portal. Valid values: disable, enable.
    authVirtualHost String
    Virtual host for authentication portal.
    clientCert String
    Enable/disable to request client certificate. Valid values: disable, enable.
    decryptedTrafficMirror String
    Decrypted traffic mirror.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emptyCertAction String
    Action of an empty client certificate.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    httpSupportedMaxVersion String
    Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
    logBlockedTraffic String
    Enable/disable logging of blocked traffic. Valid values: enable, disable.
    name String
    Access Proxy name.
    svrPoolMultiplex String
    Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
    svrPoolServerMaxConcurrentRequest Number
    Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
    svrPoolServerMaxRequest Number
    Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
    svrPoolTtl Number
    Time-to-live in the server pool for idle connections to servers.
    userAgentDetect String
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    vip String
    Virtual IP name.

    Supporting Types

    AccessproxyApiGateway, AccessproxyApiGatewayArgs

    Applications List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGatewayApplication>
    SaaS application controlled by this Access Proxy. The structure of application block is documented below.
    H2Support string
    HTTP2 support, default=Enable. Valid values: enable, disable.
    H3Support string
    HTTP3/QUIC support, default=Disable. Valid values: enable, disable.
    HttpCookieAge int
    Time in minutes that client web browsers should keep a cookie. Default is 60 minutes. 0 = no time limit.
    HttpCookieDomain string
    Domain that HTTP cookie persistence should apply to.
    HttpCookieDomainFromHost string
    Enable/disable use of HTTP cookie domain from host field in HTTP. Valid values: disable, enable.
    HttpCookieGeneration int
    Generation of HTTP cookie to be accepted. Changing invalidates all existing cookies.
    HttpCookiePath string
    Limit HTTP cookie persistence to the specified path.
    HttpCookieShare string
    Control sharing of cookies across API Gateway. same-ip means a cookie from one virtual server can be used by another. Disable stops cookie sharing. Valid values: disable, same-ip.
    HttpsCookieSecure string
    Enable/disable verification that inserted HTTPS cookies are secure. Valid values: disable, enable.
    Id int
    API Gateway ID.
    LdbMethod string
    Method used to distribute sessions to real servers. Valid values: static, round-robin, weighted, first-alive, http-host.
    Persistence string
    Configure how to make sure that clients connect to the same server every time they make a request that is part of the same session. Valid values: none, http-cookie.
    Quic Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGatewayQuic
    QUIC setting. The structure of quic block is documented below.
    Realservers List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGatewayRealserver>
    Select the real servers that this Access Proxy will distribute traffic to. The structure of realservers block is documented below.
    SamlRedirect string
    Enable/disable SAML redirection after successful authentication. Valid values: disable, enable.
    SamlServer string
    SAML service provider configuration for VIP authentication.
    Service string
    Service.
    SslAlgorithm string
    Permitted encryption algorithms for the server side of SSL full mode sessions according to encryption strength. Valid values: high, medium, low.
    SslCipherSuites List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGatewaySslCipherSuite>
    SSL/TLS cipher suites to offer to a server, ordered by priority. The structure of ssl_cipher_suites block is documented below.
    SslDhBits string
    Number of bits to use in the Diffie-Hellman exchange for RSA encryption of SSL sessions. Valid values: 768, 1024, 1536, 2048, 3072, 4096.
    SslMaxVersion string
    Highest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    SslMinVersion string
    Lowest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    SslRenegotiation string
    Enable/disable secure renegotiation to comply with RFC 5746. Valid values: enable, disable.
    SslVpnWebPortal string
    SSL-VPN web portal.
    UrlMap string
    URL pattern to match.
    UrlMapType string
    Type of url-map. Valid values: sub-string, wildcard, regex.
    VirtualHost string
    Virtual host.
    Applications []AccessproxyApiGatewayApplication
    SaaS application controlled by this Access Proxy. The structure of application block is documented below.
    H2Support string
    HTTP2 support, default=Enable. Valid values: enable, disable.
    H3Support string
    HTTP3/QUIC support, default=Disable. Valid values: enable, disable.
    HttpCookieAge int
    Time in minutes that client web browsers should keep a cookie. Default is 60 minutes. 0 = no time limit.
    HttpCookieDomain string
    Domain that HTTP cookie persistence should apply to.
    HttpCookieDomainFromHost string
    Enable/disable use of HTTP cookie domain from host field in HTTP. Valid values: disable, enable.
    HttpCookieGeneration int
    Generation of HTTP cookie to be accepted. Changing invalidates all existing cookies.
    HttpCookiePath string
    Limit HTTP cookie persistence to the specified path.
    HttpCookieShare string
    Control sharing of cookies across API Gateway. same-ip means a cookie from one virtual server can be used by another. Disable stops cookie sharing. Valid values: disable, same-ip.
    HttpsCookieSecure string
    Enable/disable verification that inserted HTTPS cookies are secure. Valid values: disable, enable.
    Id int
    API Gateway ID.
    LdbMethod string
    Method used to distribute sessions to real servers. Valid values: static, round-robin, weighted, first-alive, http-host.
    Persistence string
    Configure how to make sure that clients connect to the same server every time they make a request that is part of the same session. Valid values: none, http-cookie.
    Quic AccessproxyApiGatewayQuic
    QUIC setting. The structure of quic block is documented below.
    Realservers []AccessproxyApiGatewayRealserver
    Select the real servers that this Access Proxy will distribute traffic to. The structure of realservers block is documented below.
    SamlRedirect string
    Enable/disable SAML redirection after successful authentication. Valid values: disable, enable.
    SamlServer string
    SAML service provider configuration for VIP authentication.
    Service string
    Service.
    SslAlgorithm string
    Permitted encryption algorithms for the server side of SSL full mode sessions according to encryption strength. Valid values: high, medium, low.
    SslCipherSuites []AccessproxyApiGatewaySslCipherSuite
    SSL/TLS cipher suites to offer to a server, ordered by priority. The structure of ssl_cipher_suites block is documented below.
    SslDhBits string
    Number of bits to use in the Diffie-Hellman exchange for RSA encryption of SSL sessions. Valid values: 768, 1024, 1536, 2048, 3072, 4096.
    SslMaxVersion string
    Highest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    SslMinVersion string
    Lowest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    SslRenegotiation string
    Enable/disable secure renegotiation to comply with RFC 5746. Valid values: enable, disable.
    SslVpnWebPortal string
    SSL-VPN web portal.
    UrlMap string
    URL pattern to match.
    UrlMapType string
    Type of url-map. Valid values: sub-string, wildcard, regex.
    VirtualHost string
    Virtual host.
    applications List<AccessproxyApiGatewayApplication>
    SaaS application controlled by this Access Proxy. The structure of application block is documented below.
    h2Support String
    HTTP2 support, default=Enable. Valid values: enable, disable.
    h3Support String
    HTTP3/QUIC support, default=Disable. Valid values: enable, disable.
    httpCookieAge Integer
    Time in minutes that client web browsers should keep a cookie. Default is 60 minutes. 0 = no time limit.
    httpCookieDomain String
    Domain that HTTP cookie persistence should apply to.
    httpCookieDomainFromHost String
    Enable/disable use of HTTP cookie domain from host field in HTTP. Valid values: disable, enable.
    httpCookieGeneration Integer
    Generation of HTTP cookie to be accepted. Changing invalidates all existing cookies.
    httpCookiePath String
    Limit HTTP cookie persistence to the specified path.
    httpCookieShare String
    Control sharing of cookies across API Gateway. same-ip means a cookie from one virtual server can be used by another. Disable stops cookie sharing. Valid values: disable, same-ip.
    httpsCookieSecure String
    Enable/disable verification that inserted HTTPS cookies are secure. Valid values: disable, enable.
    id Integer
    API Gateway ID.
    ldbMethod String
    Method used to distribute sessions to real servers. Valid values: static, round-robin, weighted, first-alive, http-host.
    persistence String
    Configure how to make sure that clients connect to the same server every time they make a request that is part of the same session. Valid values: none, http-cookie.
    quic AccessproxyApiGatewayQuic
    QUIC setting. The structure of quic block is documented below.
    realservers List<AccessproxyApiGatewayRealserver>
    Select the real servers that this Access Proxy will distribute traffic to. The structure of realservers block is documented below.
    samlRedirect String
    Enable/disable SAML redirection after successful authentication. Valid values: disable, enable.
    samlServer String
    SAML service provider configuration for VIP authentication.
    service String
    Service.
    sslAlgorithm String
    Permitted encryption algorithms for the server side of SSL full mode sessions according to encryption strength. Valid values: high, medium, low.
    sslCipherSuites List<AccessproxyApiGatewaySslCipherSuite>
    SSL/TLS cipher suites to offer to a server, ordered by priority. The structure of ssl_cipher_suites block is documented below.
    sslDhBits String
    Number of bits to use in the Diffie-Hellman exchange for RSA encryption of SSL sessions. Valid values: 768, 1024, 1536, 2048, 3072, 4096.
    sslMaxVersion String
    Highest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    sslMinVersion String
    Lowest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    sslRenegotiation String
    Enable/disable secure renegotiation to comply with RFC 5746. Valid values: enable, disable.
    sslVpnWebPortal String
    SSL-VPN web portal.
    urlMap String
    URL pattern to match.
    urlMapType String
    Type of url-map. Valid values: sub-string, wildcard, regex.
    virtualHost String
    Virtual host.
    applications AccessproxyApiGatewayApplication[]
    SaaS application controlled by this Access Proxy. The structure of application block is documented below.
    h2Support string
    HTTP2 support, default=Enable. Valid values: enable, disable.
    h3Support string
    HTTP3/QUIC support, default=Disable. Valid values: enable, disable.
    httpCookieAge number
    Time in minutes that client web browsers should keep a cookie. Default is 60 minutes. 0 = no time limit.
    httpCookieDomain string
    Domain that HTTP cookie persistence should apply to.
    httpCookieDomainFromHost string
    Enable/disable use of HTTP cookie domain from host field in HTTP. Valid values: disable, enable.
    httpCookieGeneration number
    Generation of HTTP cookie to be accepted. Changing invalidates all existing cookies.
    httpCookiePath string
    Limit HTTP cookie persistence to the specified path.
    httpCookieShare string
    Control sharing of cookies across API Gateway. same-ip means a cookie from one virtual server can be used by another. Disable stops cookie sharing. Valid values: disable, same-ip.
    httpsCookieSecure string
    Enable/disable verification that inserted HTTPS cookies are secure. Valid values: disable, enable.
    id number
    API Gateway ID.
    ldbMethod string
    Method used to distribute sessions to real servers. Valid values: static, round-robin, weighted, first-alive, http-host.
    persistence string
    Configure how to make sure that clients connect to the same server every time they make a request that is part of the same session. Valid values: none, http-cookie.
    quic AccessproxyApiGatewayQuic
    QUIC setting. The structure of quic block is documented below.
    realservers AccessproxyApiGatewayRealserver[]
    Select the real servers that this Access Proxy will distribute traffic to. The structure of realservers block is documented below.
    samlRedirect string
    Enable/disable SAML redirection after successful authentication. Valid values: disable, enable.
    samlServer string
    SAML service provider configuration for VIP authentication.
    service string
    Service.
    sslAlgorithm string
    Permitted encryption algorithms for the server side of SSL full mode sessions according to encryption strength. Valid values: high, medium, low.
    sslCipherSuites AccessproxyApiGatewaySslCipherSuite[]
    SSL/TLS cipher suites to offer to a server, ordered by priority. The structure of ssl_cipher_suites block is documented below.
    sslDhBits string
    Number of bits to use in the Diffie-Hellman exchange for RSA encryption of SSL sessions. Valid values: 768, 1024, 1536, 2048, 3072, 4096.
    sslMaxVersion string
    Highest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    sslMinVersion string
    Lowest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    sslRenegotiation string
    Enable/disable secure renegotiation to comply with RFC 5746. Valid values: enable, disable.
    sslVpnWebPortal string
    SSL-VPN web portal.
    urlMap string
    URL pattern to match.
    urlMapType string
    Type of url-map. Valid values: sub-string, wildcard, regex.
    virtualHost string
    Virtual host.
    applications Sequence[AccessproxyApiGatewayApplication]
    SaaS application controlled by this Access Proxy. The structure of application block is documented below.
    h2_support str
    HTTP2 support, default=Enable. Valid values: enable, disable.
    h3_support str
    HTTP3/QUIC support, default=Disable. Valid values: enable, disable.
    http_cookie_age int
    Time in minutes that client web browsers should keep a cookie. Default is 60 minutes. 0 = no time limit.
    http_cookie_domain str
    Domain that HTTP cookie persistence should apply to.
    http_cookie_domain_from_host str
    Enable/disable use of HTTP cookie domain from host field in HTTP. Valid values: disable, enable.
    http_cookie_generation int
    Generation of HTTP cookie to be accepted. Changing invalidates all existing cookies.
    http_cookie_path str
    Limit HTTP cookie persistence to the specified path.
    http_cookie_share str
    Control sharing of cookies across API Gateway. same-ip means a cookie from one virtual server can be used by another. Disable stops cookie sharing. Valid values: disable, same-ip.
    https_cookie_secure str
    Enable/disable verification that inserted HTTPS cookies are secure. Valid values: disable, enable.
    id int
    API Gateway ID.
    ldb_method str
    Method used to distribute sessions to real servers. Valid values: static, round-robin, weighted, first-alive, http-host.
    persistence str
    Configure how to make sure that clients connect to the same server every time they make a request that is part of the same session. Valid values: none, http-cookie.
    quic AccessproxyApiGatewayQuic
    QUIC setting. The structure of quic block is documented below.
    realservers Sequence[AccessproxyApiGatewayRealserver]
    Select the real servers that this Access Proxy will distribute traffic to. The structure of realservers block is documented below.
    saml_redirect str
    Enable/disable SAML redirection after successful authentication. Valid values: disable, enable.
    saml_server str
    SAML service provider configuration for VIP authentication.
    service str
    Service.
    ssl_algorithm str
    Permitted encryption algorithms for the server side of SSL full mode sessions according to encryption strength. Valid values: high, medium, low.
    ssl_cipher_suites Sequence[AccessproxyApiGatewaySslCipherSuite]
    SSL/TLS cipher suites to offer to a server, ordered by priority. The structure of ssl_cipher_suites block is documented below.
    ssl_dh_bits str
    Number of bits to use in the Diffie-Hellman exchange for RSA encryption of SSL sessions. Valid values: 768, 1024, 1536, 2048, 3072, 4096.
    ssl_max_version str
    Highest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    ssl_min_version str
    Lowest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    ssl_renegotiation str
    Enable/disable secure renegotiation to comply with RFC 5746. Valid values: enable, disable.
    ssl_vpn_web_portal str
    SSL-VPN web portal.
    url_map str
    URL pattern to match.
    url_map_type str
    Type of url-map. Valid values: sub-string, wildcard, regex.
    virtual_host str
    Virtual host.
    applications List<Property Map>
    SaaS application controlled by this Access Proxy. The structure of application block is documented below.
    h2Support String
    HTTP2 support, default=Enable. Valid values: enable, disable.
    h3Support String
    HTTP3/QUIC support, default=Disable. Valid values: enable, disable.
    httpCookieAge Number
    Time in minutes that client web browsers should keep a cookie. Default is 60 minutes. 0 = no time limit.
    httpCookieDomain String
    Domain that HTTP cookie persistence should apply to.
    httpCookieDomainFromHost String
    Enable/disable use of HTTP cookie domain from host field in HTTP. Valid values: disable, enable.
    httpCookieGeneration Number
    Generation of HTTP cookie to be accepted. Changing invalidates all existing cookies.
    httpCookiePath String
    Limit HTTP cookie persistence to the specified path.
    httpCookieShare String
    Control sharing of cookies across API Gateway. same-ip means a cookie from one virtual server can be used by another. Disable stops cookie sharing. Valid values: disable, same-ip.
    httpsCookieSecure String
    Enable/disable verification that inserted HTTPS cookies are secure. Valid values: disable, enable.
    id Number
    API Gateway ID.
    ldbMethod String
    Method used to distribute sessions to real servers. Valid values: static, round-robin, weighted, first-alive, http-host.
    persistence String
    Configure how to make sure that clients connect to the same server every time they make a request that is part of the same session. Valid values: none, http-cookie.
    quic Property Map
    QUIC setting. The structure of quic block is documented below.
    realservers List<Property Map>
    Select the real servers that this Access Proxy will distribute traffic to. The structure of realservers block is documented below.
    samlRedirect String
    Enable/disable SAML redirection after successful authentication. Valid values: disable, enable.
    samlServer String
    SAML service provider configuration for VIP authentication.
    service String
    Service.
    sslAlgorithm String
    Permitted encryption algorithms for the server side of SSL full mode sessions according to encryption strength. Valid values: high, medium, low.
    sslCipherSuites List<Property Map>
    SSL/TLS cipher suites to offer to a server, ordered by priority. The structure of ssl_cipher_suites block is documented below.
    sslDhBits String
    Number of bits to use in the Diffie-Hellman exchange for RSA encryption of SSL sessions. Valid values: 768, 1024, 1536, 2048, 3072, 4096.
    sslMaxVersion String
    Highest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    sslMinVersion String
    Lowest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    sslRenegotiation String
    Enable/disable secure renegotiation to comply with RFC 5746. Valid values: enable, disable.
    sslVpnWebPortal String
    SSL-VPN web portal.
    urlMap String
    URL pattern to match.
    urlMapType String
    Type of url-map. Valid values: sub-string, wildcard, regex.
    virtualHost String
    Virtual host.

    AccessproxyApiGateway6, AccessproxyApiGateway6Args

    Applications List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6Application>
    H2Support string
    H3Support string
    HttpCookieAge int
    HttpCookieDomain string
    HttpCookieDomainFromHost string
    HttpCookieGeneration int
    HttpCookiePath string
    HttpCookieShare string
    HttpsCookieSecure string
    Id int
    an identifier for the resource with format {{name}}.
    LdbMethod string
    Persistence string
    Quic Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6Quic
    Realservers List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6Realserver>
    SamlRedirect string
    SamlServer string
    Service string
    SslAlgorithm string
    SslCipherSuites List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6SslCipherSuite>
    SslDhBits string
    SslMaxVersion string
    SslMinVersion string
    SslRenegotiation string
    SslVpnWebPortal string
    UrlMap string
    UrlMapType string
    VirtualHost string

    AccessproxyApiGateway6Application, AccessproxyApiGateway6ApplicationArgs

    Name string
    SaaS application name.
    Name string
    SaaS application name.
    name String
    SaaS application name.
    name string
    SaaS application name.
    name str
    SaaS application name.
    name String
    SaaS application name.

    AccessproxyApiGateway6Quic, AccessproxyApiGateway6QuicArgs

    AckDelayExponent int
    ACK delay exponent (1 - 20, default = 3).
    ActiveConnectionIdLimit int
    Active connection ID limit (1 - 8, default = 2).
    ActiveMigration string
    Enable/disable active migration (default = disable). Valid values: enable, disable.
    GreaseQuicBit string
    Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
    MaxAckDelay int
    Maximum ACK delay in milliseconds (1 - 16383, default = 25).
    MaxDatagramFrameSize int
    Maximum datagram frame size in bytes (1 - 1500, default = 1500).
    MaxIdleTimeout int
    Maximum idle timeout milliseconds (1 - 60000, default = 30000).
    MaxUdpPayloadSize int
    Maximum UDP payload size in bytes (1200 - 1500, default = 1500).
    AckDelayExponent int
    ACK delay exponent (1 - 20, default = 3).
    ActiveConnectionIdLimit int
    Active connection ID limit (1 - 8, default = 2).
    ActiveMigration string
    Enable/disable active migration (default = disable). Valid values: enable, disable.
    GreaseQuicBit string
    Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
    MaxAckDelay int
    Maximum ACK delay in milliseconds (1 - 16383, default = 25).
    MaxDatagramFrameSize int
    Maximum datagram frame size in bytes (1 - 1500, default = 1500).
    MaxIdleTimeout int
    Maximum idle timeout milliseconds (1 - 60000, default = 30000).
    MaxUdpPayloadSize int
    Maximum UDP payload size in bytes (1200 - 1500, default = 1500).
    ackDelayExponent Integer
    ACK delay exponent (1 - 20, default = 3).
    activeConnectionIdLimit Integer
    Active connection ID limit (1 - 8, default = 2).
    activeMigration String
    Enable/disable active migration (default = disable). Valid values: enable, disable.
    greaseQuicBit String
    Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
    maxAckDelay Integer
    Maximum ACK delay in milliseconds (1 - 16383, default = 25).
    maxDatagramFrameSize Integer
    Maximum datagram frame size in bytes (1 - 1500, default = 1500).
    maxIdleTimeout Integer
    Maximum idle timeout milliseconds (1 - 60000, default = 30000).
    maxUdpPayloadSize Integer
    Maximum UDP payload size in bytes (1200 - 1500, default = 1500).
    ackDelayExponent number
    ACK delay exponent (1 - 20, default = 3).
    activeConnectionIdLimit number
    Active connection ID limit (1 - 8, default = 2).
    activeMigration string
    Enable/disable active migration (default = disable). Valid values: enable, disable.
    greaseQuicBit string
    Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
    maxAckDelay number
    Maximum ACK delay in milliseconds (1 - 16383, default = 25).
    maxDatagramFrameSize number
    Maximum datagram frame size in bytes (1 - 1500, default = 1500).
    maxIdleTimeout number
    Maximum idle timeout milliseconds (1 - 60000, default = 30000).
    maxUdpPayloadSize number
    Maximum UDP payload size in bytes (1200 - 1500, default = 1500).
    ack_delay_exponent int
    ACK delay exponent (1 - 20, default = 3).
    active_connection_id_limit int
    Active connection ID limit (1 - 8, default = 2).
    active_migration str
    Enable/disable active migration (default = disable). Valid values: enable, disable.
    grease_quic_bit str
    Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
    max_ack_delay int
    Maximum ACK delay in milliseconds (1 - 16383, default = 25).
    max_datagram_frame_size int
    Maximum datagram frame size in bytes (1 - 1500, default = 1500).
    max_idle_timeout int
    Maximum idle timeout milliseconds (1 - 60000, default = 30000).
    max_udp_payload_size int
    Maximum UDP payload size in bytes (1200 - 1500, default = 1500).
    ackDelayExponent Number
    ACK delay exponent (1 - 20, default = 3).
    activeConnectionIdLimit Number
    Active connection ID limit (1 - 8, default = 2).
    activeMigration String
    Enable/disable active migration (default = disable). Valid values: enable, disable.
    greaseQuicBit String
    Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
    maxAckDelay Number
    Maximum ACK delay in milliseconds (1 - 16383, default = 25).
    maxDatagramFrameSize Number
    Maximum datagram frame size in bytes (1 - 1500, default = 1500).
    maxIdleTimeout Number
    Maximum idle timeout milliseconds (1 - 60000, default = 30000).
    maxUdpPayloadSize Number
    Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

    AccessproxyApiGateway6Realserver, AccessproxyApiGateway6RealserverArgs

    AddrType string
    Type of address. Valid values: ip, fqdn.
    Address string
    Address or address group of the real server.
    Domain string
    Wildcard domain name of the real server.
    ExternalAuth string
    Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
    HealthCheck string
    Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
    HealthCheckProto string
    Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
    HolddownInterval string
    Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
    HttpHost string
    HTTP server domain name in HTTP header.
    Id int
    Real server ID.
    Ip string
    IPv6 address of the real server.
    Mappedport string
    Port for communicating with the real server.
    Port int
    Port for communicating with the real server.
    SshClientCert string
    Set access-proxy SSH client certificate profile.
    SshHostKeyValidation string
    Enable/disable SSH real server host key validation. Valid values: disable, enable.
    SshHostKeys List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6RealserverSshHostKey>
    One or more server host key. The structure of ssh_host_key block is documented below.
    Status string
    Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
    TranslateHost string
    Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
    TunnelEncryption string
    Tunnel encryption. Valid values: enable, disable.
    Type string
    TCP forwarding server type. Valid values: tcp-forwarding, ssh.
    Weight int
    Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.
    AddrType string
    Type of address. Valid values: ip, fqdn.
    Address string
    Address or address group of the real server.
    Domain string
    Wildcard domain name of the real server.
    ExternalAuth string
    Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
    HealthCheck string
    Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
    HealthCheckProto string
    Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
    HolddownInterval string
    Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
    HttpHost string
    HTTP server domain name in HTTP header.
    Id int
    Real server ID.
    Ip string
    IPv6 address of the real server.
    Mappedport string
    Port for communicating with the real server.
    Port int
    Port for communicating with the real server.
    SshClientCert string
    Set access-proxy SSH client certificate profile.
    SshHostKeyValidation string
    Enable/disable SSH real server host key validation. Valid values: disable, enable.
    SshHostKeys []AccessproxyApiGateway6RealserverSshHostKey
    One or more server host key. The structure of ssh_host_key block is documented below.
    Status string
    Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
    TranslateHost string
    Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
    TunnelEncryption string
    Tunnel encryption. Valid values: enable, disable.
    Type string
    TCP forwarding server type. Valid values: tcp-forwarding, ssh.
    Weight int
    Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.
    addrType String
    Type of address. Valid values: ip, fqdn.
    address String
    Address or address group of the real server.
    domain String
    Wildcard domain name of the real server.
    externalAuth String
    Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
    healthCheck String
    Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
    healthCheckProto String
    Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
    holddownInterval String
    Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
    httpHost String
    HTTP server domain name in HTTP header.
    id Integer
    Real server ID.
    ip String
    IPv6 address of the real server.
    mappedport String
    Port for communicating with the real server.
    port Integer
    Port for communicating with the real server.
    sshClientCert String
    Set access-proxy SSH client certificate profile.
    sshHostKeyValidation String
    Enable/disable SSH real server host key validation. Valid values: disable, enable.
    sshHostKeys List<AccessproxyApiGateway6RealserverSshHostKey>
    One or more server host key. The structure of ssh_host_key block is documented below.
    status String
    Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
    translateHost String
    Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
    tunnelEncryption String
    Tunnel encryption. Valid values: enable, disable.
    type String
    TCP forwarding server type. Valid values: tcp-forwarding, ssh.
    weight Integer
    Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.
    addrType string
    Type of address. Valid values: ip, fqdn.
    address string
    Address or address group of the real server.
    domain string
    Wildcard domain name of the real server.
    externalAuth string
    Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
    healthCheck string
    Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
    healthCheckProto string
    Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
    holddownInterval string
    Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
    httpHost string
    HTTP server domain name in HTTP header.
    id number
    Real server ID.
    ip string
    IPv6 address of the real server.
    mappedport string
    Port for communicating with the real server.
    port number
    Port for communicating with the real server.
    sshClientCert string
    Set access-proxy SSH client certificate profile.
    sshHostKeyValidation string
    Enable/disable SSH real server host key validation. Valid values: disable, enable.
    sshHostKeys AccessproxyApiGateway6RealserverSshHostKey[]
    One or more server host key. The structure of ssh_host_key block is documented below.
    status string
    Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
    translateHost string
    Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
    tunnelEncryption string
    Tunnel encryption. Valid values: enable, disable.
    type string
    TCP forwarding server type. Valid values: tcp-forwarding, ssh.
    weight number
    Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.
    addr_type str
    Type of address. Valid values: ip, fqdn.
    address str
    Address or address group of the real server.
    domain str
    Wildcard domain name of the real server.
    external_auth str
    Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
    health_check str
    Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
    health_check_proto str
    Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
    holddown_interval str
    Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
    http_host str
    HTTP server domain name in HTTP header.
    id int
    Real server ID.
    ip str
    IPv6 address of the real server.
    mappedport str
    Port for communicating with the real server.
    port int
    Port for communicating with the real server.
    ssh_client_cert str
    Set access-proxy SSH client certificate profile.
    ssh_host_key_validation str
    Enable/disable SSH real server host key validation. Valid values: disable, enable.
    ssh_host_keys Sequence[AccessproxyApiGateway6RealserverSshHostKey]
    One or more server host key. The structure of ssh_host_key block is documented below.
    status str
    Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
    translate_host str
    Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
    tunnel_encryption str
    Tunnel encryption. Valid values: enable, disable.
    type str
    TCP forwarding server type. Valid values: tcp-forwarding, ssh.
    weight int
    Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.
    addrType String
    Type of address. Valid values: ip, fqdn.
    address String
    Address or address group of the real server.
    domain String
    Wildcard domain name of the real server.
    externalAuth String
    Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
    healthCheck String
    Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
    healthCheckProto String
    Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
    holddownInterval String
    Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
    httpHost String
    HTTP server domain name in HTTP header.
    id Number
    Real server ID.
    ip String
    IPv6 address of the real server.
    mappedport String
    Port for communicating with the real server.
    port Number
    Port for communicating with the real server.
    sshClientCert String
    Set access-proxy SSH client certificate profile.
    sshHostKeyValidation String
    Enable/disable SSH real server host key validation. Valid values: disable, enable.
    sshHostKeys List<Property Map>
    One or more server host key. The structure of ssh_host_key block is documented below.
    status String
    Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
    translateHost String
    Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
    tunnelEncryption String
    Tunnel encryption. Valid values: enable, disable.
    type String
    TCP forwarding server type. Valid values: tcp-forwarding, ssh.
    weight Number
    Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

    AccessproxyApiGateway6RealserverSshHostKey, AccessproxyApiGateway6RealserverSshHostKeyArgs

    Name string
    Server host key name.
    Name string
    Server host key name.
    name String
    Server host key name.
    name string
    Server host key name.
    name str
    Server host key name.
    name String
    Server host key name.

    AccessproxyApiGateway6SslCipherSuite, AccessproxyApiGateway6SslCipherSuiteArgs

    Cipher string
    Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
    Priority int
    SSL/TLS cipher suites priority.
    Versions string
    SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    Cipher string
    Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
    Priority int
    SSL/TLS cipher suites priority.
    Versions string
    SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    cipher String
    Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
    priority Integer
    SSL/TLS cipher suites priority.
    versions String
    SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    cipher string
    Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
    priority number
    SSL/TLS cipher suites priority.
    versions string
    SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    cipher str
    Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
    priority int
    SSL/TLS cipher suites priority.
    versions str
    SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    cipher String
    Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
    priority Number
    SSL/TLS cipher suites priority.
    versions String
    SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

    AccessproxyApiGatewayApplication, AccessproxyApiGatewayApplicationArgs

    Name string
    SaaS application name.
    Name string
    SaaS application name.
    name String
    SaaS application name.
    name string
    SaaS application name.
    name str
    SaaS application name.
    name String
    SaaS application name.

    AccessproxyApiGatewayQuic, AccessproxyApiGatewayQuicArgs

    AckDelayExponent int
    ACK delay exponent (1 - 20, default = 3).
    ActiveConnectionIdLimit int
    Active connection ID limit (1 - 8, default = 2).
    ActiveMigration string
    Enable/disable active migration (default = disable). Valid values: enable, disable.
    GreaseQuicBit string
    Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
    MaxAckDelay int
    Maximum ACK delay in milliseconds (1 - 16383, default = 25).
    MaxDatagramFrameSize int
    Maximum datagram frame size in bytes (1 - 1500, default = 1500).
    MaxIdleTimeout int
    Maximum idle timeout milliseconds (1 - 60000, default = 30000).
    MaxUdpPayloadSize int
    Maximum UDP payload size in bytes (1200 - 1500, default = 1500).
    AckDelayExponent int
    ACK delay exponent (1 - 20, default = 3).
    ActiveConnectionIdLimit int
    Active connection ID limit (1 - 8, default = 2).
    ActiveMigration string
    Enable/disable active migration (default = disable). Valid values: enable, disable.
    GreaseQuicBit string
    Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
    MaxAckDelay int
    Maximum ACK delay in milliseconds (1 - 16383, default = 25).
    MaxDatagramFrameSize int
    Maximum datagram frame size in bytes (1 - 1500, default = 1500).
    MaxIdleTimeout int
    Maximum idle timeout milliseconds (1 - 60000, default = 30000).
    MaxUdpPayloadSize int
    Maximum UDP payload size in bytes (1200 - 1500, default = 1500).
    ackDelayExponent Integer
    ACK delay exponent (1 - 20, default = 3).
    activeConnectionIdLimit Integer
    Active connection ID limit (1 - 8, default = 2).
    activeMigration String
    Enable/disable active migration (default = disable). Valid values: enable, disable.
    greaseQuicBit String
    Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
    maxAckDelay Integer
    Maximum ACK delay in milliseconds (1 - 16383, default = 25).
    maxDatagramFrameSize Integer
    Maximum datagram frame size in bytes (1 - 1500, default = 1500).
    maxIdleTimeout Integer
    Maximum idle timeout milliseconds (1 - 60000, default = 30000).
    maxUdpPayloadSize Integer
    Maximum UDP payload size in bytes (1200 - 1500, default = 1500).
    ackDelayExponent number
    ACK delay exponent (1 - 20, default = 3).
    activeConnectionIdLimit number
    Active connection ID limit (1 - 8, default = 2).
    activeMigration string
    Enable/disable active migration (default = disable). Valid values: enable, disable.
    greaseQuicBit string
    Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
    maxAckDelay number
    Maximum ACK delay in milliseconds (1 - 16383, default = 25).
    maxDatagramFrameSize number
    Maximum datagram frame size in bytes (1 - 1500, default = 1500).
    maxIdleTimeout number
    Maximum idle timeout milliseconds (1 - 60000, default = 30000).
    maxUdpPayloadSize number
    Maximum UDP payload size in bytes (1200 - 1500, default = 1500).
    ack_delay_exponent int
    ACK delay exponent (1 - 20, default = 3).
    active_connection_id_limit int
    Active connection ID limit (1 - 8, default = 2).
    active_migration str
    Enable/disable active migration (default = disable). Valid values: enable, disable.
    grease_quic_bit str
    Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
    max_ack_delay int
    Maximum ACK delay in milliseconds (1 - 16383, default = 25).
    max_datagram_frame_size int
    Maximum datagram frame size in bytes (1 - 1500, default = 1500).
    max_idle_timeout int
    Maximum idle timeout milliseconds (1 - 60000, default = 30000).
    max_udp_payload_size int
    Maximum UDP payload size in bytes (1200 - 1500, default = 1500).
    ackDelayExponent Number
    ACK delay exponent (1 - 20, default = 3).
    activeConnectionIdLimit Number
    Active connection ID limit (1 - 8, default = 2).
    activeMigration String
    Enable/disable active migration (default = disable). Valid values: enable, disable.
    greaseQuicBit String
    Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
    maxAckDelay Number
    Maximum ACK delay in milliseconds (1 - 16383, default = 25).
    maxDatagramFrameSize Number
    Maximum datagram frame size in bytes (1 - 1500, default = 1500).
    maxIdleTimeout Number
    Maximum idle timeout milliseconds (1 - 60000, default = 30000).
    maxUdpPayloadSize Number
    Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

    AccessproxyApiGatewayRealserver, AccessproxyApiGatewayRealserverArgs

    AddrType string
    Type of address. Valid values: ip, fqdn.
    Address string
    Address or address group of the real server.
    Domain string
    Wildcard domain name of the real server.
    ExternalAuth string
    Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
    HealthCheck string
    Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
    HealthCheckProto string
    Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
    HolddownInterval string
    Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
    HttpHost string
    HTTP server domain name in HTTP header.
    Id int
    Real server ID.
    Ip string
    IPv6 address of the real server.
    Mappedport string
    Port for communicating with the real server.
    Port int
    Port for communicating with the real server.
    SshClientCert string
    Set access-proxy SSH client certificate profile.
    SshHostKeyValidation string
    Enable/disable SSH real server host key validation. Valid values: disable, enable.
    SshHostKeys List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGatewayRealserverSshHostKey>
    One or more server host key. The structure of ssh_host_key block is documented below.
    Status string
    Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
    TranslateHost string
    Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
    TunnelEncryption string
    Tunnel encryption. Valid values: enable, disable.
    Type string
    TCP forwarding server type. Valid values: tcp-forwarding, ssh.
    Weight int
    Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.
    AddrType string
    Type of address. Valid values: ip, fqdn.
    Address string
    Address or address group of the real server.
    Domain string
    Wildcard domain name of the real server.
    ExternalAuth string
    Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
    HealthCheck string
    Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
    HealthCheckProto string
    Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
    HolddownInterval string
    Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
    HttpHost string
    HTTP server domain name in HTTP header.
    Id int
    Real server ID.
    Ip string
    IPv6 address of the real server.
    Mappedport string
    Port for communicating with the real server.
    Port int
    Port for communicating with the real server.
    SshClientCert string
    Set access-proxy SSH client certificate profile.
    SshHostKeyValidation string
    Enable/disable SSH real server host key validation. Valid values: disable, enable.
    SshHostKeys []AccessproxyApiGatewayRealserverSshHostKey
    One or more server host key. The structure of ssh_host_key block is documented below.
    Status string
    Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
    TranslateHost string
    Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
    TunnelEncryption string
    Tunnel encryption. Valid values: enable, disable.
    Type string
    TCP forwarding server type. Valid values: tcp-forwarding, ssh.
    Weight int
    Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.
    addrType String
    Type of address. Valid values: ip, fqdn.
    address String
    Address or address group of the real server.
    domain String
    Wildcard domain name of the real server.
    externalAuth String
    Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
    healthCheck String
    Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
    healthCheckProto String
    Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
    holddownInterval String
    Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
    httpHost String
    HTTP server domain name in HTTP header.
    id Integer
    Real server ID.
    ip String
    IPv6 address of the real server.
    mappedport String
    Port for communicating with the real server.
    port Integer
    Port for communicating with the real server.
    sshClientCert String
    Set access-proxy SSH client certificate profile.
    sshHostKeyValidation String
    Enable/disable SSH real server host key validation. Valid values: disable, enable.
    sshHostKeys List<AccessproxyApiGatewayRealserverSshHostKey>
    One or more server host key. The structure of ssh_host_key block is documented below.
    status String
    Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
    translateHost String
    Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
    tunnelEncryption String
    Tunnel encryption. Valid values: enable, disable.
    type String
    TCP forwarding server type. Valid values: tcp-forwarding, ssh.
    weight Integer
    Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.
    addrType string
    Type of address. Valid values: ip, fqdn.
    address string
    Address or address group of the real server.
    domain string
    Wildcard domain name of the real server.
    externalAuth string
    Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
    healthCheck string
    Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
    healthCheckProto string
    Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
    holddownInterval string
    Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
    httpHost string
    HTTP server domain name in HTTP header.
    id number
    Real server ID.
    ip string
    IPv6 address of the real server.
    mappedport string
    Port for communicating with the real server.
    port number
    Port for communicating with the real server.
    sshClientCert string
    Set access-proxy SSH client certificate profile.
    sshHostKeyValidation string
    Enable/disable SSH real server host key validation. Valid values: disable, enable.
    sshHostKeys AccessproxyApiGatewayRealserverSshHostKey[]
    One or more server host key. The structure of ssh_host_key block is documented below.
    status string
    Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
    translateHost string
    Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
    tunnelEncryption string
    Tunnel encryption. Valid values: enable, disable.
    type string
    TCP forwarding server type. Valid values: tcp-forwarding, ssh.
    weight number
    Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.
    addr_type str
    Type of address. Valid values: ip, fqdn.
    address str
    Address or address group of the real server.
    domain str
    Wildcard domain name of the real server.
    external_auth str
    Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
    health_check str
    Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
    health_check_proto str
    Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
    holddown_interval str
    Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
    http_host str
    HTTP server domain name in HTTP header.
    id int
    Real server ID.
    ip str
    IPv6 address of the real server.
    mappedport str
    Port for communicating with the real server.
    port int
    Port for communicating with the real server.
    ssh_client_cert str
    Set access-proxy SSH client certificate profile.
    ssh_host_key_validation str
    Enable/disable SSH real server host key validation. Valid values: disable, enable.
    ssh_host_keys Sequence[AccessproxyApiGatewayRealserverSshHostKey]
    One or more server host key. The structure of ssh_host_key block is documented below.
    status str
    Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
    translate_host str
    Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
    tunnel_encryption str
    Tunnel encryption. Valid values: enable, disable.
    type str
    TCP forwarding server type. Valid values: tcp-forwarding, ssh.
    weight int
    Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.
    addrType String
    Type of address. Valid values: ip, fqdn.
    address String
    Address or address group of the real server.
    domain String
    Wildcard domain name of the real server.
    externalAuth String
    Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
    healthCheck String
    Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
    healthCheckProto String
    Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
    holddownInterval String
    Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
    httpHost String
    HTTP server domain name in HTTP header.
    id Number
    Real server ID.
    ip String
    IPv6 address of the real server.
    mappedport String
    Port for communicating with the real server.
    port Number
    Port for communicating with the real server.
    sshClientCert String
    Set access-proxy SSH client certificate profile.
    sshHostKeyValidation String
    Enable/disable SSH real server host key validation. Valid values: disable, enable.
    sshHostKeys List<Property Map>
    One or more server host key. The structure of ssh_host_key block is documented below.
    status String
    Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
    translateHost String
    Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
    tunnelEncryption String
    Tunnel encryption. Valid values: enable, disable.
    type String
    TCP forwarding server type. Valid values: tcp-forwarding, ssh.
    weight Number
    Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

    AccessproxyApiGatewayRealserverSshHostKey, AccessproxyApiGatewayRealserverSshHostKeyArgs

    Name string
    Server host key name.
    Name string
    Server host key name.
    name String
    Server host key name.
    name string
    Server host key name.
    name str
    Server host key name.
    name String
    Server host key name.

    AccessproxyApiGatewaySslCipherSuite, AccessproxyApiGatewaySslCipherSuiteArgs

    Cipher string
    Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
    Priority int
    SSL/TLS cipher suites priority.
    Versions string
    SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    Cipher string
    Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
    Priority int
    SSL/TLS cipher suites priority.
    Versions string
    SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    cipher String
    Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
    priority Integer
    SSL/TLS cipher suites priority.
    versions String
    SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    cipher string
    Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
    priority number
    SSL/TLS cipher suites priority.
    versions string
    SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    cipher str
    Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
    priority int
    SSL/TLS cipher suites priority.
    versions str
    SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
    cipher String
    Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
    priority Number
    SSL/TLS cipher suites priority.
    versions String
    SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

    Import

    Firewall AccessProxy can be imported using any of these accepted formats:

    $ pulumi import fortios:firewall/accessproxy:Accessproxy labelname {{name}}
    

    If you do not want to import arguments of block:

    $ export “FORTIOS_IMPORT_TABLE”=“false”

    $ pulumi import fortios:firewall/accessproxy:Accessproxy labelname {{name}}
    

    $ unset “FORTIOS_IMPORT_TABLE”

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    fortios pulumiverse/pulumi-fortios
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the fortios Terraform Provider.
    fortios logo
    Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse