fortios.firewall.Policy64
Explore with Pulumi AI
Configure IPv6 to IPv4 policies. Applies to FortiOS Version <= 7.0.0
.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as fortios from "@pulumiverse/fortios";
const trname = new fortios.firewall.Policy64("trname", {
action: "accept",
dstaddrs: [{
name: "all",
}],
dstintf: "port4",
fixedport: "disable",
ippool: "disable",
logtraffic: "disable",
permitAnyHost: "disable",
policyid: 1,
schedule: "always",
services: [{
name: "ALL",
}],
srcaddrs: [{
name: "all",
}],
srcintf: "port3",
status: "enable",
tcpMssReceiver: 0,
tcpMssSender: 0,
});
import pulumi
import pulumiverse_fortios as fortios
trname = fortios.firewall.Policy64("trname",
action="accept",
dstaddrs=[fortios.firewall.Policy64DstaddrArgs(
name="all",
)],
dstintf="port4",
fixedport="disable",
ippool="disable",
logtraffic="disable",
permit_any_host="disable",
policyid=1,
schedule="always",
services=[fortios.firewall.Policy64ServiceArgs(
name="ALL",
)],
srcaddrs=[fortios.firewall.Policy64SrcaddrArgs(
name="all",
)],
srcintf="port3",
status="enable",
tcp_mss_receiver=0,
tcp_mss_sender=0)
package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/firewall"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := firewall.NewPolicy64(ctx, "trname", &firewall.Policy64Args{
Action: pulumi.String("accept"),
Dstaddrs: firewall.Policy64DstaddrArray{
&firewall.Policy64DstaddrArgs{
Name: pulumi.String("all"),
},
},
Dstintf: pulumi.String("port4"),
Fixedport: pulumi.String("disable"),
Ippool: pulumi.String("disable"),
Logtraffic: pulumi.String("disable"),
PermitAnyHost: pulumi.String("disable"),
Policyid: pulumi.Int(1),
Schedule: pulumi.String("always"),
Services: firewall.Policy64ServiceArray{
&firewall.Policy64ServiceArgs{
Name: pulumi.String("ALL"),
},
},
Srcaddrs: firewall.Policy64SrcaddrArray{
&firewall.Policy64SrcaddrArgs{
Name: pulumi.String("all"),
},
},
Srcintf: pulumi.String("port3"),
Status: pulumi.String("enable"),
TcpMssReceiver: pulumi.Int(0),
TcpMssSender: pulumi.Int(0),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fortios = Pulumiverse.Fortios;
return await Deployment.RunAsync(() =>
{
var trname = new Fortios.Firewall.Policy64("trname", new()
{
Action = "accept",
Dstaddrs = new[]
{
new Fortios.Firewall.Inputs.Policy64DstaddrArgs
{
Name = "all",
},
},
Dstintf = "port4",
Fixedport = "disable",
Ippool = "disable",
Logtraffic = "disable",
PermitAnyHost = "disable",
Policyid = 1,
Schedule = "always",
Services = new[]
{
new Fortios.Firewall.Inputs.Policy64ServiceArgs
{
Name = "ALL",
},
},
Srcaddrs = new[]
{
new Fortios.Firewall.Inputs.Policy64SrcaddrArgs
{
Name = "all",
},
},
Srcintf = "port3",
Status = "enable",
TcpMssReceiver = 0,
TcpMssSender = 0,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fortios.firewall.Policy64;
import com.pulumi.fortios.firewall.Policy64Args;
import com.pulumi.fortios.firewall.inputs.Policy64DstaddrArgs;
import com.pulumi.fortios.firewall.inputs.Policy64ServiceArgs;
import com.pulumi.fortios.firewall.inputs.Policy64SrcaddrArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var trname = new Policy64("trname", Policy64Args.builder()
.action("accept")
.dstaddrs(Policy64DstaddrArgs.builder()
.name("all")
.build())
.dstintf("port4")
.fixedport("disable")
.ippool("disable")
.logtraffic("disable")
.permitAnyHost("disable")
.policyid(1)
.schedule("always")
.services(Policy64ServiceArgs.builder()
.name("ALL")
.build())
.srcaddrs(Policy64SrcaddrArgs.builder()
.name("all")
.build())
.srcintf("port3")
.status("enable")
.tcpMssReceiver(0)
.tcpMssSender(0)
.build());
}
}
resources:
trname:
type: fortios:firewall:Policy64
properties:
action: accept
dstaddrs:
- name: all
dstintf: port4
fixedport: disable
ippool: disable
logtraffic: disable
permitAnyHost: disable
policyid: 1
schedule: always
services:
- name: ALL
srcaddrs:
- name: all
srcintf: port3
status: enable
tcpMssReceiver: 0
tcpMssSender: 0
Create Policy64 Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Policy64(name: string, args: Policy64Args, opts?: CustomResourceOptions);
@overload
def Policy64(resource_name: str,
args: Policy64Args,
opts: Optional[ResourceOptions] = None)
@overload
def Policy64(resource_name: str,
opts: Optional[ResourceOptions] = None,
schedule: Optional[str] = None,
srcintf: Optional[str] = None,
dstaddrs: Optional[Sequence[Policy64DstaddrArgs]] = None,
dstintf: Optional[str] = None,
srcaddrs: Optional[Sequence[Policy64SrcaddrArgs]] = None,
get_all_tables: Optional[str] = None,
services: Optional[Sequence[Policy64ServiceArgs]] = None,
ippool: Optional[str] = None,
logtraffic: Optional[str] = None,
logtraffic_start: Optional[str] = None,
name: Optional[str] = None,
per_ip_shaper: Optional[str] = None,
permit_any_host: Optional[str] = None,
policyid: Optional[int] = None,
poolnames: Optional[Sequence[Policy64PoolnameArgs]] = None,
fixedport: Optional[str] = None,
action: Optional[str] = None,
dynamic_sort_subtable: Optional[str] = None,
comments: Optional[str] = None,
status: Optional[str] = None,
tcp_mss_receiver: Optional[int] = None,
tcp_mss_sender: Optional[int] = None,
traffic_shaper: Optional[str] = None,
traffic_shaper_reverse: Optional[str] = None,
uuid: Optional[str] = None,
vdomparam: Optional[str] = None)
func NewPolicy64(ctx *Context, name string, args Policy64Args, opts ...ResourceOption) (*Policy64, error)
public Policy64(string name, Policy64Args args, CustomResourceOptions? opts = null)
public Policy64(String name, Policy64Args args)
public Policy64(String name, Policy64Args args, CustomResourceOptions options)
type: fortios:firewall:Policy64
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args Policy64Args
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args Policy64Args
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args Policy64Args
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args Policy64Args
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args Policy64Args
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var policy64Resource = new Fortios.Firewall.Policy64("policy64Resource", new()
{
Schedule = "string",
Srcintf = "string",
Dstaddrs = new[]
{
new Fortios.Firewall.Inputs.Policy64DstaddrArgs
{
Name = "string",
},
},
Dstintf = "string",
Srcaddrs = new[]
{
new Fortios.Firewall.Inputs.Policy64SrcaddrArgs
{
Name = "string",
},
},
GetAllTables = "string",
Services = new[]
{
new Fortios.Firewall.Inputs.Policy64ServiceArgs
{
Name = "string",
},
},
Ippool = "string",
Logtraffic = "string",
LogtrafficStart = "string",
Name = "string",
PerIpShaper = "string",
PermitAnyHost = "string",
Policyid = 0,
Poolnames = new[]
{
new Fortios.Firewall.Inputs.Policy64PoolnameArgs
{
Name = "string",
},
},
Fixedport = "string",
Action = "string",
DynamicSortSubtable = "string",
Comments = "string",
Status = "string",
TcpMssReceiver = 0,
TcpMssSender = 0,
TrafficShaper = "string",
TrafficShaperReverse = "string",
Uuid = "string",
Vdomparam = "string",
});
example, err := firewall.NewPolicy64(ctx, "policy64Resource", &firewall.Policy64Args{
Schedule: pulumi.String("string"),
Srcintf: pulumi.String("string"),
Dstaddrs: firewall.Policy64DstaddrArray{
&firewall.Policy64DstaddrArgs{
Name: pulumi.String("string"),
},
},
Dstintf: pulumi.String("string"),
Srcaddrs: firewall.Policy64SrcaddrArray{
&firewall.Policy64SrcaddrArgs{
Name: pulumi.String("string"),
},
},
GetAllTables: pulumi.String("string"),
Services: firewall.Policy64ServiceArray{
&firewall.Policy64ServiceArgs{
Name: pulumi.String("string"),
},
},
Ippool: pulumi.String("string"),
Logtraffic: pulumi.String("string"),
LogtrafficStart: pulumi.String("string"),
Name: pulumi.String("string"),
PerIpShaper: pulumi.String("string"),
PermitAnyHost: pulumi.String("string"),
Policyid: pulumi.Int(0),
Poolnames: firewall.Policy64PoolnameArray{
&firewall.Policy64PoolnameArgs{
Name: pulumi.String("string"),
},
},
Fixedport: pulumi.String("string"),
Action: pulumi.String("string"),
DynamicSortSubtable: pulumi.String("string"),
Comments: pulumi.String("string"),
Status: pulumi.String("string"),
TcpMssReceiver: pulumi.Int(0),
TcpMssSender: pulumi.Int(0),
TrafficShaper: pulumi.String("string"),
TrafficShaperReverse: pulumi.String("string"),
Uuid: pulumi.String("string"),
Vdomparam: pulumi.String("string"),
})
var policy64Resource = new Policy64("policy64Resource", Policy64Args.builder()
.schedule("string")
.srcintf("string")
.dstaddrs(Policy64DstaddrArgs.builder()
.name("string")
.build())
.dstintf("string")
.srcaddrs(Policy64SrcaddrArgs.builder()
.name("string")
.build())
.getAllTables("string")
.services(Policy64ServiceArgs.builder()
.name("string")
.build())
.ippool("string")
.logtraffic("string")
.logtrafficStart("string")
.name("string")
.perIpShaper("string")
.permitAnyHost("string")
.policyid(0)
.poolnames(Policy64PoolnameArgs.builder()
.name("string")
.build())
.fixedport("string")
.action("string")
.dynamicSortSubtable("string")
.comments("string")
.status("string")
.tcpMssReceiver(0)
.tcpMssSender(0)
.trafficShaper("string")
.trafficShaperReverse("string")
.uuid("string")
.vdomparam("string")
.build());
policy64_resource = fortios.firewall.Policy64("policy64Resource",
schedule="string",
srcintf="string",
dstaddrs=[{
"name": "string",
}],
dstintf="string",
srcaddrs=[{
"name": "string",
}],
get_all_tables="string",
services=[{
"name": "string",
}],
ippool="string",
logtraffic="string",
logtraffic_start="string",
name="string",
per_ip_shaper="string",
permit_any_host="string",
policyid=0,
poolnames=[{
"name": "string",
}],
fixedport="string",
action="string",
dynamic_sort_subtable="string",
comments="string",
status="string",
tcp_mss_receiver=0,
tcp_mss_sender=0,
traffic_shaper="string",
traffic_shaper_reverse="string",
uuid="string",
vdomparam="string")
const policy64Resource = new fortios.firewall.Policy64("policy64Resource", {
schedule: "string",
srcintf: "string",
dstaddrs: [{
name: "string",
}],
dstintf: "string",
srcaddrs: [{
name: "string",
}],
getAllTables: "string",
services: [{
name: "string",
}],
ippool: "string",
logtraffic: "string",
logtrafficStart: "string",
name: "string",
perIpShaper: "string",
permitAnyHost: "string",
policyid: 0,
poolnames: [{
name: "string",
}],
fixedport: "string",
action: "string",
dynamicSortSubtable: "string",
comments: "string",
status: "string",
tcpMssReceiver: 0,
tcpMssSender: 0,
trafficShaper: "string",
trafficShaperReverse: "string",
uuid: "string",
vdomparam: "string",
});
type: fortios:firewall:Policy64
properties:
action: string
comments: string
dstaddrs:
- name: string
dstintf: string
dynamicSortSubtable: string
fixedport: string
getAllTables: string
ippool: string
logtraffic: string
logtrafficStart: string
name: string
perIpShaper: string
permitAnyHost: string
policyid: 0
poolnames:
- name: string
schedule: string
services:
- name: string
srcaddrs:
- name: string
srcintf: string
status: string
tcpMssReceiver: 0
tcpMssSender: 0
trafficShaper: string
trafficShaperReverse: string
uuid: string
vdomparam: string
Policy64 Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Policy64 resource accepts the following input properties:
- Dstaddrs
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy64Dstaddr> - Destination address name. The structure of
dstaddr
block is documented below. - Dstintf string
- Destination interface name.
- Schedule string
- Schedule name.
- Srcaddrs
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy64Srcaddr> - Source address name. The structure of
srcaddr
block is documented below. - Srcintf string
- Source interface name.
- Action string
- Policy action. Valid values:
accept
,deny
. - Comments string
- Comment.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Fixedport string
- Enable/disable policy fixed port. Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Ippool string
- Enable/disable policy64 IP pool. Valid values:
enable
,disable
. - Logtraffic string
- Enable/disable policy log traffic. Valid values:
enable
,disable
. - Logtraffic
Start string - Record logs when a session starts and ends. Valid values:
enable
,disable
. - Name string
- Policy name.
- Per
Ip stringShaper - Per-IP traffic shaper.
- Permit
Any stringHost - Enable/disable permit any host in. Valid values:
enable
,disable
. - Policyid int
- Policy ID.
- Poolnames
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy64Poolname> - Policy IP pool names. The structure of
poolname
block is documented below. - Services
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy64Service> - Service name. The structure of
service
block is documented below. - Status string
- Enable/disable policy status. Valid values:
enable
,disable
. - Tcp
Mss intReceiver - TCP MSS value of receiver.
- Tcp
Mss intSender - TCP MSS value of sender.
- Traffic
Shaper string - Traffic shaper.
- Traffic
Shaper stringReverse - Reverse traffic shaper.
- Uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Dstaddrs
[]Policy64Dstaddr
Args - Destination address name. The structure of
dstaddr
block is documented below. - Dstintf string
- Destination interface name.
- Schedule string
- Schedule name.
- Srcaddrs
[]Policy64Srcaddr
Args - Source address name. The structure of
srcaddr
block is documented below. - Srcintf string
- Source interface name.
- Action string
- Policy action. Valid values:
accept
,deny
. - Comments string
- Comment.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Fixedport string
- Enable/disable policy fixed port. Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Ippool string
- Enable/disable policy64 IP pool. Valid values:
enable
,disable
. - Logtraffic string
- Enable/disable policy log traffic. Valid values:
enable
,disable
. - Logtraffic
Start string - Record logs when a session starts and ends. Valid values:
enable
,disable
. - Name string
- Policy name.
- Per
Ip stringShaper - Per-IP traffic shaper.
- Permit
Any stringHost - Enable/disable permit any host in. Valid values:
enable
,disable
. - Policyid int
- Policy ID.
- Poolnames
[]Policy64Poolname
Args - Policy IP pool names. The structure of
poolname
block is documented below. - Services
[]Policy64Service
Args - Service name. The structure of
service
block is documented below. - Status string
- Enable/disable policy status. Valid values:
enable
,disable
. - Tcp
Mss intReceiver - TCP MSS value of receiver.
- Tcp
Mss intSender - TCP MSS value of sender.
- Traffic
Shaper string - Traffic shaper.
- Traffic
Shaper stringReverse - Reverse traffic shaper.
- Uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- dstaddrs List<Policy64Dstaddr>
- Destination address name. The structure of
dstaddr
block is documented below. - dstintf String
- Destination interface name.
- schedule String
- Schedule name.
- srcaddrs List<Policy64Srcaddr>
- Source address name. The structure of
srcaddr
block is documented below. - srcintf String
- Source interface name.
- action String
- Policy action. Valid values:
accept
,deny
. - comments String
- Comment.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport String
- Enable/disable policy fixed port. Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool String
- Enable/disable policy64 IP pool. Valid values:
enable
,disable
. - logtraffic String
- Enable/disable policy log traffic. Valid values:
enable
,disable
. - logtraffic
Start String - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name String
- Policy name.
- per
Ip StringShaper - Per-IP traffic shaper.
- permit
Any StringHost - Enable/disable permit any host in. Valid values:
enable
,disable
. - policyid Integer
- Policy ID.
- poolnames List<Policy64Poolname>
- Policy IP pool names. The structure of
poolname
block is documented below. - services List<Policy64Service>
- Service name. The structure of
service
block is documented below. - status String
- Enable/disable policy status. Valid values:
enable
,disable
. - tcp
Mss IntegerReceiver - TCP MSS value of receiver.
- tcp
Mss IntegerSender - TCP MSS value of sender.
- traffic
Shaper String - Traffic shaper.
- traffic
Shaper StringReverse - Reverse traffic shaper.
- uuid String
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- dstaddrs Policy64Dstaddr[]
- Destination address name. The structure of
dstaddr
block is documented below. - dstintf string
- Destination interface name.
- schedule string
- Schedule name.
- srcaddrs Policy64Srcaddr[]
- Source address name. The structure of
srcaddr
block is documented below. - srcintf string
- Source interface name.
- action string
- Policy action. Valid values:
accept
,deny
. - comments string
- Comment.
- dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport string
- Enable/disable policy fixed port. Valid values:
enable
,disable
. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool string
- Enable/disable policy64 IP pool. Valid values:
enable
,disable
. - logtraffic string
- Enable/disable policy log traffic. Valid values:
enable
,disable
. - logtraffic
Start string - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name string
- Policy name.
- per
Ip stringShaper - Per-IP traffic shaper.
- permit
Any stringHost - Enable/disable permit any host in. Valid values:
enable
,disable
. - policyid number
- Policy ID.
- poolnames Policy64Poolname[]
- Policy IP pool names. The structure of
poolname
block is documented below. - services Policy64Service[]
- Service name. The structure of
service
block is documented below. - status string
- Enable/disable policy status. Valid values:
enable
,disable
. - tcp
Mss numberReceiver - TCP MSS value of receiver.
- tcp
Mss numberSender - TCP MSS value of sender.
- traffic
Shaper string - Traffic shaper.
- traffic
Shaper stringReverse - Reverse traffic shaper.
- uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- dstaddrs
Sequence[Policy64Dstaddr
Args] - Destination address name. The structure of
dstaddr
block is documented below. - dstintf str
- Destination interface name.
- schedule str
- Schedule name.
- srcaddrs
Sequence[Policy64Srcaddr
Args] - Source address name. The structure of
srcaddr
block is documented below. - srcintf str
- Source interface name.
- action str
- Policy action. Valid values:
accept
,deny
. - comments str
- Comment.
- dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport str
- Enable/disable policy fixed port. Valid values:
enable
,disable
. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool str
- Enable/disable policy64 IP pool. Valid values:
enable
,disable
. - logtraffic str
- Enable/disable policy log traffic. Valid values:
enable
,disable
. - logtraffic_
start str - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name str
- Policy name.
- per_
ip_ strshaper - Per-IP traffic shaper.
- permit_
any_ strhost - Enable/disable permit any host in. Valid values:
enable
,disable
. - policyid int
- Policy ID.
- poolnames
Sequence[Policy64Poolname
Args] - Policy IP pool names. The structure of
poolname
block is documented below. - services
Sequence[Policy64Service
Args] - Service name. The structure of
service
block is documented below. - status str
- Enable/disable policy status. Valid values:
enable
,disable
. - tcp_
mss_ intreceiver - TCP MSS value of receiver.
- tcp_
mss_ intsender - TCP MSS value of sender.
- traffic_
shaper str - Traffic shaper.
- traffic_
shaper_ strreverse - Reverse traffic shaper.
- uuid str
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- dstaddrs List<Property Map>
- Destination address name. The structure of
dstaddr
block is documented below. - dstintf String
- Destination interface name.
- schedule String
- Schedule name.
- srcaddrs List<Property Map>
- Source address name. The structure of
srcaddr
block is documented below. - srcintf String
- Source interface name.
- action String
- Policy action. Valid values:
accept
,deny
. - comments String
- Comment.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport String
- Enable/disable policy fixed port. Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool String
- Enable/disable policy64 IP pool. Valid values:
enable
,disable
. - logtraffic String
- Enable/disable policy log traffic. Valid values:
enable
,disable
. - logtraffic
Start String - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name String
- Policy name.
- per
Ip StringShaper - Per-IP traffic shaper.
- permit
Any StringHost - Enable/disable permit any host in. Valid values:
enable
,disable
. - policyid Number
- Policy ID.
- poolnames List<Property Map>
- Policy IP pool names. The structure of
poolname
block is documented below. - services List<Property Map>
- Service name. The structure of
service
block is documented below. - status String
- Enable/disable policy status. Valid values:
enable
,disable
. - tcp
Mss NumberReceiver - TCP MSS value of receiver.
- tcp
Mss NumberSender - TCP MSS value of sender.
- traffic
Shaper String - Traffic shaper.
- traffic
Shaper StringReverse - Reverse traffic shaper.
- uuid String
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Outputs
All input properties are implicitly available as output properties. Additionally, the Policy64 resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Policy64 Resource
Get an existing Policy64 resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: Policy64State, opts?: CustomResourceOptions): Policy64
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
action: Optional[str] = None,
comments: Optional[str] = None,
dstaddrs: Optional[Sequence[Policy64DstaddrArgs]] = None,
dstintf: Optional[str] = None,
dynamic_sort_subtable: Optional[str] = None,
fixedport: Optional[str] = None,
get_all_tables: Optional[str] = None,
ippool: Optional[str] = None,
logtraffic: Optional[str] = None,
logtraffic_start: Optional[str] = None,
name: Optional[str] = None,
per_ip_shaper: Optional[str] = None,
permit_any_host: Optional[str] = None,
policyid: Optional[int] = None,
poolnames: Optional[Sequence[Policy64PoolnameArgs]] = None,
schedule: Optional[str] = None,
services: Optional[Sequence[Policy64ServiceArgs]] = None,
srcaddrs: Optional[Sequence[Policy64SrcaddrArgs]] = None,
srcintf: Optional[str] = None,
status: Optional[str] = None,
tcp_mss_receiver: Optional[int] = None,
tcp_mss_sender: Optional[int] = None,
traffic_shaper: Optional[str] = None,
traffic_shaper_reverse: Optional[str] = None,
uuid: Optional[str] = None,
vdomparam: Optional[str] = None) -> Policy64
func GetPolicy64(ctx *Context, name string, id IDInput, state *Policy64State, opts ...ResourceOption) (*Policy64, error)
public static Policy64 Get(string name, Input<string> id, Policy64State? state, CustomResourceOptions? opts = null)
public static Policy64 get(String name, Output<String> id, Policy64State state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Action string
- Policy action. Valid values:
accept
,deny
. - Comments string
- Comment.
- Dstaddrs
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy64Dstaddr> - Destination address name. The structure of
dstaddr
block is documented below. - Dstintf string
- Destination interface name.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Fixedport string
- Enable/disable policy fixed port. Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Ippool string
- Enable/disable policy64 IP pool. Valid values:
enable
,disable
. - Logtraffic string
- Enable/disable policy log traffic. Valid values:
enable
,disable
. - Logtraffic
Start string - Record logs when a session starts and ends. Valid values:
enable
,disable
. - Name string
- Policy name.
- Per
Ip stringShaper - Per-IP traffic shaper.
- Permit
Any stringHost - Enable/disable permit any host in. Valid values:
enable
,disable
. - Policyid int
- Policy ID.
- Poolnames
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy64Poolname> - Policy IP pool names. The structure of
poolname
block is documented below. - Schedule string
- Schedule name.
- Services
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy64Service> - Service name. The structure of
service
block is documented below. - Srcaddrs
List<Pulumiverse.
Fortios. Firewall. Inputs. Policy64Srcaddr> - Source address name. The structure of
srcaddr
block is documented below. - Srcintf string
- Source interface name.
- Status string
- Enable/disable policy status. Valid values:
enable
,disable
. - Tcp
Mss intReceiver - TCP MSS value of receiver.
- Tcp
Mss intSender - TCP MSS value of sender.
- Traffic
Shaper string - Traffic shaper.
- Traffic
Shaper stringReverse - Reverse traffic shaper.
- Uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Action string
- Policy action. Valid values:
accept
,deny
. - Comments string
- Comment.
- Dstaddrs
[]Policy64Dstaddr
Args - Destination address name. The structure of
dstaddr
block is documented below. - Dstintf string
- Destination interface name.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Fixedport string
- Enable/disable policy fixed port. Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Ippool string
- Enable/disable policy64 IP pool. Valid values:
enable
,disable
. - Logtraffic string
- Enable/disable policy log traffic. Valid values:
enable
,disable
. - Logtraffic
Start string - Record logs when a session starts and ends. Valid values:
enable
,disable
. - Name string
- Policy name.
- Per
Ip stringShaper - Per-IP traffic shaper.
- Permit
Any stringHost - Enable/disable permit any host in. Valid values:
enable
,disable
. - Policyid int
- Policy ID.
- Poolnames
[]Policy64Poolname
Args - Policy IP pool names. The structure of
poolname
block is documented below. - Schedule string
- Schedule name.
- Services
[]Policy64Service
Args - Service name. The structure of
service
block is documented below. - Srcaddrs
[]Policy64Srcaddr
Args - Source address name. The structure of
srcaddr
block is documented below. - Srcintf string
- Source interface name.
- Status string
- Enable/disable policy status. Valid values:
enable
,disable
. - Tcp
Mss intReceiver - TCP MSS value of receiver.
- Tcp
Mss intSender - TCP MSS value of sender.
- Traffic
Shaper string - Traffic shaper.
- Traffic
Shaper stringReverse - Reverse traffic shaper.
- Uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action String
- Policy action. Valid values:
accept
,deny
. - comments String
- Comment.
- dstaddrs List<Policy64Dstaddr>
- Destination address name. The structure of
dstaddr
block is documented below. - dstintf String
- Destination interface name.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport String
- Enable/disable policy fixed port. Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool String
- Enable/disable policy64 IP pool. Valid values:
enable
,disable
. - logtraffic String
- Enable/disable policy log traffic. Valid values:
enable
,disable
. - logtraffic
Start String - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name String
- Policy name.
- per
Ip StringShaper - Per-IP traffic shaper.
- permit
Any StringHost - Enable/disable permit any host in. Valid values:
enable
,disable
. - policyid Integer
- Policy ID.
- poolnames List<Policy64Poolname>
- Policy IP pool names. The structure of
poolname
block is documented below. - schedule String
- Schedule name.
- services List<Policy64Service>
- Service name. The structure of
service
block is documented below. - srcaddrs List<Policy64Srcaddr>
- Source address name. The structure of
srcaddr
block is documented below. - srcintf String
- Source interface name.
- status String
- Enable/disable policy status. Valid values:
enable
,disable
. - tcp
Mss IntegerReceiver - TCP MSS value of receiver.
- tcp
Mss IntegerSender - TCP MSS value of sender.
- traffic
Shaper String - Traffic shaper.
- traffic
Shaper StringReverse - Reverse traffic shaper.
- uuid String
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action string
- Policy action. Valid values:
accept
,deny
. - comments string
- Comment.
- dstaddrs Policy64Dstaddr[]
- Destination address name. The structure of
dstaddr
block is documented below. - dstintf string
- Destination interface name.
- dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport string
- Enable/disable policy fixed port. Valid values:
enable
,disable
. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool string
- Enable/disable policy64 IP pool. Valid values:
enable
,disable
. - logtraffic string
- Enable/disable policy log traffic. Valid values:
enable
,disable
. - logtraffic
Start string - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name string
- Policy name.
- per
Ip stringShaper - Per-IP traffic shaper.
- permit
Any stringHost - Enable/disable permit any host in. Valid values:
enable
,disable
. - policyid number
- Policy ID.
- poolnames Policy64Poolname[]
- Policy IP pool names. The structure of
poolname
block is documented below. - schedule string
- Schedule name.
- services Policy64Service[]
- Service name. The structure of
service
block is documented below. - srcaddrs Policy64Srcaddr[]
- Source address name. The structure of
srcaddr
block is documented below. - srcintf string
- Source interface name.
- status string
- Enable/disable policy status. Valid values:
enable
,disable
. - tcp
Mss numberReceiver - TCP MSS value of receiver.
- tcp
Mss numberSender - TCP MSS value of sender.
- traffic
Shaper string - Traffic shaper.
- traffic
Shaper stringReverse - Reverse traffic shaper.
- uuid string
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action str
- Policy action. Valid values:
accept
,deny
. - comments str
- Comment.
- dstaddrs
Sequence[Policy64Dstaddr
Args] - Destination address name. The structure of
dstaddr
block is documented below. - dstintf str
- Destination interface name.
- dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport str
- Enable/disable policy fixed port. Valid values:
enable
,disable
. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool str
- Enable/disable policy64 IP pool. Valid values:
enable
,disable
. - logtraffic str
- Enable/disable policy log traffic. Valid values:
enable
,disable
. - logtraffic_
start str - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name str
- Policy name.
- per_
ip_ strshaper - Per-IP traffic shaper.
- permit_
any_ strhost - Enable/disable permit any host in. Valid values:
enable
,disable
. - policyid int
- Policy ID.
- poolnames
Sequence[Policy64Poolname
Args] - Policy IP pool names. The structure of
poolname
block is documented below. - schedule str
- Schedule name.
- services
Sequence[Policy64Service
Args] - Service name. The structure of
service
block is documented below. - srcaddrs
Sequence[Policy64Srcaddr
Args] - Source address name. The structure of
srcaddr
block is documented below. - srcintf str
- Source interface name.
- status str
- Enable/disable policy status. Valid values:
enable
,disable
. - tcp_
mss_ intreceiver - TCP MSS value of receiver.
- tcp_
mss_ intsender - TCP MSS value of sender.
- traffic_
shaper str - Traffic shaper.
- traffic_
shaper_ strreverse - Reverse traffic shaper.
- uuid str
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action String
- Policy action. Valid values:
accept
,deny
. - comments String
- Comment.
- dstaddrs List<Property Map>
- Destination address name. The structure of
dstaddr
block is documented below. - dstintf String
- Destination interface name.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fixedport String
- Enable/disable policy fixed port. Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- ippool String
- Enable/disable policy64 IP pool. Valid values:
enable
,disable
. - logtraffic String
- Enable/disable policy log traffic. Valid values:
enable
,disable
. - logtraffic
Start String - Record logs when a session starts and ends. Valid values:
enable
,disable
. - name String
- Policy name.
- per
Ip StringShaper - Per-IP traffic shaper.
- permit
Any StringHost - Enable/disable permit any host in. Valid values:
enable
,disable
. - policyid Number
- Policy ID.
- poolnames List<Property Map>
- Policy IP pool names. The structure of
poolname
block is documented below. - schedule String
- Schedule name.
- services List<Property Map>
- Service name. The structure of
service
block is documented below. - srcaddrs List<Property Map>
- Source address name. The structure of
srcaddr
block is documented below. - srcintf String
- Source interface name.
- status String
- Enable/disable policy status. Valid values:
enable
,disable
. - tcp
Mss NumberReceiver - TCP MSS value of receiver.
- tcp
Mss NumberSender - TCP MSS value of sender.
- traffic
Shaper String - Traffic shaper.
- traffic
Shaper StringReverse - Reverse traffic shaper.
- uuid String
- Universally Unique Identifier (UUID; automatically assigned but can be manually reset).
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Supporting Types
Policy64Dstaddr, Policy64DstaddrArgs
- Name string
- Address name.
- Name string
- Address name.
- name String
- Address name.
- name string
- Address name.
- name str
- Address name.
- name String
- Address name.
Policy64Poolname, Policy64PoolnameArgs
- Name string
- IP pool name.
- Name string
- IP pool name.
- name String
- IP pool name.
- name string
- IP pool name.
- name str
- IP pool name.
- name String
- IP pool name.
Policy64Service, Policy64ServiceArgs
- Name string
- Address name.
- Name string
- Address name.
- name String
- Address name.
- name string
- Address name.
- name str
- Address name.
- name String
- Address name.
Policy64Srcaddr, Policy64SrcaddrArgs
- Name string
- Address name.
- Name string
- Address name.
- name String
- Address name.
- name string
- Address name.
- name str
- Address name.
- name String
- Address name.
Import
Firewall Policy64 can be imported using any of these accepted formats:
$ pulumi import fortios:firewall/policy64:Policy64 labelname {{policyid}}
If you do not want to import arguments of block:
$ export “FORTIOS_IMPORT_TABLE”=“false”
$ pulumi import fortios:firewall/policy64:Policy64 labelname {{policyid}}
$ unset “FORTIOS_IMPORT_TABLE”
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- fortios pulumiverse/pulumi-fortios
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
fortios
Terraform Provider.