fortios.firewall.Interfacepolicy
Explore with Pulumi AI
Configure IPv4 interface policies.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as fortios from "@pulumiverse/fortios";
const trname = new fortios.firewall.Interfacepolicy("trname", {
addressType: "ipv4",
applicationListStatus: "disable",
avProfileStatus: "disable",
dlpSensorStatus: "disable",
dsri: "disable",
dstaddrs: [{
name: "all",
}],
"interface": "port4",
ipsSensorStatus: "disable",
logtraffic: "all",
policyid: 1,
scanBotnetConnections: "block",
services: [{
name: "ALL",
}],
spamfilterProfileStatus: "disable",
srcaddrs: [{
name: "all",
}],
status: "enable",
webfilterProfileStatus: "disable",
});
import pulumi
import pulumiverse_fortios as fortios
trname = fortios.firewall.Interfacepolicy("trname",
address_type="ipv4",
application_list_status="disable",
av_profile_status="disable",
dlp_sensor_status="disable",
dsri="disable",
dstaddrs=[fortios.firewall.InterfacepolicyDstaddrArgs(
name="all",
)],
interface="port4",
ips_sensor_status="disable",
logtraffic="all",
policyid=1,
scan_botnet_connections="block",
services=[fortios.firewall.InterfacepolicyServiceArgs(
name="ALL",
)],
spamfilter_profile_status="disable",
srcaddrs=[fortios.firewall.InterfacepolicySrcaddrArgs(
name="all",
)],
status="enable",
webfilter_profile_status="disable")
package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/firewall"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := firewall.NewInterfacepolicy(ctx, "trname", &firewall.InterfacepolicyArgs{
AddressType: pulumi.String("ipv4"),
ApplicationListStatus: pulumi.String("disable"),
AvProfileStatus: pulumi.String("disable"),
DlpSensorStatus: pulumi.String("disable"),
Dsri: pulumi.String("disable"),
Dstaddrs: firewall.InterfacepolicyDstaddrArray{
&firewall.InterfacepolicyDstaddrArgs{
Name: pulumi.String("all"),
},
},
Interface: pulumi.String("port4"),
IpsSensorStatus: pulumi.String("disable"),
Logtraffic: pulumi.String("all"),
Policyid: pulumi.Int(1),
ScanBotnetConnections: pulumi.String("block"),
Services: firewall.InterfacepolicyServiceArray{
&firewall.InterfacepolicyServiceArgs{
Name: pulumi.String("ALL"),
},
},
SpamfilterProfileStatus: pulumi.String("disable"),
Srcaddrs: firewall.InterfacepolicySrcaddrArray{
&firewall.InterfacepolicySrcaddrArgs{
Name: pulumi.String("all"),
},
},
Status: pulumi.String("enable"),
WebfilterProfileStatus: pulumi.String("disable"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fortios = Pulumiverse.Fortios;
return await Deployment.RunAsync(() =>
{
var trname = new Fortios.Firewall.Interfacepolicy("trname", new()
{
AddressType = "ipv4",
ApplicationListStatus = "disable",
AvProfileStatus = "disable",
DlpSensorStatus = "disable",
Dsri = "disable",
Dstaddrs = new[]
{
new Fortios.Firewall.Inputs.InterfacepolicyDstaddrArgs
{
Name = "all",
},
},
Interface = "port4",
IpsSensorStatus = "disable",
Logtraffic = "all",
Policyid = 1,
ScanBotnetConnections = "block",
Services = new[]
{
new Fortios.Firewall.Inputs.InterfacepolicyServiceArgs
{
Name = "ALL",
},
},
SpamfilterProfileStatus = "disable",
Srcaddrs = new[]
{
new Fortios.Firewall.Inputs.InterfacepolicySrcaddrArgs
{
Name = "all",
},
},
Status = "enable",
WebfilterProfileStatus = "disable",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fortios.firewall.Interfacepolicy;
import com.pulumi.fortios.firewall.InterfacepolicyArgs;
import com.pulumi.fortios.firewall.inputs.InterfacepolicyDstaddrArgs;
import com.pulumi.fortios.firewall.inputs.InterfacepolicyServiceArgs;
import com.pulumi.fortios.firewall.inputs.InterfacepolicySrcaddrArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var trname = new Interfacepolicy("trname", InterfacepolicyArgs.builder()
.addressType("ipv4")
.applicationListStatus("disable")
.avProfileStatus("disable")
.dlpSensorStatus("disable")
.dsri("disable")
.dstaddrs(InterfacepolicyDstaddrArgs.builder()
.name("all")
.build())
.interface_("port4")
.ipsSensorStatus("disable")
.logtraffic("all")
.policyid(1)
.scanBotnetConnections("block")
.services(InterfacepolicyServiceArgs.builder()
.name("ALL")
.build())
.spamfilterProfileStatus("disable")
.srcaddrs(InterfacepolicySrcaddrArgs.builder()
.name("all")
.build())
.status("enable")
.webfilterProfileStatus("disable")
.build());
}
}
resources:
trname:
type: fortios:firewall:Interfacepolicy
properties:
addressType: ipv4
applicationListStatus: disable
avProfileStatus: disable
dlpSensorStatus: disable
dsri: disable
dstaddrs:
- name: all
interface: port4
ipsSensorStatus: disable
logtraffic: all
policyid: 1
scanBotnetConnections: block
services:
- name: ALL
spamfilterProfileStatus: disable
srcaddrs:
- name: all
status: enable
webfilterProfileStatus: disable
Create Interfacepolicy Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Interfacepolicy(name: string, args: InterfacepolicyArgs, opts?: CustomResourceOptions);
@overload
def Interfacepolicy(resource_name: str,
args: InterfacepolicyArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Interfacepolicy(resource_name: str,
opts: Optional[ResourceOptions] = None,
dstaddrs: Optional[Sequence[InterfacepolicyDstaddrArgs]] = None,
srcaddrs: Optional[Sequence[InterfacepolicySrcaddrArgs]] = None,
services: Optional[Sequence[InterfacepolicyServiceArgs]] = None,
interface: Optional[str] = None,
emailfilter_profile_status: Optional[str] = None,
ips_sensor: Optional[str] = None,
casb_profile_status: Optional[str] = None,
comments: Optional[str] = None,
dlp_profile: Optional[str] = None,
dlp_profile_status: Optional[str] = None,
dlp_sensor: Optional[str] = None,
dlp_sensor_status: Optional[str] = None,
dsri: Optional[str] = None,
av_profile_status: Optional[str] = None,
dynamic_sort_subtable: Optional[str] = None,
emailfilter_profile: Optional[str] = None,
address_type: Optional[str] = None,
get_all_tables: Optional[str] = None,
av_profile: Optional[str] = None,
casb_profile: Optional[str] = None,
ips_sensor_status: Optional[str] = None,
label: Optional[str] = None,
logtraffic: Optional[str] = None,
policyid: Optional[int] = None,
scan_botnet_connections: Optional[str] = None,
application_list_status: Optional[str] = None,
spamfilter_profile: Optional[str] = None,
spamfilter_profile_status: Optional[str] = None,
application_list: Optional[str] = None,
status: Optional[str] = None,
uuid: Optional[str] = None,
vdomparam: Optional[str] = None,
webfilter_profile: Optional[str] = None,
webfilter_profile_status: Optional[str] = None)
func NewInterfacepolicy(ctx *Context, name string, args InterfacepolicyArgs, opts ...ResourceOption) (*Interfacepolicy, error)
public Interfacepolicy(string name, InterfacepolicyArgs args, CustomResourceOptions? opts = null)
public Interfacepolicy(String name, InterfacepolicyArgs args)
public Interfacepolicy(String name, InterfacepolicyArgs args, CustomResourceOptions options)
type: fortios:firewall:Interfacepolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args InterfacepolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args InterfacepolicyArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args InterfacepolicyArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args InterfacepolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args InterfacepolicyArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var interfacepolicyResource = new Fortios.Firewall.Interfacepolicy("interfacepolicyResource", new()
{
Dstaddrs = new[]
{
new Fortios.Firewall.Inputs.InterfacepolicyDstaddrArgs
{
Name = "string",
},
},
Srcaddrs = new[]
{
new Fortios.Firewall.Inputs.InterfacepolicySrcaddrArgs
{
Name = "string",
},
},
Services = new[]
{
new Fortios.Firewall.Inputs.InterfacepolicyServiceArgs
{
Name = "string",
},
},
Interface = "string",
EmailfilterProfileStatus = "string",
IpsSensor = "string",
CasbProfileStatus = "string",
Comments = "string",
DlpProfile = "string",
DlpProfileStatus = "string",
DlpSensor = "string",
DlpSensorStatus = "string",
Dsri = "string",
AvProfileStatus = "string",
DynamicSortSubtable = "string",
EmailfilterProfile = "string",
AddressType = "string",
GetAllTables = "string",
AvProfile = "string",
CasbProfile = "string",
IpsSensorStatus = "string",
Label = "string",
Logtraffic = "string",
Policyid = 0,
ScanBotnetConnections = "string",
ApplicationListStatus = "string",
SpamfilterProfile = "string",
SpamfilterProfileStatus = "string",
ApplicationList = "string",
Status = "string",
Uuid = "string",
Vdomparam = "string",
WebfilterProfile = "string",
WebfilterProfileStatus = "string",
});
example, err := firewall.NewInterfacepolicy(ctx, "interfacepolicyResource", &firewall.InterfacepolicyArgs{
Dstaddrs: firewall.InterfacepolicyDstaddrArray{
&firewall.InterfacepolicyDstaddrArgs{
Name: pulumi.String("string"),
},
},
Srcaddrs: firewall.InterfacepolicySrcaddrArray{
&firewall.InterfacepolicySrcaddrArgs{
Name: pulumi.String("string"),
},
},
Services: firewall.InterfacepolicyServiceArray{
&firewall.InterfacepolicyServiceArgs{
Name: pulumi.String("string"),
},
},
Interface: pulumi.String("string"),
EmailfilterProfileStatus: pulumi.String("string"),
IpsSensor: pulumi.String("string"),
CasbProfileStatus: pulumi.String("string"),
Comments: pulumi.String("string"),
DlpProfile: pulumi.String("string"),
DlpProfileStatus: pulumi.String("string"),
DlpSensor: pulumi.String("string"),
DlpSensorStatus: pulumi.String("string"),
Dsri: pulumi.String("string"),
AvProfileStatus: pulumi.String("string"),
DynamicSortSubtable: pulumi.String("string"),
EmailfilterProfile: pulumi.String("string"),
AddressType: pulumi.String("string"),
GetAllTables: pulumi.String("string"),
AvProfile: pulumi.String("string"),
CasbProfile: pulumi.String("string"),
IpsSensorStatus: pulumi.String("string"),
Label: pulumi.String("string"),
Logtraffic: pulumi.String("string"),
Policyid: pulumi.Int(0),
ScanBotnetConnections: pulumi.String("string"),
ApplicationListStatus: pulumi.String("string"),
SpamfilterProfile: pulumi.String("string"),
SpamfilterProfileStatus: pulumi.String("string"),
ApplicationList: pulumi.String("string"),
Status: pulumi.String("string"),
Uuid: pulumi.String("string"),
Vdomparam: pulumi.String("string"),
WebfilterProfile: pulumi.String("string"),
WebfilterProfileStatus: pulumi.String("string"),
})
var interfacepolicyResource = new Interfacepolicy("interfacepolicyResource", InterfacepolicyArgs.builder()
.dstaddrs(InterfacepolicyDstaddrArgs.builder()
.name("string")
.build())
.srcaddrs(InterfacepolicySrcaddrArgs.builder()
.name("string")
.build())
.services(InterfacepolicyServiceArgs.builder()
.name("string")
.build())
.interface_("string")
.emailfilterProfileStatus("string")
.ipsSensor("string")
.casbProfileStatus("string")
.comments("string")
.dlpProfile("string")
.dlpProfileStatus("string")
.dlpSensor("string")
.dlpSensorStatus("string")
.dsri("string")
.avProfileStatus("string")
.dynamicSortSubtable("string")
.emailfilterProfile("string")
.addressType("string")
.getAllTables("string")
.avProfile("string")
.casbProfile("string")
.ipsSensorStatus("string")
.label("string")
.logtraffic("string")
.policyid(0)
.scanBotnetConnections("string")
.applicationListStatus("string")
.spamfilterProfile("string")
.spamfilterProfileStatus("string")
.applicationList("string")
.status("string")
.uuid("string")
.vdomparam("string")
.webfilterProfile("string")
.webfilterProfileStatus("string")
.build());
interfacepolicy_resource = fortios.firewall.Interfacepolicy("interfacepolicyResource",
dstaddrs=[{
"name": "string",
}],
srcaddrs=[{
"name": "string",
}],
services=[{
"name": "string",
}],
interface="string",
emailfilter_profile_status="string",
ips_sensor="string",
casb_profile_status="string",
comments="string",
dlp_profile="string",
dlp_profile_status="string",
dlp_sensor="string",
dlp_sensor_status="string",
dsri="string",
av_profile_status="string",
dynamic_sort_subtable="string",
emailfilter_profile="string",
address_type="string",
get_all_tables="string",
av_profile="string",
casb_profile="string",
ips_sensor_status="string",
label="string",
logtraffic="string",
policyid=0,
scan_botnet_connections="string",
application_list_status="string",
spamfilter_profile="string",
spamfilter_profile_status="string",
application_list="string",
status="string",
uuid="string",
vdomparam="string",
webfilter_profile="string",
webfilter_profile_status="string")
const interfacepolicyResource = new fortios.firewall.Interfacepolicy("interfacepolicyResource", {
dstaddrs: [{
name: "string",
}],
srcaddrs: [{
name: "string",
}],
services: [{
name: "string",
}],
"interface": "string",
emailfilterProfileStatus: "string",
ipsSensor: "string",
casbProfileStatus: "string",
comments: "string",
dlpProfile: "string",
dlpProfileStatus: "string",
dlpSensor: "string",
dlpSensorStatus: "string",
dsri: "string",
avProfileStatus: "string",
dynamicSortSubtable: "string",
emailfilterProfile: "string",
addressType: "string",
getAllTables: "string",
avProfile: "string",
casbProfile: "string",
ipsSensorStatus: "string",
label: "string",
logtraffic: "string",
policyid: 0,
scanBotnetConnections: "string",
applicationListStatus: "string",
spamfilterProfile: "string",
spamfilterProfileStatus: "string",
applicationList: "string",
status: "string",
uuid: "string",
vdomparam: "string",
webfilterProfile: "string",
webfilterProfileStatus: "string",
});
type: fortios:firewall:Interfacepolicy
properties:
addressType: string
applicationList: string
applicationListStatus: string
avProfile: string
avProfileStatus: string
casbProfile: string
casbProfileStatus: string
comments: string
dlpProfile: string
dlpProfileStatus: string
dlpSensor: string
dlpSensorStatus: string
dsri: string
dstaddrs:
- name: string
dynamicSortSubtable: string
emailfilterProfile: string
emailfilterProfileStatus: string
getAllTables: string
interface: string
ipsSensor: string
ipsSensorStatus: string
label: string
logtraffic: string
policyid: 0
scanBotnetConnections: string
services:
- name: string
spamfilterProfile: string
spamfilterProfileStatus: string
srcaddrs:
- name: string
status: string
uuid: string
vdomparam: string
webfilterProfile: string
webfilterProfileStatus: string
Interfacepolicy Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Interfacepolicy resource accepts the following input properties:
- Dstaddrs
List<Pulumiverse.
Fortios. Firewall. Inputs. Interfacepolicy Dstaddr> - Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of
dstaddr
block is documented below. - Interface string
- Monitored interface name from available interfaces.
- Services
List<Pulumiverse.
Fortios. Firewall. Inputs. Interfacepolicy Service> - Service object from available options. The structure of
service
block is documented below. - Srcaddrs
List<Pulumiverse.
Fortios. Firewall. Inputs. Interfacepolicy Srcaddr> - Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of
srcaddr
block is documented below. - Address
Type string - Policy address type (IPv4 or IPv6). Valid values:
ipv4
,ipv6
. - Application
List string - Application list name.
- Application
List stringStatus - Enable/disable application control. Valid values:
enable
,disable
. - Av
Profile string - Antivirus profile.
- Av
Profile stringStatus - Enable/disable antivirus. Valid values:
enable
,disable
. - Casb
Profile string - CASB profile.
- Casb
Profile stringStatus - Enable/disable CASB. Valid values:
enable
,disable
. - Comments string
- Comments.
- Dlp
Profile string - DLP profile name.
- Dlp
Profile stringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - Dlp
Sensor string - DLP sensor name.
- Dlp
Sensor stringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - Dsri string
- Enable/disable DSRI. Valid values:
enable
,disable
. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Emailfilter
Profile string - Email filter profile.
- Emailfilter
Profile stringStatus - Enable/disable email filter. Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Ips
Sensor string - IPS sensor name.
- Ips
Sensor stringStatus - Enable/disable IPS. Valid values:
enable
,disable
. - Label string
- Label.
- Logtraffic string
- Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values:
all
,utm
,disable
. - Policyid int
- Policy ID.
- Scan
Botnet stringConnections - Enable/disable scanning for connections to Botnet servers. Valid values:
disable
,block
,monitor
. - Spamfilter
Profile string - Antispam profile.
- Spamfilter
Profile stringStatus - Enable/disable antispam. Valid values:
enable
,disable
. - Status string
- Enable/disable this policy. Valid values:
enable
,disable
. - Uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Webfilter
Profile string - Web filter profile.
- Webfilter
Profile stringStatus - Enable/disable web filtering. Valid values:
enable
,disable
.
- Dstaddrs
[]Interfacepolicy
Dstaddr Args - Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of
dstaddr
block is documented below. - Interface string
- Monitored interface name from available interfaces.
- Services
[]Interfacepolicy
Service Args - Service object from available options. The structure of
service
block is documented below. - Srcaddrs
[]Interfacepolicy
Srcaddr Args - Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of
srcaddr
block is documented below. - Address
Type string - Policy address type (IPv4 or IPv6). Valid values:
ipv4
,ipv6
. - Application
List string - Application list name.
- Application
List stringStatus - Enable/disable application control. Valid values:
enable
,disable
. - Av
Profile string - Antivirus profile.
- Av
Profile stringStatus - Enable/disable antivirus. Valid values:
enable
,disable
. - Casb
Profile string - CASB profile.
- Casb
Profile stringStatus - Enable/disable CASB. Valid values:
enable
,disable
. - Comments string
- Comments.
- Dlp
Profile string - DLP profile name.
- Dlp
Profile stringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - Dlp
Sensor string - DLP sensor name.
- Dlp
Sensor stringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - Dsri string
- Enable/disable DSRI. Valid values:
enable
,disable
. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Emailfilter
Profile string - Email filter profile.
- Emailfilter
Profile stringStatus - Enable/disable email filter. Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Ips
Sensor string - IPS sensor name.
- Ips
Sensor stringStatus - Enable/disable IPS. Valid values:
enable
,disable
. - Label string
- Label.
- Logtraffic string
- Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values:
all
,utm
,disable
. - Policyid int
- Policy ID.
- Scan
Botnet stringConnections - Enable/disable scanning for connections to Botnet servers. Valid values:
disable
,block
,monitor
. - Spamfilter
Profile string - Antispam profile.
- Spamfilter
Profile stringStatus - Enable/disable antispam. Valid values:
enable
,disable
. - Status string
- Enable/disable this policy. Valid values:
enable
,disable
. - Uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Webfilter
Profile string - Web filter profile.
- Webfilter
Profile stringStatus - Enable/disable web filtering. Valid values:
enable
,disable
.
- dstaddrs
List<Interfacepolicy
Dstaddr> - Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of
dstaddr
block is documented below. - interface_ String
- Monitored interface name from available interfaces.
- services
List<Interfacepolicy
Service> - Service object from available options. The structure of
service
block is documented below. - srcaddrs
List<Interfacepolicy
Srcaddr> - Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of
srcaddr
block is documented below. - address
Type String - Policy address type (IPv4 or IPv6). Valid values:
ipv4
,ipv6
. - application
List String - Application list name.
- application
List StringStatus - Enable/disable application control. Valid values:
enable
,disable
. - av
Profile String - Antivirus profile.
- av
Profile StringStatus - Enable/disable antivirus. Valid values:
enable
,disable
. - casb
Profile String - CASB profile.
- casb
Profile StringStatus - Enable/disable CASB. Valid values:
enable
,disable
. - comments String
- Comments.
- dlp
Profile String - DLP profile name.
- dlp
Profile StringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - dlp
Sensor String - DLP sensor name.
- dlp
Sensor StringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - dsri String
- Enable/disable DSRI. Valid values:
enable
,disable
. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- emailfilter
Profile String - Email filter profile.
- emailfilter
Profile StringStatus - Enable/disable email filter. Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ips
Sensor String - IPS sensor name.
- ips
Sensor StringStatus - Enable/disable IPS. Valid values:
enable
,disable
. - label String
- Label.
- logtraffic String
- Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values:
all
,utm
,disable
. - policyid Integer
- Policy ID.
- scan
Botnet StringConnections - Enable/disable scanning for connections to Botnet servers. Valid values:
disable
,block
,monitor
. - spamfilter
Profile String - Antispam profile.
- spamfilter
Profile StringStatus - Enable/disable antispam. Valid values:
enable
,disable
. - status String
- Enable/disable this policy. Valid values:
enable
,disable
. - uuid String
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- webfilter
Profile String - Web filter profile.
- webfilter
Profile StringStatus - Enable/disable web filtering. Valid values:
enable
,disable
.
- dstaddrs
Interfacepolicy
Dstaddr[] - Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of
dstaddr
block is documented below. - interface string
- Monitored interface name from available interfaces.
- services
Interfacepolicy
Service[] - Service object from available options. The structure of
service
block is documented below. - srcaddrs
Interfacepolicy
Srcaddr[] - Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of
srcaddr
block is documented below. - address
Type string - Policy address type (IPv4 or IPv6). Valid values:
ipv4
,ipv6
. - application
List string - Application list name.
- application
List stringStatus - Enable/disable application control. Valid values:
enable
,disable
. - av
Profile string - Antivirus profile.
- av
Profile stringStatus - Enable/disable antivirus. Valid values:
enable
,disable
. - casb
Profile string - CASB profile.
- casb
Profile stringStatus - Enable/disable CASB. Valid values:
enable
,disable
. - comments string
- Comments.
- dlp
Profile string - DLP profile name.
- dlp
Profile stringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - dlp
Sensor string - DLP sensor name.
- dlp
Sensor stringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - dsri string
- Enable/disable DSRI. Valid values:
enable
,disable
. - dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- emailfilter
Profile string - Email filter profile.
- emailfilter
Profile stringStatus - Enable/disable email filter. Valid values:
enable
,disable
. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ips
Sensor string - IPS sensor name.
- ips
Sensor stringStatus - Enable/disable IPS. Valid values:
enable
,disable
. - label string
- Label.
- logtraffic string
- Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values:
all
,utm
,disable
. - policyid number
- Policy ID.
- scan
Botnet stringConnections - Enable/disable scanning for connections to Botnet servers. Valid values:
disable
,block
,monitor
. - spamfilter
Profile string - Antispam profile.
- spamfilter
Profile stringStatus - Enable/disable antispam. Valid values:
enable
,disable
. - status string
- Enable/disable this policy. Valid values:
enable
,disable
. - uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- webfilter
Profile string - Web filter profile.
- webfilter
Profile stringStatus - Enable/disable web filtering. Valid values:
enable
,disable
.
- dstaddrs
Sequence[Interfacepolicy
Dstaddr Args] - Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of
dstaddr
block is documented below. - interface str
- Monitored interface name from available interfaces.
- services
Sequence[Interfacepolicy
Service Args] - Service object from available options. The structure of
service
block is documented below. - srcaddrs
Sequence[Interfacepolicy
Srcaddr Args] - Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of
srcaddr
block is documented below. - address_
type str - Policy address type (IPv4 or IPv6). Valid values:
ipv4
,ipv6
. - application_
list str - Application list name.
- application_
list_ strstatus - Enable/disable application control. Valid values:
enable
,disable
. - av_
profile str - Antivirus profile.
- av_
profile_ strstatus - Enable/disable antivirus. Valid values:
enable
,disable
. - casb_
profile str - CASB profile.
- casb_
profile_ strstatus - Enable/disable CASB. Valid values:
enable
,disable
. - comments str
- Comments.
- dlp_
profile str - DLP profile name.
- dlp_
profile_ strstatus - Enable/disable DLP. Valid values:
enable
,disable
. - dlp_
sensor str - DLP sensor name.
- dlp_
sensor_ strstatus - Enable/disable DLP. Valid values:
enable
,disable
. - dsri str
- Enable/disable DSRI. Valid values:
enable
,disable
. - dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- emailfilter_
profile str - Email filter profile.
- emailfilter_
profile_ strstatus - Enable/disable email filter. Valid values:
enable
,disable
. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ips_
sensor str - IPS sensor name.
- ips_
sensor_ strstatus - Enable/disable IPS. Valid values:
enable
,disable
. - label str
- Label.
- logtraffic str
- Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values:
all
,utm
,disable
. - policyid int
- Policy ID.
- scan_
botnet_ strconnections - Enable/disable scanning for connections to Botnet servers. Valid values:
disable
,block
,monitor
. - spamfilter_
profile str - Antispam profile.
- spamfilter_
profile_ strstatus - Enable/disable antispam. Valid values:
enable
,disable
. - status str
- Enable/disable this policy. Valid values:
enable
,disable
. - uuid str
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- webfilter_
profile str - Web filter profile.
- webfilter_
profile_ strstatus - Enable/disable web filtering. Valid values:
enable
,disable
.
- dstaddrs List<Property Map>
- Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of
dstaddr
block is documented below. - interface String
- Monitored interface name from available interfaces.
- services List<Property Map>
- Service object from available options. The structure of
service
block is documented below. - srcaddrs List<Property Map>
- Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of
srcaddr
block is documented below. - address
Type String - Policy address type (IPv4 or IPv6). Valid values:
ipv4
,ipv6
. - application
List String - Application list name.
- application
List StringStatus - Enable/disable application control. Valid values:
enable
,disable
. - av
Profile String - Antivirus profile.
- av
Profile StringStatus - Enable/disable antivirus. Valid values:
enable
,disable
. - casb
Profile String - CASB profile.
- casb
Profile StringStatus - Enable/disable CASB. Valid values:
enable
,disable
. - comments String
- Comments.
- dlp
Profile String - DLP profile name.
- dlp
Profile StringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - dlp
Sensor String - DLP sensor name.
- dlp
Sensor StringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - dsri String
- Enable/disable DSRI. Valid values:
enable
,disable
. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- emailfilter
Profile String - Email filter profile.
- emailfilter
Profile StringStatus - Enable/disable email filter. Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ips
Sensor String - IPS sensor name.
- ips
Sensor StringStatus - Enable/disable IPS. Valid values:
enable
,disable
. - label String
- Label.
- logtraffic String
- Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values:
all
,utm
,disable
. - policyid Number
- Policy ID.
- scan
Botnet StringConnections - Enable/disable scanning for connections to Botnet servers. Valid values:
disable
,block
,monitor
. - spamfilter
Profile String - Antispam profile.
- spamfilter
Profile StringStatus - Enable/disable antispam. Valid values:
enable
,disable
. - status String
- Enable/disable this policy. Valid values:
enable
,disable
. - uuid String
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- webfilter
Profile String - Web filter profile.
- webfilter
Profile StringStatus - Enable/disable web filtering. Valid values:
enable
,disable
.
Outputs
All input properties are implicitly available as output properties. Additionally, the Interfacepolicy resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Interfacepolicy Resource
Get an existing Interfacepolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: InterfacepolicyState, opts?: CustomResourceOptions): Interfacepolicy
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
address_type: Optional[str] = None,
application_list: Optional[str] = None,
application_list_status: Optional[str] = None,
av_profile: Optional[str] = None,
av_profile_status: Optional[str] = None,
casb_profile: Optional[str] = None,
casb_profile_status: Optional[str] = None,
comments: Optional[str] = None,
dlp_profile: Optional[str] = None,
dlp_profile_status: Optional[str] = None,
dlp_sensor: Optional[str] = None,
dlp_sensor_status: Optional[str] = None,
dsri: Optional[str] = None,
dstaddrs: Optional[Sequence[InterfacepolicyDstaddrArgs]] = None,
dynamic_sort_subtable: Optional[str] = None,
emailfilter_profile: Optional[str] = None,
emailfilter_profile_status: Optional[str] = None,
get_all_tables: Optional[str] = None,
interface: Optional[str] = None,
ips_sensor: Optional[str] = None,
ips_sensor_status: Optional[str] = None,
label: Optional[str] = None,
logtraffic: Optional[str] = None,
policyid: Optional[int] = None,
scan_botnet_connections: Optional[str] = None,
services: Optional[Sequence[InterfacepolicyServiceArgs]] = None,
spamfilter_profile: Optional[str] = None,
spamfilter_profile_status: Optional[str] = None,
srcaddrs: Optional[Sequence[InterfacepolicySrcaddrArgs]] = None,
status: Optional[str] = None,
uuid: Optional[str] = None,
vdomparam: Optional[str] = None,
webfilter_profile: Optional[str] = None,
webfilter_profile_status: Optional[str] = None) -> Interfacepolicy
func GetInterfacepolicy(ctx *Context, name string, id IDInput, state *InterfacepolicyState, opts ...ResourceOption) (*Interfacepolicy, error)
public static Interfacepolicy Get(string name, Input<string> id, InterfacepolicyState? state, CustomResourceOptions? opts = null)
public static Interfacepolicy get(String name, Output<String> id, InterfacepolicyState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Address
Type string - Policy address type (IPv4 or IPv6). Valid values:
ipv4
,ipv6
. - Application
List string - Application list name.
- Application
List stringStatus - Enable/disable application control. Valid values:
enable
,disable
. - Av
Profile string - Antivirus profile.
- Av
Profile stringStatus - Enable/disable antivirus. Valid values:
enable
,disable
. - Casb
Profile string - CASB profile.
- Casb
Profile stringStatus - Enable/disable CASB. Valid values:
enable
,disable
. - Comments string
- Comments.
- Dlp
Profile string - DLP profile name.
- Dlp
Profile stringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - Dlp
Sensor string - DLP sensor name.
- Dlp
Sensor stringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - Dsri string
- Enable/disable DSRI. Valid values:
enable
,disable
. - Dstaddrs
List<Pulumiverse.
Fortios. Firewall. Inputs. Interfacepolicy Dstaddr> - Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of
dstaddr
block is documented below. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Emailfilter
Profile string - Email filter profile.
- Emailfilter
Profile stringStatus - Enable/disable email filter. Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Interface string
- Monitored interface name from available interfaces.
- Ips
Sensor string - IPS sensor name.
- Ips
Sensor stringStatus - Enable/disable IPS. Valid values:
enable
,disable
. - Label string
- Label.
- Logtraffic string
- Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values:
all
,utm
,disable
. - Policyid int
- Policy ID.
- Scan
Botnet stringConnections - Enable/disable scanning for connections to Botnet servers. Valid values:
disable
,block
,monitor
. - Services
List<Pulumiverse.
Fortios. Firewall. Inputs. Interfacepolicy Service> - Service object from available options. The structure of
service
block is documented below. - Spamfilter
Profile string - Antispam profile.
- Spamfilter
Profile stringStatus - Enable/disable antispam. Valid values:
enable
,disable
. - Srcaddrs
List<Pulumiverse.
Fortios. Firewall. Inputs. Interfacepolicy Srcaddr> - Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of
srcaddr
block is documented below. - Status string
- Enable/disable this policy. Valid values:
enable
,disable
. - Uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Webfilter
Profile string - Web filter profile.
- Webfilter
Profile stringStatus - Enable/disable web filtering. Valid values:
enable
,disable
.
- Address
Type string - Policy address type (IPv4 or IPv6). Valid values:
ipv4
,ipv6
. - Application
List string - Application list name.
- Application
List stringStatus - Enable/disable application control. Valid values:
enable
,disable
. - Av
Profile string - Antivirus profile.
- Av
Profile stringStatus - Enable/disable antivirus. Valid values:
enable
,disable
. - Casb
Profile string - CASB profile.
- Casb
Profile stringStatus - Enable/disable CASB. Valid values:
enable
,disable
. - Comments string
- Comments.
- Dlp
Profile string - DLP profile name.
- Dlp
Profile stringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - Dlp
Sensor string - DLP sensor name.
- Dlp
Sensor stringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - Dsri string
- Enable/disable DSRI. Valid values:
enable
,disable
. - Dstaddrs
[]Interfacepolicy
Dstaddr Args - Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of
dstaddr
block is documented below. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Emailfilter
Profile string - Email filter profile.
- Emailfilter
Profile stringStatus - Enable/disable email filter. Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Interface string
- Monitored interface name from available interfaces.
- Ips
Sensor string - IPS sensor name.
- Ips
Sensor stringStatus - Enable/disable IPS. Valid values:
enable
,disable
. - Label string
- Label.
- Logtraffic string
- Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values:
all
,utm
,disable
. - Policyid int
- Policy ID.
- Scan
Botnet stringConnections - Enable/disable scanning for connections to Botnet servers. Valid values:
disable
,block
,monitor
. - Services
[]Interfacepolicy
Service Args - Service object from available options. The structure of
service
block is documented below. - Spamfilter
Profile string - Antispam profile.
- Spamfilter
Profile stringStatus - Enable/disable antispam. Valid values:
enable
,disable
. - Srcaddrs
[]Interfacepolicy
Srcaddr Args - Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of
srcaddr
block is documented below. - Status string
- Enable/disable this policy. Valid values:
enable
,disable
. - Uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Webfilter
Profile string - Web filter profile.
- Webfilter
Profile stringStatus - Enable/disable web filtering. Valid values:
enable
,disable
.
- address
Type String - Policy address type (IPv4 or IPv6). Valid values:
ipv4
,ipv6
. - application
List String - Application list name.
- application
List StringStatus - Enable/disable application control. Valid values:
enable
,disable
. - av
Profile String - Antivirus profile.
- av
Profile StringStatus - Enable/disable antivirus. Valid values:
enable
,disable
. - casb
Profile String - CASB profile.
- casb
Profile StringStatus - Enable/disable CASB. Valid values:
enable
,disable
. - comments String
- Comments.
- dlp
Profile String - DLP profile name.
- dlp
Profile StringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - dlp
Sensor String - DLP sensor name.
- dlp
Sensor StringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - dsri String
- Enable/disable DSRI. Valid values:
enable
,disable
. - dstaddrs
List<Interfacepolicy
Dstaddr> - Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of
dstaddr
block is documented below. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- emailfilter
Profile String - Email filter profile.
- emailfilter
Profile StringStatus - Enable/disable email filter. Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- interface_ String
- Monitored interface name from available interfaces.
- ips
Sensor String - IPS sensor name.
- ips
Sensor StringStatus - Enable/disable IPS. Valid values:
enable
,disable
. - label String
- Label.
- logtraffic String
- Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values:
all
,utm
,disable
. - policyid Integer
- Policy ID.
- scan
Botnet StringConnections - Enable/disable scanning for connections to Botnet servers. Valid values:
disable
,block
,monitor
. - services
List<Interfacepolicy
Service> - Service object from available options. The structure of
service
block is documented below. - spamfilter
Profile String - Antispam profile.
- spamfilter
Profile StringStatus - Enable/disable antispam. Valid values:
enable
,disable
. - srcaddrs
List<Interfacepolicy
Srcaddr> - Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of
srcaddr
block is documented below. - status String
- Enable/disable this policy. Valid values:
enable
,disable
. - uuid String
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- webfilter
Profile String - Web filter profile.
- webfilter
Profile StringStatus - Enable/disable web filtering. Valid values:
enable
,disable
.
- address
Type string - Policy address type (IPv4 or IPv6). Valid values:
ipv4
,ipv6
. - application
List string - Application list name.
- application
List stringStatus - Enable/disable application control. Valid values:
enable
,disable
. - av
Profile string - Antivirus profile.
- av
Profile stringStatus - Enable/disable antivirus. Valid values:
enable
,disable
. - casb
Profile string - CASB profile.
- casb
Profile stringStatus - Enable/disable CASB. Valid values:
enable
,disable
. - comments string
- Comments.
- dlp
Profile string - DLP profile name.
- dlp
Profile stringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - dlp
Sensor string - DLP sensor name.
- dlp
Sensor stringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - dsri string
- Enable/disable DSRI. Valid values:
enable
,disable
. - dstaddrs
Interfacepolicy
Dstaddr[] - Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of
dstaddr
block is documented below. - dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- emailfilter
Profile string - Email filter profile.
- emailfilter
Profile stringStatus - Enable/disable email filter. Valid values:
enable
,disable
. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- interface string
- Monitored interface name from available interfaces.
- ips
Sensor string - IPS sensor name.
- ips
Sensor stringStatus - Enable/disable IPS. Valid values:
enable
,disable
. - label string
- Label.
- logtraffic string
- Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values:
all
,utm
,disable
. - policyid number
- Policy ID.
- scan
Botnet stringConnections - Enable/disable scanning for connections to Botnet servers. Valid values:
disable
,block
,monitor
. - services
Interfacepolicy
Service[] - Service object from available options. The structure of
service
block is documented below. - spamfilter
Profile string - Antispam profile.
- spamfilter
Profile stringStatus - Enable/disable antispam. Valid values:
enable
,disable
. - srcaddrs
Interfacepolicy
Srcaddr[] - Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of
srcaddr
block is documented below. - status string
- Enable/disable this policy. Valid values:
enable
,disable
. - uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- webfilter
Profile string - Web filter profile.
- webfilter
Profile stringStatus - Enable/disable web filtering. Valid values:
enable
,disable
.
- address_
type str - Policy address type (IPv4 or IPv6). Valid values:
ipv4
,ipv6
. - application_
list str - Application list name.
- application_
list_ strstatus - Enable/disable application control. Valid values:
enable
,disable
. - av_
profile str - Antivirus profile.
- av_
profile_ strstatus - Enable/disable antivirus. Valid values:
enable
,disable
. - casb_
profile str - CASB profile.
- casb_
profile_ strstatus - Enable/disable CASB. Valid values:
enable
,disable
. - comments str
- Comments.
- dlp_
profile str - DLP profile name.
- dlp_
profile_ strstatus - Enable/disable DLP. Valid values:
enable
,disable
. - dlp_
sensor str - DLP sensor name.
- dlp_
sensor_ strstatus - Enable/disable DLP. Valid values:
enable
,disable
. - dsri str
- Enable/disable DSRI. Valid values:
enable
,disable
. - dstaddrs
Sequence[Interfacepolicy
Dstaddr Args] - Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of
dstaddr
block is documented below. - dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- emailfilter_
profile str - Email filter profile.
- emailfilter_
profile_ strstatus - Enable/disable email filter. Valid values:
enable
,disable
. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- interface str
- Monitored interface name from available interfaces.
- ips_
sensor str - IPS sensor name.
- ips_
sensor_ strstatus - Enable/disable IPS. Valid values:
enable
,disable
. - label str
- Label.
- logtraffic str
- Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values:
all
,utm
,disable
. - policyid int
- Policy ID.
- scan_
botnet_ strconnections - Enable/disable scanning for connections to Botnet servers. Valid values:
disable
,block
,monitor
. - services
Sequence[Interfacepolicy
Service Args] - Service object from available options. The structure of
service
block is documented below. - spamfilter_
profile str - Antispam profile.
- spamfilter_
profile_ strstatus - Enable/disable antispam. Valid values:
enable
,disable
. - srcaddrs
Sequence[Interfacepolicy
Srcaddr Args] - Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of
srcaddr
block is documented below. - status str
- Enable/disable this policy. Valid values:
enable
,disable
. - uuid str
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- webfilter_
profile str - Web filter profile.
- webfilter_
profile_ strstatus - Enable/disable web filtering. Valid values:
enable
,disable
.
- address
Type String - Policy address type (IPv4 or IPv6). Valid values:
ipv4
,ipv6
. - application
List String - Application list name.
- application
List StringStatus - Enable/disable application control. Valid values:
enable
,disable
. - av
Profile String - Antivirus profile.
- av
Profile StringStatus - Enable/disable antivirus. Valid values:
enable
,disable
. - casb
Profile String - CASB profile.
- casb
Profile StringStatus - Enable/disable CASB. Valid values:
enable
,disable
. - comments String
- Comments.
- dlp
Profile String - DLP profile name.
- dlp
Profile StringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - dlp
Sensor String - DLP sensor name.
- dlp
Sensor StringStatus - Enable/disable DLP. Valid values:
enable
,disable
. - dsri String
- Enable/disable DSRI. Valid values:
enable
,disable
. - dstaddrs List<Property Map>
- Address object to limit traffic monitoring to network traffic sent to the specified address or range. The structure of
dstaddr
block is documented below. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- emailfilter
Profile String - Email filter profile.
- emailfilter
Profile StringStatus - Enable/disable email filter. Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- interface String
- Monitored interface name from available interfaces.
- ips
Sensor String - IPS sensor name.
- ips
Sensor StringStatus - Enable/disable IPS. Valid values:
enable
,disable
. - label String
- Label.
- logtraffic String
- Logging type to be used in this policy (Options: all | utm | disable, Default: utm). Valid values:
all
,utm
,disable
. - policyid Number
- Policy ID.
- scan
Botnet StringConnections - Enable/disable scanning for connections to Botnet servers. Valid values:
disable
,block
,monitor
. - services List<Property Map>
- Service object from available options. The structure of
service
block is documented below. - spamfilter
Profile String - Antispam profile.
- spamfilter
Profile StringStatus - Enable/disable antispam. Valid values:
enable
,disable
. - srcaddrs List<Property Map>
- Address object to limit traffic monitoring to network traffic sent from the specified address or range. The structure of
srcaddr
block is documented below. - status String
- Enable/disable this policy. Valid values:
enable
,disable
. - uuid String
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- webfilter
Profile String - Web filter profile.
- webfilter
Profile StringStatus - Enable/disable web filtering. Valid values:
enable
,disable
.
Supporting Types
InterfacepolicyDstaddr, InterfacepolicyDstaddrArgs
- Name string
- Address name.
- Name string
- Address name.
- name String
- Address name.
- name string
- Address name.
- name str
- Address name.
- name String
- Address name.
InterfacepolicyService, InterfacepolicyServiceArgs
- Name string
- Service name.
- Name string
- Service name.
- name String
- Service name.
- name string
- Service name.
- name str
- Service name.
- name String
- Service name.
InterfacepolicySrcaddr, InterfacepolicySrcaddrArgs
- Name string
- Address name.
- Name string
- Address name.
- name String
- Address name.
- name string
- Address name.
- name str
- Address name.
- name String
- Address name.
Import
Firewall InterfacePolicy can be imported using any of these accepted formats:
$ pulumi import fortios:firewall/interfacepolicy:Interfacepolicy labelname {{policyid}}
If you do not want to import arguments of block:
$ export “FORTIOS_IMPORT_TABLE”=“false”
$ pulumi import fortios:firewall/interfacepolicy:Interfacepolicy labelname {{policyid}}
$ unset “FORTIOS_IMPORT_TABLE”
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- fortios pulumiverse/pulumi-fortios
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
fortios
Terraform Provider.