fortios.router.Policy
Explore with Pulumi AI
Configure IPv4 routing policies.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as fortios from "@pulumiverse/fortios";
const trname = new fortios.router.Policy("trname", {
action: "permit",
dstNegate: "disable",
endPort: 25,
endSourcePort: 65535,
gateway: "0.0.0.0",
inputDevices: [{
name: "port1",
}],
outputDevice: "port2",
protocol: 6,
seqNum: 1,
srcNegate: "disable",
startPort: 25,
startSourcePort: 0,
status: "enable",
tos: "0x00",
tosMask: "0x00",
});
import pulumi
import pulumiverse_fortios as fortios
trname = fortios.router.Policy("trname",
action="permit",
dst_negate="disable",
end_port=25,
end_source_port=65535,
gateway="0.0.0.0",
input_devices=[fortios.router.PolicyInputDeviceArgs(
name="port1",
)],
output_device="port2",
protocol=6,
seq_num=1,
src_negate="disable",
start_port=25,
start_source_port=0,
status="enable",
tos="0x00",
tos_mask="0x00")
package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/router"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := router.NewPolicy(ctx, "trname", &router.PolicyArgs{
Action: pulumi.String("permit"),
DstNegate: pulumi.String("disable"),
EndPort: pulumi.Int(25),
EndSourcePort: pulumi.Int(65535),
Gateway: pulumi.String("0.0.0.0"),
InputDevices: router.PolicyInputDeviceArray{
&router.PolicyInputDeviceArgs{
Name: pulumi.String("port1"),
},
},
OutputDevice: pulumi.String("port2"),
Protocol: pulumi.Int(6),
SeqNum: pulumi.Int(1),
SrcNegate: pulumi.String("disable"),
StartPort: pulumi.Int(25),
StartSourcePort: pulumi.Int(0),
Status: pulumi.String("enable"),
Tos: pulumi.String("0x00"),
TosMask: pulumi.String("0x00"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fortios = Pulumiverse.Fortios;
return await Deployment.RunAsync(() =>
{
var trname = new Fortios.Router.Policy("trname", new()
{
Action = "permit",
DstNegate = "disable",
EndPort = 25,
EndSourcePort = 65535,
Gateway = "0.0.0.0",
InputDevices = new[]
{
new Fortios.Router.Inputs.PolicyInputDeviceArgs
{
Name = "port1",
},
},
OutputDevice = "port2",
Protocol = 6,
SeqNum = 1,
SrcNegate = "disable",
StartPort = 25,
StartSourcePort = 0,
Status = "enable",
Tos = "0x00",
TosMask = "0x00",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fortios.router.Policy;
import com.pulumi.fortios.router.PolicyArgs;
import com.pulumi.fortios.router.inputs.PolicyInputDeviceArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var trname = new Policy("trname", PolicyArgs.builder()
.action("permit")
.dstNegate("disable")
.endPort(25)
.endSourcePort(65535)
.gateway("0.0.0.0")
.inputDevices(PolicyInputDeviceArgs.builder()
.name("port1")
.build())
.outputDevice("port2")
.protocol(6)
.seqNum(1)
.srcNegate("disable")
.startPort(25)
.startSourcePort(0)
.status("enable")
.tos("0x00")
.tosMask("0x00")
.build());
}
}
resources:
trname:
type: fortios:router:Policy
properties:
action: permit
dstNegate: disable
endPort: 25
endSourcePort: 65535
gateway: 0.0.0.0
inputDevices:
- name: port1
outputDevice: port2
protocol: 6
seqNum: 1
srcNegate: disable
startPort: 25
startSourcePort: 0
status: enable
tos: 0x00
tosMask: 0x00
Create Policy Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Policy(name: string, args?: PolicyArgs, opts?: CustomResourceOptions);
@overload
def Policy(resource_name: str,
args: Optional[PolicyArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def Policy(resource_name: str,
opts: Optional[ResourceOptions] = None,
action: Optional[str] = None,
comments: Optional[str] = None,
dst_negate: Optional[str] = None,
dstaddrs: Optional[Sequence[PolicyDstaddrArgs]] = None,
dsts: Optional[Sequence[PolicyDstArgs]] = None,
dynamic_sort_subtable: Optional[str] = None,
end_port: Optional[int] = None,
end_source_port: Optional[int] = None,
gateway: Optional[str] = None,
get_all_tables: Optional[str] = None,
input_device_negate: Optional[str] = None,
input_devices: Optional[Sequence[PolicyInputDeviceArgs]] = None,
internet_service_customs: Optional[Sequence[PolicyInternetServiceCustomArgs]] = None,
internet_service_ids: Optional[Sequence[PolicyInternetServiceIdArgs]] = None,
output_device: Optional[str] = None,
protocol: Optional[int] = None,
seq_num: Optional[int] = None,
src_negate: Optional[str] = None,
srcaddrs: Optional[Sequence[PolicySrcaddrArgs]] = None,
srcs: Optional[Sequence[PolicySrcArgs]] = None,
start_port: Optional[int] = None,
start_source_port: Optional[int] = None,
status: Optional[str] = None,
tos: Optional[str] = None,
tos_mask: Optional[str] = None,
vdomparam: Optional[str] = None)
func NewPolicy(ctx *Context, name string, args *PolicyArgs, opts ...ResourceOption) (*Policy, error)
public Policy(string name, PolicyArgs? args = null, CustomResourceOptions? opts = null)
public Policy(String name, PolicyArgs args)
public Policy(String name, PolicyArgs args, CustomResourceOptions options)
type: fortios:router:Policy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var examplepolicyResourceResourceFromRouterpolicy = new Fortios.Router.Policy("examplepolicyResourceResourceFromRouterpolicy", new()
{
Action = "string",
Comments = "string",
DstNegate = "string",
Dstaddrs = new[]
{
new Fortios.Router.Inputs.PolicyDstaddrArgs
{
Name = "string",
},
},
Dsts = new[]
{
new Fortios.Router.Inputs.PolicyDstArgs
{
Subnet = "string",
},
},
DynamicSortSubtable = "string",
EndPort = 0,
EndSourcePort = 0,
Gateway = "string",
GetAllTables = "string",
InputDeviceNegate = "string",
InputDevices = new[]
{
new Fortios.Router.Inputs.PolicyInputDeviceArgs
{
Name = "string",
},
},
InternetServiceCustoms = new[]
{
new Fortios.Router.Inputs.PolicyInternetServiceCustomArgs
{
Name = "string",
},
},
InternetServiceIds = new[]
{
new Fortios.Router.Inputs.PolicyInternetServiceIdArgs
{
Id = 0,
},
},
OutputDevice = "string",
Protocol = 0,
SeqNum = 0,
SrcNegate = "string",
Srcaddrs = new[]
{
new Fortios.Router.Inputs.PolicySrcaddrArgs
{
Name = "string",
},
},
Srcs = new[]
{
new Fortios.Router.Inputs.PolicySrcArgs
{
Subnet = "string",
},
},
StartPort = 0,
StartSourcePort = 0,
Status = "string",
Tos = "string",
TosMask = "string",
Vdomparam = "string",
});
example, err := router.NewPolicy(ctx, "examplepolicyResourceResourceFromRouterpolicy", &router.PolicyArgs{
Action: pulumi.String("string"),
Comments: pulumi.String("string"),
DstNegate: pulumi.String("string"),
Dstaddrs: router.PolicyDstaddrArray{
&router.PolicyDstaddrArgs{
Name: pulumi.String("string"),
},
},
Dsts: router.PolicyDstArray{
&router.PolicyDstArgs{
Subnet: pulumi.String("string"),
},
},
DynamicSortSubtable: pulumi.String("string"),
EndPort: pulumi.Int(0),
EndSourcePort: pulumi.Int(0),
Gateway: pulumi.String("string"),
GetAllTables: pulumi.String("string"),
InputDeviceNegate: pulumi.String("string"),
InputDevices: router.PolicyInputDeviceArray{
&router.PolicyInputDeviceArgs{
Name: pulumi.String("string"),
},
},
InternetServiceCustoms: router.PolicyInternetServiceCustomArray{
&router.PolicyInternetServiceCustomArgs{
Name: pulumi.String("string"),
},
},
InternetServiceIds: router.PolicyInternetServiceIdArray{
&router.PolicyInternetServiceIdArgs{
Id: pulumi.Int(0),
},
},
OutputDevice: pulumi.String("string"),
Protocol: pulumi.Int(0),
SeqNum: pulumi.Int(0),
SrcNegate: pulumi.String("string"),
Srcaddrs: router.PolicySrcaddrArray{
&router.PolicySrcaddrArgs{
Name: pulumi.String("string"),
},
},
Srcs: router.PolicySrcArray{
&router.PolicySrcArgs{
Subnet: pulumi.String("string"),
},
},
StartPort: pulumi.Int(0),
StartSourcePort: pulumi.Int(0),
Status: pulumi.String("string"),
Tos: pulumi.String("string"),
TosMask: pulumi.String("string"),
Vdomparam: pulumi.String("string"),
})
var examplepolicyResourceResourceFromRouterpolicy = new Policy("examplepolicyResourceResourceFromRouterpolicy", PolicyArgs.builder()
.action("string")
.comments("string")
.dstNegate("string")
.dstaddrs(PolicyDstaddrArgs.builder()
.name("string")
.build())
.dsts(PolicyDstArgs.builder()
.subnet("string")
.build())
.dynamicSortSubtable("string")
.endPort(0)
.endSourcePort(0)
.gateway("string")
.getAllTables("string")
.inputDeviceNegate("string")
.inputDevices(PolicyInputDeviceArgs.builder()
.name("string")
.build())
.internetServiceCustoms(PolicyInternetServiceCustomArgs.builder()
.name("string")
.build())
.internetServiceIds(PolicyInternetServiceIdArgs.builder()
.id(0)
.build())
.outputDevice("string")
.protocol(0)
.seqNum(0)
.srcNegate("string")
.srcaddrs(PolicySrcaddrArgs.builder()
.name("string")
.build())
.srcs(PolicySrcArgs.builder()
.subnet("string")
.build())
.startPort(0)
.startSourcePort(0)
.status("string")
.tos("string")
.tosMask("string")
.vdomparam("string")
.build());
examplepolicy_resource_resource_from_routerpolicy = fortios.router.Policy("examplepolicyResourceResourceFromRouterpolicy",
action="string",
comments="string",
dst_negate="string",
dstaddrs=[{
"name": "string",
}],
dsts=[{
"subnet": "string",
}],
dynamic_sort_subtable="string",
end_port=0,
end_source_port=0,
gateway="string",
get_all_tables="string",
input_device_negate="string",
input_devices=[{
"name": "string",
}],
internet_service_customs=[{
"name": "string",
}],
internet_service_ids=[{
"id": 0,
}],
output_device="string",
protocol=0,
seq_num=0,
src_negate="string",
srcaddrs=[{
"name": "string",
}],
srcs=[{
"subnet": "string",
}],
start_port=0,
start_source_port=0,
status="string",
tos="string",
tos_mask="string",
vdomparam="string")
const examplepolicyResourceResourceFromRouterpolicy = new fortios.router.Policy("examplepolicyResourceResourceFromRouterpolicy", {
action: "string",
comments: "string",
dstNegate: "string",
dstaddrs: [{
name: "string",
}],
dsts: [{
subnet: "string",
}],
dynamicSortSubtable: "string",
endPort: 0,
endSourcePort: 0,
gateway: "string",
getAllTables: "string",
inputDeviceNegate: "string",
inputDevices: [{
name: "string",
}],
internetServiceCustoms: [{
name: "string",
}],
internetServiceIds: [{
id: 0,
}],
outputDevice: "string",
protocol: 0,
seqNum: 0,
srcNegate: "string",
srcaddrs: [{
name: "string",
}],
srcs: [{
subnet: "string",
}],
startPort: 0,
startSourcePort: 0,
status: "string",
tos: "string",
tosMask: "string",
vdomparam: "string",
});
type: fortios:router:Policy
properties:
action: string
comments: string
dstNegate: string
dstaddrs:
- name: string
dsts:
- subnet: string
dynamicSortSubtable: string
endPort: 0
endSourcePort: 0
gateway: string
getAllTables: string
inputDeviceNegate: string
inputDevices:
- name: string
internetServiceCustoms:
- name: string
internetServiceIds:
- id: 0
outputDevice: string
protocol: 0
seqNum: 0
srcNegate: string
srcaddrs:
- name: string
srcs:
- subnet: string
startPort: 0
startSourcePort: 0
status: string
tos: string
tosMask: string
vdomparam: string
Policy Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Policy resource accepts the following input properties:
- Action string
- Action of the policy route. Valid values:
deny
,permit
. - Comments string
- Optional comments.
- Dst
Negate string - Enable/disable negating destination address match. Valid values:
enable
,disable
. - Dstaddrs
List<Pulumiverse.
Fortios. Router. Inputs. Policy Dstaddr> - Destination address name. The structure of
dstaddr
block is documented below. - Dsts
List<Pulumiverse.
Fortios. Router. Inputs. Policy Dst> - Destination IP and mask (x.x.x.x/x). The structure of
dst
block is documented below. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- End
Port int - End destination port number (0 - 65535).
- End
Source intPort - End source port number (0 - 65535).
- Gateway string
- IP address of the gateway.
- Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Input
Device stringNegate - Enable/disable negation of input device match. Valid values:
enable
,disable
. - Input
Devices List<Pulumiverse.Fortios. Router. Inputs. Policy Input Device> - Incoming interface name. The structure of
input_device
block is documented below. - Internet
Service List<Pulumiverse.Customs Fortios. Router. Inputs. Policy Internet Service Custom> - Custom Destination Internet Service name. The structure of
internet_service_custom
block is documented below. - Internet
Service List<Pulumiverse.Ids Fortios. Router. Inputs. Policy Internet Service Id> - Destination Internet Service ID. The structure of
internet_service_id
block is documented below. - Output
Device string - Outgoing interface name.
- Protocol int
- Protocol number (0 - 255).
- Seq
Num int - Sequence number.
- Src
Negate string - Enable/disable negating source address match. Valid values:
enable
,disable
. - Srcaddrs
List<Pulumiverse.
Fortios. Router. Inputs. Policy Srcaddr> - Source address name. The structure of
srcaddr
block is documented below. - Srcs
List<Pulumiverse.
Fortios. Router. Inputs. Policy Src> - Source IP and mask (x.x.x.x/x). The structure of
src
block is documented below. - Start
Port int - Start destination port number (0 - 65535).
- Start
Source intPort - Start source port number (0 - 65535).
- Status string
- Enable/disable this policy route. Valid values:
enable
,disable
. - Tos string
- Type of service bit pattern.
- Tos
Mask string - Type of service evaluated bits.
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Action string
- Action of the policy route. Valid values:
deny
,permit
. - Comments string
- Optional comments.
- Dst
Negate string - Enable/disable negating destination address match. Valid values:
enable
,disable
. - Dstaddrs
[]Policy
Dstaddr Args - Destination address name. The structure of
dstaddr
block is documented below. - Dsts
[]Policy
Dst Args - Destination IP and mask (x.x.x.x/x). The structure of
dst
block is documented below. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- End
Port int - End destination port number (0 - 65535).
- End
Source intPort - End source port number (0 - 65535).
- Gateway string
- IP address of the gateway.
- Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Input
Device stringNegate - Enable/disable negation of input device match. Valid values:
enable
,disable
. - Input
Devices []PolicyInput Device Args - Incoming interface name. The structure of
input_device
block is documented below. - Internet
Service []PolicyCustoms Internet Service Custom Args - Custom Destination Internet Service name. The structure of
internet_service_custom
block is documented below. - Internet
Service []PolicyIds Internet Service Id Args - Destination Internet Service ID. The structure of
internet_service_id
block is documented below. - Output
Device string - Outgoing interface name.
- Protocol int
- Protocol number (0 - 255).
- Seq
Num int - Sequence number.
- Src
Negate string - Enable/disable negating source address match. Valid values:
enable
,disable
. - Srcaddrs
[]Policy
Srcaddr Args - Source address name. The structure of
srcaddr
block is documented below. - Srcs
[]Policy
Src Args - Source IP and mask (x.x.x.x/x). The structure of
src
block is documented below. - Start
Port int - Start destination port number (0 - 65535).
- Start
Source intPort - Start source port number (0 - 65535).
- Status string
- Enable/disable this policy route. Valid values:
enable
,disable
. - Tos string
- Type of service bit pattern.
- Tos
Mask string - Type of service evaluated bits.
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action String
- Action of the policy route. Valid values:
deny
,permit
. - comments String
- Optional comments.
- dst
Negate String - Enable/disable negating destination address match. Valid values:
enable
,disable
. - dstaddrs
List<Policy
Dstaddr> - Destination address name. The structure of
dstaddr
block is documented below. - dsts
List<Policy
Dst> - Destination IP and mask (x.x.x.x/x). The structure of
dst
block is documented below. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- end
Port Integer - End destination port number (0 - 65535).
- end
Source IntegerPort - End source port number (0 - 65535).
- gateway String
- IP address of the gateway.
- get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- input
Device StringNegate - Enable/disable negation of input device match. Valid values:
enable
,disable
. - input
Devices List<PolicyInput Device> - Incoming interface name. The structure of
input_device
block is documented below. - internet
Service List<PolicyCustoms Internet Service Custom> - Custom Destination Internet Service name. The structure of
internet_service_custom
block is documented below. - internet
Service List<PolicyIds Internet Service Id> - Destination Internet Service ID. The structure of
internet_service_id
block is documented below. - output
Device String - Outgoing interface name.
- protocol Integer
- Protocol number (0 - 255).
- seq
Num Integer - Sequence number.
- src
Negate String - Enable/disable negating source address match. Valid values:
enable
,disable
. - srcaddrs
List<Policy
Srcaddr> - Source address name. The structure of
srcaddr
block is documented below. - srcs
List<Policy
Src> - Source IP and mask (x.x.x.x/x). The structure of
src
block is documented below. - start
Port Integer - Start destination port number (0 - 65535).
- start
Source IntegerPort - Start source port number (0 - 65535).
- status String
- Enable/disable this policy route. Valid values:
enable
,disable
. - tos String
- Type of service bit pattern.
- tos
Mask String - Type of service evaluated bits.
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action string
- Action of the policy route. Valid values:
deny
,permit
. - comments string
- Optional comments.
- dst
Negate string - Enable/disable negating destination address match. Valid values:
enable
,disable
. - dstaddrs
Policy
Dstaddr[] - Destination address name. The structure of
dstaddr
block is documented below. - dsts
Policy
Dst[] - Destination IP and mask (x.x.x.x/x). The structure of
dst
block is documented below. - dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- end
Port number - End destination port number (0 - 65535).
- end
Source numberPort - End source port number (0 - 65535).
- gateway string
- IP address of the gateway.
- get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- input
Device stringNegate - Enable/disable negation of input device match. Valid values:
enable
,disable
. - input
Devices PolicyInput Device[] - Incoming interface name. The structure of
input_device
block is documented below. - internet
Service PolicyCustoms Internet Service Custom[] - Custom Destination Internet Service name. The structure of
internet_service_custom
block is documented below. - internet
Service PolicyIds Internet Service Id[] - Destination Internet Service ID. The structure of
internet_service_id
block is documented below. - output
Device string - Outgoing interface name.
- protocol number
- Protocol number (0 - 255).
- seq
Num number - Sequence number.
- src
Negate string - Enable/disable negating source address match. Valid values:
enable
,disable
. - srcaddrs
Policy
Srcaddr[] - Source address name. The structure of
srcaddr
block is documented below. - srcs
Policy
Src[] - Source IP and mask (x.x.x.x/x). The structure of
src
block is documented below. - start
Port number - Start destination port number (0 - 65535).
- start
Source numberPort - Start source port number (0 - 65535).
- status string
- Enable/disable this policy route. Valid values:
enable
,disable
. - tos string
- Type of service bit pattern.
- tos
Mask string - Type of service evaluated bits.
- vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action str
- Action of the policy route. Valid values:
deny
,permit
. - comments str
- Optional comments.
- dst_
negate str - Enable/disable negating destination address match. Valid values:
enable
,disable
. - dstaddrs
Sequence[Policy
Dstaddr Args] - Destination address name. The structure of
dstaddr
block is documented below. - dsts
Sequence[Policy
Dst Args] - Destination IP and mask (x.x.x.x/x). The structure of
dst
block is documented below. - dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- end_
port int - End destination port number (0 - 65535).
- end_
source_ intport - End source port number (0 - 65535).
- gateway str
- IP address of the gateway.
- get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- input_
device_ strnegate - Enable/disable negation of input device match. Valid values:
enable
,disable
. - input_
devices Sequence[PolicyInput Device Args] - Incoming interface name. The structure of
input_device
block is documented below. - internet_
service_ Sequence[Policycustoms Internet Service Custom Args] - Custom Destination Internet Service name. The structure of
internet_service_custom
block is documented below. - internet_
service_ Sequence[Policyids Internet Service Id Args] - Destination Internet Service ID. The structure of
internet_service_id
block is documented below. - output_
device str - Outgoing interface name.
- protocol int
- Protocol number (0 - 255).
- seq_
num int - Sequence number.
- src_
negate str - Enable/disable negating source address match. Valid values:
enable
,disable
. - srcaddrs
Sequence[Policy
Srcaddr Args] - Source address name. The structure of
srcaddr
block is documented below. - srcs
Sequence[Policy
Src Args] - Source IP and mask (x.x.x.x/x). The structure of
src
block is documented below. - start_
port int - Start destination port number (0 - 65535).
- start_
source_ intport - Start source port number (0 - 65535).
- status str
- Enable/disable this policy route. Valid values:
enable
,disable
. - tos str
- Type of service bit pattern.
- tos_
mask str - Type of service evaluated bits.
- vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action String
- Action of the policy route. Valid values:
deny
,permit
. - comments String
- Optional comments.
- dst
Negate String - Enable/disable negating destination address match. Valid values:
enable
,disable
. - dstaddrs List<Property Map>
- Destination address name. The structure of
dstaddr
block is documented below. - dsts List<Property Map>
- Destination IP and mask (x.x.x.x/x). The structure of
dst
block is documented below. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- end
Port Number - End destination port number (0 - 65535).
- end
Source NumberPort - End source port number (0 - 65535).
- gateway String
- IP address of the gateway.
- get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- input
Device StringNegate - Enable/disable negation of input device match. Valid values:
enable
,disable
. - input
Devices List<Property Map> - Incoming interface name. The structure of
input_device
block is documented below. - internet
Service List<Property Map>Customs - Custom Destination Internet Service name. The structure of
internet_service_custom
block is documented below. - internet
Service List<Property Map>Ids - Destination Internet Service ID. The structure of
internet_service_id
block is documented below. - output
Device String - Outgoing interface name.
- protocol Number
- Protocol number (0 - 255).
- seq
Num Number - Sequence number.
- src
Negate String - Enable/disable negating source address match. Valid values:
enable
,disable
. - srcaddrs List<Property Map>
- Source address name. The structure of
srcaddr
block is documented below. - srcs List<Property Map>
- Source IP and mask (x.x.x.x/x). The structure of
src
block is documented below. - start
Port Number - Start destination port number (0 - 65535).
- start
Source NumberPort - Start source port number (0 - 65535).
- status String
- Enable/disable this policy route. Valid values:
enable
,disable
. - tos String
- Type of service bit pattern.
- tos
Mask String - Type of service evaluated bits.
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Outputs
All input properties are implicitly available as output properties. Additionally, the Policy resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Policy Resource
Get an existing Policy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: PolicyState, opts?: CustomResourceOptions): Policy
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
action: Optional[str] = None,
comments: Optional[str] = None,
dst_negate: Optional[str] = None,
dstaddrs: Optional[Sequence[PolicyDstaddrArgs]] = None,
dsts: Optional[Sequence[PolicyDstArgs]] = None,
dynamic_sort_subtable: Optional[str] = None,
end_port: Optional[int] = None,
end_source_port: Optional[int] = None,
gateway: Optional[str] = None,
get_all_tables: Optional[str] = None,
input_device_negate: Optional[str] = None,
input_devices: Optional[Sequence[PolicyInputDeviceArgs]] = None,
internet_service_customs: Optional[Sequence[PolicyInternetServiceCustomArgs]] = None,
internet_service_ids: Optional[Sequence[PolicyInternetServiceIdArgs]] = None,
output_device: Optional[str] = None,
protocol: Optional[int] = None,
seq_num: Optional[int] = None,
src_negate: Optional[str] = None,
srcaddrs: Optional[Sequence[PolicySrcaddrArgs]] = None,
srcs: Optional[Sequence[PolicySrcArgs]] = None,
start_port: Optional[int] = None,
start_source_port: Optional[int] = None,
status: Optional[str] = None,
tos: Optional[str] = None,
tos_mask: Optional[str] = None,
vdomparam: Optional[str] = None) -> Policy
func GetPolicy(ctx *Context, name string, id IDInput, state *PolicyState, opts ...ResourceOption) (*Policy, error)
public static Policy Get(string name, Input<string> id, PolicyState? state, CustomResourceOptions? opts = null)
public static Policy get(String name, Output<String> id, PolicyState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Action string
- Action of the policy route. Valid values:
deny
,permit
. - Comments string
- Optional comments.
- Dst
Negate string - Enable/disable negating destination address match. Valid values:
enable
,disable
. - Dstaddrs
List<Pulumiverse.
Fortios. Router. Inputs. Policy Dstaddr> - Destination address name. The structure of
dstaddr
block is documented below. - Dsts
List<Pulumiverse.
Fortios. Router. Inputs. Policy Dst> - Destination IP and mask (x.x.x.x/x). The structure of
dst
block is documented below. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- End
Port int - End destination port number (0 - 65535).
- End
Source intPort - End source port number (0 - 65535).
- Gateway string
- IP address of the gateway.
- Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Input
Device stringNegate - Enable/disable negation of input device match. Valid values:
enable
,disable
. - Input
Devices List<Pulumiverse.Fortios. Router. Inputs. Policy Input Device> - Incoming interface name. The structure of
input_device
block is documented below. - Internet
Service List<Pulumiverse.Customs Fortios. Router. Inputs. Policy Internet Service Custom> - Custom Destination Internet Service name. The structure of
internet_service_custom
block is documented below. - Internet
Service List<Pulumiverse.Ids Fortios. Router. Inputs. Policy Internet Service Id> - Destination Internet Service ID. The structure of
internet_service_id
block is documented below. - Output
Device string - Outgoing interface name.
- Protocol int
- Protocol number (0 - 255).
- Seq
Num int - Sequence number.
- Src
Negate string - Enable/disable negating source address match. Valid values:
enable
,disable
. - Srcaddrs
List<Pulumiverse.
Fortios. Router. Inputs. Policy Srcaddr> - Source address name. The structure of
srcaddr
block is documented below. - Srcs
List<Pulumiverse.
Fortios. Router. Inputs. Policy Src> - Source IP and mask (x.x.x.x/x). The structure of
src
block is documented below. - Start
Port int - Start destination port number (0 - 65535).
- Start
Source intPort - Start source port number (0 - 65535).
- Status string
- Enable/disable this policy route. Valid values:
enable
,disable
. - Tos string
- Type of service bit pattern.
- Tos
Mask string - Type of service evaluated bits.
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Action string
- Action of the policy route. Valid values:
deny
,permit
. - Comments string
- Optional comments.
- Dst
Negate string - Enable/disable negating destination address match. Valid values:
enable
,disable
. - Dstaddrs
[]Policy
Dstaddr Args - Destination address name. The structure of
dstaddr
block is documented below. - Dsts
[]Policy
Dst Args - Destination IP and mask (x.x.x.x/x). The structure of
dst
block is documented below. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- End
Port int - End destination port number (0 - 65535).
- End
Source intPort - End source port number (0 - 65535).
- Gateway string
- IP address of the gateway.
- Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Input
Device stringNegate - Enable/disable negation of input device match. Valid values:
enable
,disable
. - Input
Devices []PolicyInput Device Args - Incoming interface name. The structure of
input_device
block is documented below. - Internet
Service []PolicyCustoms Internet Service Custom Args - Custom Destination Internet Service name. The structure of
internet_service_custom
block is documented below. - Internet
Service []PolicyIds Internet Service Id Args - Destination Internet Service ID. The structure of
internet_service_id
block is documented below. - Output
Device string - Outgoing interface name.
- Protocol int
- Protocol number (0 - 255).
- Seq
Num int - Sequence number.
- Src
Negate string - Enable/disable negating source address match. Valid values:
enable
,disable
. - Srcaddrs
[]Policy
Srcaddr Args - Source address name. The structure of
srcaddr
block is documented below. - Srcs
[]Policy
Src Args - Source IP and mask (x.x.x.x/x). The structure of
src
block is documented below. - Start
Port int - Start destination port number (0 - 65535).
- Start
Source intPort - Start source port number (0 - 65535).
- Status string
- Enable/disable this policy route. Valid values:
enable
,disable
. - Tos string
- Type of service bit pattern.
- Tos
Mask string - Type of service evaluated bits.
- Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action String
- Action of the policy route. Valid values:
deny
,permit
. - comments String
- Optional comments.
- dst
Negate String - Enable/disable negating destination address match. Valid values:
enable
,disable
. - dstaddrs
List<Policy
Dstaddr> - Destination address name. The structure of
dstaddr
block is documented below. - dsts
List<Policy
Dst> - Destination IP and mask (x.x.x.x/x). The structure of
dst
block is documented below. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- end
Port Integer - End destination port number (0 - 65535).
- end
Source IntegerPort - End source port number (0 - 65535).
- gateway String
- IP address of the gateway.
- get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- input
Device StringNegate - Enable/disable negation of input device match. Valid values:
enable
,disable
. - input
Devices List<PolicyInput Device> - Incoming interface name. The structure of
input_device
block is documented below. - internet
Service List<PolicyCustoms Internet Service Custom> - Custom Destination Internet Service name. The structure of
internet_service_custom
block is documented below. - internet
Service List<PolicyIds Internet Service Id> - Destination Internet Service ID. The structure of
internet_service_id
block is documented below. - output
Device String - Outgoing interface name.
- protocol Integer
- Protocol number (0 - 255).
- seq
Num Integer - Sequence number.
- src
Negate String - Enable/disable negating source address match. Valid values:
enable
,disable
. - srcaddrs
List<Policy
Srcaddr> - Source address name. The structure of
srcaddr
block is documented below. - srcs
List<Policy
Src> - Source IP and mask (x.x.x.x/x). The structure of
src
block is documented below. - start
Port Integer - Start destination port number (0 - 65535).
- start
Source IntegerPort - Start source port number (0 - 65535).
- status String
- Enable/disable this policy route. Valid values:
enable
,disable
. - tos String
- Type of service bit pattern.
- tos
Mask String - Type of service evaluated bits.
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action string
- Action of the policy route. Valid values:
deny
,permit
. - comments string
- Optional comments.
- dst
Negate string - Enable/disable negating destination address match. Valid values:
enable
,disable
. - dstaddrs
Policy
Dstaddr[] - Destination address name. The structure of
dstaddr
block is documented below. - dsts
Policy
Dst[] - Destination IP and mask (x.x.x.x/x). The structure of
dst
block is documented below. - dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- end
Port number - End destination port number (0 - 65535).
- end
Source numberPort - End source port number (0 - 65535).
- gateway string
- IP address of the gateway.
- get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- input
Device stringNegate - Enable/disable negation of input device match. Valid values:
enable
,disable
. - input
Devices PolicyInput Device[] - Incoming interface name. The structure of
input_device
block is documented below. - internet
Service PolicyCustoms Internet Service Custom[] - Custom Destination Internet Service name. The structure of
internet_service_custom
block is documented below. - internet
Service PolicyIds Internet Service Id[] - Destination Internet Service ID. The structure of
internet_service_id
block is documented below. - output
Device string - Outgoing interface name.
- protocol number
- Protocol number (0 - 255).
- seq
Num number - Sequence number.
- src
Negate string - Enable/disable negating source address match. Valid values:
enable
,disable
. - srcaddrs
Policy
Srcaddr[] - Source address name. The structure of
srcaddr
block is documented below. - srcs
Policy
Src[] - Source IP and mask (x.x.x.x/x). The structure of
src
block is documented below. - start
Port number - Start destination port number (0 - 65535).
- start
Source numberPort - Start source port number (0 - 65535).
- status string
- Enable/disable this policy route. Valid values:
enable
,disable
. - tos string
- Type of service bit pattern.
- tos
Mask string - Type of service evaluated bits.
- vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action str
- Action of the policy route. Valid values:
deny
,permit
. - comments str
- Optional comments.
- dst_
negate str - Enable/disable negating destination address match. Valid values:
enable
,disable
. - dstaddrs
Sequence[Policy
Dstaddr Args] - Destination address name. The structure of
dstaddr
block is documented below. - dsts
Sequence[Policy
Dst Args] - Destination IP and mask (x.x.x.x/x). The structure of
dst
block is documented below. - dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- end_
port int - End destination port number (0 - 65535).
- end_
source_ intport - End source port number (0 - 65535).
- gateway str
- IP address of the gateway.
- get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- input_
device_ strnegate - Enable/disable negation of input device match. Valid values:
enable
,disable
. - input_
devices Sequence[PolicyInput Device Args] - Incoming interface name. The structure of
input_device
block is documented below. - internet_
service_ Sequence[Policycustoms Internet Service Custom Args] - Custom Destination Internet Service name. The structure of
internet_service_custom
block is documented below. - internet_
service_ Sequence[Policyids Internet Service Id Args] - Destination Internet Service ID. The structure of
internet_service_id
block is documented below. - output_
device str - Outgoing interface name.
- protocol int
- Protocol number (0 - 255).
- seq_
num int - Sequence number.
- src_
negate str - Enable/disable negating source address match. Valid values:
enable
,disable
. - srcaddrs
Sequence[Policy
Srcaddr Args] - Source address name. The structure of
srcaddr
block is documented below. - srcs
Sequence[Policy
Src Args] - Source IP and mask (x.x.x.x/x). The structure of
src
block is documented below. - start_
port int - Start destination port number (0 - 65535).
- start_
source_ intport - Start source port number (0 - 65535).
- status str
- Enable/disable this policy route. Valid values:
enable
,disable
. - tos str
- Type of service bit pattern.
- tos_
mask str - Type of service evaluated bits.
- vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- action String
- Action of the policy route. Valid values:
deny
,permit
. - comments String
- Optional comments.
- dst
Negate String - Enable/disable negating destination address match. Valid values:
enable
,disable
. - dstaddrs List<Property Map>
- Destination address name. The structure of
dstaddr
block is documented below. - dsts List<Property Map>
- Destination IP and mask (x.x.x.x/x). The structure of
dst
block is documented below. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- end
Port Number - End destination port number (0 - 65535).
- end
Source NumberPort - End source port number (0 - 65535).
- gateway String
- IP address of the gateway.
- get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- input
Device StringNegate - Enable/disable negation of input device match. Valid values:
enable
,disable
. - input
Devices List<Property Map> - Incoming interface name. The structure of
input_device
block is documented below. - internet
Service List<Property Map>Customs - Custom Destination Internet Service name. The structure of
internet_service_custom
block is documented below. - internet
Service List<Property Map>Ids - Destination Internet Service ID. The structure of
internet_service_id
block is documented below. - output
Device String - Outgoing interface name.
- protocol Number
- Protocol number (0 - 255).
- seq
Num Number - Sequence number.
- src
Negate String - Enable/disable negating source address match. Valid values:
enable
,disable
. - srcaddrs List<Property Map>
- Source address name. The structure of
srcaddr
block is documented below. - srcs List<Property Map>
- Source IP and mask (x.x.x.x/x). The structure of
src
block is documented below. - start
Port Number - Start destination port number (0 - 65535).
- start
Source NumberPort - Start source port number (0 - 65535).
- status String
- Enable/disable this policy route. Valid values:
enable
,disable
. - tos String
- Type of service bit pattern.
- tos
Mask String - Type of service evaluated bits.
- vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Supporting Types
PolicyDst, PolicyDstArgs
- Subnet string
- IP and mask.
- Subnet string
- IP and mask.
- subnet String
- IP and mask.
- subnet string
- IP and mask.
- subnet str
- IP and mask.
- subnet String
- IP and mask.
PolicyDstaddr, PolicyDstaddrArgs
- Name string
- Address/group name.
- Name string
- Address/group name.
- name String
- Address/group name.
- name string
- Address/group name.
- name str
- Address/group name.
- name String
- Address/group name.
PolicyInputDevice, PolicyInputDeviceArgs
- Name string
- Interface name.
- Name string
- Interface name.
- name String
- Interface name.
- name string
- Interface name.
- name str
- Interface name.
- name String
- Interface name.
PolicyInternetServiceCustom, PolicyInternetServiceCustomArgs
- Name string
- Custom Destination Internet Service name.
- Name string
- Custom Destination Internet Service name.
- name String
- Custom Destination Internet Service name.
- name string
- Custom Destination Internet Service name.
- name str
- Custom Destination Internet Service name.
- name String
- Custom Destination Internet Service name.
PolicyInternetServiceId, PolicyInternetServiceIdArgs
- Id int
- Destination Internet Service ID.
- Id int
- Destination Internet Service ID.
- id Integer
- Destination Internet Service ID.
- id number
- Destination Internet Service ID.
- id int
- Destination Internet Service ID.
- id Number
- Destination Internet Service ID.
PolicySrc, PolicySrcArgs
- Subnet string
- IP and mask.
- Subnet string
- IP and mask.
- subnet String
- IP and mask.
- subnet string
- IP and mask.
- subnet str
- IP and mask.
- subnet String
- IP and mask.
PolicySrcaddr, PolicySrcaddrArgs
- Name string
- Address/group name.
- Name string
- Address/group name.
- name String
- Address/group name.
- name string
- Address/group name.
- name str
- Address/group name.
- name String
- Address/group name.
Import
Router Policy can be imported using any of these accepted formats:
$ pulumi import fortios:router/policy:Policy labelname {{seq_num}}
If you do not want to import arguments of block:
$ export “FORTIOS_IMPORT_TABLE”=“false”
$ pulumi import fortios:router/policy:Policy labelname {{seq_num}}
$ unset “FORTIOS_IMPORT_TABLE”
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- fortios pulumiverse/pulumi-fortios
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
fortios
Terraform Provider.