fortios.firewall.Policy46
Explore with Pulumi AI
Configure IPv4 to IPv6 policies. Applies to FortiOS Version <= 7.0.0
.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as fortios from "@pulumiverse/fortios";
const trnameVip46 = new fortios.firewall.Vip46("trnameVip46", {
arpReply: "enable",
color: 0,
extip: "10.1.100.55",
extport: "0-65535",
fosid: 0,
ldbMethod: "static",
mappedip: "2000:172:16:200::55",
mappedport: "0-65535",
portforward: "disable",
protocol: "tcp",
type: "static-nat",
});
const trnamePolicy46 = new fortios.firewall.Policy46("trnamePolicy46", {
action: "deny",
dstintf: "port3",
fixedport: "disable",
ippool: "disable",
logtraffic: "disable",
permitAnyHost: "disable",
policyid: 2,
schedule: "always",
srcintf: "port2",
status: "enable",
tcpMssReceiver: 0,
tcpMssSender: 0,
dstaddrs: [{
name: trnameVip46.name,
}],
services: [{
name: "ALL",
}],
srcaddrs: [{
name: "FIREWALL_AUTH_PORTAL_ADDRESS",
}],
});
import pulumi
import pulumiverse_fortios as fortios
trname_vip46 = fortios.firewall.Vip46("trnameVip46",
arp_reply="enable",
color=0,
extip="10.1.100.55",
extport="0-65535",
fosid=0,
ldb_method="static",
mappedip="2000:172:16:200::55",
mappedport="0-65535",
portforward="disable",
protocol="tcp",
type="static-nat")
trname_policy46 = fortios.firewall.Policy46("trnamePolicy46",
action="deny",
dstintf="port3",
fixedport="disable",
ippool="disable",
logtraffic="disable",
permit_any_host="disable",
policyid=2,
schedule="always",
srcintf="port2",
status="enable",
tcp_mss_receiver=0,
tcp_mss_sender=0,
dstaddrs=[fortios.firewall.Policy46DstaddrArgs(
name=trname_vip46.name,
)],
services=[fortios.firewall.Policy46ServiceArgs(
name="ALL",
)],
srcaddrs=[fortios.firewall.Policy46SrcaddrArgs(
name="FIREWALL_AUTH_PORTAL_ADDRESS",
)])
package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/firewall"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
trnameVip46, err := firewall.NewVip46(ctx, "trnameVip46", &firewall.Vip46Args{
ArpReply: pulumi.String("enable"),
Color: pulumi.Int(0),
Extip: pulumi.String("10.1.100.55"),
Extport: pulumi.String("0-65535"),
Fosid: pulumi.Int(0),
LdbMethod: pulumi.String("static"),
Mappedip: pulumi.String("2000:172:16:200::55"),
Mappedport: pulumi.String("0-65535"),
Portforward: pulumi.String("disable"),
Protocol: pulumi.String("tcp"),
Type: pulumi.String("static-nat"),
})
if err != nil {
return err
}
_, err = firewall.NewPolicy46(ctx, "trnamePolicy46", &firewall.Policy46Args{
Action: pulumi.String("deny"),
Dstintf: pulumi.String("port3"),
Fixedport: pulumi.String("disable"),
Ippool: pulumi.String("disable"),
Logtraffic: pulumi.String("disable"),
PermitAnyHost: pulumi.String("disable"),
Policyid: pulumi.Int(2),
Schedule: pulumi.String("always"),
Srcintf: pulumi.String("port2"),
Status: pulumi.String("enable"),
TcpMssReceiver: pulumi.Int(0),
TcpMssSender: pulumi.Int(0),
Dstaddrs: firewall.Policy46DstaddrArray{
&firewall.Policy46DstaddrArgs{
Name: trnameVip46.Name,
},
},
Services: firewall.Policy46ServiceArray{
&firewall.Policy46ServiceArgs{
Name: pulumi.String("ALL"),
},
},
Srcaddrs: firewall.Policy46SrcaddrArray{
&firewall.Policy46SrcaddrArgs{
Name: pulumi.String("FIREWALL_AUTH_PORTAL_ADDRESS"),
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fortios = Pulumiverse.Fortios;
return await Deployment.RunAsync(() =>
{
var trnameVip46 = new Fortios.Firewall.Vip46("trnameVip46", new()
{
ArpReply = "enable",
Color = 0,
Extip = "10.1.100.55",
Extport = "0-65535",
Fosid = 0,
LdbMethod = "static",
Mappedip = "2000:172:16:200::55",
Mappedport = "0-65535",
Portforward = "disable",
Protocol = "tcp",
Type = "static-nat",
});
var trnamePolicy46 = new Fortios.Firewall.Policy46("trnamePolicy46", new()
{
Action = "deny",
Dstintf = "port3",
Fixedport = "disable",
Ippool = "disable",
Logtraffic = "disable",
PermitAnyHost = "disable",
Policyid = 2,
Schedule = "always",
Srcintf = "port2",
Status = "enable",
TcpMssReceiver = 0,
TcpMssSender = 0,
Dstaddrs = new[]
{
new Fortios.Firewall.Inputs.Policy46DstaddrArgs
{
Name = trnameVip46.Name,
},
},
Services = new[]
{
new Fortios.Firewall.Inputs.Policy46ServiceArgs
{
Name = "ALL",
},
},
Srcaddrs = new[]
{
new Fortios.Firewall.Inputs.Policy46SrcaddrArgs
{
Name = "FIREWALL_AUTH_PORTAL_ADDRESS",
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fortios.firewall.Vip46;
import com.pulumi.fortios.firewall.Vip46Args;
import com.pulumi.fortios.firewall.Policy46;
import com.pulumi.fortios.firewall.Policy46Args;
import com.pulumi.fortios.firewall.inputs.Policy46DstaddrArgs;
import com.pulumi.fortios.firewall.inputs.Policy46ServiceArgs;
import com.pulumi.fortios.firewall.inputs.Policy46SrcaddrArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var trnameVip46 = new Vip46("trnameVip46", Vip46Args.builder()
.arpReply("enable")
.color(0)
.extip("10.1.100.55")
.extport("0-65535")
.fosid(0)
.ldbMethod("static")
.mappedip("2000:172:16:200::55")
.mappedport("0-65535")
.portforward("disable")
.protocol("tcp")
.type("static-nat")
.build());
var trnamePolicy46 = new Policy46("trnamePolicy46", Policy46Args.builder()
.action("deny")
.dstintf("port3")
.fixedport("disable")
.ippool("disable")
.logtraffic("disable")
.permitAnyHost("disable")
.policyid(2)
.schedule("always")
.srcintf("port2")
.status("enable")
.tcpMssReceiver(0)
.tcpMssSender(0)
.dstaddrs(Policy46DstaddrArgs.builder()
.name(trnameVip46.name())
.build())
.services(Policy46ServiceArgs.builder()
.name("ALL")
.build())
.srcaddrs(Policy46SrcaddrArgs.builder()
.name("FIREWALL_AUTH_PORTAL_ADDRESS")
.build())
.build());
}
}
resources:
trnameVip46:
type: fortios:firewall:Vip46
properties:
arpReply: enable
color: 0
extip: 10.1.100.55
extport: 0-65535
fosid: 0
ldbMethod: static
mappedip: 2000:172:16:200::55
mappedport: 0-65535
portforward: disable
protocol: tcp
type: static-nat
trnamePolicy46:
type: fortios:firewall:Policy46
properties:
action: deny
dstintf: port3
fixedport: disable
ippool: disable
logtraffic: disable
permitAnyHost: disable
policyid: 2
schedule: always
srcintf: port2
status: enable
tcpMssReceiver: 0
tcpMssSender: 0
dstaddrs:
- name: ${trnameVip46.name}
services:
- name: ALL
srcaddrs:
- name: FIREWALL_AUTH_PORTAL_ADDRESS
Create Policy46 Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Policy46(name: string, args: Policy46Args, opts?: CustomResourceOptions);
@overload
def Policy46(resource_name: str,
args: Policy46Args,
opts: Optional[ResourceOptions] = None)
@overload
def Policy46(resource_name: str,
opts: Optional[ResourceOptions] = None,
schedule: Optional[str] = None,
srcintf: Optional[str] = None,
dstaddrs: Optional[Sequence[Policy46DstaddrArgs]] = None,
dstintf: Optional[str] = None,
srcaddrs: Optional[Sequence[Policy46SrcaddrArgs]] = None,
get_all_tables: Optional[str] = None,
services: Optional[Sequence[Policy46ServiceArgs]] = None,
ippool: Optional[str] = None,
logtraffic: Optional[str] = None,
logtraffic_start: Optional[str] = None,
name: Optional[str] = None,
per_ip_shaper: Optional[str] = None,
permit_any_host: Optional[str] = None,
policyid: Optional[int] = None,
poolnames: Optional[Sequence[Policy46PoolnameArgs]] = None,
fixedport: Optional[str] = None,
action: Optional[str] = None,
dynamic_sort_subtable: Optional[str] = None,
comments: Optional[str] = None,
status: Optional[str] = None,
tcp_mss_receiver: Optional[int] = None,
tcp_mss_sender: Optional[int] = None,
traffic_shaper: Optional[str] = None,
traffic_shaper_reverse: Optional[str] = None,
uuid: Optional[str] = None,
vdomparam: Optional[str] = None)
func NewPolicy46(ctx *Context, name string, args Policy46Args, opts ...ResourceOption) (*Policy46, error)
public Policy46(string name, Policy46Args args, CustomResourceOptions? opts = null)
public Policy46(String name, Policy46Args args)
public Policy46(String name, Policy46Args args, CustomResourceOptions options)
type: fortios:firewall:Policy46
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args Policy46Args
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args Policy46Args
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args Policy46Args
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args Policy46Args
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args Policy46Args
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var policy46Resource = new Fortios.Firewall.Policy46("policy46Resource", new()
{
Schedule = "string",
Srcintf = "string",
Dstaddrs = new[]
{
new Fortios.Firewall.Inputs.Policy46DstaddrArgs
{
Name = "string",
},
},
Dstintf = "string",
Srcaddrs = new[]
{
new Fortios.Firewall.Inputs.Policy46SrcaddrArgs
{
Name = "string",
},
},
GetAllTables = "string",
Services = new[]
{
new Fortios.Firewall.Inputs.Policy46ServiceArgs
{
Name = "string",
},
},
Ippool = "string",
Logtraffic = "string",
LogtrafficStart = "string",
Name = "string",
PerIpShaper = "string",
PermitAnyHost = "string",
Policyid = 0,
Poolnames = new[]
{
new Fortios.Firewall.Inputs.Policy46PoolnameArgs
{
Name = "string",
},
},
Fixedport = "string",
Action = "string",
DynamicSortSubtable = "string",
Comments = "string",
Status = "string",
TcpMssReceiver = 0,
TcpMssSender = 0,
TrafficShaper = "string",
TrafficShaperReverse = "string",
Uuid = "string",
Vdomparam = "string",
});
example, err := firewall.NewPolicy46(ctx, "policy46Resource", &firewall.Policy46Args{
Schedule: pulumi.String("string"),
Srcintf: pulumi.String("string"),
Dstaddrs: firewall.Policy46DstaddrArray{
&firewall.Policy46DstaddrArgs{
Name: pulumi.String("string"),
},
},
Dstintf: pulumi.String("string"),
Srcaddrs: firewall.Policy46SrcaddrArray{
&firewall.Policy46SrcaddrArgs{
Name: pulumi.String("string"),
},
},
GetAllTables: pulumi.String("string"),
Services: firewall.Policy46ServiceArray{
&firewall.Policy46ServiceArgs{
Name: pulumi.String("string"),
},
},
Ippool: pulumi.String("string"),
Logtraffic: pulumi.String("string"),
LogtrafficStart: pulumi.String("string"),
Name: pulumi.String("string"),
PerIpShaper: pulumi.String("string"),
PermitAnyHost: pulumi.String("string"),
Policyid: pulumi.Int(0),
Poolnames: firewall.Policy46PoolnameArray{
&firewall.Policy46PoolnameArgs{
Name: pulumi.String("string"),
},
},
Fixedport: pulumi.String("string"),
Action: pulumi.String("string"),
DynamicSortSubtable: pulumi.String("string"),
Comments: pulumi.String("string"),
Status: pulumi.String("string"),
TcpMssReceiver: pulumi.Int(0),
TcpMssSender: pulumi.Int(0),
TrafficShaper: pulumi.String("string"),
TrafficShaperReverse: pulumi.String("string"),
Uuid: pulumi.String("string"),
Vdomparam: pulumi.String("string"),
})
var policy46Resource = new Policy46("policy46Resource", Policy46Args.builder()
.schedule("string")
.srcintf("string")
.dstaddrs(Policy46DstaddrArgs.builder()
.name("string")
.build())
.dstintf("string")
.srcaddrs(Policy46SrcaddrArgs.builder()
.name("string")
.build())
.getAllTables("string")
.services(Policy46ServiceArgs.builder()
.name("string")
.build())
.ippool("string")
.logtraffic("string")
.logtrafficStart("string")
.name("string")
.perIpShaper("string")
.permitAnyHost("string")
.policyid(0)
.poolnames(Policy46PoolnameArgs.builder()
.name("string")
.build())
.fixedport("string")
.action("string")
.dynamicSortSubtable("string")
.comments("string")
.status("string")
.tcpMssReceiver(0)
.tcpMssSender(0)
.trafficShaper("string")
.trafficShaperReverse("string")
.uuid("string")
.vdomparam("string")
.build());
policy46_resource = fortios.firewall.Policy46("policy46Resource",
schedule="string",
srcintf="string",
dstaddrs=[{
"name": "string",
}],
dstintf="string",
srcaddrs=[{
"name": "string",
}],
get_all_tables="string",
services=[{
"name": "string",
}],
ippool="string",
logtraffic="string",
logtraffic_start="string",
name="string",
per_ip_shaper="string",
permit_any_host="string",
policyid=0,
poolnames=[{
"name": "string",
}],
fixedport="string",
action="string",
dynamic_sort_subtable="string",
comments="string",
status="string",
tcp_mss_receiver=0,
tcp_mss_sender=0,
traffic_shaper="string",
traffic_shaper_reverse="string",
uuid="string",
vdomparam="string")
const policy46Resource = new fortios.firewall.Policy46("policy46Resource", {
schedule: "string",
srcintf: "string",
dstaddrs: [{
name: "string",
}],
dstintf: "string",
srcaddrs: [{
name: "string",
}],
getAllTables: "string",
services: [{
name: "string",
}],
ippool: "string",
logtraffic: "string",
logtrafficStart: "string",
name: "string",
perIpShaper: "string",
permitAnyHost: "string",
policyid: 0,
poolnames: [{
name: "string",
}],
fixedport: "string",
action: "string",
dynamicSortSubtable: "string",
comments: "string",
status: "string",
tcpMssReceiver: 0,
tcpMssSender: 0,
trafficShaper: "string",
trafficShaperReverse: "string",
uuid: "string",
vdomparam: "string",
});
type: fortios:firewall:Policy46
properties:
action: string
comments: string
dstaddrs:
- name: string
dstintf: string
dynamicSortSubtable: string
fixedport: string
getAllTables: string
ippool: string
logtraffic: string
logtrafficStart: string
name: string
perIpShaper: string
permitAnyHost: string
policyid: 0
poolnames:
- name: string
schedule: string
services:
- name: string
srcaddrs:
- name: string
srcintf: string
status: string
tcpMssReceiver: 0
tcpMssSender: 0
trafficShaper: string
trafficShaperReverse: string
uuid: string
vdomparam: string
Policy46 Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Policy46 resource accepts the following input properties:
- Dstaddrs
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy46Dstaddr> - Destination address objects. The structure of
dstaddr
block is documented below. - Dstintf string
- Destination interface name.
- Schedule string
- Schedule name.
- Srcaddrs
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy46Srcaddr> - Source address objects. The structure of
srcaddr
block is documented below. - Srcintf string
- Source interface name.
- Action string
- Accept or deny traffic matching the policy. Valid values:
accept
,deny
. - Comments string
- Comment.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Fixedport string
- Enable/disable fixed port for this policy. Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Ippool string
- Enable/disable use of IP Pools for source NAT. Valid values:
enable
,disable
. - Logtraffic string
- Enable/disable traffic logging for this policy. Valid values:
enable
,disable
. - Logtraffic
Start string - Record logs when a session starts and ends. Valid values:
enable
,disable
. - Name string
- Policy name.
- Per
Ip stringShaper - Per IP traffic shaper.
- Permit
Any stringHost - Enable/disable allowing any host. Valid values:
enable
,disable
. - Policyid int
- Policy ID.
- Poolnames
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy46Poolname> - IP Pool names. The structure of
poolname
block is documented below. - Services
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy46Service> - Service name. The structure of
service
block is documented below. - Status string
- Enable/disable this policy. Valid values:
enable
,disable
. - Tcp
Mss intReceiver - TCP Maximum Segment Size value of receiver (0 - 65535, default = 0)
- Tcp
Mss intSender - TCP Maximum Segment Size value of sender (0 - 65535, default = 0).
- Traffic
Shaper string - Traffic shaper.
- Traffic
Shaper stringReverse - Reverse traffic shaper.
- Uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Dstaddrs
[]Policy46Dstaddr
Args - Destination address objects. The structure of
dstaddr
block is documented below. - Dstintf string
- Destination interface name.
- Schedule string
- Schedule name.
- Srcaddrs
[]Policy46Srcaddr
Args - Source address objects. The structure of
srcaddr
block is documented below. - Srcintf string
- Source interface name.
- Action string
- Accept or deny traffic matching the policy. Valid values:
accept
,deny
. - Comments string
- Comment.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Fixedport string
- Enable/disable fixed port for this policy. Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Ippool string
- Enable/disable use of IP Pools for source NAT. Valid values:
enable
,disable
. - Logtraffic string
- Enable/disable traffic logging for this policy. Valid values:
enable
,disable
. - Logtraffic
Start string - Record logs when a session starts and ends. Valid values:
enable
,disable
. - Name string
- Policy name.
- Per
Ip stringShaper - Per IP traffic shaper.
- Permit
Any stringHost - Enable/disable allowing any host. Valid values:
enable
,disable
. - Policyid int
- Policy ID.
- Poolnames
[]Policy46Poolname
Args - IP Pool names. The structure of
poolname
block is documented below. - Services
[]Policy46Service
Args - Service name. The structure of
service
block is documented below. - Status string
- Enable/disable this policy. Valid values:
enable
,disable
. - Tcp
Mss intReceiver - TCP Maximum Segment Size value of receiver (0 - 65535, default = 0)
- Tcp
Mss intSender - TCP Maximum Segment Size value of sender (0 - 65535, default = 0).
- Traffic
Shaper string - Traffic shaper.
- Traffic
Shaper stringReverse - Reverse traffic shaper.
- Uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- dstaddrs List<Policy46Dstaddr>
- Destination address objects. The structure of
dstaddr
block is documented below. - dstintf String
- Destination interface name.
- schedule String
- Schedule name.
- srcaddrs List<Policy46Srcaddr>
- Source address objects. The structure of
srcaddr
block is documented below. - srcintf String
- Source interface name.
- action String
- Accept or deny traffic matching the policy. Valid values:
accept
,deny
. - comments String
- Comment.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport String
- Enable/disable fixed port for this policy. Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool String
- Enable/disable use of IP Pools for source NAT. Valid values:
enable
,disable
. - logtraffic String
- Enable/disable traffic logging for this policy. Valid values:
enable
,disable
. - logtraffic
Start String - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name String
- Policy name.
- per
Ip StringShaper - Per IP traffic shaper.
- permit
Any StringHost - Enable/disable allowing any host. Valid values:
enable
,disable
. - policyid Integer
- Policy ID.
- poolnames List<Policy46Poolname>
- IP Pool names. The structure of
poolname
block is documented below. - services List<Policy46Service>
- Service name. The structure of
service
block is documented below. - status String
- Enable/disable this policy. Valid values:
enable
,disable
. - tcp
Mss IntegerReceiver - TCP Maximum Segment Size value of receiver (0 - 65535, default = 0)
- tcp
Mss IntegerSender - TCP Maximum Segment Size value of sender (0 - 65535, default = 0).
- traffic
Shaper String - Traffic shaper.
- traffic
Shaper StringReverse - Reverse traffic shaper.
- uuid String
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- dstaddrs Policy46Dstaddr[]
- Destination address objects. The structure of
dstaddr
block is documented below. - dstintf string
- Destination interface name.
- schedule string
- Schedule name.
- srcaddrs Policy46Srcaddr[]
- Source address objects. The structure of
srcaddr
block is documented below. - srcintf string
- Source interface name.
- action string
- Accept or deny traffic matching the policy. Valid values:
accept
,deny
. - comments string
- Comment.
- dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport string
- Enable/disable fixed port for this policy. Valid values:
enable
,disable
. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool string
- Enable/disable use of IP Pools for source NAT. Valid values:
enable
,disable
. - logtraffic string
- Enable/disable traffic logging for this policy. Valid values:
enable
,disable
. - logtraffic
Start string - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name string
- Policy name.
- per
Ip stringShaper - Per IP traffic shaper.
- permit
Any stringHost - Enable/disable allowing any host. Valid values:
enable
,disable
. - policyid number
- Policy ID.
- poolnames Policy46Poolname[]
- IP Pool names. The structure of
poolname
block is documented below. - services Policy46Service[]
- Service name. The structure of
service
block is documented below. - status string
- Enable/disable this policy. Valid values:
enable
,disable
. - tcp
Mss numberReceiver - TCP Maximum Segment Size value of receiver (0 - 65535, default = 0)
- tcp
Mss numberSender - TCP Maximum Segment Size value of sender (0 - 65535, default = 0).
- traffic
Shaper string - Traffic shaper.
- traffic
Shaper stringReverse - Reverse traffic shaper.
- uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- dstaddrs
Sequence[Policy46Dstaddr
Args] - Destination address objects. The structure of
dstaddr
block is documented below. - dstintf str
- Destination interface name.
- schedule str
- Schedule name.
- srcaddrs
Sequence[Policy46Srcaddr
Args] - Source address objects. The structure of
srcaddr
block is documented below. - srcintf str
- Source interface name.
- action str
- Accept or deny traffic matching the policy. Valid values:
accept
,deny
. - comments str
- Comment.
- dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport str
- Enable/disable fixed port for this policy. Valid values:
enable
,disable
. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool str
- Enable/disable use of IP Pools for source NAT. Valid values:
enable
,disable
. - logtraffic str
- Enable/disable traffic logging for this policy. Valid values:
enable
,disable
. - logtraffic_
start str - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name str
- Policy name.
- per_
ip_ strshaper - Per IP traffic shaper.
- permit_
any_ strhost - Enable/disable allowing any host. Valid values:
enable
,disable
. - policyid int
- Policy ID.
- poolnames
Sequence[Policy46Poolname
Args] - IP Pool names. The structure of
poolname
block is documented below. - services
Sequence[Policy46Service
Args] - Service name. The structure of
service
block is documented below. - status str
- Enable/disable this policy. Valid values:
enable
,disable
. - tcp_
mss_ intreceiver - TCP Maximum Segment Size value of receiver (0 - 65535, default = 0)
- tcp_
mss_ intsender - TCP Maximum Segment Size value of sender (0 - 65535, default = 0).
- traffic_
shaper str - Traffic shaper.
- traffic_
shaper_ strreverse - Reverse traffic shaper.
- uuid str
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- dstaddrs List<Property Map>
- Destination address objects. The structure of
dstaddr
block is documented below. - dstintf String
- Destination interface name.
- schedule String
- Schedule name.
- srcaddrs List<Property Map>
- Source address objects. The structure of
srcaddr
block is documented below. - srcintf String
- Source interface name.
- action String
- Accept or deny traffic matching the policy. Valid values:
accept
,deny
. - comments String
- Comment.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport String
- Enable/disable fixed port for this policy. Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool String
- Enable/disable use of IP Pools for source NAT. Valid values:
enable
,disable
. - logtraffic String
- Enable/disable traffic logging for this policy. Valid values:
enable
,disable
. - logtraffic
Start String - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name String
- Policy name.
- per
Ip StringShaper - Per IP traffic shaper.
- permit
Any StringHost - Enable/disable allowing any host. Valid values:
enable
,disable
. - policyid Number
- Policy ID.
- poolnames List<Property Map>
- IP Pool names. The structure of
poolname
block is documented below. - services List<Property Map>
- Service name. The structure of
service
block is documented below. - status String
- Enable/disable this policy. Valid values:
enable
,disable
. - tcp
Mss NumberReceiver - TCP Maximum Segment Size value of receiver (0 - 65535, default = 0)
- tcp
Mss NumberSender - TCP Maximum Segment Size value of sender (0 - 65535, default = 0).
- traffic
Shaper String - Traffic shaper.
- traffic
Shaper StringReverse - Reverse traffic shaper.
- uuid String
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Outputs
All input properties are implicitly available as output properties. Additionally, the Policy46 resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Policy46 Resource
Get an existing Policy46 resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: Policy46State, opts?: CustomResourceOptions): Policy46
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
action: Optional[str] = None,
comments: Optional[str] = None,
dstaddrs: Optional[Sequence[Policy46DstaddrArgs]] = None,
dstintf: Optional[str] = None,
dynamic_sort_subtable: Optional[str] = None,
fixedport: Optional[str] = None,
get_all_tables: Optional[str] = None,
ippool: Optional[str] = None,
logtraffic: Optional[str] = None,
logtraffic_start: Optional[str] = None,
name: Optional[str] = None,
per_ip_shaper: Optional[str] = None,
permit_any_host: Optional[str] = None,
policyid: Optional[int] = None,
poolnames: Optional[Sequence[Policy46PoolnameArgs]] = None,
schedule: Optional[str] = None,
services: Optional[Sequence[Policy46ServiceArgs]] = None,
srcaddrs: Optional[Sequence[Policy46SrcaddrArgs]] = None,
srcintf: Optional[str] = None,
status: Optional[str] = None,
tcp_mss_receiver: Optional[int] = None,
tcp_mss_sender: Optional[int] = None,
traffic_shaper: Optional[str] = None,
traffic_shaper_reverse: Optional[str] = None,
uuid: Optional[str] = None,
vdomparam: Optional[str] = None) -> Policy46
func GetPolicy46(ctx *Context, name string, id IDInput, state *Policy46State, opts ...ResourceOption) (*Policy46, error)
public static Policy46 Get(string name, Input<string> id, Policy46State? state, CustomResourceOptions? opts = null)
public static Policy46 get(String name, Output<String> id, Policy46State state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Action string
- Accept or deny traffic matching the policy. Valid values:
accept
,deny
. - Comments string
- Comment.
- Dstaddrs
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy46Dstaddr> - Destination address objects. The structure of
dstaddr
block is documented below. - Dstintf string
- Destination interface name.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Fixedport string
- Enable/disable fixed port for this policy. Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Ippool string
- Enable/disable use of IP Pools for source NAT. Valid values:
enable
,disable
. - Logtraffic string
- Enable/disable traffic logging for this policy. Valid values:
enable
,disable
. - Logtraffic
Start string - Record logs when a session starts and ends. Valid values:
enable
,disable
. - Name string
- Policy name.
- Per
Ip stringShaper - Per IP traffic shaper.
- Permit
Any stringHost - Enable/disable allowing any host. Valid values:
enable
,disable
. - Policyid int
- Policy ID.
- Poolnames
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy46Poolname> - IP Pool names. The structure of
poolname
block is documented below. - Schedule string
- Schedule name.
- Services
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy46Service> - Service name. The structure of
service
block is documented below. - Srcaddrs
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy46Srcaddr> - Source address objects. The structure of
srcaddr
block is documented below. - Srcintf string
- Source interface name.
- Status string
- Enable/disable this policy. Valid values:
enable
,disable
. - Tcp
Mss intReceiver - TCP Maximum Segment Size value of receiver (0 - 65535, default = 0)
- Tcp
Mss intSender - TCP Maximum Segment Size value of sender (0 - 65535, default = 0).
- Traffic
Shaper string - Traffic shaper.
- Traffic
Shaper stringReverse - Reverse traffic shaper.
- Uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Action string
- Accept or deny traffic matching the policy. Valid values:
accept
,deny
. - Comments string
- Comment.
- Dstaddrs
[]Policy46Dstaddr
Args - Destination address objects. The structure of
dstaddr
block is documented below. - Dstintf string
- Destination interface name.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Fixedport string
- Enable/disable fixed port for this policy. Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Ippool string
- Enable/disable use of IP Pools for source NAT. Valid values:
enable
,disable
. - Logtraffic string
- Enable/disable traffic logging for this policy. Valid values:
enable
,disable
. - Logtraffic
Start string - Record logs when a session starts and ends. Valid values:
enable
,disable
. - Name string
- Policy name.
- Per
Ip stringShaper - Per IP traffic shaper.
- Permit
Any stringHost - Enable/disable allowing any host. Valid values:
enable
,disable
. - Policyid int
- Policy ID.
- Poolnames
[]Policy46Poolname
Args - IP Pool names. The structure of
poolname
block is documented below. - Schedule string
- Schedule name.
- Services
[]Policy46Service
Args - Service name. The structure of
service
block is documented below. - Srcaddrs
[]Policy46Srcaddr
Args - Source address objects. The structure of
srcaddr
block is documented below. - Srcintf string
- Source interface name.
- Status string
- Enable/disable this policy. Valid values:
enable
,disable
. - Tcp
Mss intReceiver - TCP Maximum Segment Size value of receiver (0 - 65535, default = 0)
- Tcp
Mss intSender - TCP Maximum Segment Size value of sender (0 - 65535, default = 0).
- Traffic
Shaper string - Traffic shaper.
- Traffic
Shaper stringReverse - Reverse traffic shaper.
- Uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action String
- Accept or deny traffic matching the policy. Valid values:
accept
,deny
. - comments String
- Comment.
- dstaddrs List<Policy46Dstaddr>
- Destination address objects. The structure of
dstaddr
block is documented below. - dstintf String
- Destination interface name.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport String
- Enable/disable fixed port for this policy. Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool String
- Enable/disable use of IP Pools for source NAT. Valid values:
enable
,disable
. - logtraffic String
- Enable/disable traffic logging for this policy. Valid values:
enable
,disable
. - logtraffic
Start String - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name String
- Policy name.
- per
Ip StringShaper - Per IP traffic shaper.
- permit
Any StringHost - Enable/disable allowing any host. Valid values:
enable
,disable
. - policyid Integer
- Policy ID.
- poolnames List<Policy46Poolname>
- IP Pool names. The structure of
poolname
block is documented below. - schedule String
- Schedule name.
- services List<Policy46Service>
- Service name. The structure of
service
block is documented below. - srcaddrs List<Policy46Srcaddr>
- Source address objects. The structure of
srcaddr
block is documented below. - srcintf String
- Source interface name.
- status String
- Enable/disable this policy. Valid values:
enable
,disable
. - tcp
Mss IntegerReceiver - TCP Maximum Segment Size value of receiver (0 - 65535, default = 0)
- tcp
Mss IntegerSender - TCP Maximum Segment Size value of sender (0 - 65535, default = 0).
- traffic
Shaper String - Traffic shaper.
- traffic
Shaper StringReverse - Reverse traffic shaper.
- uuid String
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action string
- Accept or deny traffic matching the policy. Valid values:
accept
,deny
. - comments string
- Comment.
- dstaddrs Policy46Dstaddr[]
- Destination address objects. The structure of
dstaddr
block is documented below. - dstintf string
- Destination interface name.
- dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport string
- Enable/disable fixed port for this policy. Valid values:
enable
,disable
. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool string
- Enable/disable use of IP Pools for source NAT. Valid values:
enable
,disable
. - logtraffic string
- Enable/disable traffic logging for this policy. Valid values:
enable
,disable
. - logtraffic
Start string - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name string
- Policy name.
- per
Ip stringShaper - Per IP traffic shaper.
- permit
Any stringHost - Enable/disable allowing any host. Valid values:
enable
,disable
. - policyid number
- Policy ID.
- poolnames Policy46Poolname[]
- IP Pool names. The structure of
poolname
block is documented below. - schedule string
- Schedule name.
- services Policy46Service[]
- Service name. The structure of
service
block is documented below. - srcaddrs Policy46Srcaddr[]
- Source address objects. The structure of
srcaddr
block is documented below. - srcintf string
- Source interface name.
- status string
- Enable/disable this policy. Valid values:
enable
,disable
. - tcp
Mss numberReceiver - TCP Maximum Segment Size value of receiver (0 - 65535, default = 0)
- tcp
Mss numberSender - TCP Maximum Segment Size value of sender (0 - 65535, default = 0).
- traffic
Shaper string - Traffic shaper.
- traffic
Shaper stringReverse - Reverse traffic shaper.
- uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action str
- Accept or deny traffic matching the policy. Valid values:
accept
,deny
. - comments str
- Comment.
- dstaddrs
Sequence[Policy46Dstaddr
Args] - Destination address objects. The structure of
dstaddr
block is documented below. - dstintf str
- Destination interface name.
- dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport str
- Enable/disable fixed port for this policy. Valid values:
enable
,disable
. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool str
- Enable/disable use of IP Pools for source NAT. Valid values:
enable
,disable
. - logtraffic str
- Enable/disable traffic logging for this policy. Valid values:
enable
,disable
. - logtraffic_
start str - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name str
- Policy name.
- per_
ip_ strshaper - Per IP traffic shaper.
- permit_
any_ strhost - Enable/disable allowing any host. Valid values:
enable
,disable
. - policyid int
- Policy ID.
- poolnames
Sequence[Policy46Poolname
Args] - IP Pool names. The structure of
poolname
block is documented below. - schedule str
- Schedule name.
- services
Sequence[Policy46Service
Args] - Service name. The structure of
service
block is documented below. - srcaddrs
Sequence[Policy46Srcaddr
Args] - Source address objects. The structure of
srcaddr
block is documented below. - srcintf str
- Source interface name.
- status str
- Enable/disable this policy. Valid values:
enable
,disable
. - tcp_
mss_ intreceiver - TCP Maximum Segment Size value of receiver (0 - 65535, default = 0)
- tcp_
mss_ intsender - TCP Maximum Segment Size value of sender (0 - 65535, default = 0).
- traffic_
shaper str - Traffic shaper.
- traffic_
shaper_ strreverse - Reverse traffic shaper.
- uuid str
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action String
- Accept or deny traffic matching the policy. Valid values:
accept
,deny
. - comments String
- Comment.
- dstaddrs List<Property Map>
- Destination address objects. The structure of
dstaddr
block is documented below. - dstintf String
- Destination interface name.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport String
- Enable/disable fixed port for this policy. Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool String
- Enable/disable use of IP Pools for source NAT. Valid values:
enable
,disable
. - logtraffic String
- Enable/disable traffic logging for this policy. Valid values:
enable
,disable
. - logtraffic
Start String - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name String
- Policy name.
- per
Ip StringShaper - Per IP traffic shaper.
- permit
Any StringHost - Enable/disable allowing any host. Valid values:
enable
,disable
. - policyid Number
- Policy ID.
- poolnames List<Property Map>
- IP Pool names. The structure of
poolname
block is documented below. - schedule String
- Schedule name.
- services List<Property Map>
- Service name. The structure of
service
block is documented below. - srcaddrs List<Property Map>
- Source address objects. The structure of
srcaddr
block is documented below. - srcintf String
- Source interface name.
- status String
- Enable/disable this policy. Valid values:
enable
,disable
. - tcp
Mss NumberReceiver - TCP Maximum Segment Size value of receiver (0 - 65535, default = 0)
- tcp
Mss NumberSender - TCP Maximum Segment Size value of sender (0 - 65535, default = 0).
- traffic
Shaper String - Traffic shaper.
- traffic
Shaper StringReverse - Reverse traffic shaper.
- uuid String
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Supporting Types
Policy46Dstaddr, Policy46DstaddrArgs
- Name string
- Address name.
- Name string
- Address name.
- name String
- Address name.
- name string
- Address name.
- name str
- Address name.
- name String
- Address name.
Policy46Poolname, Policy46PoolnameArgs
- Name string
- IP pool name.
- Name string
- IP pool name.
- name String
- IP pool name.
- name string
- IP pool name.
- name str
- IP pool name.
- name String
- IP pool name.
Policy46Service, Policy46ServiceArgs
- Name string
- Service name.
- Name string
- Service name.
- name String
- Service name.
- name string
- Service name.
- name str
- Service name.
- name String
- Service name.
Policy46Srcaddr, Policy46SrcaddrArgs
- Name string
- Address name.
- Name string
- Address name.
- name String
- Address name.
- name string
- Address name.
- name str
- Address name.
- name String
- Address name.
Import
Firewall Policy46 can be imported using any of these accepted formats:
$ pulumi import fortios:firewall/policy46:Policy46 labelname {{policyid}}
If you do not want to import arguments of block:
$ export “FORTIOS_IMPORT_TABLE”=“false”
$ pulumi import fortios:firewall/policy46:Policy46 labelname {{policyid}}
$ unset “FORTIOS_IMPORT_TABLE”
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- fortios pulumiverse/pulumi-fortios
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
fortios
Terraform Provider.