fortios.firewall.Profileprotocoloptions
Explore with Pulumi AI
Configure protocol options.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as fortios from "@pulumiverse/fortios";
const trname = new fortios.firewall.Profileprotocoloptions("trname", {
dns: {
ports: 53,
status: "enable",
},
ftp: {
comfortAmount: 1,
comfortInterval: 10,
inspectAll: "disable",
options: "splice",
oversizeLimit: 10,
ports: 21,
scanBzip2: "enable",
status: "enable",
uncompressedNestLimit: 12,
uncompressedOversizeLimit: 10,
},
http: {
blockPageStatusCode: 403,
comfortAmount: 1,
comfortInterval: 10,
fortinetBar: "disable",
fortinetBarPort: 8011,
httpPolicy: "disable",
inspectAll: "disable",
oversizeLimit: 10,
ports: 80,
rangeBlock: "disable",
retryCount: 0,
scanBzip2: "enable",
status: "enable",
streamingContentBypass: "enable",
stripXForwardedFor: "disable",
switchingProtocols: "bypass",
uncompressedNestLimit: 12,
uncompressedOversizeLimit: 10,
},
imap: {
inspectAll: "disable",
options: "fragmail",
oversizeLimit: 10,
ports: 143,
scanBzip2: "enable",
status: "enable",
uncompressedNestLimit: 12,
uncompressedOversizeLimit: 10,
},
mailSignature: {
status: "disable",
},
mapi: {
options: "fragmail",
oversizeLimit: 10,
ports: 135,
scanBzip2: "enable",
status: "enable",
uncompressedNestLimit: 12,
uncompressedOversizeLimit: 10,
},
nntp: {
inspectAll: "disable",
options: "splice",
oversizeLimit: 10,
ports: 119,
scanBzip2: "enable",
status: "enable",
uncompressedNestLimit: 12,
uncompressedOversizeLimit: 10,
},
oversizeLog: "disable",
pop3: {
inspectAll: "disable",
options: "fragmail",
oversizeLimit: 10,
ports: 110,
scanBzip2: "enable",
status: "enable",
uncompressedNestLimit: 12,
uncompressedOversizeLimit: 10,
},
rpcOverHttp: "disable",
smtp: {
inspectAll: "disable",
options: "fragmail splice",
oversizeLimit: 10,
ports: 25,
scanBzip2: "enable",
serverBusy: "disable",
status: "enable",
uncompressedNestLimit: 12,
uncompressedOversizeLimit: 10,
},
switchingProtocolsLog: "disable",
});
import pulumi
import pulumiverse_fortios as fortios
trname = fortios.firewall.Profileprotocoloptions("trname",
dns=fortios.firewall.ProfileprotocoloptionsDnsArgs(
ports=53,
status="enable",
),
ftp=fortios.firewall.ProfileprotocoloptionsFtpArgs(
comfort_amount=1,
comfort_interval=10,
inspect_all="disable",
options="splice",
oversize_limit=10,
ports=21,
scan_bzip2="enable",
status="enable",
uncompressed_nest_limit=12,
uncompressed_oversize_limit=10,
),
http=fortios.firewall.ProfileprotocoloptionsHttpArgs(
block_page_status_code=403,
comfort_amount=1,
comfort_interval=10,
fortinet_bar="disable",
fortinet_bar_port=8011,
http_policy="disable",
inspect_all="disable",
oversize_limit=10,
ports=80,
range_block="disable",
retry_count=0,
scan_bzip2="enable",
status="enable",
streaming_content_bypass="enable",
strip_x_forwarded_for="disable",
switching_protocols="bypass",
uncompressed_nest_limit=12,
uncompressed_oversize_limit=10,
),
imap=fortios.firewall.ProfileprotocoloptionsImapArgs(
inspect_all="disable",
options="fragmail",
oversize_limit=10,
ports=143,
scan_bzip2="enable",
status="enable",
uncompressed_nest_limit=12,
uncompressed_oversize_limit=10,
),
mail_signature=fortios.firewall.ProfileprotocoloptionsMailSignatureArgs(
status="disable",
),
mapi=fortios.firewall.ProfileprotocoloptionsMapiArgs(
options="fragmail",
oversize_limit=10,
ports=135,
scan_bzip2="enable",
status="enable",
uncompressed_nest_limit=12,
uncompressed_oversize_limit=10,
),
nntp=fortios.firewall.ProfileprotocoloptionsNntpArgs(
inspect_all="disable",
options="splice",
oversize_limit=10,
ports=119,
scan_bzip2="enable",
status="enable",
uncompressed_nest_limit=12,
uncompressed_oversize_limit=10,
),
oversize_log="disable",
pop3=fortios.firewall.ProfileprotocoloptionsPop3Args(
inspect_all="disable",
options="fragmail",
oversize_limit=10,
ports=110,
scan_bzip2="enable",
status="enable",
uncompressed_nest_limit=12,
uncompressed_oversize_limit=10,
),
rpc_over_http="disable",
smtp=fortios.firewall.ProfileprotocoloptionsSmtpArgs(
inspect_all="disable",
options="fragmail splice",
oversize_limit=10,
ports=25,
scan_bzip2="enable",
server_busy="disable",
status="enable",
uncompressed_nest_limit=12,
uncompressed_oversize_limit=10,
),
switching_protocols_log="disable")
package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/firewall"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := firewall.NewProfileprotocoloptions(ctx, "trname", &firewall.ProfileprotocoloptionsArgs{
Dns: &firewall.ProfileprotocoloptionsDnsArgs{
Ports: pulumi.Int(53),
Status: pulumi.String("enable"),
},
Ftp: &firewall.ProfileprotocoloptionsFtpArgs{
ComfortAmount: pulumi.Int(1),
ComfortInterval: pulumi.Int(10),
InspectAll: pulumi.String("disable"),
Options: pulumi.String("splice"),
OversizeLimit: pulumi.Int(10),
Ports: pulumi.Int(21),
ScanBzip2: pulumi.String("enable"),
Status: pulumi.String("enable"),
UncompressedNestLimit: pulumi.Int(12),
UncompressedOversizeLimit: pulumi.Int(10),
},
Http: &firewall.ProfileprotocoloptionsHttpArgs{
BlockPageStatusCode: pulumi.Int(403),
ComfortAmount: pulumi.Int(1),
ComfortInterval: pulumi.Int(10),
FortinetBar: pulumi.String("disable"),
FortinetBarPort: pulumi.Int(8011),
HttpPolicy: pulumi.String("disable"),
InspectAll: pulumi.String("disable"),
OversizeLimit: pulumi.Int(10),
Ports: pulumi.Int(80),
RangeBlock: pulumi.String("disable"),
RetryCount: pulumi.Int(0),
ScanBzip2: pulumi.String("enable"),
Status: pulumi.String("enable"),
StreamingContentBypass: pulumi.String("enable"),
StripXForwardedFor: pulumi.String("disable"),
SwitchingProtocols: pulumi.String("bypass"),
UncompressedNestLimit: pulumi.Int(12),
UncompressedOversizeLimit: pulumi.Int(10),
},
Imap: &firewall.ProfileprotocoloptionsImapArgs{
InspectAll: pulumi.String("disable"),
Options: pulumi.String("fragmail"),
OversizeLimit: pulumi.Int(10),
Ports: pulumi.Int(143),
ScanBzip2: pulumi.String("enable"),
Status: pulumi.String("enable"),
UncompressedNestLimit: pulumi.Int(12),
UncompressedOversizeLimit: pulumi.Int(10),
},
MailSignature: &firewall.ProfileprotocoloptionsMailSignatureArgs{
Status: pulumi.String("disable"),
},
Mapi: &firewall.ProfileprotocoloptionsMapiArgs{
Options: pulumi.String("fragmail"),
OversizeLimit: pulumi.Int(10),
Ports: pulumi.Int(135),
ScanBzip2: pulumi.String("enable"),
Status: pulumi.String("enable"),
UncompressedNestLimit: pulumi.Int(12),
UncompressedOversizeLimit: pulumi.Int(10),
},
Nntp: &firewall.ProfileprotocoloptionsNntpArgs{
InspectAll: pulumi.String("disable"),
Options: pulumi.String("splice"),
OversizeLimit: pulumi.Int(10),
Ports: pulumi.Int(119),
ScanBzip2: pulumi.String("enable"),
Status: pulumi.String("enable"),
UncompressedNestLimit: pulumi.Int(12),
UncompressedOversizeLimit: pulumi.Int(10),
},
OversizeLog: pulumi.String("disable"),
Pop3: &firewall.ProfileprotocoloptionsPop3Args{
InspectAll: pulumi.String("disable"),
Options: pulumi.String("fragmail"),
OversizeLimit: pulumi.Int(10),
Ports: pulumi.Int(110),
ScanBzip2: pulumi.String("enable"),
Status: pulumi.String("enable"),
UncompressedNestLimit: pulumi.Int(12),
UncompressedOversizeLimit: pulumi.Int(10),
},
RpcOverHttp: pulumi.String("disable"),
Smtp: &firewall.ProfileprotocoloptionsSmtpArgs{
InspectAll: pulumi.String("disable"),
Options: pulumi.String("fragmail splice"),
OversizeLimit: pulumi.Int(10),
Ports: pulumi.Int(25),
ScanBzip2: pulumi.String("enable"),
ServerBusy: pulumi.String("disable"),
Status: pulumi.String("enable"),
UncompressedNestLimit: pulumi.Int(12),
UncompressedOversizeLimit: pulumi.Int(10),
},
SwitchingProtocolsLog: pulumi.String("disable"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fortios = Pulumiverse.Fortios;
return await Deployment.RunAsync(() =>
{
var trname = new Fortios.Firewall.Profileprotocoloptions("trname", new()
{
Dns = new Fortios.Firewall.Inputs.ProfileprotocoloptionsDnsArgs
{
Ports = 53,
Status = "enable",
},
Ftp = new Fortios.Firewall.Inputs.ProfileprotocoloptionsFtpArgs
{
ComfortAmount = 1,
ComfortInterval = 10,
InspectAll = "disable",
Options = "splice",
OversizeLimit = 10,
Ports = 21,
ScanBzip2 = "enable",
Status = "enable",
UncompressedNestLimit = 12,
UncompressedOversizeLimit = 10,
},
Http = new Fortios.Firewall.Inputs.ProfileprotocoloptionsHttpArgs
{
BlockPageStatusCode = 403,
ComfortAmount = 1,
ComfortInterval = 10,
FortinetBar = "disable",
FortinetBarPort = 8011,
HttpPolicy = "disable",
InspectAll = "disable",
OversizeLimit = 10,
Ports = 80,
RangeBlock = "disable",
RetryCount = 0,
ScanBzip2 = "enable",
Status = "enable",
StreamingContentBypass = "enable",
StripXForwardedFor = "disable",
SwitchingProtocols = "bypass",
UncompressedNestLimit = 12,
UncompressedOversizeLimit = 10,
},
Imap = new Fortios.Firewall.Inputs.ProfileprotocoloptionsImapArgs
{
InspectAll = "disable",
Options = "fragmail",
OversizeLimit = 10,
Ports = 143,
ScanBzip2 = "enable",
Status = "enable",
UncompressedNestLimit = 12,
UncompressedOversizeLimit = 10,
},
MailSignature = new Fortios.Firewall.Inputs.ProfileprotocoloptionsMailSignatureArgs
{
Status = "disable",
},
Mapi = new Fortios.Firewall.Inputs.ProfileprotocoloptionsMapiArgs
{
Options = "fragmail",
OversizeLimit = 10,
Ports = 135,
ScanBzip2 = "enable",
Status = "enable",
UncompressedNestLimit = 12,
UncompressedOversizeLimit = 10,
},
Nntp = new Fortios.Firewall.Inputs.ProfileprotocoloptionsNntpArgs
{
InspectAll = "disable",
Options = "splice",
OversizeLimit = 10,
Ports = 119,
ScanBzip2 = "enable",
Status = "enable",
UncompressedNestLimit = 12,
UncompressedOversizeLimit = 10,
},
OversizeLog = "disable",
Pop3 = new Fortios.Firewall.Inputs.ProfileprotocoloptionsPop3Args
{
InspectAll = "disable",
Options = "fragmail",
OversizeLimit = 10,
Ports = 110,
ScanBzip2 = "enable",
Status = "enable",
UncompressedNestLimit = 12,
UncompressedOversizeLimit = 10,
},
RpcOverHttp = "disable",
Smtp = new Fortios.Firewall.Inputs.ProfileprotocoloptionsSmtpArgs
{
InspectAll = "disable",
Options = "fragmail splice",
OversizeLimit = 10,
Ports = 25,
ScanBzip2 = "enable",
ServerBusy = "disable",
Status = "enable",
UncompressedNestLimit = 12,
UncompressedOversizeLimit = 10,
},
SwitchingProtocolsLog = "disable",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fortios.firewall.Profileprotocoloptions;
import com.pulumi.fortios.firewall.ProfileprotocoloptionsArgs;
import com.pulumi.fortios.firewall.inputs.ProfileprotocoloptionsDnsArgs;
import com.pulumi.fortios.firewall.inputs.ProfileprotocoloptionsFtpArgs;
import com.pulumi.fortios.firewall.inputs.ProfileprotocoloptionsHttpArgs;
import com.pulumi.fortios.firewall.inputs.ProfileprotocoloptionsImapArgs;
import com.pulumi.fortios.firewall.inputs.ProfileprotocoloptionsMailSignatureArgs;
import com.pulumi.fortios.firewall.inputs.ProfileprotocoloptionsMapiArgs;
import com.pulumi.fortios.firewall.inputs.ProfileprotocoloptionsNntpArgs;
import com.pulumi.fortios.firewall.inputs.ProfileprotocoloptionsPop3Args;
import com.pulumi.fortios.firewall.inputs.ProfileprotocoloptionsSmtpArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var trname = new Profileprotocoloptions("trname", ProfileprotocoloptionsArgs.builder()
.dns(ProfileprotocoloptionsDnsArgs.builder()
.ports(53)
.status("enable")
.build())
.ftp(ProfileprotocoloptionsFtpArgs.builder()
.comfortAmount(1)
.comfortInterval(10)
.inspectAll("disable")
.options("splice")
.oversizeLimit(10)
.ports(21)
.scanBzip2("enable")
.status("enable")
.uncompressedNestLimit(12)
.uncompressedOversizeLimit(10)
.build())
.http(ProfileprotocoloptionsHttpArgs.builder()
.blockPageStatusCode(403)
.comfortAmount(1)
.comfortInterval(10)
.fortinetBar("disable")
.fortinetBarPort(8011)
.httpPolicy("disable")
.inspectAll("disable")
.oversizeLimit(10)
.ports(80)
.rangeBlock("disable")
.retryCount(0)
.scanBzip2("enable")
.status("enable")
.streamingContentBypass("enable")
.stripXForwardedFor("disable")
.switchingProtocols("bypass")
.uncompressedNestLimit(12)
.uncompressedOversizeLimit(10)
.build())
.imap(ProfileprotocoloptionsImapArgs.builder()
.inspectAll("disable")
.options("fragmail")
.oversizeLimit(10)
.ports(143)
.scanBzip2("enable")
.status("enable")
.uncompressedNestLimit(12)
.uncompressedOversizeLimit(10)
.build())
.mailSignature(ProfileprotocoloptionsMailSignatureArgs.builder()
.status("disable")
.build())
.mapi(ProfileprotocoloptionsMapiArgs.builder()
.options("fragmail")
.oversizeLimit(10)
.ports(135)
.scanBzip2("enable")
.status("enable")
.uncompressedNestLimit(12)
.uncompressedOversizeLimit(10)
.build())
.nntp(ProfileprotocoloptionsNntpArgs.builder()
.inspectAll("disable")
.options("splice")
.oversizeLimit(10)
.ports(119)
.scanBzip2("enable")
.status("enable")
.uncompressedNestLimit(12)
.uncompressedOversizeLimit(10)
.build())
.oversizeLog("disable")
.pop3(ProfileprotocoloptionsPop3Args.builder()
.inspectAll("disable")
.options("fragmail")
.oversizeLimit(10)
.ports(110)
.scanBzip2("enable")
.status("enable")
.uncompressedNestLimit(12)
.uncompressedOversizeLimit(10)
.build())
.rpcOverHttp("disable")
.smtp(ProfileprotocoloptionsSmtpArgs.builder()
.inspectAll("disable")
.options("fragmail splice")
.oversizeLimit(10)
.ports(25)
.scanBzip2("enable")
.serverBusy("disable")
.status("enable")
.uncompressedNestLimit(12)
.uncompressedOversizeLimit(10)
.build())
.switchingProtocolsLog("disable")
.build());
}
}
resources:
trname:
type: fortios:firewall:Profileprotocoloptions
properties:
dns:
ports: 53
status: enable
ftp:
comfortAmount: 1
comfortInterval: 10
inspectAll: disable
options: splice
oversizeLimit: 10
ports: 21
scanBzip2: enable
status: enable
uncompressedNestLimit: 12
uncompressedOversizeLimit: 10
http:
blockPageStatusCode: 403
comfortAmount: 1
comfortInterval: 10
fortinetBar: disable
fortinetBarPort: 8011
httpPolicy: disable
inspectAll: disable
oversizeLimit: 10
ports: 80
rangeBlock: disable
retryCount: 0
scanBzip2: enable
status: enable
streamingContentBypass: enable
stripXForwardedFor: disable
switchingProtocols: bypass
uncompressedNestLimit: 12
uncompressedOversizeLimit: 10
imap:
inspectAll: disable
options: fragmail
oversizeLimit: 10
ports: 143
scanBzip2: enable
status: enable
uncompressedNestLimit: 12
uncompressedOversizeLimit: 10
mailSignature:
status: disable
mapi:
options: fragmail
oversizeLimit: 10
ports: 135
scanBzip2: enable
status: enable
uncompressedNestLimit: 12
uncompressedOversizeLimit: 10
nntp:
inspectAll: disable
options: splice
oversizeLimit: 10
ports: 119
scanBzip2: enable
status: enable
uncompressedNestLimit: 12
uncompressedOversizeLimit: 10
oversizeLog: disable
pop3:
inspectAll: disable
options: fragmail
oversizeLimit: 10
ports: 110
scanBzip2: enable
status: enable
uncompressedNestLimit: 12
uncompressedOversizeLimit: 10
rpcOverHttp: disable
smtp:
inspectAll: disable
options: fragmail splice
oversizeLimit: 10
ports: 25
scanBzip2: enable
serverBusy: disable
status: enable
uncompressedNestLimit: 12
uncompressedOversizeLimit: 10
switchingProtocolsLog: disable
Create Profileprotocoloptions Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Profileprotocoloptions(name: string, args?: ProfileprotocoloptionsArgs, opts?: CustomResourceOptions);
@overload
def Profileprotocoloptions(resource_name: str,
args: Optional[ProfileprotocoloptionsArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def Profileprotocoloptions(resource_name: str,
opts: Optional[ResourceOptions] = None,
cifs: Optional[ProfileprotocoloptionsCifsArgs] = None,
comment: Optional[str] = None,
dns: Optional[ProfileprotocoloptionsDnsArgs] = None,
feature_set: Optional[str] = None,
ftp: Optional[ProfileprotocoloptionsFtpArgs] = None,
get_all_tables: Optional[str] = None,
http: Optional[ProfileprotocoloptionsHttpArgs] = None,
imap: Optional[ProfileprotocoloptionsImapArgs] = None,
mail_signature: Optional[ProfileprotocoloptionsMailSignatureArgs] = None,
mapi: Optional[ProfileprotocoloptionsMapiArgs] = None,
name: Optional[str] = None,
nntp: Optional[ProfileprotocoloptionsNntpArgs] = None,
oversize_log: Optional[str] = None,
pop3: Optional[ProfileprotocoloptionsPop3Args] = None,
replacemsg_group: Optional[str] = None,
rpc_over_http: Optional[str] = None,
smtp: Optional[ProfileprotocoloptionsSmtpArgs] = None,
ssh: Optional[ProfileprotocoloptionsSshArgs] = None,
switching_protocols_log: Optional[str] = None,
vdomparam: Optional[str] = None)
func NewProfileprotocoloptions(ctx *Context, name string, args *ProfileprotocoloptionsArgs, opts ...ResourceOption) (*Profileprotocoloptions, error)
public Profileprotocoloptions(string name, ProfileprotocoloptionsArgs? args = null, CustomResourceOptions? opts = null)
public Profileprotocoloptions(String name, ProfileprotocoloptionsArgs args)
public Profileprotocoloptions(String name, ProfileprotocoloptionsArgs args, CustomResourceOptions options)
type: fortios:firewall:Profileprotocoloptions
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ProfileprotocoloptionsArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ProfileprotocoloptionsArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ProfileprotocoloptionsArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ProfileprotocoloptionsArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ProfileprotocoloptionsArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var profileprotocoloptionsResource = new Fortios.Firewall.Profileprotocoloptions("profileprotocoloptionsResource", new()
{
Cifs = new Fortios.Firewall.Inputs.ProfileprotocoloptionsCifsArgs
{
DomainController = "string",
Options = "string",
OversizeLimit = 0,
Ports = 0,
ScanBzip2 = "string",
ServerCredentialType = "string",
ServerKeytabs = new[]
{
new Fortios.Firewall.Inputs.ProfileprotocoloptionsCifsServerKeytabArgs
{
Keytab = "string",
Principal = "string",
},
},
Status = "string",
TcpWindowMaximum = 0,
TcpWindowMinimum = 0,
TcpWindowSize = 0,
TcpWindowType = "string",
UncompressedNestLimit = 0,
UncompressedOversizeLimit = 0,
},
Comment = "string",
Dns = new Fortios.Firewall.Inputs.ProfileprotocoloptionsDnsArgs
{
Ports = 0,
Status = "string",
},
FeatureSet = "string",
Ftp = new Fortios.Firewall.Inputs.ProfileprotocoloptionsFtpArgs
{
ComfortAmount = 0,
ComfortInterval = 0,
ExplicitFtpTls = "string",
InspectAll = "string",
Options = "string",
OversizeLimit = 0,
Ports = 0,
ScanBzip2 = "string",
SslOffloaded = "string",
Status = "string",
StreamBasedUncompressedLimit = 0,
TcpWindowMaximum = 0,
TcpWindowMinimum = 0,
TcpWindowSize = 0,
TcpWindowType = "string",
UncompressedNestLimit = 0,
UncompressedOversizeLimit = 0,
},
GetAllTables = "string",
Http = new Fortios.Firewall.Inputs.ProfileprotocoloptionsHttpArgs
{
AddressIpRating = "string",
BlockPageStatusCode = 0,
ComfortAmount = 0,
ComfortInterval = 0,
FortinetBar = "string",
FortinetBarPort = 0,
H2c = "string",
HttpPolicy = "string",
InspectAll = "string",
Options = "string",
OversizeLimit = 0,
Ports = 0,
PostLang = "string",
ProxyAfterTcpHandshake = "string",
RangeBlock = "string",
RetryCount = 0,
ScanBzip2 = "string",
SslOffloaded = "string",
Status = "string",
StreamBasedUncompressedLimit = 0,
StreamingContentBypass = "string",
StripXForwardedFor = "string",
SwitchingProtocols = "string",
TcpWindowMaximum = 0,
TcpWindowMinimum = 0,
TcpWindowSize = 0,
TcpWindowType = "string",
TunnelNonHttp = "string",
UncompressedNestLimit = 0,
UncompressedOversizeLimit = 0,
UnknownContentEncoding = "string",
UnknownHttpVersion = "string",
VerifyDnsForPolicyMatching = "string",
},
Imap = new Fortios.Firewall.Inputs.ProfileprotocoloptionsImapArgs
{
InspectAll = "string",
Options = "string",
OversizeLimit = 0,
Ports = 0,
ProxyAfterTcpHandshake = "string",
ScanBzip2 = "string",
SslOffloaded = "string",
Status = "string",
UncompressedNestLimit = 0,
UncompressedOversizeLimit = 0,
},
MailSignature = new Fortios.Firewall.Inputs.ProfileprotocoloptionsMailSignatureArgs
{
Signature = "string",
Status = "string",
},
Mapi = new Fortios.Firewall.Inputs.ProfileprotocoloptionsMapiArgs
{
Options = "string",
OversizeLimit = 0,
Ports = 0,
ScanBzip2 = "string",
Status = "string",
UncompressedNestLimit = 0,
UncompressedOversizeLimit = 0,
},
Name = "string",
Nntp = new Fortios.Firewall.Inputs.ProfileprotocoloptionsNntpArgs
{
InspectAll = "string",
Options = "string",
OversizeLimit = 0,
Ports = 0,
ProxyAfterTcpHandshake = "string",
ScanBzip2 = "string",
Status = "string",
UncompressedNestLimit = 0,
UncompressedOversizeLimit = 0,
},
OversizeLog = "string",
Pop3 = new Fortios.Firewall.Inputs.ProfileprotocoloptionsPop3Args
{
InspectAll = "string",
Options = "string",
OversizeLimit = 0,
Ports = 0,
ProxyAfterTcpHandshake = "string",
ScanBzip2 = "string",
SslOffloaded = "string",
Status = "string",
UncompressedNestLimit = 0,
UncompressedOversizeLimit = 0,
},
ReplacemsgGroup = "string",
RpcOverHttp = "string",
Smtp = new Fortios.Firewall.Inputs.ProfileprotocoloptionsSmtpArgs
{
InspectAll = "string",
Options = "string",
OversizeLimit = 0,
Ports = 0,
ProxyAfterTcpHandshake = "string",
ScanBzip2 = "string",
ServerBusy = "string",
SslOffloaded = "string",
Status = "string",
UncompressedNestLimit = 0,
UncompressedOversizeLimit = 0,
},
Ssh = new Fortios.Firewall.Inputs.ProfileprotocoloptionsSshArgs
{
ComfortAmount = 0,
ComfortInterval = 0,
Options = "string",
OversizeLimit = 0,
ScanBzip2 = "string",
SslOffloaded = "string",
StreamBasedUncompressedLimit = 0,
TcpWindowMaximum = 0,
TcpWindowMinimum = 0,
TcpWindowSize = 0,
TcpWindowType = "string",
UncompressedNestLimit = 0,
UncompressedOversizeLimit = 0,
},
SwitchingProtocolsLog = "string",
Vdomparam = "string",
});
example, err := firewall.NewProfileprotocoloptions(ctx, "profileprotocoloptionsResource", &firewall.ProfileprotocoloptionsArgs{
Cifs: &firewall.ProfileprotocoloptionsCifsArgs{
DomainController: pulumi.String("string"),
Options: pulumi.String("string"),
OversizeLimit: pulumi.Int(0),
Ports: pulumi.Int(0),
ScanBzip2: pulumi.String("string"),
ServerCredentialType: pulumi.String("string"),
ServerKeytabs: firewall.ProfileprotocoloptionsCifsServerKeytabArray{
&firewall.ProfileprotocoloptionsCifsServerKeytabArgs{
Keytab: pulumi.String("string"),
Principal: pulumi.String("string"),
},
},
Status: pulumi.String("string"),
TcpWindowMaximum: pulumi.Int(0),
TcpWindowMinimum: pulumi.Int(0),
TcpWindowSize: pulumi.Int(0),
TcpWindowType: pulumi.String("string"),
UncompressedNestLimit: pulumi.Int(0),
UncompressedOversizeLimit: pulumi.Int(0),
},
Comment: pulumi.String("string"),
Dns: &firewall.ProfileprotocoloptionsDnsArgs{
Ports: pulumi.Int(0),
Status: pulumi.String("string"),
},
FeatureSet: pulumi.String("string"),
Ftp: &firewall.ProfileprotocoloptionsFtpArgs{
ComfortAmount: pulumi.Int(0),
ComfortInterval: pulumi.Int(0),
ExplicitFtpTls: pulumi.String("string"),
InspectAll: pulumi.String("string"),
Options: pulumi.String("string"),
OversizeLimit: pulumi.Int(0),
Ports: pulumi.Int(0),
ScanBzip2: pulumi.String("string"),
SslOffloaded: pulumi.String("string"),
Status: pulumi.String("string"),
StreamBasedUncompressedLimit: pulumi.Int(0),
TcpWindowMaximum: pulumi.Int(0),
TcpWindowMinimum: pulumi.Int(0),
TcpWindowSize: pulumi.Int(0),
TcpWindowType: pulumi.String("string"),
UncompressedNestLimit: pulumi.Int(0),
UncompressedOversizeLimit: pulumi.Int(0),
},
GetAllTables: pulumi.String("string"),
Http: &firewall.ProfileprotocoloptionsHttpArgs{
AddressIpRating: pulumi.String("string"),
BlockPageStatusCode: pulumi.Int(0),
ComfortAmount: pulumi.Int(0),
ComfortInterval: pulumi.Int(0),
FortinetBar: pulumi.String("string"),
FortinetBarPort: pulumi.Int(0),
H2c: pulumi.String("string"),
HttpPolicy: pulumi.String("string"),
InspectAll: pulumi.String("string"),
Options: pulumi.String("string"),
OversizeLimit: pulumi.Int(0),
Ports: pulumi.Int(0),
PostLang: pulumi.String("string"),
ProxyAfterTcpHandshake: pulumi.String("string"),
RangeBlock: pulumi.String("string"),
RetryCount: pulumi.Int(0),
ScanBzip2: pulumi.String("string"),
SslOffloaded: pulumi.String("string"),
Status: pulumi.String("string"),
StreamBasedUncompressedLimit: pulumi.Int(0),
StreamingContentBypass: pulumi.String("string"),
StripXForwardedFor: pulumi.String("string"),
SwitchingProtocols: pulumi.String("string"),
TcpWindowMaximum: pulumi.Int(0),
TcpWindowMinimum: pulumi.Int(0),
TcpWindowSize: pulumi.Int(0),
TcpWindowType: pulumi.String("string"),
TunnelNonHttp: pulumi.String("string"),
UncompressedNestLimit: pulumi.Int(0),
UncompressedOversizeLimit: pulumi.Int(0),
UnknownContentEncoding: pulumi.String("string"),
UnknownHttpVersion: pulumi.String("string"),
VerifyDnsForPolicyMatching: pulumi.String("string"),
},
Imap: &firewall.ProfileprotocoloptionsImapArgs{
InspectAll: pulumi.String("string"),
Options: pulumi.String("string"),
OversizeLimit: pulumi.Int(0),
Ports: pulumi.Int(0),
ProxyAfterTcpHandshake: pulumi.String("string"),
ScanBzip2: pulumi.String("string"),
SslOffloaded: pulumi.String("string"),
Status: pulumi.String("string"),
UncompressedNestLimit: pulumi.Int(0),
UncompressedOversizeLimit: pulumi.Int(0),
},
MailSignature: &firewall.ProfileprotocoloptionsMailSignatureArgs{
Signature: pulumi.String("string"),
Status: pulumi.String("string"),
},
Mapi: &firewall.ProfileprotocoloptionsMapiArgs{
Options: pulumi.String("string"),
OversizeLimit: pulumi.Int(0),
Ports: pulumi.Int(0),
ScanBzip2: pulumi.String("string"),
Status: pulumi.String("string"),
UncompressedNestLimit: pulumi.Int(0),
UncompressedOversizeLimit: pulumi.Int(0),
},
Name: pulumi.String("string"),
Nntp: &firewall.ProfileprotocoloptionsNntpArgs{
InspectAll: pulumi.String("string"),
Options: pulumi.String("string"),
OversizeLimit: pulumi.Int(0),
Ports: pulumi.Int(0),
ProxyAfterTcpHandshake: pulumi.String("string"),
ScanBzip2: pulumi.String("string"),
Status: pulumi.String("string"),
UncompressedNestLimit: pulumi.Int(0),
UncompressedOversizeLimit: pulumi.Int(0),
},
OversizeLog: pulumi.String("string"),
Pop3: &firewall.ProfileprotocoloptionsPop3Args{
InspectAll: pulumi.String("string"),
Options: pulumi.String("string"),
OversizeLimit: pulumi.Int(0),
Ports: pulumi.Int(0),
ProxyAfterTcpHandshake: pulumi.String("string"),
ScanBzip2: pulumi.String("string"),
SslOffloaded: pulumi.String("string"),
Status: pulumi.String("string"),
UncompressedNestLimit: pulumi.Int(0),
UncompressedOversizeLimit: pulumi.Int(0),
},
ReplacemsgGroup: pulumi.String("string"),
RpcOverHttp: pulumi.String("string"),
Smtp: &firewall.ProfileprotocoloptionsSmtpArgs{
InspectAll: pulumi.String("string"),
Options: pulumi.String("string"),
OversizeLimit: pulumi.Int(0),
Ports: pulumi.Int(0),
ProxyAfterTcpHandshake: pulumi.String("string"),
ScanBzip2: pulumi.String("string"),
ServerBusy: pulumi.String("string"),
SslOffloaded: pulumi.String("string"),
Status: pulumi.String("string"),
UncompressedNestLimit: pulumi.Int(0),
UncompressedOversizeLimit: pulumi.Int(0),
},
Ssh: &firewall.ProfileprotocoloptionsSshArgs{
ComfortAmount: pulumi.Int(0),
ComfortInterval: pulumi.Int(0),
Options: pulumi.String("string"),
OversizeLimit: pulumi.Int(0),
ScanBzip2: pulumi.String("string"),
SslOffloaded: pulumi.String("string"),
StreamBasedUncompressedLimit: pulumi.Int(0),
TcpWindowMaximum: pulumi.Int(0),
TcpWindowMinimum: pulumi.Int(0),
TcpWindowSize: pulumi.Int(0),
TcpWindowType: pulumi.String("string"),
UncompressedNestLimit: pulumi.Int(0),
UncompressedOversizeLimit: pulumi.Int(0),
},
SwitchingProtocolsLog: pulumi.String("string"),
Vdomparam: pulumi.String("string"),
})
var profileprotocoloptionsResource = new Profileprotocoloptions("profileprotocoloptionsResource", ProfileprotocoloptionsArgs.builder()
.cifs(ProfileprotocoloptionsCifsArgs.builder()
.domainController("string")
.options("string")
.oversizeLimit(0)
.ports(0)
.scanBzip2("string")
.serverCredentialType("string")
.serverKeytabs(ProfileprotocoloptionsCifsServerKeytabArgs.builder()
.keytab("string")
.principal("string")
.build())
.status("string")
.tcpWindowMaximum(0)
.tcpWindowMinimum(0)
.tcpWindowSize(0)
.tcpWindowType("string")
.uncompressedNestLimit(0)
.uncompressedOversizeLimit(0)
.build())
.comment("string")
.dns(ProfileprotocoloptionsDnsArgs.builder()
.ports(0)
.status("string")
.build())
.featureSet("string")
.ftp(ProfileprotocoloptionsFtpArgs.builder()
.comfortAmount(0)
.comfortInterval(0)
.explicitFtpTls("string")
.inspectAll("string")
.options("string")
.oversizeLimit(0)
.ports(0)
.scanBzip2("string")
.sslOffloaded("string")
.status("string")
.streamBasedUncompressedLimit(0)
.tcpWindowMaximum(0)
.tcpWindowMinimum(0)
.tcpWindowSize(0)
.tcpWindowType("string")
.uncompressedNestLimit(0)
.uncompressedOversizeLimit(0)
.build())
.getAllTables("string")
.http(ProfileprotocoloptionsHttpArgs.builder()
.addressIpRating("string")
.blockPageStatusCode(0)
.comfortAmount(0)
.comfortInterval(0)
.fortinetBar("string")
.fortinetBarPort(0)
.h2c("string")
.httpPolicy("string")
.inspectAll("string")
.options("string")
.oversizeLimit(0)
.ports(0)
.postLang("string")
.proxyAfterTcpHandshake("string")
.rangeBlock("string")
.retryCount(0)
.scanBzip2("string")
.sslOffloaded("string")
.status("string")
.streamBasedUncompressedLimit(0)
.streamingContentBypass("string")
.stripXForwardedFor("string")
.switchingProtocols("string")
.tcpWindowMaximum(0)
.tcpWindowMinimum(0)
.tcpWindowSize(0)
.tcpWindowType("string")
.tunnelNonHttp("string")
.uncompressedNestLimit(0)
.uncompressedOversizeLimit(0)
.unknownContentEncoding("string")
.unknownHttpVersion("string")
.verifyDnsForPolicyMatching("string")
.build())
.imap(ProfileprotocoloptionsImapArgs.builder()
.inspectAll("string")
.options("string")
.oversizeLimit(0)
.ports(0)
.proxyAfterTcpHandshake("string")
.scanBzip2("string")
.sslOffloaded("string")
.status("string")
.uncompressedNestLimit(0)
.uncompressedOversizeLimit(0)
.build())
.mailSignature(ProfileprotocoloptionsMailSignatureArgs.builder()
.signature("string")
.status("string")
.build())
.mapi(ProfileprotocoloptionsMapiArgs.builder()
.options("string")
.oversizeLimit(0)
.ports(0)
.scanBzip2("string")
.status("string")
.uncompressedNestLimit(0)
.uncompressedOversizeLimit(0)
.build())
.name("string")
.nntp(ProfileprotocoloptionsNntpArgs.builder()
.inspectAll("string")
.options("string")
.oversizeLimit(0)
.ports(0)
.proxyAfterTcpHandshake("string")
.scanBzip2("string")
.status("string")
.uncompressedNestLimit(0)
.uncompressedOversizeLimit(0)
.build())
.oversizeLog("string")
.pop3(ProfileprotocoloptionsPop3Args.builder()
.inspectAll("string")
.options("string")
.oversizeLimit(0)
.ports(0)
.proxyAfterTcpHandshake("string")
.scanBzip2("string")
.sslOffloaded("string")
.status("string")
.uncompressedNestLimit(0)
.uncompressedOversizeLimit(0)
.build())
.replacemsgGroup("string")
.rpcOverHttp("string")
.smtp(ProfileprotocoloptionsSmtpArgs.builder()
.inspectAll("string")
.options("string")
.oversizeLimit(0)
.ports(0)
.proxyAfterTcpHandshake("string")
.scanBzip2("string")
.serverBusy("string")
.sslOffloaded("string")
.status("string")
.uncompressedNestLimit(0)
.uncompressedOversizeLimit(0)
.build())
.ssh(ProfileprotocoloptionsSshArgs.builder()
.comfortAmount(0)
.comfortInterval(0)
.options("string")
.oversizeLimit(0)
.scanBzip2("string")
.sslOffloaded("string")
.streamBasedUncompressedLimit(0)
.tcpWindowMaximum(0)
.tcpWindowMinimum(0)
.tcpWindowSize(0)
.tcpWindowType("string")
.uncompressedNestLimit(0)
.uncompressedOversizeLimit(0)
.build())
.switchingProtocolsLog("string")
.vdomparam("string")
.build());
profileprotocoloptions_resource = fortios.firewall.Profileprotocoloptions("profileprotocoloptionsResource",
cifs={
"domain_controller": "string",
"options": "string",
"oversize_limit": 0,
"ports": 0,
"scan_bzip2": "string",
"server_credential_type": "string",
"server_keytabs": [{
"keytab": "string",
"principal": "string",
}],
"status": "string",
"tcp_window_maximum": 0,
"tcp_window_minimum": 0,
"tcp_window_size": 0,
"tcp_window_type": "string",
"uncompressed_nest_limit": 0,
"uncompressed_oversize_limit": 0,
},
comment="string",
dns={
"ports": 0,
"status": "string",
},
feature_set="string",
ftp={
"comfort_amount": 0,
"comfort_interval": 0,
"explicit_ftp_tls": "string",
"inspect_all": "string",
"options": "string",
"oversize_limit": 0,
"ports": 0,
"scan_bzip2": "string",
"ssl_offloaded": "string",
"status": "string",
"stream_based_uncompressed_limit": 0,
"tcp_window_maximum": 0,
"tcp_window_minimum": 0,
"tcp_window_size": 0,
"tcp_window_type": "string",
"uncompressed_nest_limit": 0,
"uncompressed_oversize_limit": 0,
},
get_all_tables="string",
http={
"address_ip_rating": "string",
"block_page_status_code": 0,
"comfort_amount": 0,
"comfort_interval": 0,
"fortinet_bar": "string",
"fortinet_bar_port": 0,
"h2c": "string",
"http_policy": "string",
"inspect_all": "string",
"options": "string",
"oversize_limit": 0,
"ports": 0,
"post_lang": "string",
"proxy_after_tcp_handshake": "string",
"range_block": "string",
"retry_count": 0,
"scan_bzip2": "string",
"ssl_offloaded": "string",
"status": "string",
"stream_based_uncompressed_limit": 0,
"streaming_content_bypass": "string",
"strip_x_forwarded_for": "string",
"switching_protocols": "string",
"tcp_window_maximum": 0,
"tcp_window_minimum": 0,
"tcp_window_size": 0,
"tcp_window_type": "string",
"tunnel_non_http": "string",
"uncompressed_nest_limit": 0,
"uncompressed_oversize_limit": 0,
"unknown_content_encoding": "string",
"unknown_http_version": "string",
"verify_dns_for_policy_matching": "string",
},
imap={
"inspect_all": "string",
"options": "string",
"oversize_limit": 0,
"ports": 0,
"proxy_after_tcp_handshake": "string",
"scan_bzip2": "string",
"ssl_offloaded": "string",
"status": "string",
"uncompressed_nest_limit": 0,
"uncompressed_oversize_limit": 0,
},
mail_signature={
"signature": "string",
"status": "string",
},
mapi={
"options": "string",
"oversize_limit": 0,
"ports": 0,
"scan_bzip2": "string",
"status": "string",
"uncompressed_nest_limit": 0,
"uncompressed_oversize_limit": 0,
},
name="string",
nntp={
"inspect_all": "string",
"options": "string",
"oversize_limit": 0,
"ports": 0,
"proxy_after_tcp_handshake": "string",
"scan_bzip2": "string",
"status": "string",
"uncompressed_nest_limit": 0,
"uncompressed_oversize_limit": 0,
},
oversize_log="string",
pop3={
"inspect_all": "string",
"options": "string",
"oversize_limit": 0,
"ports": 0,
"proxy_after_tcp_handshake": "string",
"scan_bzip2": "string",
"ssl_offloaded": "string",
"status": "string",
"uncompressed_nest_limit": 0,
"uncompressed_oversize_limit": 0,
},
replacemsg_group="string",
rpc_over_http="string",
smtp={
"inspect_all": "string",
"options": "string",
"oversize_limit": 0,
"ports": 0,
"proxy_after_tcp_handshake": "string",
"scan_bzip2": "string",
"server_busy": "string",
"ssl_offloaded": "string",
"status": "string",
"uncompressed_nest_limit": 0,
"uncompressed_oversize_limit": 0,
},
ssh={
"comfort_amount": 0,
"comfort_interval": 0,
"options": "string",
"oversize_limit": 0,
"scan_bzip2": "string",
"ssl_offloaded": "string",
"stream_based_uncompressed_limit": 0,
"tcp_window_maximum": 0,
"tcp_window_minimum": 0,
"tcp_window_size": 0,
"tcp_window_type": "string",
"uncompressed_nest_limit": 0,
"uncompressed_oversize_limit": 0,
},
switching_protocols_log="string",
vdomparam="string")
const profileprotocoloptionsResource = new fortios.firewall.Profileprotocoloptions("profileprotocoloptionsResource", {
cifs: {
domainController: "string",
options: "string",
oversizeLimit: 0,
ports: 0,
scanBzip2: "string",
serverCredentialType: "string",
serverKeytabs: [{
keytab: "string",
principal: "string",
}],
status: "string",
tcpWindowMaximum: 0,
tcpWindowMinimum: 0,
tcpWindowSize: 0,
tcpWindowType: "string",
uncompressedNestLimit: 0,
uncompressedOversizeLimit: 0,
},
comment: "string",
dns: {
ports: 0,
status: "string",
},
featureSet: "string",
ftp: {
comfortAmount: 0,
comfortInterval: 0,
explicitFtpTls: "string",
inspectAll: "string",
options: "string",
oversizeLimit: 0,
ports: 0,
scanBzip2: "string",
sslOffloaded: "string",
status: "string",
streamBasedUncompressedLimit: 0,
tcpWindowMaximum: 0,
tcpWindowMinimum: 0,
tcpWindowSize: 0,
tcpWindowType: "string",
uncompressedNestLimit: 0,
uncompressedOversizeLimit: 0,
},
getAllTables: "string",
http: {
addressIpRating: "string",
blockPageStatusCode: 0,
comfortAmount: 0,
comfortInterval: 0,
fortinetBar: "string",
fortinetBarPort: 0,
h2c: "string",
httpPolicy: "string",
inspectAll: "string",
options: "string",
oversizeLimit: 0,
ports: 0,
postLang: "string",
proxyAfterTcpHandshake: "string",
rangeBlock: "string",
retryCount: 0,
scanBzip2: "string",
sslOffloaded: "string",
status: "string",
streamBasedUncompressedLimit: 0,
streamingContentBypass: "string",
stripXForwardedFor: "string",
switchingProtocols: "string",
tcpWindowMaximum: 0,
tcpWindowMinimum: 0,
tcpWindowSize: 0,
tcpWindowType: "string",
tunnelNonHttp: "string",
uncompressedNestLimit: 0,
uncompressedOversizeLimit: 0,
unknownContentEncoding: "string",
unknownHttpVersion: "string",
verifyDnsForPolicyMatching: "string",
},
imap: {
inspectAll: "string",
options: "string",
oversizeLimit: 0,
ports: 0,
proxyAfterTcpHandshake: "string",
scanBzip2: "string",
sslOffloaded: "string",
status: "string",
uncompressedNestLimit: 0,
uncompressedOversizeLimit: 0,
},
mailSignature: {
signature: "string",
status: "string",
},
mapi: {
options: "string",
oversizeLimit: 0,
ports: 0,
scanBzip2: "string",
status: "string",
uncompressedNestLimit: 0,
uncompressedOversizeLimit: 0,
},
name: "string",
nntp: {
inspectAll: "string",
options: "string",
oversizeLimit: 0,
ports: 0,
proxyAfterTcpHandshake: "string",
scanBzip2: "string",
status: "string",
uncompressedNestLimit: 0,
uncompressedOversizeLimit: 0,
},
oversizeLog: "string",
pop3: {
inspectAll: "string",
options: "string",
oversizeLimit: 0,
ports: 0,
proxyAfterTcpHandshake: "string",
scanBzip2: "string",
sslOffloaded: "string",
status: "string",
uncompressedNestLimit: 0,
uncompressedOversizeLimit: 0,
},
replacemsgGroup: "string",
rpcOverHttp: "string",
smtp: {
inspectAll: "string",
options: "string",
oversizeLimit: 0,
ports: 0,
proxyAfterTcpHandshake: "string",
scanBzip2: "string",
serverBusy: "string",
sslOffloaded: "string",
status: "string",
uncompressedNestLimit: 0,
uncompressedOversizeLimit: 0,
},
ssh: {
comfortAmount: 0,
comfortInterval: 0,
options: "string",
oversizeLimit: 0,
scanBzip2: "string",
sslOffloaded: "string",
streamBasedUncompressedLimit: 0,
tcpWindowMaximum: 0,
tcpWindowMinimum: 0,
tcpWindowSize: 0,
tcpWindowType: "string",
uncompressedNestLimit: 0,
uncompressedOversizeLimit: 0,
},
switchingProtocolsLog: "string",
vdomparam: "string",
});
type: fortios:firewall:Profileprotocoloptions
properties:
cifs:
domainController: string
options: string
oversizeLimit: 0
ports: 0
scanBzip2: string
serverCredentialType: string
serverKeytabs:
- keytab: string
principal: string
status: string
tcpWindowMaximum: 0
tcpWindowMinimum: 0
tcpWindowSize: 0
tcpWindowType: string
uncompressedNestLimit: 0
uncompressedOversizeLimit: 0
comment: string
dns:
ports: 0
status: string
featureSet: string
ftp:
comfortAmount: 0
comfortInterval: 0
explicitFtpTls: string
inspectAll: string
options: string
oversizeLimit: 0
ports: 0
scanBzip2: string
sslOffloaded: string
status: string
streamBasedUncompressedLimit: 0
tcpWindowMaximum: 0
tcpWindowMinimum: 0
tcpWindowSize: 0
tcpWindowType: string
uncompressedNestLimit: 0
uncompressedOversizeLimit: 0
getAllTables: string
http:
addressIpRating: string
blockPageStatusCode: 0
comfortAmount: 0
comfortInterval: 0
fortinetBar: string
fortinetBarPort: 0
h2c: string
httpPolicy: string
inspectAll: string
options: string
oversizeLimit: 0
ports: 0
postLang: string
proxyAfterTcpHandshake: string
rangeBlock: string
retryCount: 0
scanBzip2: string
sslOffloaded: string
status: string
streamBasedUncompressedLimit: 0
streamingContentBypass: string
stripXForwardedFor: string
switchingProtocols: string
tcpWindowMaximum: 0
tcpWindowMinimum: 0
tcpWindowSize: 0
tcpWindowType: string
tunnelNonHttp: string
uncompressedNestLimit: 0
uncompressedOversizeLimit: 0
unknownContentEncoding: string
unknownHttpVersion: string
verifyDnsForPolicyMatching: string
imap:
inspectAll: string
options: string
oversizeLimit: 0
ports: 0
proxyAfterTcpHandshake: string
scanBzip2: string
sslOffloaded: string
status: string
uncompressedNestLimit: 0
uncompressedOversizeLimit: 0
mailSignature:
signature: string
status: string
mapi:
options: string
oversizeLimit: 0
ports: 0
scanBzip2: string
status: string
uncompressedNestLimit: 0
uncompressedOversizeLimit: 0
name: string
nntp:
inspectAll: string
options: string
oversizeLimit: 0
ports: 0
proxyAfterTcpHandshake: string
scanBzip2: string
status: string
uncompressedNestLimit: 0
uncompressedOversizeLimit: 0
oversizeLog: string
pop3:
inspectAll: string
options: string
oversizeLimit: 0
ports: 0
proxyAfterTcpHandshake: string
scanBzip2: string
sslOffloaded: string
status: string
uncompressedNestLimit: 0
uncompressedOversizeLimit: 0
replacemsgGroup: string
rpcOverHttp: string
smtp:
inspectAll: string
options: string
oversizeLimit: 0
ports: 0
proxyAfterTcpHandshake: string
scanBzip2: string
serverBusy: string
sslOffloaded: string
status: string
uncompressedNestLimit: 0
uncompressedOversizeLimit: 0
ssh:
comfortAmount: 0
comfortInterval: 0
options: string
oversizeLimit: 0
scanBzip2: string
sslOffloaded: string
streamBasedUncompressedLimit: 0
tcpWindowMaximum: 0
tcpWindowMinimum: 0
tcpWindowSize: 0
tcpWindowType: string
uncompressedNestLimit: 0
uncompressedOversizeLimit: 0
switchingProtocolsLog: string
vdomparam: string
Profileprotocoloptions Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Profileprotocoloptions resource accepts the following input properties:
- Cifs
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Cifs - Configure CIFS protocol options. The structure of
cifs
block is documented below. - Comment string
- Optional comments.
- Dns
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Dns - Configure DNS protocol options. The structure of
dns
block is documented below. - Feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - Ftp
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Ftp - Configure FTP protocol options. The structure of
ftp
block is documented below. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Http
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Http - Configure HTTP protocol options. The structure of
http
block is documented below. - Imap
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Imap - Configure IMAP protocol options. The structure of
imap
block is documented below. - Mail
Signature Pulumiverse.Fortios. Firewall. Inputs. Profileprotocoloptions Mail Signature - Configure Mail signature. The structure of
mail_signature
block is documented below. - Mapi
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Mapi - Configure MAPI protocol options. The structure of
mapi
block is documented below. - Name string
- Name.
- Nntp
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Nntp - Configure NNTP protocol options. The structure of
nntp
block is documented below. - Oversize
Log string - Enable/disable logging for antivirus oversize file blocking. Valid values:
disable
,enable
. - Pop3
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Pop3 - Configure POP3 protocol options. The structure of
pop3
block is documented below. - Replacemsg
Group string - Name of the replacement message group to be used
- Rpc
Over stringHttp - Enable/disable inspection of RPC over HTTP. Valid values:
enable
,disable
. - Smtp
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Smtp - Configure SMTP protocol options. The structure of
smtp
block is documented below. - Ssh
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Ssh - Configure SFTP and SCP protocol options. The structure of
ssh
block is documented below. - Switching
Protocols stringLog - Enable/disable logging for HTTP/HTTPS switching protocols. Valid values:
disable
,enable
. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Cifs
Profileprotocoloptions
Cifs Args - Configure CIFS protocol options. The structure of
cifs
block is documented below. - Comment string
- Optional comments.
- Dns
Profileprotocoloptions
Dns Args - Configure DNS protocol options. The structure of
dns
block is documented below. - Feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - Ftp
Profileprotocoloptions
Ftp Args - Configure FTP protocol options. The structure of
ftp
block is documented below. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Http
Profileprotocoloptions
Http Args - Configure HTTP protocol options. The structure of
http
block is documented below. - Imap
Profileprotocoloptions
Imap Args - Configure IMAP protocol options. The structure of
imap
block is documented below. - Mail
Signature ProfileprotocoloptionsMail Signature Args - Configure Mail signature. The structure of
mail_signature
block is documented below. - Mapi
Profileprotocoloptions
Mapi Args - Configure MAPI protocol options. The structure of
mapi
block is documented below. - Name string
- Name.
- Nntp
Profileprotocoloptions
Nntp Args - Configure NNTP protocol options. The structure of
nntp
block is documented below. - Oversize
Log string - Enable/disable logging for antivirus oversize file blocking. Valid values:
disable
,enable
. - Pop3
Profileprotocoloptions
Pop3Args - Configure POP3 protocol options. The structure of
pop3
block is documented below. - Replacemsg
Group string - Name of the replacement message group to be used
- Rpc
Over stringHttp - Enable/disable inspection of RPC over HTTP. Valid values:
enable
,disable
. - Smtp
Profileprotocoloptions
Smtp Args - Configure SMTP protocol options. The structure of
smtp
block is documented below. - Ssh
Profileprotocoloptions
Ssh Args - Configure SFTP and SCP protocol options. The structure of
ssh
block is documented below. - Switching
Protocols stringLog - Enable/disable logging for HTTP/HTTPS switching protocols. Valid values:
disable
,enable
. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- cifs
Profileprotocoloptions
Cifs - Configure CIFS protocol options. The structure of
cifs
block is documented below. - comment String
- Optional comments.
- dns
Profileprotocoloptions
Dns - Configure DNS protocol options. The structure of
dns
block is documented below. - feature
Set String - Flow/proxy feature set. Valid values:
flow
,proxy
. - ftp
Profileprotocoloptions
Ftp - Configure FTP protocol options. The structure of
ftp
block is documented below. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- http
Profileprotocoloptions
Http - Configure HTTP protocol options. The structure of
http
block is documented below. - imap
Profileprotocoloptions
Imap - Configure IMAP protocol options. The structure of
imap
block is documented below. - mail
Signature ProfileprotocoloptionsMail Signature - Configure Mail signature. The structure of
mail_signature
block is documented below. - mapi
Profileprotocoloptions
Mapi - Configure MAPI protocol options. The structure of
mapi
block is documented below. - name String
- Name.
- nntp
Profileprotocoloptions
Nntp - Configure NNTP protocol options. The structure of
nntp
block is documented below. - oversize
Log String - Enable/disable logging for antivirus oversize file blocking. Valid values:
disable
,enable
. - pop3
Profileprotocoloptions
Pop3 - Configure POP3 protocol options. The structure of
pop3
block is documented below. - replacemsg
Group String - Name of the replacement message group to be used
- rpc
Over StringHttp - Enable/disable inspection of RPC over HTTP. Valid values:
enable
,disable
. - smtp
Profileprotocoloptions
Smtp - Configure SMTP protocol options. The structure of
smtp
block is documented below. - ssh
Profileprotocoloptions
Ssh - Configure SFTP and SCP protocol options. The structure of
ssh
block is documented below. - switching
Protocols StringLog - Enable/disable logging for HTTP/HTTPS switching protocols. Valid values:
disable
,enable
. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- cifs
Profileprotocoloptions
Cifs - Configure CIFS protocol options. The structure of
cifs
block is documented below. - comment string
- Optional comments.
- dns
Profileprotocoloptions
Dns - Configure DNS protocol options. The structure of
dns
block is documented below. - feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - ftp
Profileprotocoloptions
Ftp - Configure FTP protocol options. The structure of
ftp
block is documented below. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- http
Profileprotocoloptions
Http - Configure HTTP protocol options. The structure of
http
block is documented below. - imap
Profileprotocoloptions
Imap - Configure IMAP protocol options. The structure of
imap
block is documented below. - mail
Signature ProfileprotocoloptionsMail Signature - Configure Mail signature. The structure of
mail_signature
block is documented below. - mapi
Profileprotocoloptions
Mapi - Configure MAPI protocol options. The structure of
mapi
block is documented below. - name string
- Name.
- nntp
Profileprotocoloptions
Nntp - Configure NNTP protocol options. The structure of
nntp
block is documented below. - oversize
Log string - Enable/disable logging for antivirus oversize file blocking. Valid values:
disable
,enable
. - pop3
Profileprotocoloptions
Pop3 - Configure POP3 protocol options. The structure of
pop3
block is documented below. - replacemsg
Group string - Name of the replacement message group to be used
- rpc
Over stringHttp - Enable/disable inspection of RPC over HTTP. Valid values:
enable
,disable
. - smtp
Profileprotocoloptions
Smtp - Configure SMTP protocol options. The structure of
smtp
block is documented below. - ssh
Profileprotocoloptions
Ssh - Configure SFTP and SCP protocol options. The structure of
ssh
block is documented below. - switching
Protocols stringLog - Enable/disable logging for HTTP/HTTPS switching protocols. Valid values:
disable
,enable
. - vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- cifs
Profileprotocoloptions
Cifs Args - Configure CIFS protocol options. The structure of
cifs
block is documented below. - comment str
- Optional comments.
- dns
Profileprotocoloptions
Dns Args - Configure DNS protocol options. The structure of
dns
block is documented below. - feature_
set str - Flow/proxy feature set. Valid values:
flow
,proxy
. - ftp
Profileprotocoloptions
Ftp Args - Configure FTP protocol options. The structure of
ftp
block is documented below. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- http
Profileprotocoloptions
Http Args - Configure HTTP protocol options. The structure of
http
block is documented below. - imap
Profileprotocoloptions
Imap Args - Configure IMAP protocol options. The structure of
imap
block is documented below. - mail_
signature ProfileprotocoloptionsMail Signature Args - Configure Mail signature. The structure of
mail_signature
block is documented below. - mapi
Profileprotocoloptions
Mapi Args - Configure MAPI protocol options. The structure of
mapi
block is documented below. - name str
- Name.
- nntp
Profileprotocoloptions
Nntp Args - Configure NNTP protocol options. The structure of
nntp
block is documented below. - oversize_
log str - Enable/disable logging for antivirus oversize file blocking. Valid values:
disable
,enable
. - pop3
Profileprotocoloptions
Pop3Args - Configure POP3 protocol options. The structure of
pop3
block is documented below. - replacemsg_
group str - Name of the replacement message group to be used
- rpc_
over_ strhttp - Enable/disable inspection of RPC over HTTP. Valid values:
enable
,disable
. - smtp
Profileprotocoloptions
Smtp Args - Configure SMTP protocol options. The structure of
smtp
block is documented below. - ssh
Profileprotocoloptions
Ssh Args - Configure SFTP and SCP protocol options. The structure of
ssh
block is documented below. - switching_
protocols_ strlog - Enable/disable logging for HTTP/HTTPS switching protocols. Valid values:
disable
,enable
. - vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- cifs Property Map
- Configure CIFS protocol options. The structure of
cifs
block is documented below. - comment String
- Optional comments.
- dns Property Map
- Configure DNS protocol options. The structure of
dns
block is documented below. - feature
Set String - Flow/proxy feature set. Valid values:
flow
,proxy
. - ftp Property Map
- Configure FTP protocol options. The structure of
ftp
block is documented below. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- http Property Map
- Configure HTTP protocol options. The structure of
http
block is documented below. - imap Property Map
- Configure IMAP protocol options. The structure of
imap
block is documented below. - mail
Signature Property Map - Configure Mail signature. The structure of
mail_signature
block is documented below. - mapi Property Map
- Configure MAPI protocol options. The structure of
mapi
block is documented below. - name String
- Name.
- nntp Property Map
- Configure NNTP protocol options. The structure of
nntp
block is documented below. - oversize
Log String - Enable/disable logging for antivirus oversize file blocking. Valid values:
disable
,enable
. - pop3 Property Map
- Configure POP3 protocol options. The structure of
pop3
block is documented below. - replacemsg
Group String - Name of the replacement message group to be used
- rpc
Over StringHttp - Enable/disable inspection of RPC over HTTP. Valid values:
enable
,disable
. - smtp Property Map
- Configure SMTP protocol options. The structure of
smtp
block is documented below. - ssh Property Map
- Configure SFTP and SCP protocol options. The structure of
ssh
block is documented below. - switching
Protocols StringLog - Enable/disable logging for HTTP/HTTPS switching protocols. Valid values:
disable
,enable
. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Outputs
All input properties are implicitly available as output properties. Additionally, the Profileprotocoloptions resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Profileprotocoloptions Resource
Get an existing Profileprotocoloptions resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ProfileprotocoloptionsState, opts?: CustomResourceOptions): Profileprotocoloptions
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
cifs: Optional[ProfileprotocoloptionsCifsArgs] = None,
comment: Optional[str] = None,
dns: Optional[ProfileprotocoloptionsDnsArgs] = None,
feature_set: Optional[str] = None,
ftp: Optional[ProfileprotocoloptionsFtpArgs] = None,
get_all_tables: Optional[str] = None,
http: Optional[ProfileprotocoloptionsHttpArgs] = None,
imap: Optional[ProfileprotocoloptionsImapArgs] = None,
mail_signature: Optional[ProfileprotocoloptionsMailSignatureArgs] = None,
mapi: Optional[ProfileprotocoloptionsMapiArgs] = None,
name: Optional[str] = None,
nntp: Optional[ProfileprotocoloptionsNntpArgs] = None,
oversize_log: Optional[str] = None,
pop3: Optional[ProfileprotocoloptionsPop3Args] = None,
replacemsg_group: Optional[str] = None,
rpc_over_http: Optional[str] = None,
smtp: Optional[ProfileprotocoloptionsSmtpArgs] = None,
ssh: Optional[ProfileprotocoloptionsSshArgs] = None,
switching_protocols_log: Optional[str] = None,
vdomparam: Optional[str] = None) -> Profileprotocoloptions
func GetProfileprotocoloptions(ctx *Context, name string, id IDInput, state *ProfileprotocoloptionsState, opts ...ResourceOption) (*Profileprotocoloptions, error)
public static Profileprotocoloptions Get(string name, Input<string> id, ProfileprotocoloptionsState? state, CustomResourceOptions? opts = null)
public static Profileprotocoloptions get(String name, Output<String> id, ProfileprotocoloptionsState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Cifs
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Cifs - Configure CIFS protocol options. The structure of
cifs
block is documented below. - Comment string
- Optional comments.
- Dns
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Dns - Configure DNS protocol options. The structure of
dns
block is documented below. - Feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - Ftp
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Ftp - Configure FTP protocol options. The structure of
ftp
block is documented below. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Http
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Http - Configure HTTP protocol options. The structure of
http
block is documented below. - Imap
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Imap - Configure IMAP protocol options. The structure of
imap
block is documented below. - Mail
Signature Pulumiverse.Fortios. Firewall. Inputs. Profileprotocoloptions Mail Signature - Configure Mail signature. The structure of
mail_signature
block is documented below. - Mapi
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Mapi - Configure MAPI protocol options. The structure of
mapi
block is documented below. - Name string
- Name.
- Nntp
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Nntp - Configure NNTP protocol options. The structure of
nntp
block is documented below. - Oversize
Log string - Enable/disable logging for antivirus oversize file blocking. Valid values:
disable
,enable
. - Pop3
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Pop3 - Configure POP3 protocol options. The structure of
pop3
block is documented below. - Replacemsg
Group string - Name of the replacement message group to be used
- Rpc
Over stringHttp - Enable/disable inspection of RPC over HTTP. Valid values:
enable
,disable
. - Smtp
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Smtp - Configure SMTP protocol options. The structure of
smtp
block is documented below. - Ssh
Pulumiverse.
Fortios. Firewall. Inputs. Profileprotocoloptions Ssh - Configure SFTP and SCP protocol options. The structure of
ssh
block is documented below. - Switching
Protocols stringLog - Enable/disable logging for HTTP/HTTPS switching protocols. Valid values:
disable
,enable
. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Cifs
Profileprotocoloptions
Cifs Args - Configure CIFS protocol options. The structure of
cifs
block is documented below. - Comment string
- Optional comments.
- Dns
Profileprotocoloptions
Dns Args - Configure DNS protocol options. The structure of
dns
block is documented below. - Feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - Ftp
Profileprotocoloptions
Ftp Args - Configure FTP protocol options. The structure of
ftp
block is documented below. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Http
Profileprotocoloptions
Http Args - Configure HTTP protocol options. The structure of
http
block is documented below. - Imap
Profileprotocoloptions
Imap Args - Configure IMAP protocol options. The structure of
imap
block is documented below. - Mail
Signature ProfileprotocoloptionsMail Signature Args - Configure Mail signature. The structure of
mail_signature
block is documented below. - Mapi
Profileprotocoloptions
Mapi Args - Configure MAPI protocol options. The structure of
mapi
block is documented below. - Name string
- Name.
- Nntp
Profileprotocoloptions
Nntp Args - Configure NNTP protocol options. The structure of
nntp
block is documented below. - Oversize
Log string - Enable/disable logging for antivirus oversize file blocking. Valid values:
disable
,enable
. - Pop3
Profileprotocoloptions
Pop3Args - Configure POP3 protocol options. The structure of
pop3
block is documented below. - Replacemsg
Group string - Name of the replacement message group to be used
- Rpc
Over stringHttp - Enable/disable inspection of RPC over HTTP. Valid values:
enable
,disable
. - Smtp
Profileprotocoloptions
Smtp Args - Configure SMTP protocol options. The structure of
smtp
block is documented below. - Ssh
Profileprotocoloptions
Ssh Args - Configure SFTP and SCP protocol options. The structure of
ssh
block is documented below. - Switching
Protocols stringLog - Enable/disable logging for HTTP/HTTPS switching protocols. Valid values:
disable
,enable
. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- cifs
Profileprotocoloptions
Cifs - Configure CIFS protocol options. The structure of
cifs
block is documented below. - comment String
- Optional comments.
- dns
Profileprotocoloptions
Dns - Configure DNS protocol options. The structure of
dns
block is documented below. - feature
Set String - Flow/proxy feature set. Valid values:
flow
,proxy
. - ftp
Profileprotocoloptions
Ftp - Configure FTP protocol options. The structure of
ftp
block is documented below. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- http
Profileprotocoloptions
Http - Configure HTTP protocol options. The structure of
http
block is documented below. - imap
Profileprotocoloptions
Imap - Configure IMAP protocol options. The structure of
imap
block is documented below. - mail
Signature ProfileprotocoloptionsMail Signature - Configure Mail signature. The structure of
mail_signature
block is documented below. - mapi
Profileprotocoloptions
Mapi - Configure MAPI protocol options. The structure of
mapi
block is documented below. - name String
- Name.
- nntp
Profileprotocoloptions
Nntp - Configure NNTP protocol options. The structure of
nntp
block is documented below. - oversize
Log String - Enable/disable logging for antivirus oversize file blocking. Valid values:
disable
,enable
. - pop3
Profileprotocoloptions
Pop3 - Configure POP3 protocol options. The structure of
pop3
block is documented below. - replacemsg
Group String - Name of the replacement message group to be used
- rpc
Over StringHttp - Enable/disable inspection of RPC over HTTP. Valid values:
enable
,disable
. - smtp
Profileprotocoloptions
Smtp - Configure SMTP protocol options. The structure of
smtp
block is documented below. - ssh
Profileprotocoloptions
Ssh - Configure SFTP and SCP protocol options. The structure of
ssh
block is documented below. - switching
Protocols StringLog - Enable/disable logging for HTTP/HTTPS switching protocols. Valid values:
disable
,enable
. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- cifs
Profileprotocoloptions
Cifs - Configure CIFS protocol options. The structure of
cifs
block is documented below. - comment string
- Optional comments.
- dns
Profileprotocoloptions
Dns - Configure DNS protocol options. The structure of
dns
block is documented below. - feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - ftp
Profileprotocoloptions
Ftp - Configure FTP protocol options. The structure of
ftp
block is documented below. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- http
Profileprotocoloptions
Http - Configure HTTP protocol options. The structure of
http
block is documented below. - imap
Profileprotocoloptions
Imap - Configure IMAP protocol options. The structure of
imap
block is documented below. - mail
Signature ProfileprotocoloptionsMail Signature - Configure Mail signature. The structure of
mail_signature
block is documented below. - mapi
Profileprotocoloptions
Mapi - Configure MAPI protocol options. The structure of
mapi
block is documented below. - name string
- Name.
- nntp
Profileprotocoloptions
Nntp - Configure NNTP protocol options. The structure of
nntp
block is documented below. - oversize
Log string - Enable/disable logging for antivirus oversize file blocking. Valid values:
disable
,enable
. - pop3
Profileprotocoloptions
Pop3 - Configure POP3 protocol options. The structure of
pop3
block is documented below. - replacemsg
Group string - Name of the replacement message group to be used
- rpc
Over stringHttp - Enable/disable inspection of RPC over HTTP. Valid values:
enable
,disable
. - smtp
Profileprotocoloptions
Smtp - Configure SMTP protocol options. The structure of
smtp
block is documented below. - ssh
Profileprotocoloptions
Ssh - Configure SFTP and SCP protocol options. The structure of
ssh
block is documented below. - switching
Protocols stringLog - Enable/disable logging for HTTP/HTTPS switching protocols. Valid values:
disable
,enable
. - vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- cifs
Profileprotocoloptions
Cifs Args - Configure CIFS protocol options. The structure of
cifs
block is documented below. - comment str
- Optional comments.
- dns
Profileprotocoloptions
Dns Args - Configure DNS protocol options. The structure of
dns
block is documented below. - feature_
set str - Flow/proxy feature set. Valid values:
flow
,proxy
. - ftp
Profileprotocoloptions
Ftp Args - Configure FTP protocol options. The structure of
ftp
block is documented below. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- http
Profileprotocoloptions
Http Args - Configure HTTP protocol options. The structure of
http
block is documented below. - imap
Profileprotocoloptions
Imap Args - Configure IMAP protocol options. The structure of
imap
block is documented below. - mail_
signature ProfileprotocoloptionsMail Signature Args - Configure Mail signature. The structure of
mail_signature
block is documented below. - mapi
Profileprotocoloptions
Mapi Args - Configure MAPI protocol options. The structure of
mapi
block is documented below. - name str
- Name.
- nntp
Profileprotocoloptions
Nntp Args - Configure NNTP protocol options. The structure of
nntp
block is documented below. - oversize_
log str - Enable/disable logging for antivirus oversize file blocking. Valid values:
disable
,enable
. - pop3
Profileprotocoloptions
Pop3Args - Configure POP3 protocol options. The structure of
pop3
block is documented below. - replacemsg_
group str - Name of the replacement message group to be used
- rpc_
over_ strhttp - Enable/disable inspection of RPC over HTTP. Valid values:
enable
,disable
. - smtp
Profileprotocoloptions
Smtp Args - Configure SMTP protocol options. The structure of
smtp
block is documented below. - ssh
Profileprotocoloptions
Ssh Args - Configure SFTP and SCP protocol options. The structure of
ssh
block is documented below. - switching_
protocols_ strlog - Enable/disable logging for HTTP/HTTPS switching protocols. Valid values:
disable
,enable
. - vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- cifs Property Map
- Configure CIFS protocol options. The structure of
cifs
block is documented below. - comment String
- Optional comments.
- dns Property Map
- Configure DNS protocol options. The structure of
dns
block is documented below. - feature
Set String - Flow/proxy feature set. Valid values:
flow
,proxy
. - ftp Property Map
- Configure FTP protocol options. The structure of
ftp
block is documented below. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- http Property Map
- Configure HTTP protocol options. The structure of
http
block is documented below. - imap Property Map
- Configure IMAP protocol options. The structure of
imap
block is documented below. - mail
Signature Property Map - Configure Mail signature. The structure of
mail_signature
block is documented below. - mapi Property Map
- Configure MAPI protocol options. The structure of
mapi
block is documented below. - name String
- Name.
- nntp Property Map
- Configure NNTP protocol options. The structure of
nntp
block is documented below. - oversize
Log String - Enable/disable logging for antivirus oversize file blocking. Valid values:
disable
,enable
. - pop3 Property Map
- Configure POP3 protocol options. The structure of
pop3
block is documented below. - replacemsg
Group String - Name of the replacement message group to be used
- rpc
Over StringHttp - Enable/disable inspection of RPC over HTTP. Valid values:
enable
,disable
. - smtp Property Map
- Configure SMTP protocol options. The structure of
smtp
block is documented below. - ssh Property Map
- Configure SFTP and SCP protocol options. The structure of
ssh
block is documented below. - switching
Protocols StringLog - Enable/disable logging for HTTP/HTTPS switching protocols. Valid values:
disable
,enable
. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Supporting Types
ProfileprotocoloptionsCifs, ProfileprotocoloptionsCifsArgs
- Domain
Controller string - Domain for which to decrypt CIFS traffic.
- Options string
- One or more options that can be applied to the session. Valid values:
oversize
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Ports int
- Ports to scan for content (1 - 65535, default = 445).
- Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Server
Credential stringType - CIFS server credential type. Valid values:
none
,credential-replication
,credential-keytab
. - Server
Keytabs List<Pulumiverse.Fortios. Firewall. Inputs. Profileprotocoloptions Cifs Server Keytab> - Server keytab. The structure of
server_keytab
block is documented below. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Tcp
Window intMaximum - Maximum dynamic TCP window size.
- Tcp
Window intMinimum - Minimum dynamic TCP window size.
- Tcp
Window intSize - Set TCP static window size.
- Tcp
Window stringType - Specify type of TCP window to use for this protocol.
- Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- Domain
Controller string - Domain for which to decrypt CIFS traffic.
- Options string
- One or more options that can be applied to the session. Valid values:
oversize
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Ports int
- Ports to scan for content (1 - 65535, default = 445).
- Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Server
Credential stringType - CIFS server credential type. Valid values:
none
,credential-replication
,credential-keytab
. - Server
Keytabs []ProfileprotocoloptionsCifs Server Keytab - Server keytab. The structure of
server_keytab
block is documented below. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Tcp
Window intMaximum - Maximum dynamic TCP window size.
- Tcp
Window intMinimum - Minimum dynamic TCP window size.
- Tcp
Window intSize - Set TCP static window size.
- Tcp
Window stringType - Specify type of TCP window to use for this protocol.
- Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- domain
Controller String - Domain for which to decrypt CIFS traffic.
- options String
- One or more options that can be applied to the session. Valid values:
oversize
. - oversize
Limit Integer - Maximum in-memory file size that can be scanned (MB).
- ports Integer
- Ports to scan for content (1 - 65535, default = 445).
- scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - server
Credential StringType - CIFS server credential type. Valid values:
none
,credential-replication
,credential-keytab
. - server
Keytabs List<ProfileprotocoloptionsCifs Server Keytab> - Server keytab. The structure of
server_keytab
block is documented below. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - tcp
Window IntegerMaximum - Maximum dynamic TCP window size.
- tcp
Window IntegerMinimum - Minimum dynamic TCP window size.
- tcp
Window IntegerSize - Set TCP static window size.
- tcp
Window StringType - Specify type of TCP window to use for this protocol.
- uncompressed
Nest IntegerLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize IntegerLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- domain
Controller string - Domain for which to decrypt CIFS traffic.
- options string
- One or more options that can be applied to the session. Valid values:
oversize
. - oversize
Limit number - Maximum in-memory file size that can be scanned (MB).
- ports number
- Ports to scan for content (1 - 65535, default = 445).
- scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - server
Credential stringType - CIFS server credential type. Valid values:
none
,credential-replication
,credential-keytab
. - server
Keytabs ProfileprotocoloptionsCifs Server Keytab[] - Server keytab. The structure of
server_keytab
block is documented below. - status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - tcp
Window numberMaximum - Maximum dynamic TCP window size.
- tcp
Window numberMinimum - Minimum dynamic TCP window size.
- tcp
Window numberSize - Set TCP static window size.
- tcp
Window stringType - Specify type of TCP window to use for this protocol.
- uncompressed
Nest numberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize numberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- domain_
controller str - Domain for which to decrypt CIFS traffic.
- options str
- One or more options that can be applied to the session. Valid values:
oversize
. - oversize_
limit int - Maximum in-memory file size that can be scanned (MB).
- ports int
- Ports to scan for content (1 - 65535, default = 445).
- scan_
bzip2 str - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - server_
credential_ strtype - CIFS server credential type. Valid values:
none
,credential-replication
,credential-keytab
. - server_
keytabs Sequence[ProfileprotocoloptionsCifs Server Keytab] - Server keytab. The structure of
server_keytab
block is documented below. - status str
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - tcp_
window_ intmaximum - Maximum dynamic TCP window size.
- tcp_
window_ intminimum - Minimum dynamic TCP window size.
- tcp_
window_ intsize - Set TCP static window size.
- tcp_
window_ strtype - Specify type of TCP window to use for this protocol.
- uncompressed_
nest_ intlimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed_
oversize_ intlimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- domain
Controller String - Domain for which to decrypt CIFS traffic.
- options String
- One or more options that can be applied to the session. Valid values:
oversize
. - oversize
Limit Number - Maximum in-memory file size that can be scanned (MB).
- ports Number
- Ports to scan for content (1 - 65535, default = 445).
- scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - server
Credential StringType - CIFS server credential type. Valid values:
none
,credential-replication
,credential-keytab
. - server
Keytabs List<Property Map> - Server keytab. The structure of
server_keytab
block is documented below. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - tcp
Window NumberMaximum - Maximum dynamic TCP window size.
- tcp
Window NumberMinimum - Minimum dynamic TCP window size.
- tcp
Window NumberSize - Set TCP static window size.
- tcp
Window StringType - Specify type of TCP window to use for this protocol.
- uncompressed
Nest NumberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize NumberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
ProfileprotocoloptionsCifsServerKeytab, ProfileprotocoloptionsCifsServerKeytabArgs
ProfileprotocoloptionsDns, ProfileprotocoloptionsDnsArgs
ProfileprotocoloptionsFtp, ProfileprotocoloptionsFtpArgs
- Comfort
Amount int - Number of bytes to send in each transmission for client comforting (bytes). On FortiOS versions 6.2.0: 1 - 10240 bytes, default = 1. On FortiOS versions 6.2.4-7.2.3: 1 - 65535 bytes, default = 1.
- Comfort
Interval int - Interval between successive transmissions of data for client comforting (seconds).
- Explicit
Ftp stringTls - Enable/disable FTP redirection for explicit FTPS. Valid values:
enable
,disable
. - Inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - Options string
- One or more options that can be applied to the session. Valid values:
clientcomfort
,oversize
,splice
,bypass-rest-command
,bypass-mode-command
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Ports int
- Ports to scan for content (1 - 65535, default = 21).
- Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Stream
Based intUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- Tcp
Window intMaximum - Maximum dynamic TCP window size.
- Tcp
Window intMinimum - Minimum dynamic TCP window size.
- Tcp
Window intSize - Set TCP static window size.
- Tcp
Window stringType - TCP window type to use for this protocol.
- Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- Comfort
Amount int - Number of bytes to send in each transmission for client comforting (bytes). On FortiOS versions 6.2.0: 1 - 10240 bytes, default = 1. On FortiOS versions 6.2.4-7.2.3: 1 - 65535 bytes, default = 1.
- Comfort
Interval int - Interval between successive transmissions of data for client comforting (seconds).
- Explicit
Ftp stringTls - Enable/disable FTP redirection for explicit FTPS. Valid values:
enable
,disable
. - Inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - Options string
- One or more options that can be applied to the session. Valid values:
clientcomfort
,oversize
,splice
,bypass-rest-command
,bypass-mode-command
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Ports int
- Ports to scan for content (1 - 65535, default = 21).
- Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Stream
Based intUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- Tcp
Window intMaximum - Maximum dynamic TCP window size.
- Tcp
Window intMinimum - Minimum dynamic TCP window size.
- Tcp
Window intSize - Set TCP static window size.
- Tcp
Window stringType - TCP window type to use for this protocol.
- Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- comfort
Amount Integer - Number of bytes to send in each transmission for client comforting (bytes). On FortiOS versions 6.2.0: 1 - 10240 bytes, default = 1. On FortiOS versions 6.2.4-7.2.3: 1 - 65535 bytes, default = 1.
- comfort
Interval Integer - Interval between successive transmissions of data for client comforting (seconds).
- explicit
Ftp StringTls - Enable/disable FTP redirection for explicit FTPS. Valid values:
enable
,disable
. - inspect
All String - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options String
- One or more options that can be applied to the session. Valid values:
clientcomfort
,oversize
,splice
,bypass-rest-command
,bypass-mode-command
. - oversize
Limit Integer - Maximum in-memory file size that can be scanned (MB).
- ports Integer
- Ports to scan for content (1 - 65535, default = 21).
- scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl
Offloaded String - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - stream
Based IntegerUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- tcp
Window IntegerMaximum - Maximum dynamic TCP window size.
- tcp
Window IntegerMinimum - Minimum dynamic TCP window size.
- tcp
Window IntegerSize - Set TCP static window size.
- tcp
Window StringType - TCP window type to use for this protocol.
- uncompressed
Nest IntegerLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize IntegerLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- comfort
Amount number - Number of bytes to send in each transmission for client comforting (bytes). On FortiOS versions 6.2.0: 1 - 10240 bytes, default = 1. On FortiOS versions 6.2.4-7.2.3: 1 - 65535 bytes, default = 1.
- comfort
Interval number - Interval between successive transmissions of data for client comforting (seconds).
- explicit
Ftp stringTls - Enable/disable FTP redirection for explicit FTPS. Valid values:
enable
,disable
. - inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options string
- One or more options that can be applied to the session. Valid values:
clientcomfort
,oversize
,splice
,bypass-rest-command
,bypass-mode-command
. - oversize
Limit number - Maximum in-memory file size that can be scanned (MB).
- ports number
- Ports to scan for content (1 - 65535, default = 21).
- scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - stream
Based numberUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- tcp
Window numberMaximum - Maximum dynamic TCP window size.
- tcp
Window numberMinimum - Minimum dynamic TCP window size.
- tcp
Window numberSize - Set TCP static window size.
- tcp
Window stringType - TCP window type to use for this protocol.
- uncompressed
Nest numberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize numberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- comfort_
amount int - Number of bytes to send in each transmission for client comforting (bytes). On FortiOS versions 6.2.0: 1 - 10240 bytes, default = 1. On FortiOS versions 6.2.4-7.2.3: 1 - 65535 bytes, default = 1.
- comfort_
interval int - Interval between successive transmissions of data for client comforting (seconds).
- explicit_
ftp_ strtls - Enable/disable FTP redirection for explicit FTPS. Valid values:
enable
,disable
. - inspect_
all str - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options str
- One or more options that can be applied to the session. Valid values:
clientcomfort
,oversize
,splice
,bypass-rest-command
,bypass-mode-command
. - oversize_
limit int - Maximum in-memory file size that can be scanned (MB).
- ports int
- Ports to scan for content (1 - 65535, default = 21).
- scan_
bzip2 str - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl_
offloaded str - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status str
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - stream_
based_ intuncompressed_ limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- tcp_
window_ intmaximum - Maximum dynamic TCP window size.
- tcp_
window_ intminimum - Minimum dynamic TCP window size.
- tcp_
window_ intsize - Set TCP static window size.
- tcp_
window_ strtype - TCP window type to use for this protocol.
- uncompressed_
nest_ intlimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed_
oversize_ intlimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- comfort
Amount Number - Number of bytes to send in each transmission for client comforting (bytes). On FortiOS versions 6.2.0: 1 - 10240 bytes, default = 1. On FortiOS versions 6.2.4-7.2.3: 1 - 65535 bytes, default = 1.
- comfort
Interval Number - Interval between successive transmissions of data for client comforting (seconds).
- explicit
Ftp StringTls - Enable/disable FTP redirection for explicit FTPS. Valid values:
enable
,disable
. - inspect
All String - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options String
- One or more options that can be applied to the session. Valid values:
clientcomfort
,oversize
,splice
,bypass-rest-command
,bypass-mode-command
. - oversize
Limit Number - Maximum in-memory file size that can be scanned (MB).
- ports Number
- Ports to scan for content (1 - 65535, default = 21).
- scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl
Offloaded String - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - stream
Based NumberUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- tcp
Window NumberMaximum - Maximum dynamic TCP window size.
- tcp
Window NumberMinimum - Minimum dynamic TCP window size.
- tcp
Window NumberSize - Set TCP static window size.
- tcp
Window StringType - TCP window type to use for this protocol.
- uncompressed
Nest NumberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize NumberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
ProfileprotocoloptionsHttp, ProfileprotocoloptionsHttpArgs
- Address
Ip stringRating - Enable/disable IP based URL rating. Valid values:
enable
,disable
. - Block
Page intStatus Code - Code number returned for blocked HTTP pages (non-FortiGuard only) (100 - 599, default = 403).
- Comfort
Amount int - Amount of data to send in a transmission for client comforting. On FortiOS versions 6.2.0: 1 - 10240 bytes, default = 1. On FortiOS versions 6.2.4-7.2.3: 1 - 65535 bytes, default = 1.
- Comfort
Interval int - Interval between successive transmissions of data for client comforting (seconds).
- Fortinet
Bar string - Enable/disable Fortinet bar on HTML content. Valid values:
enable
,disable
. - Fortinet
Bar intPort - Port for use by Fortinet Bar (1 - 65535, default = 8011).
- H2c string
- Enable/disable h2c HTTP connection upgrade. Valid values:
enable
,disable
. - Http
Policy string - Enable/disable HTTP policy check. Valid values:
disable
,enable
. - Inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - Options string
- One or more options that can be applied to the session. Valid values:
clientcomfort
,servercomfort
,oversize
,chunkedbypass
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB). On FortiOS versions 6.2.0-7.2.3: 1 - 383 MB, default = 10.
- Ports int
- Ports to scan for content (1 - 65535, default = 80).
- Post
Lang string - ID codes for character sets to be used to convert to UTF-8 for banned words and DLP on HTTP posts (maximum of 5 character sets). Valid values:
jisx0201
,jisx0208
,jisx0212
,gb2312
,ksc5601-ex
,euc-jp
,sjis
,iso2022-jp
,iso2022-jp-1
,iso2022-jp-2
,euc-cn
,ces-gbk
,hz
,ces-big5
,euc-kr
,iso2022-jp-3
,iso8859-1
,tis620
,cp874
,cp1252
,cp1251
. - Proxy
After stringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - Range
Block string - Enable/disable blocking of partial downloads. Valid values:
disable
,enable
. - Retry
Count int - Number of attempts to retry HTTP connection (0 - 100, default = 0).
- Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Stream
Based intUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- Streaming
Content stringBypass - Enable/disable bypassing of streaming content from buffering. Valid values:
enable
,disable
. - Strip
XForwarded stringFor - Enable/disable stripping of HTTP X-Forwarded-For header. Valid values:
disable
,enable
. - Switching
Protocols string - Bypass from scanning, or block a connection that attempts to switch protocol. Valid values:
bypass
,block
. - Tcp
Window intMaximum - Maximum dynamic TCP window size.
- Tcp
Window intMinimum - Minimum dynamic TCP window size.
- Tcp
Window intSize - Set TCP static window size.
- Tcp
Window stringType - Specify type of TCP window to use for this protocol.
- Tunnel
Non stringHttp - Configure how to process non-HTTP traffic when a profile configured for HTTP traffic accepts a non-HTTP session. Can occur if an application sends non-HTTP traffic using an HTTP destination port. Valid values:
enable
,disable
. - Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- Unknown
Content stringEncoding - Configure the action the FortiGate unit will take on unknown content-encoding. Valid values:
block
,inspect
,bypass
. - Unknown
Http stringVersion - How to handle HTTP sessions that do not comply with HTTP 0.9, 1.0, or 1.1. Valid values:
reject
,tunnel
,best-effort
. - Verify
Dns stringFor Policy Matching - Enable/disable verification of DNS for policy matching. Valid values:
enable
,disable
.
- Address
Ip stringRating - Enable/disable IP based URL rating. Valid values:
enable
,disable
. - Block
Page intStatus Code - Code number returned for blocked HTTP pages (non-FortiGuard only) (100 - 599, default = 403).
- Comfort
Amount int - Amount of data to send in a transmission for client comforting. On FortiOS versions 6.2.0: 1 - 10240 bytes, default = 1. On FortiOS versions 6.2.4-7.2.3: 1 - 65535 bytes, default = 1.
- Comfort
Interval int - Interval between successive transmissions of data for client comforting (seconds).
- Fortinet
Bar string - Enable/disable Fortinet bar on HTML content. Valid values:
enable
,disable
. - Fortinet
Bar intPort - Port for use by Fortinet Bar (1 - 65535, default = 8011).
- H2c string
- Enable/disable h2c HTTP connection upgrade. Valid values:
enable
,disable
. - Http
Policy string - Enable/disable HTTP policy check. Valid values:
disable
,enable
. - Inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - Options string
- One or more options that can be applied to the session. Valid values:
clientcomfort
,servercomfort
,oversize
,chunkedbypass
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB). On FortiOS versions 6.2.0-7.2.3: 1 - 383 MB, default = 10.
- Ports int
- Ports to scan for content (1 - 65535, default = 80).
- Post
Lang string - ID codes for character sets to be used to convert to UTF-8 for banned words and DLP on HTTP posts (maximum of 5 character sets). Valid values:
jisx0201
,jisx0208
,jisx0212
,gb2312
,ksc5601-ex
,euc-jp
,sjis
,iso2022-jp
,iso2022-jp-1
,iso2022-jp-2
,euc-cn
,ces-gbk
,hz
,ces-big5
,euc-kr
,iso2022-jp-3
,iso8859-1
,tis620
,cp874
,cp1252
,cp1251
. - Proxy
After stringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - Range
Block string - Enable/disable blocking of partial downloads. Valid values:
disable
,enable
. - Retry
Count int - Number of attempts to retry HTTP connection (0 - 100, default = 0).
- Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Stream
Based intUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- Streaming
Content stringBypass - Enable/disable bypassing of streaming content from buffering. Valid values:
enable
,disable
. - Strip
XForwarded stringFor - Enable/disable stripping of HTTP X-Forwarded-For header. Valid values:
disable
,enable
. - Switching
Protocols string - Bypass from scanning, or block a connection that attempts to switch protocol. Valid values:
bypass
,block
. - Tcp
Window intMaximum - Maximum dynamic TCP window size.
- Tcp
Window intMinimum - Minimum dynamic TCP window size.
- Tcp
Window intSize - Set TCP static window size.
- Tcp
Window stringType - Specify type of TCP window to use for this protocol.
- Tunnel
Non stringHttp - Configure how to process non-HTTP traffic when a profile configured for HTTP traffic accepts a non-HTTP session. Can occur if an application sends non-HTTP traffic using an HTTP destination port. Valid values:
enable
,disable
. - Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- Unknown
Content stringEncoding - Configure the action the FortiGate unit will take on unknown content-encoding. Valid values:
block
,inspect
,bypass
. - Unknown
Http stringVersion - How to handle HTTP sessions that do not comply with HTTP 0.9, 1.0, or 1.1. Valid values:
reject
,tunnel
,best-effort
. - Verify
Dns stringFor Policy Matching - Enable/disable verification of DNS for policy matching. Valid values:
enable
,disable
.
- address
Ip StringRating - Enable/disable IP based URL rating. Valid values:
enable
,disable
. - block
Page IntegerStatus Code - Code number returned for blocked HTTP pages (non-FortiGuard only) (100 - 599, default = 403).
- comfort
Amount Integer - Amount of data to send in a transmission for client comforting. On FortiOS versions 6.2.0: 1 - 10240 bytes, default = 1. On FortiOS versions 6.2.4-7.2.3: 1 - 65535 bytes, default = 1.
- comfort
Interval Integer - Interval between successive transmissions of data for client comforting (seconds).
- fortinet
Bar String - Enable/disable Fortinet bar on HTML content. Valid values:
enable
,disable
. - fortinet
Bar IntegerPort - Port for use by Fortinet Bar (1 - 65535, default = 8011).
- h2c String
- Enable/disable h2c HTTP connection upgrade. Valid values:
enable
,disable
. - http
Policy String - Enable/disable HTTP policy check. Valid values:
disable
,enable
. - inspect
All String - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options String
- One or more options that can be applied to the session. Valid values:
clientcomfort
,servercomfort
,oversize
,chunkedbypass
. - oversize
Limit Integer - Maximum in-memory file size that can be scanned (MB). On FortiOS versions 6.2.0-7.2.3: 1 - 383 MB, default = 10.
- ports Integer
- Ports to scan for content (1 - 65535, default = 80).
- post
Lang String - ID codes for character sets to be used to convert to UTF-8 for banned words and DLP on HTTP posts (maximum of 5 character sets). Valid values:
jisx0201
,jisx0208
,jisx0212
,gb2312
,ksc5601-ex
,euc-jp
,sjis
,iso2022-jp
,iso2022-jp-1
,iso2022-jp-2
,euc-cn
,ces-gbk
,hz
,ces-big5
,euc-kr
,iso2022-jp-3
,iso8859-1
,tis620
,cp874
,cp1252
,cp1251
. - proxy
After StringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - range
Block String - Enable/disable blocking of partial downloads. Valid values:
disable
,enable
. - retry
Count Integer - Number of attempts to retry HTTP connection (0 - 100, default = 0).
- scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl
Offloaded String - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - stream
Based IntegerUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- streaming
Content StringBypass - Enable/disable bypassing of streaming content from buffering. Valid values:
enable
,disable
. - strip
XForwarded StringFor - Enable/disable stripping of HTTP X-Forwarded-For header. Valid values:
disable
,enable
. - switching
Protocols String - Bypass from scanning, or block a connection that attempts to switch protocol. Valid values:
bypass
,block
. - tcp
Window IntegerMaximum - Maximum dynamic TCP window size.
- tcp
Window IntegerMinimum - Minimum dynamic TCP window size.
- tcp
Window IntegerSize - Set TCP static window size.
- tcp
Window StringType - Specify type of TCP window to use for this protocol.
- tunnel
Non StringHttp - Configure how to process non-HTTP traffic when a profile configured for HTTP traffic accepts a non-HTTP session. Can occur if an application sends non-HTTP traffic using an HTTP destination port. Valid values:
enable
,disable
. - uncompressed
Nest IntegerLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize IntegerLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- unknown
Content StringEncoding - Configure the action the FortiGate unit will take on unknown content-encoding. Valid values:
block
,inspect
,bypass
. - unknown
Http StringVersion - How to handle HTTP sessions that do not comply with HTTP 0.9, 1.0, or 1.1. Valid values:
reject
,tunnel
,best-effort
. - verify
Dns StringFor Policy Matching - Enable/disable verification of DNS for policy matching. Valid values:
enable
,disable
.
- address
Ip stringRating - Enable/disable IP based URL rating. Valid values:
enable
,disable
. - block
Page numberStatus Code - Code number returned for blocked HTTP pages (non-FortiGuard only) (100 - 599, default = 403).
- comfort
Amount number - Amount of data to send in a transmission for client comforting. On FortiOS versions 6.2.0: 1 - 10240 bytes, default = 1. On FortiOS versions 6.2.4-7.2.3: 1 - 65535 bytes, default = 1.
- comfort
Interval number - Interval between successive transmissions of data for client comforting (seconds).
- fortinet
Bar string - Enable/disable Fortinet bar on HTML content. Valid values:
enable
,disable
. - fortinet
Bar numberPort - Port for use by Fortinet Bar (1 - 65535, default = 8011).
- h2c string
- Enable/disable h2c HTTP connection upgrade. Valid values:
enable
,disable
. - http
Policy string - Enable/disable HTTP policy check. Valid values:
disable
,enable
. - inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options string
- One or more options that can be applied to the session. Valid values:
clientcomfort
,servercomfort
,oversize
,chunkedbypass
. - oversize
Limit number - Maximum in-memory file size that can be scanned (MB). On FortiOS versions 6.2.0-7.2.3: 1 - 383 MB, default = 10.
- ports number
- Ports to scan for content (1 - 65535, default = 80).
- post
Lang string - ID codes for character sets to be used to convert to UTF-8 for banned words and DLP on HTTP posts (maximum of 5 character sets). Valid values:
jisx0201
,jisx0208
,jisx0212
,gb2312
,ksc5601-ex
,euc-jp
,sjis
,iso2022-jp
,iso2022-jp-1
,iso2022-jp-2
,euc-cn
,ces-gbk
,hz
,ces-big5
,euc-kr
,iso2022-jp-3
,iso8859-1
,tis620
,cp874
,cp1252
,cp1251
. - proxy
After stringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - range
Block string - Enable/disable blocking of partial downloads. Valid values:
disable
,enable
. - retry
Count number - Number of attempts to retry HTTP connection (0 - 100, default = 0).
- scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - stream
Based numberUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- streaming
Content stringBypass - Enable/disable bypassing of streaming content from buffering. Valid values:
enable
,disable
. - strip
XForwarded stringFor - Enable/disable stripping of HTTP X-Forwarded-For header. Valid values:
disable
,enable
. - switching
Protocols string - Bypass from scanning, or block a connection that attempts to switch protocol. Valid values:
bypass
,block
. - tcp
Window numberMaximum - Maximum dynamic TCP window size.
- tcp
Window numberMinimum - Minimum dynamic TCP window size.
- tcp
Window numberSize - Set TCP static window size.
- tcp
Window stringType - Specify type of TCP window to use for this protocol.
- tunnel
Non stringHttp - Configure how to process non-HTTP traffic when a profile configured for HTTP traffic accepts a non-HTTP session. Can occur if an application sends non-HTTP traffic using an HTTP destination port. Valid values:
enable
,disable
. - uncompressed
Nest numberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize numberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- unknown
Content stringEncoding - Configure the action the FortiGate unit will take on unknown content-encoding. Valid values:
block
,inspect
,bypass
. - unknown
Http stringVersion - How to handle HTTP sessions that do not comply with HTTP 0.9, 1.0, or 1.1. Valid values:
reject
,tunnel
,best-effort
. - verify
Dns stringFor Policy Matching - Enable/disable verification of DNS for policy matching. Valid values:
enable
,disable
.
- address_
ip_ strrating - Enable/disable IP based URL rating. Valid values:
enable
,disable
. - block_
page_ intstatus_ code - Code number returned for blocked HTTP pages (non-FortiGuard only) (100 - 599, default = 403).
- comfort_
amount int - Amount of data to send in a transmission for client comforting. On FortiOS versions 6.2.0: 1 - 10240 bytes, default = 1. On FortiOS versions 6.2.4-7.2.3: 1 - 65535 bytes, default = 1.
- comfort_
interval int - Interval between successive transmissions of data for client comforting (seconds).
- fortinet_
bar str - Enable/disable Fortinet bar on HTML content. Valid values:
enable
,disable
. - fortinet_
bar_ intport - Port for use by Fortinet Bar (1 - 65535, default = 8011).
- h2c str
- Enable/disable h2c HTTP connection upgrade. Valid values:
enable
,disable
. - http_
policy str - Enable/disable HTTP policy check. Valid values:
disable
,enable
. - inspect_
all str - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options str
- One or more options that can be applied to the session. Valid values:
clientcomfort
,servercomfort
,oversize
,chunkedbypass
. - oversize_
limit int - Maximum in-memory file size that can be scanned (MB). On FortiOS versions 6.2.0-7.2.3: 1 - 383 MB, default = 10.
- ports int
- Ports to scan for content (1 - 65535, default = 80).
- post_
lang str - ID codes for character sets to be used to convert to UTF-8 for banned words and DLP on HTTP posts (maximum of 5 character sets). Valid values:
jisx0201
,jisx0208
,jisx0212
,gb2312
,ksc5601-ex
,euc-jp
,sjis
,iso2022-jp
,iso2022-jp-1
,iso2022-jp-2
,euc-cn
,ces-gbk
,hz
,ces-big5
,euc-kr
,iso2022-jp-3
,iso8859-1
,tis620
,cp874
,cp1252
,cp1251
. - proxy_
after_ strtcp_ handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - range_
block str - Enable/disable blocking of partial downloads. Valid values:
disable
,enable
. - retry_
count int - Number of attempts to retry HTTP connection (0 - 100, default = 0).
- scan_
bzip2 str - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl_
offloaded str - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status str
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - stream_
based_ intuncompressed_ limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- streaming_
content_ strbypass - Enable/disable bypassing of streaming content from buffering. Valid values:
enable
,disable
. - strip_
x_ strforwarded_ for - Enable/disable stripping of HTTP X-Forwarded-For header. Valid values:
disable
,enable
. - switching_
protocols str - Bypass from scanning, or block a connection that attempts to switch protocol. Valid values:
bypass
,block
. - tcp_
window_ intmaximum - Maximum dynamic TCP window size.
- tcp_
window_ intminimum - Minimum dynamic TCP window size.
- tcp_
window_ intsize - Set TCP static window size.
- tcp_
window_ strtype - Specify type of TCP window to use for this protocol.
- tunnel_
non_ strhttp - Configure how to process non-HTTP traffic when a profile configured for HTTP traffic accepts a non-HTTP session. Can occur if an application sends non-HTTP traffic using an HTTP destination port. Valid values:
enable
,disable
. - uncompressed_
nest_ intlimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed_
oversize_ intlimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- unknown_
content_ strencoding - Configure the action the FortiGate unit will take on unknown content-encoding. Valid values:
block
,inspect
,bypass
. - unknown_
http_ strversion - How to handle HTTP sessions that do not comply with HTTP 0.9, 1.0, or 1.1. Valid values:
reject
,tunnel
,best-effort
. - verify_
dns_ strfor_ policy_ matching - Enable/disable verification of DNS for policy matching. Valid values:
enable
,disable
.
- address
Ip StringRating - Enable/disable IP based URL rating. Valid values:
enable
,disable
. - block
Page NumberStatus Code - Code number returned for blocked HTTP pages (non-FortiGuard only) (100 - 599, default = 403).
- comfort
Amount Number - Amount of data to send in a transmission for client comforting. On FortiOS versions 6.2.0: 1 - 10240 bytes, default = 1. On FortiOS versions 6.2.4-7.2.3: 1 - 65535 bytes, default = 1.
- comfort
Interval Number - Interval between successive transmissions of data for client comforting (seconds).
- fortinet
Bar String - Enable/disable Fortinet bar on HTML content. Valid values:
enable
,disable
. - fortinet
Bar NumberPort - Port for use by Fortinet Bar (1 - 65535, default = 8011).
- h2c String
- Enable/disable h2c HTTP connection upgrade. Valid values:
enable
,disable
. - http
Policy String - Enable/disable HTTP policy check. Valid values:
disable
,enable
. - inspect
All String - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options String
- One or more options that can be applied to the session. Valid values:
clientcomfort
,servercomfort
,oversize
,chunkedbypass
. - oversize
Limit Number - Maximum in-memory file size that can be scanned (MB). On FortiOS versions 6.2.0-7.2.3: 1 - 383 MB, default = 10.
- ports Number
- Ports to scan for content (1 - 65535, default = 80).
- post
Lang String - ID codes for character sets to be used to convert to UTF-8 for banned words and DLP on HTTP posts (maximum of 5 character sets). Valid values:
jisx0201
,jisx0208
,jisx0212
,gb2312
,ksc5601-ex
,euc-jp
,sjis
,iso2022-jp
,iso2022-jp-1
,iso2022-jp-2
,euc-cn
,ces-gbk
,hz
,ces-big5
,euc-kr
,iso2022-jp-3
,iso8859-1
,tis620
,cp874
,cp1252
,cp1251
. - proxy
After StringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - range
Block String - Enable/disable blocking of partial downloads. Valid values:
disable
,enable
. - retry
Count Number - Number of attempts to retry HTTP connection (0 - 100, default = 0).
- scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl
Offloaded String - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - stream
Based NumberUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- streaming
Content StringBypass - Enable/disable bypassing of streaming content from buffering. Valid values:
enable
,disable
. - strip
XForwarded StringFor - Enable/disable stripping of HTTP X-Forwarded-For header. Valid values:
disable
,enable
. - switching
Protocols String - Bypass from scanning, or block a connection that attempts to switch protocol. Valid values:
bypass
,block
. - tcp
Window NumberMaximum - Maximum dynamic TCP window size.
- tcp
Window NumberMinimum - Minimum dynamic TCP window size.
- tcp
Window NumberSize - Set TCP static window size.
- tcp
Window StringType - Specify type of TCP window to use for this protocol.
- tunnel
Non StringHttp - Configure how to process non-HTTP traffic when a profile configured for HTTP traffic accepts a non-HTTP session. Can occur if an application sends non-HTTP traffic using an HTTP destination port. Valid values:
enable
,disable
. - uncompressed
Nest NumberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize NumberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- unknown
Content StringEncoding - Configure the action the FortiGate unit will take on unknown content-encoding. Valid values:
block
,inspect
,bypass
. - unknown
Http StringVersion - How to handle HTTP sessions that do not comply with HTTP 0.9, 1.0, or 1.1. Valid values:
reject
,tunnel
,best-effort
. - verify
Dns StringFor Policy Matching - Enable/disable verification of DNS for policy matching. Valid values:
enable
,disable
.
ProfileprotocoloptionsImap, ProfileprotocoloptionsImapArgs
- Inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - Options string
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Ports int
- Ports to scan for content (1 - 65535, default = 143).
- Proxy
After stringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- Inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - Options string
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Ports int
- Ports to scan for content (1 - 65535, default = 143).
- Proxy
After stringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- inspect
All String - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options String
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
. - oversize
Limit Integer - Maximum in-memory file size that can be scanned (MB).
- ports Integer
- Ports to scan for content (1 - 65535, default = 143).
- proxy
After StringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl
Offloaded String - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed
Nest IntegerLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize IntegerLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options string
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
. - oversize
Limit number - Maximum in-memory file size that can be scanned (MB).
- ports number
- Ports to scan for content (1 - 65535, default = 143).
- proxy
After stringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed
Nest numberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize numberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- inspect_
all str - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options str
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
. - oversize_
limit int - Maximum in-memory file size that can be scanned (MB).
- ports int
- Ports to scan for content (1 - 65535, default = 143).
- proxy_
after_ strtcp_ handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - scan_
bzip2 str - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl_
offloaded str - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status str
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed_
nest_ intlimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed_
oversize_ intlimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- inspect
All String - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options String
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
. - oversize
Limit Number - Maximum in-memory file size that can be scanned (MB).
- ports Number
- Ports to scan for content (1 - 65535, default = 143).
- proxy
After StringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl
Offloaded String - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed
Nest NumberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize NumberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
ProfileprotocoloptionsMailSignature, ProfileprotocoloptionsMailSignatureArgs
ProfileprotocoloptionsMapi, ProfileprotocoloptionsMapiArgs
- Options string
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Ports int
- Ports to scan for content (1 - 65535, default = 110).
- Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- Options string
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Ports int
- Ports to scan for content (1 - 65535, default = 110).
- Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- options String
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
. - oversize
Limit Integer - Maximum in-memory file size that can be scanned (MB).
- ports Integer
- Ports to scan for content (1 - 65535, default = 110).
- scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed
Nest IntegerLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize IntegerLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- options string
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
. - oversize
Limit number - Maximum in-memory file size that can be scanned (MB).
- ports number
- Ports to scan for content (1 - 65535, default = 110).
- scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed
Nest numberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize numberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- options str
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
. - oversize_
limit int - Maximum in-memory file size that can be scanned (MB).
- ports int
- Ports to scan for content (1 - 65535, default = 110).
- scan_
bzip2 str - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - status str
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed_
nest_ intlimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed_
oversize_ intlimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- options String
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
. - oversize
Limit Number - Maximum in-memory file size that can be scanned (MB).
- ports Number
- Ports to scan for content (1 - 65535, default = 110).
- scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed
Nest NumberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize NumberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
ProfileprotocoloptionsNntp, ProfileprotocoloptionsNntpArgs
- Inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - Options string
- One or more options that can be applied to the session. Valid values:
oversize
,splice
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Ports int
- Ports to scan for content (1 - 65535, default = 119).
- Proxy
After stringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- Inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - Options string
- One or more options that can be applied to the session. Valid values:
oversize
,splice
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Ports int
- Ports to scan for content (1 - 65535, default = 119).
- Proxy
After stringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- inspect
All String - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options String
- One or more options that can be applied to the session. Valid values:
oversize
,splice
. - oversize
Limit Integer - Maximum in-memory file size that can be scanned (MB).
- ports Integer
- Ports to scan for content (1 - 65535, default = 119).
- proxy
After StringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed
Nest IntegerLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize IntegerLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options string
- One or more options that can be applied to the session. Valid values:
oversize
,splice
. - oversize
Limit number - Maximum in-memory file size that can be scanned (MB).
- ports number
- Ports to scan for content (1 - 65535, default = 119).
- proxy
After stringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed
Nest numberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize numberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- inspect_
all str - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options str
- One or more options that can be applied to the session. Valid values:
oversize
,splice
. - oversize_
limit int - Maximum in-memory file size that can be scanned (MB).
- ports int
- Ports to scan for content (1 - 65535, default = 119).
- proxy_
after_ strtcp_ handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - scan_
bzip2 str - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - status str
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed_
nest_ intlimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed_
oversize_ intlimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- inspect
All String - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options String
- One or more options that can be applied to the session. Valid values:
oversize
,splice
. - oversize
Limit Number - Maximum in-memory file size that can be scanned (MB).
- ports Number
- Ports to scan for content (1 - 65535, default = 119).
- proxy
After StringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed
Nest NumberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize NumberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
ProfileprotocoloptionsPop3, ProfileprotocoloptionsPop3Args
- Inspect
All string - Options string
- Oversize
Limit int - Ports int
- Proxy
After stringTcp Handshake - Scan
Bzip2 string - Ssl
Offloaded string - Status string
- Uncompressed
Nest intLimit - Uncompressed
Oversize intLimit
- Inspect
All string - Options string
- Oversize
Limit int - Ports int
- Proxy
After stringTcp Handshake - Scan
Bzip2 string - Ssl
Offloaded string - Status string
- Uncompressed
Nest intLimit - Uncompressed
Oversize intLimit
- inspect
All String - options String
- oversize
Limit Integer - ports Integer
- proxy
After StringTcp Handshake - scan
Bzip2 String - ssl
Offloaded String - status String
- uncompressed
Nest IntegerLimit - uncompressed
Oversize IntegerLimit
- inspect
All string - options string
- oversize
Limit number - ports number
- proxy
After stringTcp Handshake - scan
Bzip2 string - ssl
Offloaded string - status string
- uncompressed
Nest numberLimit - uncompressed
Oversize numberLimit
- inspect_
all str - options str
- oversize_
limit int - ports int
- proxy_
after_ strtcp_ handshake - scan_
bzip2 str - ssl_
offloaded str - status str
- uncompressed_
nest_ intlimit - uncompressed_
oversize_ intlimit
- inspect
All String - options String
- oversize
Limit Number - ports Number
- proxy
After StringTcp Handshake - scan
Bzip2 String - ssl
Offloaded String - status String
- uncompressed
Nest NumberLimit - uncompressed
Oversize NumberLimit
ProfileprotocoloptionsSmtp, ProfileprotocoloptionsSmtpArgs
- Inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - Options string
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
,splice
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Ports int
- Ports to scan for content (1 - 65535, default = 25).
- Proxy
After stringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Server
Busy string - Enable/disable SMTP server busy when server not available. Valid values:
enable
,disable
. - Ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- Inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - Options string
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
,splice
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Ports int
- Ports to scan for content (1 - 65535, default = 25).
- Proxy
After stringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Server
Busy string - Enable/disable SMTP server busy when server not available. Valid values:
enable
,disable
. - Ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - Status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- inspect
All String - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options String
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
,splice
. - oversize
Limit Integer - Maximum in-memory file size that can be scanned (MB).
- ports Integer
- Ports to scan for content (1 - 65535, default = 25).
- proxy
After StringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - server
Busy String - Enable/disable SMTP server busy when server not available. Valid values:
enable
,disable
. - ssl
Offloaded String - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed
Nest IntegerLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize IntegerLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- inspect
All string - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options string
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
,splice
. - oversize
Limit number - Maximum in-memory file size that can be scanned (MB).
- ports number
- Ports to scan for content (1 - 65535, default = 25).
- proxy
After stringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - server
Busy string - Enable/disable SMTP server busy when server not available. Valid values:
enable
,disable
. - ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status string
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed
Nest numberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize numberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- inspect_
all str - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options str
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
,splice
. - oversize_
limit int - Maximum in-memory file size that can be scanned (MB).
- ports int
- Ports to scan for content (1 - 65535, default = 25).
- proxy_
after_ strtcp_ handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - scan_
bzip2 str - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - server_
busy str - Enable/disable SMTP server busy when server not available. Valid values:
enable
,disable
. - ssl_
offloaded str - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status str
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed_
nest_ intlimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed_
oversize_ intlimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- inspect
All String - Enable/disable the inspection of all ports for the protocol. Valid values:
enable
,disable
. - options String
- One or more options that can be applied to the session. Valid values:
fragmail
,oversize
,splice
. - oversize
Limit Number - Maximum in-memory file size that can be scanned (MB).
- ports Number
- Ports to scan for content (1 - 65535, default = 25).
- proxy
After StringTcp Handshake - Proxy traffic after the TCP 3-way handshake has been established (not before). Valid values:
enable
,disable
. - scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - server
Busy String - Enable/disable SMTP server busy when server not available. Valid values:
enable
,disable
. - ssl
Offloaded String - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - status String
- Enable/disable the active status of scanning for this protocol. Valid values:
enable
,disable
. - uncompressed
Nest NumberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize NumberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
ProfileprotocoloptionsSsh, ProfileprotocoloptionsSshArgs
- Comfort
Amount int - Number of bytes to send in each transmission for client comforting (bytes).
- Comfort
Interval int - Interval between successive transmissions of data for client comforting (seconds).
- Options string
- One or more options that can be applied to the session. Valid values:
oversize
,clientcomfort
,servercomfort
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - Stream
Based intUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- Tcp
Window intMaximum - Maximum dynamic TCP window size.
- Tcp
Window intMinimum - Minimum dynamic TCP window size.
- Tcp
Window intSize - Set TCP static window size.
- Tcp
Window stringType - TCP window type to use for this protocol.
- Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- Comfort
Amount int - Number of bytes to send in each transmission for client comforting (bytes).
- Comfort
Interval int - Interval between successive transmissions of data for client comforting (seconds).
- Options string
- One or more options that can be applied to the session. Valid values:
oversize
,clientcomfort
,servercomfort
. - Oversize
Limit int - Maximum in-memory file size that can be scanned (MB).
- Scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - Ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - Stream
Based intUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- Tcp
Window intMaximum - Maximum dynamic TCP window size.
- Tcp
Window intMinimum - Minimum dynamic TCP window size.
- Tcp
Window intSize - Set TCP static window size.
- Tcp
Window stringType - TCP window type to use for this protocol.
- Uncompressed
Nest intLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- Uncompressed
Oversize intLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- comfort
Amount Integer - Number of bytes to send in each transmission for client comforting (bytes).
- comfort
Interval Integer - Interval between successive transmissions of data for client comforting (seconds).
- options String
- One or more options that can be applied to the session. Valid values:
oversize
,clientcomfort
,servercomfort
. - oversize
Limit Integer - Maximum in-memory file size that can be scanned (MB).
- scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl
Offloaded String - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - stream
Based IntegerUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- tcp
Window IntegerMaximum - Maximum dynamic TCP window size.
- tcp
Window IntegerMinimum - Minimum dynamic TCP window size.
- tcp
Window IntegerSize - Set TCP static window size.
- tcp
Window StringType - TCP window type to use for this protocol.
- uncompressed
Nest IntegerLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize IntegerLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- comfort
Amount number - Number of bytes to send in each transmission for client comforting (bytes).
- comfort
Interval number - Interval between successive transmissions of data for client comforting (seconds).
- options string
- One or more options that can be applied to the session. Valid values:
oversize
,clientcomfort
,servercomfort
. - oversize
Limit number - Maximum in-memory file size that can be scanned (MB).
- scan
Bzip2 string - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl
Offloaded string - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - stream
Based numberUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- tcp
Window numberMaximum - Maximum dynamic TCP window size.
- tcp
Window numberMinimum - Minimum dynamic TCP window size.
- tcp
Window numberSize - Set TCP static window size.
- tcp
Window stringType - TCP window type to use for this protocol.
- uncompressed
Nest numberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize numberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- comfort_
amount int - Number of bytes to send in each transmission for client comforting (bytes).
- comfort_
interval int - Interval between successive transmissions of data for client comforting (seconds).
- options str
- One or more options that can be applied to the session. Valid values:
oversize
,clientcomfort
,servercomfort
. - oversize_
limit int - Maximum in-memory file size that can be scanned (MB).
- scan_
bzip2 str - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl_
offloaded str - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - stream_
based_ intuncompressed_ limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- tcp_
window_ intmaximum - Maximum dynamic TCP window size.
- tcp_
window_ intminimum - Minimum dynamic TCP window size.
- tcp_
window_ intsize - Set TCP static window size.
- tcp_
window_ strtype - TCP window type to use for this protocol.
- uncompressed_
nest_ intlimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed_
oversize_ intlimit - Maximum in-memory uncompressed file size that can be scanned (MB).
- comfort
Amount Number - Number of bytes to send in each transmission for client comforting (bytes).
- comfort
Interval Number - Interval between successive transmissions of data for client comforting (seconds).
- options String
- One or more options that can be applied to the session. Valid values:
oversize
,clientcomfort
,servercomfort
. - oversize
Limit Number - Maximum in-memory file size that can be scanned (MB).
- scan
Bzip2 String - Enable/disable scanning of BZip2 compressed files. Valid values:
enable
,disable
. - ssl
Offloaded String - SSL decryption and encryption performed by an external device. Valid values:
no
,yes
. - stream
Based NumberUncompressed Limit - Maximum stream-based uncompressed data size that will be scanned in megabytes. Stream-based uncompression used only under certain conditions (unlimited = 0, default = 0).
- tcp
Window NumberMaximum - Maximum dynamic TCP window size.
- tcp
Window NumberMinimum - Minimum dynamic TCP window size.
- tcp
Window NumberSize - Set TCP static window size.
- tcp
Window StringType - TCP window type to use for this protocol.
- uncompressed
Nest NumberLimit - Maximum nested levels of compression that can be uncompressed and scanned (2 - 100, default = 12).
- uncompressed
Oversize NumberLimit - Maximum in-memory uncompressed file size that can be scanned (MB).
Import
Firewall ProfileProtocolOptions can be imported using any of these accepted formats:
$ pulumi import fortios:firewall/profileprotocoloptions:Profileprotocoloptions labelname {{name}}
If you do not want to import arguments of block:
$ export “FORTIOS_IMPORT_TABLE”=“false”
$ pulumi import fortios:firewall/profileprotocoloptions:Profileprotocoloptions labelname {{name}}
$ unset “FORTIOS_IMPORT_TABLE”
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- fortios pulumiverse/pulumi-fortios
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
fortios
Terraform Provider.