1. Packages
  2. Fortios
  3. API Docs
  4. firewall
  5. Interfacepolicy
Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

fortios.firewall.Interfacepolicy

Explore with Pulumi AI

fortios logo
Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

    Configure IPv4 interface policies.

    Example Usage

    import * as pulumi from "@pulumi/pulumi";
    import * as fortios from "@pulumiverse/fortios";
    
    const trname = new fortios.firewall.Interfacepolicy("trname", {
        addressType: "ipv4",
        applicationListStatus: "disable",
        avProfileStatus: "disable",
        dlpSensorStatus: "disable",
        dsri: "disable",
        dstaddrs: [{
            name: "all",
        }],
        "interface": "port4",
        ipsSensorStatus: "disable",
        logtraffic: "all",
        policyid: 1,
        scanBotnetConnections: "block",
        services: [{
            name: "ALL",
        }],
        spamfilterProfileStatus: "disable",
        srcaddrs: [{
            name: "all",
        }],
        status: "enable",
        webfilterProfileStatus: "disable",
    });
    
    import pulumi
    import pulumiverse_fortios as fortios
    
    trname = fortios.firewall.Interfacepolicy("trname",
        address_type="ipv4",
        application_list_status="disable",
        av_profile_status="disable",
        dlp_sensor_status="disable",
        dsri="disable",
        dstaddrs=[fortios.firewall.InterfacepolicyDstaddrArgs(
            name="all",
        )],
        interface="port4",
        ips_sensor_status="disable",
        logtraffic="all",
        policyid=1,
        scan_botnet_connections="block",
        services=[fortios.firewall.InterfacepolicyServiceArgs(
            name="ALL",
        )],
        spamfilter_profile_status="disable",
        srcaddrs=[fortios.firewall.InterfacepolicySrcaddrArgs(
            name="all",
        )],
        status="enable",
        webfilter_profile_status="disable")
    
    package main
    
    import (
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    	"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/firewall"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := firewall.NewInterfacepolicy(ctx, "trname", &firewall.InterfacepolicyArgs{
    			AddressType:           pulumi.String("ipv4"),
    			ApplicationListStatus: pulumi.String("disable"),
    			AvProfileStatus:       pulumi.String("disable"),
    			DlpSensorStatus:       pulumi.String("disable"),
    			Dsri:                  pulumi.String("disable"),
    			Dstaddrs: firewall.InterfacepolicyDstaddrArray{
    				&firewall.InterfacepolicyDstaddrArgs{
    					Name: pulumi.String("all"),
    				},
    			},
    			Interface:             pulumi.String("port4"),
    			IpsSensorStatus:       pulumi.String("disable"),
    			Logtraffic:            pulumi.String("all"),
    			Policyid:              pulumi.Int(1),
    			ScanBotnetConnections: pulumi.String("block"),
    			Services: firewall.InterfacepolicyServiceArray{
    				&firewall.InterfacepolicyServiceArgs{
    					Name: pulumi.String("ALL"),
    				},
    			},
    			SpamfilterProfileStatus: pulumi.String("disable"),
    			Srcaddrs: firewall.InterfacepolicySrcaddrArray{
    				&firewall.InterfacepolicySrcaddrArgs{
    					Name: pulumi.String("all"),
    				},
    			},
    			Status:                 pulumi.String("enable"),
    			WebfilterProfileStatus: pulumi.String("disable"),
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Fortios = Pulumiverse.Fortios;
    
    return await Deployment.RunAsync(() => 
    {
        var trname = new Fortios.Firewall.Interfacepolicy("trname", new()
        {
            AddressType = "ipv4",
            ApplicationListStatus = "disable",
            AvProfileStatus = "disable",
            DlpSensorStatus = "disable",
            Dsri = "disable",
            Dstaddrs = new[]
            {
                new Fortios.Firewall.Inputs.InterfacepolicyDstaddrArgs
                {
                    Name = "all",
                },
            },
            Interface = "port4",
            IpsSensorStatus = "disable",
            Logtraffic = "all",
            Policyid = 1,
            ScanBotnetConnections = "block",
            Services = new[]
            {
                new Fortios.Firewall.Inputs.InterfacepolicyServiceArgs
                {
                    Name = "ALL",
                },
            },
            SpamfilterProfileStatus = "disable",
            Srcaddrs = new[]
            {
                new Fortios.Firewall.Inputs.InterfacepolicySrcaddrArgs
                {
                    Name = "all",
                },
            },
            Status = "enable",
            WebfilterProfileStatus = "disable",
        });
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.fortios.firewall.Interfacepolicy;
    import com.pulumi.fortios.firewall.InterfacepolicyArgs;
    import com.pulumi.fortios.firewall.inputs.InterfacepolicyDstaddrArgs;
    import com.pulumi.fortios.firewall.inputs.InterfacepolicyServiceArgs;
    import com.pulumi.fortios.firewall.inputs.InterfacepolicySrcaddrArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var trname = new Interfacepolicy("trname", InterfacepolicyArgs.builder()
                .addressType("ipv4")
                .applicationListStatus("disable")
                .avProfileStatus("disable")
                .dlpSensorStatus("disable")
                .dsri("disable")
                .dstaddrs(InterfacepolicyDstaddrArgs.builder()
                    .name("all")
                    .build())
                .interface_("port4")
                .ipsSensorStatus("disable")
                .logtraffic("all")
                .policyid(1)
                .scanBotnetConnections("block")
                .services(InterfacepolicyServiceArgs.builder()
                    .name("ALL")
                    .build())
                .spamfilterProfileStatus("disable")
                .srcaddrs(InterfacepolicySrcaddrArgs.builder()
                    .name("all")
                    .build())
                .status("enable")
                .webfilterProfileStatus("disable")
                .build());
    
        }
    }
    
    resources:
      trname:
        type: fortios:firewall:Interfacepolicy
        properties:
          addressType: ipv4
          applicationListStatus: disable
          avProfileStatus: disable
          dlpSensorStatus: disable
          dsri: disable
          dstaddrs:
            - name: all
          interface: port4
          ipsSensorStatus: disable
          logtraffic: all
          policyid: 1
          scanBotnetConnections: block
          services:
            - name: ALL
          spamfilterProfileStatus: disable
          srcaddrs:
            - name: all
          status: enable
          webfilterProfileStatus: disable
    

    Create Interfacepolicy Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new Interfacepolicy(name: string, args: InterfacepolicyArgs, opts?: CustomResourceOptions);
    @overload
    def Interfacepolicy(resource_name: str,
                        args: InterfacepolicyArgs,
                        opts: Optional[ResourceOptions] = None)
    
    @overload
    def Interfacepolicy(resource_name: str,
                        opts: Optional[ResourceOptions] = None,
                        dstaddrs: Optional[Sequence[InterfacepolicyDstaddrArgs]] = None,
                        srcaddrs: Optional[Sequence[InterfacepolicySrcaddrArgs]] = None,
                        services: Optional[Sequence[InterfacepolicyServiceArgs]] = None,
                        interface: Optional[str] = None,
                        emailfilter_profile_status: Optional[str] = None,
                        ips_sensor: Optional[str] = None,
                        casb_profile_status: Optional[str] = None,
                        comments: Optional[str] = None,
                        dlp_profile: Optional[str] = None,
                        dlp_profile_status: Optional[str] = None,
                        dlp_sensor: Optional[str] = None,
                        dlp_sensor_status: Optional[str] = None,
                        dsri: Optional[str] = None,
                        av_profile_status: Optional[str] = None,
                        dynamic_sort_subtable: Optional[str] = None,
                        emailfilter_profile: Optional[str] = None,
                        address_type: Optional[str] = None,
                        get_all_tables: Optional[str] = None,
                        av_profile: Optional[str] = None,
                        casb_profile: Optional[str] = None,
                        ips_sensor_status: Optional[str] = None,
                        label: Optional[str] = None,
                        logtraffic: Optional[str] = None,
                        policyid: Optional[int] = None,
                        scan_botnet_connections: Optional[str] = None,
                        application_list_status: Optional[str] = None,
                        spamfilter_profile: Optional[str] = None,
                        spamfilter_profile_status: Optional[str] = None,
                        application_list: Optional[str] = None,
                        status: Optional[str] = None,
                        uuid: Optional[str] = None,
                        vdomparam: Optional[str] = None,
                        webfilter_profile: Optional[str] = None,
                        webfilter_profile_status: Optional[str] = None)
    func NewInterfacepolicy(ctx *Context, name string, args InterfacepolicyArgs, opts ...ResourceOption) (*Interfacepolicy, error)
    public Interfacepolicy(string name, InterfacepolicyArgs args, CustomResourceOptions? opts = null)
    public Interfacepolicy(String name, InterfacepolicyArgs args)
    public Interfacepolicy(String name, InterfacepolicyArgs args, CustomResourceOptions options)
    
    type: fortios:firewall:Interfacepolicy
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args InterfacepolicyArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args InterfacepolicyArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args InterfacepolicyArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args InterfacepolicyArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args InterfacepolicyArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var interfacepolicyResource = new Fortios.Firewall.Interfacepolicy("interfacepolicyResource", new()
    {
        Dstaddrs = new[]
        {
            new Fortios.Firewall.Inputs.InterfacepolicyDstaddrArgs
            {
                Name = "string",
            },
        },
        Srcaddrs = new[]
        {
            new Fortios.Firewall.Inputs.InterfacepolicySrcaddrArgs
            {
                Name = "string",
            },
        },
        Services = new[]
        {
            new Fortios.Firewall.Inputs.InterfacepolicyServiceArgs
            {
                Name = "string",
            },
        },
        Interface = "string",
        EmailfilterProfileStatus = "string",
        IpsSensor = "string",
        CasbProfileStatus = "string",
        Comments = "string",
        DlpProfile = "string",
        DlpProfileStatus = "string",
        DlpSensor = "string",
        DlpSensorStatus = "string",
        Dsri = "string",
        AvProfileStatus = "string",
        DynamicSortSubtable = "string",
        EmailfilterProfile = "string",
        AddressType = "string",
        GetAllTables = "string",
        AvProfile = "string",
        CasbProfile = "string",
        IpsSensorStatus = "string",
        Label = "string",
        Logtraffic = "string",
        Policyid = 0,
        ScanBotnetConnections = "string",
        ApplicationListStatus = "string",
        SpamfilterProfile = "string",
        SpamfilterProfileStatus = "string",
        ApplicationList = "string",
        Status = "string",
        Uuid = "string",
        Vdomparam = "string",
        WebfilterProfile = "string",
        WebfilterProfileStatus = "string",
    });
    
    example, err := firewall.NewInterfacepolicy(ctx, "interfacepolicyResource", &firewall.InterfacepolicyArgs{
    	Dstaddrs: firewall.InterfacepolicyDstaddrArray{
    		&firewall.InterfacepolicyDstaddrArgs{
    			Name: pulumi.String("string"),
    		},
    	},
    	Srcaddrs: firewall.InterfacepolicySrcaddrArray{
    		&firewall.InterfacepolicySrcaddrArgs{
    			Name: pulumi.String("string"),
    		},
    	},
    	Services: firewall.InterfacepolicyServiceArray{
    		&firewall.InterfacepolicyServiceArgs{
    			Name: pulumi.String("string"),
    		},
    	},
    	Interface:                pulumi.String("string"),
    	EmailfilterProfileStatus: pulumi.String("string"),
    	IpsSensor:                pulumi.String("string"),
    	CasbProfileStatus:        pulumi.String("string"),
    	Comments:                 pulumi.String("string"),
    	DlpProfile:               pulumi.String("string"),
    	DlpProfileStatus:         pulumi.String("string"),
    	DlpSensor:                pulumi.String("string"),
    	DlpSensorStatus:          pulumi.String("string"),
    	Dsri:                     pulumi.String("string"),
    	AvProfileStatus:          pulumi.String("string"),
    	DynamicSortSubtable:      pulumi.String("string"),
    	EmailfilterProfile:       pulumi.String("string"),
    	AddressType:              pulumi.String("string"),
    	GetAllTables:             pulumi.String("string"),
    	AvProfile:                pulumi.String("string"),
    	CasbProfile:              pulumi.String("string"),
    	IpsSensorStatus:          pulumi.String("string"),
    	Label:                    pulumi.String("string"),
    	Logtraffic:               pulumi.String("string"),
    	Policyid:                 pulumi.Int(0),
    	ScanBotnetConnections:    pulumi.String("string"),
    	ApplicationListStatus:    pulumi.String("string"),
    	SpamfilterProfile:        pulumi.String("string"),
    	SpamfilterProfileStatus:  pulumi.String("string"),
    	ApplicationList:          pulumi.String("string"),
    	Status:                   pulumi.String("string"),
    	Uuid:                     pulumi.String("string"),
    	Vdomparam:                pulumi.String("string"),
    	WebfilterProfile:         pulumi.String("string"),
    	WebfilterProfileStatus:   pulumi.String("string"),
    })
    
    var interfacepolicyResource = new Interfacepolicy("interfacepolicyResource", InterfacepolicyArgs.builder()
        .dstaddrs(InterfacepolicyDstaddrArgs.builder()
            .name("string")
            .build())
        .srcaddrs(InterfacepolicySrcaddrArgs.builder()
            .name("string")
            .build())
        .services(InterfacepolicyServiceArgs.builder()
            .name("string")
            .build())
        .interface_("string")
        .emailfilterProfileStatus("string")
        .ipsSensor("string")
        .casbProfileStatus("string")
        .comments("string")
        .dlpProfile("string")
        .dlpProfileStatus("string")
        .dlpSensor("string")
        .dlpSensorStatus("string")
        .dsri("string")
        .avProfileStatus("string")
        .dynamicSortSubtable("string")
        .emailfilterProfile("string")
        .addressType("string")
        .getAllTables("string")
        .avProfile("string")
        .casbProfile("string")
        .ipsSensorStatus("string")
        .label("string")
        .logtraffic("string")
        .policyid(0)
        .scanBotnetConnections("string")
        .applicationListStatus("string")
        .spamfilterProfile("string")
        .spamfilterProfileStatus("string")
        .applicationList("string")
        .status("string")
        .uuid("string")
        .vdomparam("string")
        .webfilterProfile("string")
        .webfilterProfileStatus("string")
        .build());
    
    interfacepolicy_resource = fortios.firewall.Interfacepolicy("interfacepolicyResource",
        dstaddrs=[{
            "name": "string",
        }],
        srcaddrs=[{
            "name": "string",
        }],
        services=[{
            "name": "string",
        }],
        interface="string",
        emailfilter_profile_status="string",
        ips_sensor="string",
        casb_profile_status="string",
        comments="string",
        dlp_profile="string",
        dlp_profile_status="string",
        dlp_sensor="string",
        dlp_sensor_status="string",
        dsri="string",
        av_profile_status="string",
        dynamic_sort_subtable="string",
        emailfilter_profile="string",
        address_type="string",
        get_all_tables="string",
        av_profile="string",
        casb_profile="string",
        ips_sensor_status="string",
        label="string",
        logtraffic="string",
        policyid=0,
        scan_botnet_connections="string",
        application_list_status="string",
        spamfilter_profile="string",
        spamfilter_profile_status="string",
        application_list="string",
        status="string",
        uuid="string",
        vdomparam="string",
        webfilter_profile="string",
        webfilter_profile_status="string")
    
    const interfacepolicyResource = new fortios.firewall.Interfacepolicy("interfacepolicyResource", {
        dstaddrs: [{
            name: "string",
        }],
        srcaddrs: [{
            name: "string",
        }],
        services: [{
            name: "string",
        }],
        "interface": "string",
        emailfilterProfileStatus: "string",
        ipsSensor: "string",
        casbProfileStatus: "string",
        comments: "string",
        dlpProfile: "string",
        dlpProfileStatus: "string",
        dlpSensor: "string",
        dlpSensorStatus: "string",
        dsri: "string",
        avProfileStatus: "string",
        dynamicSortSubtable: "string",
        emailfilterProfile: "string",
        addressType: "string",
        getAllTables: "string",
        avProfile: "string",
        casbProfile: "string",
        ipsSensorStatus: "string",
        label: "string",
        logtraffic: "string",
        policyid: 0,
        scanBotnetConnections: "string",
        applicationListStatus: "string",
        spamfilterProfile: "string",
        spamfilterProfileStatus: "string",
        applicationList: "string",
        status: "string",
        uuid: "string",
        vdomparam: "string",
        webfilterProfile: "string",
        webfilterProfileStatus: "string",
    });
    
    type: fortios:firewall:Interfacepolicy
    properties:
        addressType: string
        applicationList: string
        applicationListStatus: string
        avProfile: string
        avProfileStatus: string
        casbProfile: string
        casbProfileStatus: string
        comments: string
        dlpProfile: string
        dlpProfileStatus: string
        dlpSensor: string
        dlpSensorStatus: string
        dsri: string
        dstaddrs:
            - name: string
        dynamicSortSubtable: string
        emailfilterProfile: string
        emailfilterProfileStatus: string
        getAllTables: string
        interface: string
        ipsSensor: string
        ipsSensorStatus: string
        label: string
        logtraffic: string
        policyid: 0
        scanBotnetConnections: string
        services:
            - name: string
        spamfilterProfile: string
        spamfilterProfileStatus: string
        srcaddrs:
            - name: string
        status: string
        uuid: string
        vdomparam: string
        webfilterProfile: string
        webfilterProfileStatus: string
    

    Interfacepolicy Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The Interfacepolicy resource accepts the following input properties:

    Dstaddrs List<Pulumiverse.Fortios.Firewall.Inputs.InterfacepolicyDstaddr>
    Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of dstaddr block is documented below.
    Interface string
    Monitored interface name from available interfaces.
    Services List<Pulumiverse.Fortios.Firewall.Inputs.InterfacepolicyService>
    Service object from available options. The structure of service block is documented below.
    Srcaddrs List<Pulumiverse.Fortios.Firewall.Inputs.InterfacepolicySrcaddr>
    Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of srcaddr block is documented below.
    AddressType string
    Policy address type (IPv4 or IPv6). Valid values: ipv4, ipv6.
    ApplicationList string
    Application list name.
    ApplicationListStatus string
    Enable/disable application control. Valid values: enable, disable.
    AvProfile string
    Antivirus profile.
    AvProfileStatus string
    Enable/disable antivirus. Valid values: enable, disable.
    CasbProfile string
    CASB profile.
    CasbProfileStatus string
    Enable/disable CASB. Valid values: enable, disable.
    Comments string
    Comments.
    DlpProfile string
    DLP profile name.
    DlpProfileStatus string
    Enable/disable DLP. Valid values: enable, disable.
    DlpSensor string
    DLP sensor name.
    DlpSensorStatus string
    Enable/disable DLP. Valid values: enable, disable.
    Dsri string
    Enable/disable DSRI. Valid values: enable, disable.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EmailfilterProfile string
    Email filter profile.
    EmailfilterProfileStatus string
    Enable/disable email filter. Valid values: enable, disable.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    IpsSensor string
    IPS sensor name.
    IpsSensorStatus string
    Enable/disable IPS. Valid values: enable, disable.
    Label string
    Label.
    Logtraffic string
    Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values: all, utm, disable.
    Policyid int
    Policy ID.
    ScanBotnetConnections string
    Enable/disable scanning for connections to Botnet servers. Valid values: disable, block, monitor.
    SpamfilterProfile string
    Antispam profile.
    SpamfilterProfileStatus string
    Enable/disable antispam. Valid values: enable, disable.
    Status string
    Enable/disable this policy. Valid values: enable, disable.
    Uuid string
    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    WebfilterProfile string
    Web filter profile.
    WebfilterProfileStatus string
    Enable/disable web filtering. Valid values: enable, disable.
    Dstaddrs []InterfacepolicyDstaddrArgs
    Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of dstaddr block is documented below.
    Interface string
    Monitored interface name from available interfaces.
    Services []InterfacepolicyServiceArgs
    Service object from available options. The structure of service block is documented below.
    Srcaddrs []InterfacepolicySrcaddrArgs
    Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of srcaddr block is documented below.
    AddressType string
    Policy address type (IPv4 or IPv6). Valid values: ipv4, ipv6.
    ApplicationList string
    Application list name.
    ApplicationListStatus string
    Enable/disable application control. Valid values: enable, disable.
    AvProfile string
    Antivirus profile.
    AvProfileStatus string
    Enable/disable antivirus. Valid values: enable, disable.
    CasbProfile string
    CASB profile.
    CasbProfileStatus string
    Enable/disable CASB. Valid values: enable, disable.
    Comments string
    Comments.
    DlpProfile string
    DLP profile name.
    DlpProfileStatus string
    Enable/disable DLP. Valid values: enable, disable.
    DlpSensor string
    DLP sensor name.
    DlpSensorStatus string
    Enable/disable DLP. Valid values: enable, disable.
    Dsri string
    Enable/disable DSRI. Valid values: enable, disable.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EmailfilterProfile string
    Email filter profile.
    EmailfilterProfileStatus string
    Enable/disable email filter. Valid values: enable, disable.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    IpsSensor string
    IPS sensor name.
    IpsSensorStatus string
    Enable/disable IPS. Valid values: enable, disable.
    Label string
    Label.
    Logtraffic string
    Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values: all, utm, disable.
    Policyid int
    Policy ID.
    ScanBotnetConnections string
    Enable/disable scanning for connections to Botnet servers. Valid values: disable, block, monitor.
    SpamfilterProfile string
    Antispam profile.
    SpamfilterProfileStatus string
    Enable/disable antispam. Valid values: enable, disable.
    Status string
    Enable/disable this policy. Valid values: enable, disable.
    Uuid string
    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    WebfilterProfile string
    Web filter profile.
    WebfilterProfileStatus string
    Enable/disable web filtering. Valid values: enable, disable.
    dstaddrs List<InterfacepolicyDstaddr>
    Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of dstaddr block is documented below.
    interface_ String
    Monitored interface name from available interfaces.
    services List<InterfacepolicyService>
    Service object from available options. The structure of service block is documented below.
    srcaddrs List<InterfacepolicySrcaddr>
    Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of srcaddr block is documented below.
    addressType String
    Policy address type (IPv4 or IPv6). Valid values: ipv4, ipv6.
    applicationList String
    Application list name.
    applicationListStatus String
    Enable/disable application control. Valid values: enable, disable.
    avProfile String
    Antivirus profile.
    avProfileStatus String
    Enable/disable antivirus. Valid values: enable, disable.
    casbProfile String
    CASB profile.
    casbProfileStatus String
    Enable/disable CASB. Valid values: enable, disable.
    comments String
    Comments.
    dlpProfile String
    DLP profile name.
    dlpProfileStatus String
    Enable/disable DLP. Valid values: enable, disable.
    dlpSensor String
    DLP sensor name.
    dlpSensorStatus String
    Enable/disable DLP. Valid values: enable, disable.
    dsri String
    Enable/disable DSRI. Valid values: enable, disable.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emailfilterProfile String
    Email filter profile.
    emailfilterProfileStatus String
    Enable/disable email filter. Valid values: enable, disable.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    ipsSensor String
    IPS sensor name.
    ipsSensorStatus String
    Enable/disable IPS. Valid values: enable, disable.
    label String
    Label.
    logtraffic String
    Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values: all, utm, disable.
    policyid Integer
    Policy ID.
    scanBotnetConnections String
    Enable/disable scanning for connections to Botnet servers. Valid values: disable, block, monitor.
    spamfilterProfile String
    Antispam profile.
    spamfilterProfileStatus String
    Enable/disable antispam. Valid values: enable, disable.
    status String
    Enable/disable this policy. Valid values: enable, disable.
    uuid String
    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    webfilterProfile String
    Web filter profile.
    webfilterProfileStatus String
    Enable/disable web filtering. Valid values: enable, disable.
    dstaddrs InterfacepolicyDstaddr[]
    Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of dstaddr block is documented below.
    interface string
    Monitored interface name from available interfaces.
    services InterfacepolicyService[]
    Service object from available options. The structure of service block is documented below.
    srcaddrs InterfacepolicySrcaddr[]
    Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of srcaddr block is documented below.
    addressType string
    Policy address type (IPv4 or IPv6). Valid values: ipv4, ipv6.
    applicationList string
    Application list name.
    applicationListStatus string
    Enable/disable application control. Valid values: enable, disable.
    avProfile string
    Antivirus profile.
    avProfileStatus string
    Enable/disable antivirus. Valid values: enable, disable.
    casbProfile string
    CASB profile.
    casbProfileStatus string
    Enable/disable CASB. Valid values: enable, disable.
    comments string
    Comments.
    dlpProfile string
    DLP profile name.
    dlpProfileStatus string
    Enable/disable DLP. Valid values: enable, disable.
    dlpSensor string
    DLP sensor name.
    dlpSensorStatus string
    Enable/disable DLP. Valid values: enable, disable.
    dsri string
    Enable/disable DSRI. Valid values: enable, disable.
    dynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emailfilterProfile string
    Email filter profile.
    emailfilterProfileStatus string
    Enable/disable email filter. Valid values: enable, disable.
    getAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    ipsSensor string
    IPS sensor name.
    ipsSensorStatus string
    Enable/disable IPS. Valid values: enable, disable.
    label string
    Label.
    logtraffic string
    Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values: all, utm, disable.
    policyid number
    Policy ID.
    scanBotnetConnections string
    Enable/disable scanning for connections to Botnet servers. Valid values: disable, block, monitor.
    spamfilterProfile string
    Antispam profile.
    spamfilterProfileStatus string
    Enable/disable antispam. Valid values: enable, disable.
    status string
    Enable/disable this policy. Valid values: enable, disable.
    uuid string
    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
    vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    webfilterProfile string
    Web filter profile.
    webfilterProfileStatus string
    Enable/disable web filtering. Valid values: enable, disable.
    dstaddrs Sequence[InterfacepolicyDstaddrArgs]
    Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of dstaddr block is documented below.
    interface str
    Monitored interface name from available interfaces.
    services Sequence[InterfacepolicyServiceArgs]
    Service object from available options. The structure of service block is documented below.
    srcaddrs Sequence[InterfacepolicySrcaddrArgs]
    Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of srcaddr block is documented below.
    address_type str
    Policy address type (IPv4 or IPv6). Valid values: ipv4, ipv6.
    application_list str
    Application list name.
    application_list_status str
    Enable/disable application control. Valid values: enable, disable.
    av_profile str
    Antivirus profile.
    av_profile_status str
    Enable/disable antivirus. Valid values: enable, disable.
    casb_profile str
    CASB profile.
    casb_profile_status str
    Enable/disable CASB. Valid values: enable, disable.
    comments str
    Comments.
    dlp_profile str
    DLP profile name.
    dlp_profile_status str
    Enable/disable DLP. Valid values: enable, disable.
    dlp_sensor str
    DLP sensor name.
    dlp_sensor_status str
    Enable/disable DLP. Valid values: enable, disable.
    dsri str
    Enable/disable DSRI. Valid values: enable, disable.
    dynamic_sort_subtable str
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emailfilter_profile str
    Email filter profile.
    emailfilter_profile_status str
    Enable/disable email filter. Valid values: enable, disable.
    get_all_tables str
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    ips_sensor str
    IPS sensor name.
    ips_sensor_status str
    Enable/disable IPS. Valid values: enable, disable.
    label str
    Label.
    logtraffic str
    Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values: all, utm, disable.
    policyid int
    Policy ID.
    scan_botnet_connections str
    Enable/disable scanning for connections to Botnet servers. Valid values: disable, block, monitor.
    spamfilter_profile str
    Antispam profile.
    spamfilter_profile_status str
    Enable/disable antispam. Valid values: enable, disable.
    status str
    Enable/disable this policy. Valid values: enable, disable.
    uuid str
    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
    vdomparam str
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    webfilter_profile str
    Web filter profile.
    webfilter_profile_status str
    Enable/disable web filtering. Valid values: enable, disable.
    dstaddrs List<Property Map>
    Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of dstaddr block is documented below.
    interface String
    Monitored interface name from available interfaces.
    services List<Property Map>
    Service object from available options. The structure of service block is documented below.
    srcaddrs List<Property Map>
    Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of srcaddr block is documented below.
    addressType String
    Policy address type (IPv4 or IPv6). Valid values: ipv4, ipv6.
    applicationList String
    Application list name.
    applicationListStatus String
    Enable/disable application control. Valid values: enable, disable.
    avProfile String
    Antivirus profile.
    avProfileStatus String
    Enable/disable antivirus. Valid values: enable, disable.
    casbProfile String
    CASB profile.
    casbProfileStatus String
    Enable/disable CASB. Valid values: enable, disable.
    comments String
    Comments.
    dlpProfile String
    DLP profile name.
    dlpProfileStatus String
    Enable/disable DLP. Valid values: enable, disable.
    dlpSensor String
    DLP sensor name.
    dlpSensorStatus String
    Enable/disable DLP. Valid values: enable, disable.
    dsri String
    Enable/disable DSRI. Valid values: enable, disable.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emailfilterProfile String
    Email filter profile.
    emailfilterProfileStatus String
    Enable/disable email filter. Valid values: enable, disable.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    ipsSensor String
    IPS sensor name.
    ipsSensorStatus String
    Enable/disable IPS. Valid values: enable, disable.
    label String
    Label.
    logtraffic String
    Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values: all, utm, disable.
    policyid Number
    Policy ID.
    scanBotnetConnections String
    Enable/disable scanning for connections to Botnet servers. Valid values: disable, block, monitor.
    spamfilterProfile String
    Antispam profile.
    spamfilterProfileStatus String
    Enable/disable antispam. Valid values: enable, disable.
    status String
    Enable/disable this policy. Valid values: enable, disable.
    uuid String
    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    webfilterProfile String
    Web filter profile.
    webfilterProfileStatus String
    Enable/disable web filtering. Valid values: enable, disable.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the Interfacepolicy resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Id string
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.
    id string
    The provider-assigned unique ID for this managed resource.
    id str
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.

    Look up Existing Interfacepolicy Resource

    Get an existing Interfacepolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: InterfacepolicyState, opts?: CustomResourceOptions): Interfacepolicy
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            address_type: Optional[str] = None,
            application_list: Optional[str] = None,
            application_list_status: Optional[str] = None,
            av_profile: Optional[str] = None,
            av_profile_status: Optional[str] = None,
            casb_profile: Optional[str] = None,
            casb_profile_status: Optional[str] = None,
            comments: Optional[str] = None,
            dlp_profile: Optional[str] = None,
            dlp_profile_status: Optional[str] = None,
            dlp_sensor: Optional[str] = None,
            dlp_sensor_status: Optional[str] = None,
            dsri: Optional[str] = None,
            dstaddrs: Optional[Sequence[InterfacepolicyDstaddrArgs]] = None,
            dynamic_sort_subtable: Optional[str] = None,
            emailfilter_profile: Optional[str] = None,
            emailfilter_profile_status: Optional[str] = None,
            get_all_tables: Optional[str] = None,
            interface: Optional[str] = None,
            ips_sensor: Optional[str] = None,
            ips_sensor_status: Optional[str] = None,
            label: Optional[str] = None,
            logtraffic: Optional[str] = None,
            policyid: Optional[int] = None,
            scan_botnet_connections: Optional[str] = None,
            services: Optional[Sequence[InterfacepolicyServiceArgs]] = None,
            spamfilter_profile: Optional[str] = None,
            spamfilter_profile_status: Optional[str] = None,
            srcaddrs: Optional[Sequence[InterfacepolicySrcaddrArgs]] = None,
            status: Optional[str] = None,
            uuid: Optional[str] = None,
            vdomparam: Optional[str] = None,
            webfilter_profile: Optional[str] = None,
            webfilter_profile_status: Optional[str] = None) -> Interfacepolicy
    func GetInterfacepolicy(ctx *Context, name string, id IDInput, state *InterfacepolicyState, opts ...ResourceOption) (*Interfacepolicy, error)
    public static Interfacepolicy Get(string name, Input<string> id, InterfacepolicyState? state, CustomResourceOptions? opts = null)
    public static Interfacepolicy get(String name, Output<String> id, InterfacepolicyState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    AddressType string
    Policy address type (IPv4 or IPv6). Valid values: ipv4, ipv6.
    ApplicationList string
    Application list name.
    ApplicationListStatus string
    Enable/disable application control. Valid values: enable, disable.
    AvProfile string
    Antivirus profile.
    AvProfileStatus string
    Enable/disable antivirus. Valid values: enable, disable.
    CasbProfile string
    CASB profile.
    CasbProfileStatus string
    Enable/disable CASB. Valid values: enable, disable.
    Comments string
    Comments.
    DlpProfile string
    DLP profile name.
    DlpProfileStatus string
    Enable/disable DLP. Valid values: enable, disable.
    DlpSensor string
    DLP sensor name.
    DlpSensorStatus string
    Enable/disable DLP. Valid values: enable, disable.
    Dsri string
    Enable/disable DSRI. Valid values: enable, disable.
    Dstaddrs List<Pulumiverse.Fortios.Firewall.Inputs.InterfacepolicyDstaddr>
    Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of dstaddr block is documented below.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EmailfilterProfile string
    Email filter profile.
    EmailfilterProfileStatus string
    Enable/disable email filter. Valid values: enable, disable.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    Interface string
    Monitored interface name from available interfaces.
    IpsSensor string
    IPS sensor name.
    IpsSensorStatus string
    Enable/disable IPS. Valid values: enable, disable.
    Label string
    Label.
    Logtraffic string
    Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values: all, utm, disable.
    Policyid int
    Policy ID.
    ScanBotnetConnections string
    Enable/disable scanning for connections to Botnet servers. Valid values: disable, block, monitor.
    Services List<Pulumiverse.Fortios.Firewall.Inputs.InterfacepolicyService>
    Service object from available options. The structure of service block is documented below.
    SpamfilterProfile string
    Antispam profile.
    SpamfilterProfileStatus string
    Enable/disable antispam. Valid values: enable, disable.
    Srcaddrs List<Pulumiverse.Fortios.Firewall.Inputs.InterfacepolicySrcaddr>
    Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of srcaddr block is documented below.
    Status string
    Enable/disable this policy. Valid values: enable, disable.
    Uuid string
    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    WebfilterProfile string
    Web filter profile.
    WebfilterProfileStatus string
    Enable/disable web filtering. Valid values: enable, disable.
    AddressType string
    Policy address type (IPv4 or IPv6). Valid values: ipv4, ipv6.
    ApplicationList string
    Application list name.
    ApplicationListStatus string
    Enable/disable application control. Valid values: enable, disable.
    AvProfile string
    Antivirus profile.
    AvProfileStatus string
    Enable/disable antivirus. Valid values: enable, disable.
    CasbProfile string
    CASB profile.
    CasbProfileStatus string
    Enable/disable CASB. Valid values: enable, disable.
    Comments string
    Comments.
    DlpProfile string
    DLP profile name.
    DlpProfileStatus string
    Enable/disable DLP. Valid values: enable, disable.
    DlpSensor string
    DLP sensor name.
    DlpSensorStatus string
    Enable/disable DLP. Valid values: enable, disable.
    Dsri string
    Enable/disable DSRI. Valid values: enable, disable.
    Dstaddrs []InterfacepolicyDstaddrArgs
    Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of dstaddr block is documented below.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EmailfilterProfile string
    Email filter profile.
    EmailfilterProfileStatus string
    Enable/disable email filter. Valid values: enable, disable.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    Interface string
    Monitored interface name from available interfaces.
    IpsSensor string
    IPS sensor name.
    IpsSensorStatus string
    Enable/disable IPS. Valid values: enable, disable.
    Label string
    Label.
    Logtraffic string
    Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values: all, utm, disable.
    Policyid int
    Policy ID.
    ScanBotnetConnections string
    Enable/disable scanning for connections to Botnet servers. Valid values: disable, block, monitor.
    Services []InterfacepolicyServiceArgs
    Service object from available options. The structure of service block is documented below.
    SpamfilterProfile string
    Antispam profile.
    SpamfilterProfileStatus string
    Enable/disable antispam. Valid values: enable, disable.
    Srcaddrs []InterfacepolicySrcaddrArgs
    Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of srcaddr block is documented below.
    Status string
    Enable/disable this policy. Valid values: enable, disable.
    Uuid string
    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    WebfilterProfile string
    Web filter profile.
    WebfilterProfileStatus string
    Enable/disable web filtering. Valid values: enable, disable.
    addressType String
    Policy address type (IPv4 or IPv6). Valid values: ipv4, ipv6.
    applicationList String
    Application list name.
    applicationListStatus String
    Enable/disable application control. Valid values: enable, disable.
    avProfile String
    Antivirus profile.
    avProfileStatus String
    Enable/disable antivirus. Valid values: enable, disable.
    casbProfile String
    CASB profile.
    casbProfileStatus String
    Enable/disable CASB. Valid values: enable, disable.
    comments String
    Comments.
    dlpProfile String
    DLP profile name.
    dlpProfileStatus String
    Enable/disable DLP. Valid values: enable, disable.
    dlpSensor String
    DLP sensor name.
    dlpSensorStatus String
    Enable/disable DLP. Valid values: enable, disable.
    dsri String
    Enable/disable DSRI. Valid values: enable, disable.
    dstaddrs List<InterfacepolicyDstaddr>
    Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of dstaddr block is documented below.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emailfilterProfile String
    Email filter profile.
    emailfilterProfileStatus String
    Enable/disable email filter. Valid values: enable, disable.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    interface_ String
    Monitored interface name from available interfaces.
    ipsSensor String
    IPS sensor name.
    ipsSensorStatus String
    Enable/disable IPS. Valid values: enable, disable.
    label String
    Label.
    logtraffic String
    Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values: all, utm, disable.
    policyid Integer
    Policy ID.
    scanBotnetConnections String
    Enable/disable scanning for connections to Botnet servers. Valid values: disable, block, monitor.
    services List<InterfacepolicyService>
    Service object from available options. The structure of service block is documented below.
    spamfilterProfile String
    Antispam profile.
    spamfilterProfileStatus String
    Enable/disable antispam. Valid values: enable, disable.
    srcaddrs List<InterfacepolicySrcaddr>
    Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of srcaddr block is documented below.
    status String
    Enable/disable this policy. Valid values: enable, disable.
    uuid String
    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    webfilterProfile String
    Web filter profile.
    webfilterProfileStatus String
    Enable/disable web filtering. Valid values: enable, disable.
    addressType string
    Policy address type (IPv4 or IPv6). Valid values: ipv4, ipv6.
    applicationList string
    Application list name.
    applicationListStatus string
    Enable/disable application control. Valid values: enable, disable.
    avProfile string
    Antivirus profile.
    avProfileStatus string
    Enable/disable antivirus. Valid values: enable, disable.
    casbProfile string
    CASB profile.
    casbProfileStatus string
    Enable/disable CASB. Valid values: enable, disable.
    comments string
    Comments.
    dlpProfile string
    DLP profile name.
    dlpProfileStatus string
    Enable/disable DLP. Valid values: enable, disable.
    dlpSensor string
    DLP sensor name.
    dlpSensorStatus string
    Enable/disable DLP. Valid values: enable, disable.
    dsri string
    Enable/disable DSRI. Valid values: enable, disable.
    dstaddrs InterfacepolicyDstaddr[]
    Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of dstaddr block is documented below.
    dynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emailfilterProfile string
    Email filter profile.
    emailfilterProfileStatus string
    Enable/disable email filter. Valid values: enable, disable.
    getAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    interface string
    Monitored interface name from available interfaces.
    ipsSensor string
    IPS sensor name.
    ipsSensorStatus string
    Enable/disable IPS. Valid values: enable, disable.
    label string
    Label.
    logtraffic string
    Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values: all, utm, disable.
    policyid number
    Policy ID.
    scanBotnetConnections string
    Enable/disable scanning for connections to Botnet servers. Valid values: disable, block, monitor.
    services InterfacepolicyService[]
    Service object from available options. The structure of service block is documented below.
    spamfilterProfile string
    Antispam profile.
    spamfilterProfileStatus string
    Enable/disable antispam. Valid values: enable, disable.
    srcaddrs InterfacepolicySrcaddr[]
    Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of srcaddr block is documented below.
    status string
    Enable/disable this policy. Valid values: enable, disable.
    uuid string
    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
    vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    webfilterProfile string
    Web filter profile.
    webfilterProfileStatus string
    Enable/disable web filtering. Valid values: enable, disable.
    address_type str
    Policy address type (IPv4 or IPv6). Valid values: ipv4, ipv6.
    application_list str
    Application list name.
    application_list_status str
    Enable/disable application control. Valid values: enable, disable.
    av_profile str
    Antivirus profile.
    av_profile_status str
    Enable/disable antivirus. Valid values: enable, disable.
    casb_profile str
    CASB profile.
    casb_profile_status str
    Enable/disable CASB. Valid values: enable, disable.
    comments str
    Comments.
    dlp_profile str
    DLP profile name.
    dlp_profile_status str
    Enable/disable DLP. Valid values: enable, disable.
    dlp_sensor str
    DLP sensor name.
    dlp_sensor_status str
    Enable/disable DLP. Valid values: enable, disable.
    dsri str
    Enable/disable DSRI. Valid values: enable, disable.
    dstaddrs Sequence[InterfacepolicyDstaddrArgs]
    Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of dstaddr block is documented below.
    dynamic_sort_subtable str
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emailfilter_profile str
    Email filter profile.
    emailfilter_profile_status str
    Enable/disable email filter. Valid values: enable, disable.
    get_all_tables str
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    interface str
    Monitored interface name from available interfaces.
    ips_sensor str
    IPS sensor name.
    ips_sensor_status str
    Enable/disable IPS. Valid values: enable, disable.
    label str
    Label.
    logtraffic str
    Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values: all, utm, disable.
    policyid int
    Policy ID.
    scan_botnet_connections str
    Enable/disable scanning for connections to Botnet servers. Valid values: disable, block, monitor.
    services Sequence[InterfacepolicyServiceArgs]
    Service object from available options. The structure of service block is documented below.
    spamfilter_profile str
    Antispam profile.
    spamfilter_profile_status str
    Enable/disable antispam. Valid values: enable, disable.
    srcaddrs Sequence[InterfacepolicySrcaddrArgs]
    Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of srcaddr block is documented below.
    status str
    Enable/disable this policy. Valid values: enable, disable.
    uuid str
    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
    vdomparam str
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    webfilter_profile str
    Web filter profile.
    webfilter_profile_status str
    Enable/disable web filtering. Valid values: enable, disable.
    addressType String
    Policy address type (IPv4 or IPv6). Valid values: ipv4, ipv6.
    applicationList String
    Application list name.
    applicationListStatus String
    Enable/disable application control. Valid values: enable, disable.
    avProfile String
    Antivirus profile.
    avProfileStatus String
    Enable/disable antivirus. Valid values: enable, disable.
    casbProfile String
    CASB profile.
    casbProfileStatus String
    Enable/disable CASB. Valid values: enable, disable.
    comments String
    Comments.
    dlpProfile String
    DLP profile name.
    dlpProfileStatus String
    Enable/disable DLP. Valid values: enable, disable.
    dlpSensor String
    DLP sensor name.
    dlpSensorStatus String
    Enable/disable DLP. Valid values: enable, disable.
    dsri String
    Enable/disable DSRI. Valid values: enable, disable.
    dstaddrs List<Property Map>
    Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of dstaddr block is documented below.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emailfilterProfile String
    Email filter profile.
    emailfilterProfileStatus String
    Enable/disable email filter. Valid values: enable, disable.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    interface String
    Monitored interface name from available interfaces.
    ipsSensor String
    IPS sensor name.
    ipsSensorStatus String
    Enable/disable IPS. Valid values: enable, disable.
    label String
    Label.
    logtraffic String
    Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values: all, utm, disable.
    policyid Number
    Policy ID.
    scanBotnetConnections String
    Enable/disable scanning for connections to Botnet servers. Valid values: disable, block, monitor.
    services List<Property Map>
    Service object from available options. The structure of service block is documented below.
    spamfilterProfile String
    Antispam profile.
    spamfilterProfileStatus String
    Enable/disable antispam. Valid values: enable, disable.
    srcaddrs List<Property Map>
    Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of srcaddr block is documented below.
    status String
    Enable/disable this policy. Valid values: enable, disable.
    uuid String
    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    webfilterProfile String
    Web filter profile.
    webfilterProfileStatus String
    Enable/disable web filtering. Valid values: enable, disable.

    Supporting Types

    InterfacepolicyDstaddr, InterfacepolicyDstaddrArgs

    Name string
    Address name.
    Name string
    Address name.
    name String
    Address name.
    name string
    Address name.
    name str
    Address name.
    name String
    Address name.

    InterfacepolicyService, InterfacepolicyServiceArgs

    Name string
    Service name.
    Name string
    Service name.
    name String
    Service name.
    name string
    Service name.
    name str
    Service name.
    name String
    Service name.

    InterfacepolicySrcaddr, InterfacepolicySrcaddrArgs

    Name string
    Address name.
    Name string
    Address name.
    name String
    Address name.
    name string
    Address name.
    name str
    Address name.
    name String
    Address name.

    Import

    Firewall InterfacePolicy can be imported using any of these accepted formats:

    $ pulumi import fortios:firewall/interfacepolicy:Interfacepolicy labelname {{policyid}}
    

    If you do not want to import arguments of block:

    $ export “FORTIOS_IMPORT_TABLE”=“false”

    $ pulumi import fortios:firewall/interfacepolicy:Interfacepolicy labelname {{policyid}}
    

    $ unset “FORTIOS_IMPORT_TABLE”

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    fortios pulumiverse/pulumi-fortios
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the fortios Terraform Provider.
    fortios logo
    Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse