1. Packages
  2. Fortios
  3. API Docs
  4. webproxy
  5. Explicit
Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

fortios.webproxy.Explicit

Explore with Pulumi AI

fortios logo
Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

    Configure explicit Web proxy settings.

    Create Explicit Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new Explicit(name: string, args?: ExplicitArgs, opts?: CustomResourceOptions);
    @overload
    def Explicit(resource_name: str,
                 args: Optional[ExplicitArgs] = None,
                 opts: Optional[ResourceOptions] = None)
    
    @overload
    def Explicit(resource_name: str,
                 opts: Optional[ResourceOptions] = None,
                 client_cert: Optional[str] = None,
                 dynamic_sort_subtable: Optional[str] = None,
                 empty_cert_action: Optional[str] = None,
                 ftp_incoming_port: Optional[str] = None,
                 ftp_over_http: Optional[str] = None,
                 get_all_tables: Optional[str] = None,
                 http_connection_mode: Optional[str] = None,
                 http_incoming_port: Optional[str] = None,
                 https_incoming_port: Optional[str] = None,
                 https_replacement_message: Optional[str] = None,
                 incoming_ip: Optional[str] = None,
                 incoming_ip6: Optional[str] = None,
                 ipv6_status: Optional[str] = None,
                 message_upon_server_error: Optional[str] = None,
                 outgoing_ip: Optional[str] = None,
                 outgoing_ip6: Optional[str] = None,
                 pac_file_data: Optional[str] = None,
                 pac_file_name: Optional[str] = None,
                 pac_file_server_port: Optional[str] = None,
                 pac_file_server_status: Optional[str] = None,
                 pac_file_through_https: Optional[str] = None,
                 pac_file_url: Optional[str] = None,
                 pac_policies: Optional[Sequence[ExplicitPacPolicyArgs]] = None,
                 pref_dns_result: Optional[str] = None,
                 realm: Optional[str] = None,
                 sec_default_action: Optional[str] = None,
                 secure_web_proxy: Optional[str] = None,
                 secure_web_proxy_certs: Optional[Sequence[ExplicitSecureWebProxyCertArgs]] = None,
                 socks: Optional[str] = None,
                 socks_incoming_port: Optional[str] = None,
                 ssl_algorithm: Optional[str] = None,
                 ssl_dh_bits: Optional[str] = None,
                 status: Optional[str] = None,
                 strict_guest: Optional[str] = None,
                 trace_auth_no_rsp: Optional[str] = None,
                 unknown_http_version: Optional[str] = None,
                 user_agent_detect: Optional[str] = None,
                 vdomparam: Optional[str] = None)
    func NewExplicit(ctx *Context, name string, args *ExplicitArgs, opts ...ResourceOption) (*Explicit, error)
    public Explicit(string name, ExplicitArgs? args = null, CustomResourceOptions? opts = null)
    public Explicit(String name, ExplicitArgs args)
    public Explicit(String name, ExplicitArgs args, CustomResourceOptions options)
    
    type: fortios:webproxy:Explicit
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args ExplicitArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args ExplicitArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args ExplicitArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args ExplicitArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args ExplicitArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var fortiosExplicitResource = new Fortios.Webproxy.Explicit("fortiosExplicitResource", new()
    {
        ClientCert = "string",
        DynamicSortSubtable = "string",
        EmptyCertAction = "string",
        FtpIncomingPort = "string",
        FtpOverHttp = "string",
        GetAllTables = "string",
        HttpConnectionMode = "string",
        HttpIncomingPort = "string",
        HttpsIncomingPort = "string",
        HttpsReplacementMessage = "string",
        IncomingIp = "string",
        IncomingIp6 = "string",
        Ipv6Status = "string",
        MessageUponServerError = "string",
        OutgoingIp = "string",
        OutgoingIp6 = "string",
        PacFileData = "string",
        PacFileName = "string",
        PacFileServerPort = "string",
        PacFileServerStatus = "string",
        PacFileThroughHttps = "string",
        PacFileUrl = "string",
        PacPolicies = new[]
        {
            new Fortios.Webproxy.Inputs.ExplicitPacPolicyArgs
            {
                Comments = "string",
                Dstaddrs = new[]
                {
                    new Fortios.Webproxy.Inputs.ExplicitPacPolicyDstaddrArgs
                    {
                        Name = "string",
                    },
                },
                PacFileData = "string",
                PacFileName = "string",
                Policyid = 0,
                Srcaddr6s = new[]
                {
                    new Fortios.Webproxy.Inputs.ExplicitPacPolicySrcaddr6Args
                    {
                        Name = "string",
                    },
                },
                Srcaddrs = new[]
                {
                    new Fortios.Webproxy.Inputs.ExplicitPacPolicySrcaddrArgs
                    {
                        Name = "string",
                    },
                },
                Status = "string",
            },
        },
        PrefDnsResult = "string",
        Realm = "string",
        SecDefaultAction = "string",
        SecureWebProxy = "string",
        SecureWebProxyCerts = new[]
        {
            new Fortios.Webproxy.Inputs.ExplicitSecureWebProxyCertArgs
            {
                Name = "string",
            },
        },
        Socks = "string",
        SocksIncomingPort = "string",
        SslAlgorithm = "string",
        SslDhBits = "string",
        Status = "string",
        StrictGuest = "string",
        TraceAuthNoRsp = "string",
        UnknownHttpVersion = "string",
        UserAgentDetect = "string",
        Vdomparam = "string",
    });
    
    example, err := webproxy.NewExplicit(ctx, "fortiosExplicitResource", &webproxy.ExplicitArgs{
    	ClientCert:              pulumi.String("string"),
    	DynamicSortSubtable:     pulumi.String("string"),
    	EmptyCertAction:         pulumi.String("string"),
    	FtpIncomingPort:         pulumi.String("string"),
    	FtpOverHttp:             pulumi.String("string"),
    	GetAllTables:            pulumi.String("string"),
    	HttpConnectionMode:      pulumi.String("string"),
    	HttpIncomingPort:        pulumi.String("string"),
    	HttpsIncomingPort:       pulumi.String("string"),
    	HttpsReplacementMessage: pulumi.String("string"),
    	IncomingIp:              pulumi.String("string"),
    	IncomingIp6:             pulumi.String("string"),
    	Ipv6Status:              pulumi.String("string"),
    	MessageUponServerError:  pulumi.String("string"),
    	OutgoingIp:              pulumi.String("string"),
    	OutgoingIp6:             pulumi.String("string"),
    	PacFileData:             pulumi.String("string"),
    	PacFileName:             pulumi.String("string"),
    	PacFileServerPort:       pulumi.String("string"),
    	PacFileServerStatus:     pulumi.String("string"),
    	PacFileThroughHttps:     pulumi.String("string"),
    	PacFileUrl:              pulumi.String("string"),
    	PacPolicies: webproxy.ExplicitPacPolicyArray{
    		&webproxy.ExplicitPacPolicyArgs{
    			Comments: pulumi.String("string"),
    			Dstaddrs: webproxy.ExplicitPacPolicyDstaddrArray{
    				&webproxy.ExplicitPacPolicyDstaddrArgs{
    					Name: pulumi.String("string"),
    				},
    			},
    			PacFileData: pulumi.String("string"),
    			PacFileName: pulumi.String("string"),
    			Policyid:    pulumi.Int(0),
    			Srcaddr6s: webproxy.ExplicitPacPolicySrcaddr6Array{
    				&webproxy.ExplicitPacPolicySrcaddr6Args{
    					Name: pulumi.String("string"),
    				},
    			},
    			Srcaddrs: webproxy.ExplicitPacPolicySrcaddrArray{
    				&webproxy.ExplicitPacPolicySrcaddrArgs{
    					Name: pulumi.String("string"),
    				},
    			},
    			Status: pulumi.String("string"),
    		},
    	},
    	PrefDnsResult:    pulumi.String("string"),
    	Realm:            pulumi.String("string"),
    	SecDefaultAction: pulumi.String("string"),
    	SecureWebProxy:   pulumi.String("string"),
    	SecureWebProxyCerts: webproxy.ExplicitSecureWebProxyCertArray{
    		&webproxy.ExplicitSecureWebProxyCertArgs{
    			Name: pulumi.String("string"),
    		},
    	},
    	Socks:              pulumi.String("string"),
    	SocksIncomingPort:  pulumi.String("string"),
    	SslAlgorithm:       pulumi.String("string"),
    	SslDhBits:          pulumi.String("string"),
    	Status:             pulumi.String("string"),
    	StrictGuest:        pulumi.String("string"),
    	TraceAuthNoRsp:     pulumi.String("string"),
    	UnknownHttpVersion: pulumi.String("string"),
    	UserAgentDetect:    pulumi.String("string"),
    	Vdomparam:          pulumi.String("string"),
    })
    
    var fortiosExplicitResource = new Explicit("fortiosExplicitResource", ExplicitArgs.builder()
        .clientCert("string")
        .dynamicSortSubtable("string")
        .emptyCertAction("string")
        .ftpIncomingPort("string")
        .ftpOverHttp("string")
        .getAllTables("string")
        .httpConnectionMode("string")
        .httpIncomingPort("string")
        .httpsIncomingPort("string")
        .httpsReplacementMessage("string")
        .incomingIp("string")
        .incomingIp6("string")
        .ipv6Status("string")
        .messageUponServerError("string")
        .outgoingIp("string")
        .outgoingIp6("string")
        .pacFileData("string")
        .pacFileName("string")
        .pacFileServerPort("string")
        .pacFileServerStatus("string")
        .pacFileThroughHttps("string")
        .pacFileUrl("string")
        .pacPolicies(ExplicitPacPolicyArgs.builder()
            .comments("string")
            .dstaddrs(ExplicitPacPolicyDstaddrArgs.builder()
                .name("string")
                .build())
            .pacFileData("string")
            .pacFileName("string")
            .policyid(0)
            .srcaddr6s(ExplicitPacPolicySrcaddr6Args.builder()
                .name("string")
                .build())
            .srcaddrs(ExplicitPacPolicySrcaddrArgs.builder()
                .name("string")
                .build())
            .status("string")
            .build())
        .prefDnsResult("string")
        .realm("string")
        .secDefaultAction("string")
        .secureWebProxy("string")
        .secureWebProxyCerts(ExplicitSecureWebProxyCertArgs.builder()
            .name("string")
            .build())
        .socks("string")
        .socksIncomingPort("string")
        .sslAlgorithm("string")
        .sslDhBits("string")
        .status("string")
        .strictGuest("string")
        .traceAuthNoRsp("string")
        .unknownHttpVersion("string")
        .userAgentDetect("string")
        .vdomparam("string")
        .build());
    
    fortios_explicit_resource = fortios.webproxy.Explicit("fortiosExplicitResource",
        client_cert="string",
        dynamic_sort_subtable="string",
        empty_cert_action="string",
        ftp_incoming_port="string",
        ftp_over_http="string",
        get_all_tables="string",
        http_connection_mode="string",
        http_incoming_port="string",
        https_incoming_port="string",
        https_replacement_message="string",
        incoming_ip="string",
        incoming_ip6="string",
        ipv6_status="string",
        message_upon_server_error="string",
        outgoing_ip="string",
        outgoing_ip6="string",
        pac_file_data="string",
        pac_file_name="string",
        pac_file_server_port="string",
        pac_file_server_status="string",
        pac_file_through_https="string",
        pac_file_url="string",
        pac_policies=[{
            "comments": "string",
            "dstaddrs": [{
                "name": "string",
            }],
            "pac_file_data": "string",
            "pac_file_name": "string",
            "policyid": 0,
            "srcaddr6s": [{
                "name": "string",
            }],
            "srcaddrs": [{
                "name": "string",
            }],
            "status": "string",
        }],
        pref_dns_result="string",
        realm="string",
        sec_default_action="string",
        secure_web_proxy="string",
        secure_web_proxy_certs=[{
            "name": "string",
        }],
        socks="string",
        socks_incoming_port="string",
        ssl_algorithm="string",
        ssl_dh_bits="string",
        status="string",
        strict_guest="string",
        trace_auth_no_rsp="string",
        unknown_http_version="string",
        user_agent_detect="string",
        vdomparam="string")
    
    const fortiosExplicitResource = new fortios.webproxy.Explicit("fortiosExplicitResource", {
        clientCert: "string",
        dynamicSortSubtable: "string",
        emptyCertAction: "string",
        ftpIncomingPort: "string",
        ftpOverHttp: "string",
        getAllTables: "string",
        httpConnectionMode: "string",
        httpIncomingPort: "string",
        httpsIncomingPort: "string",
        httpsReplacementMessage: "string",
        incomingIp: "string",
        incomingIp6: "string",
        ipv6Status: "string",
        messageUponServerError: "string",
        outgoingIp: "string",
        outgoingIp6: "string",
        pacFileData: "string",
        pacFileName: "string",
        pacFileServerPort: "string",
        pacFileServerStatus: "string",
        pacFileThroughHttps: "string",
        pacFileUrl: "string",
        pacPolicies: [{
            comments: "string",
            dstaddrs: [{
                name: "string",
            }],
            pacFileData: "string",
            pacFileName: "string",
            policyid: 0,
            srcaddr6s: [{
                name: "string",
            }],
            srcaddrs: [{
                name: "string",
            }],
            status: "string",
        }],
        prefDnsResult: "string",
        realm: "string",
        secDefaultAction: "string",
        secureWebProxy: "string",
        secureWebProxyCerts: [{
            name: "string",
        }],
        socks: "string",
        socksIncomingPort: "string",
        sslAlgorithm: "string",
        sslDhBits: "string",
        status: "string",
        strictGuest: "string",
        traceAuthNoRsp: "string",
        unknownHttpVersion: "string",
        userAgentDetect: "string",
        vdomparam: "string",
    });
    
    type: fortios:webproxy:Explicit
    properties:
        clientCert: string
        dynamicSortSubtable: string
        emptyCertAction: string
        ftpIncomingPort: string
        ftpOverHttp: string
        getAllTables: string
        httpConnectionMode: string
        httpIncomingPort: string
        httpsIncomingPort: string
        httpsReplacementMessage: string
        incomingIp: string
        incomingIp6: string
        ipv6Status: string
        messageUponServerError: string
        outgoingIp: string
        outgoingIp6: string
        pacFileData: string
        pacFileName: string
        pacFileServerPort: string
        pacFileServerStatus: string
        pacFileThroughHttps: string
        pacFileUrl: string
        pacPolicies:
            - comments: string
              dstaddrs:
                - name: string
              pacFileData: string
              pacFileName: string
              policyid: 0
              srcaddr6s:
                - name: string
              srcaddrs:
                - name: string
              status: string
        prefDnsResult: string
        realm: string
        secDefaultAction: string
        secureWebProxy: string
        secureWebProxyCerts:
            - name: string
        socks: string
        socksIncomingPort: string
        sslAlgorithm: string
        sslDhBits: string
        status: string
        strictGuest: string
        traceAuthNoRsp: string
        unknownHttpVersion: string
        userAgentDetect: string
        vdomparam: string
    

    Explicit Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The Explicit resource accepts the following input properties:

    ClientCert string
    Enable/disable to request client certificate. Valid values: disable, enable.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EmptyCertAction string
    Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
    FtpIncomingPort string
    Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    FtpOverHttp string
    Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    HttpConnectionMode string
    HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
    HttpIncomingPort string
    Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
    HttpsIncomingPort string
    Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
    HttpsReplacementMessage string
    Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
    IncomingIp string
    Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
    IncomingIp6 string
    Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
    Ipv6Status string
    Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
    MessageUponServerError string
    Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
    OutgoingIp string
    Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
    OutgoingIp6 string
    Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
    PacFileData string
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    PacFileName string
    Pac file name.
    PacFileServerPort string
    Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
    PacFileServerStatus string
    Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
    PacFileThroughHttps string
    Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
    PacFileUrl string
    PAC file access URL.
    PacPolicies List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitPacPolicy>
    PAC policies. The structure of pac_policy block is documented below.
    PrefDnsResult string
    Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
    Realm string
    Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
    SecDefaultAction string
    Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
    SecureWebProxy string
    Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
    SecureWebProxyCerts List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitSecureWebProxyCert>
    Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
    Socks string
    Enable/disable the SOCKS proxy. Valid values: enable, disable.
    SocksIncomingPort string
    Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    SslAlgorithm string
    Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
    SslDhBits string
    Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
    Status string
    Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
    StrictGuest string
    Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
    TraceAuthNoRsp string
    Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
    UnknownHttpVersion string
    Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
    UserAgentDetect string
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    ClientCert string
    Enable/disable to request client certificate. Valid values: disable, enable.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EmptyCertAction string
    Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
    FtpIncomingPort string
    Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    FtpOverHttp string
    Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    HttpConnectionMode string
    HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
    HttpIncomingPort string
    Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
    HttpsIncomingPort string
    Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
    HttpsReplacementMessage string
    Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
    IncomingIp string
    Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
    IncomingIp6 string
    Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
    Ipv6Status string
    Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
    MessageUponServerError string
    Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
    OutgoingIp string
    Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
    OutgoingIp6 string
    Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
    PacFileData string
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    PacFileName string
    Pac file name.
    PacFileServerPort string
    Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
    PacFileServerStatus string
    Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
    PacFileThroughHttps string
    Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
    PacFileUrl string
    PAC file access URL.
    PacPolicies []ExplicitPacPolicyArgs
    PAC policies. The structure of pac_policy block is documented below.
    PrefDnsResult string
    Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
    Realm string
    Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
    SecDefaultAction string
    Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
    SecureWebProxy string
    Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
    SecureWebProxyCerts []ExplicitSecureWebProxyCertArgs
    Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
    Socks string
    Enable/disable the SOCKS proxy. Valid values: enable, disable.
    SocksIncomingPort string
    Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    SslAlgorithm string
    Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
    SslDhBits string
    Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
    Status string
    Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
    StrictGuest string
    Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
    TraceAuthNoRsp string
    Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
    UnknownHttpVersion string
    Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
    UserAgentDetect string
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    clientCert String
    Enable/disable to request client certificate. Valid values: disable, enable.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emptyCertAction String
    Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
    ftpIncomingPort String
    Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    ftpOverHttp String
    Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    httpConnectionMode String
    HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
    httpIncomingPort String
    Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
    httpsIncomingPort String
    Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
    httpsReplacementMessage String
    Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
    incomingIp String
    Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
    incomingIp6 String
    Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
    ipv6Status String
    Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
    messageUponServerError String
    Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
    outgoingIp String
    Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
    outgoingIp6 String
    Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
    pacFileData String
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    pacFileName String
    Pac file name.
    pacFileServerPort String
    Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
    pacFileServerStatus String
    Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
    pacFileThroughHttps String
    Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
    pacFileUrl String
    PAC file access URL.
    pacPolicies List<ExplicitPacPolicy>
    PAC policies. The structure of pac_policy block is documented below.
    prefDnsResult String
    Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
    realm String
    Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
    secDefaultAction String
    Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
    secureWebProxy String
    Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
    secureWebProxyCerts List<ExplicitSecureWebProxyCert>
    Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
    socks String
    Enable/disable the SOCKS proxy. Valid values: enable, disable.
    socksIncomingPort String
    Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    sslAlgorithm String
    Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
    sslDhBits String
    Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
    status String
    Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
    strictGuest String
    Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
    traceAuthNoRsp String
    Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
    unknownHttpVersion String
    Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
    userAgentDetect String
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    clientCert string
    Enable/disable to request client certificate. Valid values: disable, enable.
    dynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emptyCertAction string
    Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
    ftpIncomingPort string
    Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    ftpOverHttp string
    Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
    getAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    httpConnectionMode string
    HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
    httpIncomingPort string
    Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
    httpsIncomingPort string
    Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
    httpsReplacementMessage string
    Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
    incomingIp string
    Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
    incomingIp6 string
    Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
    ipv6Status string
    Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
    messageUponServerError string
    Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
    outgoingIp string
    Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
    outgoingIp6 string
    Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
    pacFileData string
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    pacFileName string
    Pac file name.
    pacFileServerPort string
    Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
    pacFileServerStatus string
    Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
    pacFileThroughHttps string
    Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
    pacFileUrl string
    PAC file access URL.
    pacPolicies ExplicitPacPolicy[]
    PAC policies. The structure of pac_policy block is documented below.
    prefDnsResult string
    Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
    realm string
    Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
    secDefaultAction string
    Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
    secureWebProxy string
    Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
    secureWebProxyCerts ExplicitSecureWebProxyCert[]
    Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
    socks string
    Enable/disable the SOCKS proxy. Valid values: enable, disable.
    socksIncomingPort string
    Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    sslAlgorithm string
    Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
    sslDhBits string
    Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
    status string
    Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
    strictGuest string
    Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
    traceAuthNoRsp string
    Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
    unknownHttpVersion string
    Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
    userAgentDetect string
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    client_cert str
    Enable/disable to request client certificate. Valid values: disable, enable.
    dynamic_sort_subtable str
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    empty_cert_action str
    Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
    ftp_incoming_port str
    Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    ftp_over_http str
    Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
    get_all_tables str
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    http_connection_mode str
    HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
    http_incoming_port str
    Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
    https_incoming_port str
    Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
    https_replacement_message str
    Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
    incoming_ip str
    Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
    incoming_ip6 str
    Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
    ipv6_status str
    Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
    message_upon_server_error str
    Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
    outgoing_ip str
    Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
    outgoing_ip6 str
    Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
    pac_file_data str
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    pac_file_name str
    Pac file name.
    pac_file_server_port str
    Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
    pac_file_server_status str
    Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
    pac_file_through_https str
    Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
    pac_file_url str
    PAC file access URL.
    pac_policies Sequence[ExplicitPacPolicyArgs]
    PAC policies. The structure of pac_policy block is documented below.
    pref_dns_result str
    Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
    realm str
    Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
    sec_default_action str
    Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
    secure_web_proxy str
    Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
    secure_web_proxy_certs Sequence[ExplicitSecureWebProxyCertArgs]
    Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
    socks str
    Enable/disable the SOCKS proxy. Valid values: enable, disable.
    socks_incoming_port str
    Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    ssl_algorithm str
    Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
    ssl_dh_bits str
    Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
    status str
    Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
    strict_guest str
    Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
    trace_auth_no_rsp str
    Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
    unknown_http_version str
    Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
    user_agent_detect str
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam str
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    clientCert String
    Enable/disable to request client certificate. Valid values: disable, enable.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emptyCertAction String
    Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
    ftpIncomingPort String
    Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    ftpOverHttp String
    Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    httpConnectionMode String
    HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
    httpIncomingPort String
    Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
    httpsIncomingPort String
    Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
    httpsReplacementMessage String
    Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
    incomingIp String
    Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
    incomingIp6 String
    Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
    ipv6Status String
    Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
    messageUponServerError String
    Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
    outgoingIp String
    Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
    outgoingIp6 String
    Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
    pacFileData String
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    pacFileName String
    Pac file name.
    pacFileServerPort String
    Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
    pacFileServerStatus String
    Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
    pacFileThroughHttps String
    Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
    pacFileUrl String
    PAC file access URL.
    pacPolicies List<Property Map>
    PAC policies. The structure of pac_policy block is documented below.
    prefDnsResult String
    Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
    realm String
    Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
    secDefaultAction String
    Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
    secureWebProxy String
    Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
    secureWebProxyCerts List<Property Map>
    Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
    socks String
    Enable/disable the SOCKS proxy. Valid values: enable, disable.
    socksIncomingPort String
    Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    sslAlgorithm String
    Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
    sslDhBits String
    Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
    status String
    Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
    strictGuest String
    Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
    traceAuthNoRsp String
    Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
    unknownHttpVersion String
    Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
    userAgentDetect String
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the Explicit resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Id string
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.
    id string
    The provider-assigned unique ID for this managed resource.
    id str
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.

    Look up Existing Explicit Resource

    Get an existing Explicit resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: ExplicitState, opts?: CustomResourceOptions): Explicit
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            client_cert: Optional[str] = None,
            dynamic_sort_subtable: Optional[str] = None,
            empty_cert_action: Optional[str] = None,
            ftp_incoming_port: Optional[str] = None,
            ftp_over_http: Optional[str] = None,
            get_all_tables: Optional[str] = None,
            http_connection_mode: Optional[str] = None,
            http_incoming_port: Optional[str] = None,
            https_incoming_port: Optional[str] = None,
            https_replacement_message: Optional[str] = None,
            incoming_ip: Optional[str] = None,
            incoming_ip6: Optional[str] = None,
            ipv6_status: Optional[str] = None,
            message_upon_server_error: Optional[str] = None,
            outgoing_ip: Optional[str] = None,
            outgoing_ip6: Optional[str] = None,
            pac_file_data: Optional[str] = None,
            pac_file_name: Optional[str] = None,
            pac_file_server_port: Optional[str] = None,
            pac_file_server_status: Optional[str] = None,
            pac_file_through_https: Optional[str] = None,
            pac_file_url: Optional[str] = None,
            pac_policies: Optional[Sequence[ExplicitPacPolicyArgs]] = None,
            pref_dns_result: Optional[str] = None,
            realm: Optional[str] = None,
            sec_default_action: Optional[str] = None,
            secure_web_proxy: Optional[str] = None,
            secure_web_proxy_certs: Optional[Sequence[ExplicitSecureWebProxyCertArgs]] = None,
            socks: Optional[str] = None,
            socks_incoming_port: Optional[str] = None,
            ssl_algorithm: Optional[str] = None,
            ssl_dh_bits: Optional[str] = None,
            status: Optional[str] = None,
            strict_guest: Optional[str] = None,
            trace_auth_no_rsp: Optional[str] = None,
            unknown_http_version: Optional[str] = None,
            user_agent_detect: Optional[str] = None,
            vdomparam: Optional[str] = None) -> Explicit
    func GetExplicit(ctx *Context, name string, id IDInput, state *ExplicitState, opts ...ResourceOption) (*Explicit, error)
    public static Explicit Get(string name, Input<string> id, ExplicitState? state, CustomResourceOptions? opts = null)
    public static Explicit get(String name, Output<String> id, ExplicitState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    ClientCert string
    Enable/disable to request client certificate. Valid values: disable, enable.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EmptyCertAction string
    Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
    FtpIncomingPort string
    Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    FtpOverHttp string
    Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    HttpConnectionMode string
    HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
    HttpIncomingPort string
    Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
    HttpsIncomingPort string
    Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
    HttpsReplacementMessage string
    Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
    IncomingIp string
    Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
    IncomingIp6 string
    Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
    Ipv6Status string
    Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
    MessageUponServerError string
    Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
    OutgoingIp string
    Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
    OutgoingIp6 string
    Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
    PacFileData string
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    PacFileName string
    Pac file name.
    PacFileServerPort string
    Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
    PacFileServerStatus string
    Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
    PacFileThroughHttps string
    Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
    PacFileUrl string
    PAC file access URL.
    PacPolicies List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitPacPolicy>
    PAC policies. The structure of pac_policy block is documented below.
    PrefDnsResult string
    Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
    Realm string
    Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
    SecDefaultAction string
    Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
    SecureWebProxy string
    Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
    SecureWebProxyCerts List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitSecureWebProxyCert>
    Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
    Socks string
    Enable/disable the SOCKS proxy. Valid values: enable, disable.
    SocksIncomingPort string
    Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    SslAlgorithm string
    Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
    SslDhBits string
    Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
    Status string
    Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
    StrictGuest string
    Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
    TraceAuthNoRsp string
    Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
    UnknownHttpVersion string
    Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
    UserAgentDetect string
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    ClientCert string
    Enable/disable to request client certificate. Valid values: disable, enable.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EmptyCertAction string
    Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
    FtpIncomingPort string
    Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    FtpOverHttp string
    Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    HttpConnectionMode string
    HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
    HttpIncomingPort string
    Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
    HttpsIncomingPort string
    Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
    HttpsReplacementMessage string
    Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
    IncomingIp string
    Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
    IncomingIp6 string
    Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
    Ipv6Status string
    Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
    MessageUponServerError string
    Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
    OutgoingIp string
    Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
    OutgoingIp6 string
    Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
    PacFileData string
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    PacFileName string
    Pac file name.
    PacFileServerPort string
    Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
    PacFileServerStatus string
    Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
    PacFileThroughHttps string
    Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
    PacFileUrl string
    PAC file access URL.
    PacPolicies []ExplicitPacPolicyArgs
    PAC policies. The structure of pac_policy block is documented below.
    PrefDnsResult string
    Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
    Realm string
    Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
    SecDefaultAction string
    Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
    SecureWebProxy string
    Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
    SecureWebProxyCerts []ExplicitSecureWebProxyCertArgs
    Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
    Socks string
    Enable/disable the SOCKS proxy. Valid values: enable, disable.
    SocksIncomingPort string
    Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    SslAlgorithm string
    Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
    SslDhBits string
    Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
    Status string
    Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
    StrictGuest string
    Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
    TraceAuthNoRsp string
    Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
    UnknownHttpVersion string
    Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
    UserAgentDetect string
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    clientCert String
    Enable/disable to request client certificate. Valid values: disable, enable.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emptyCertAction String
    Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
    ftpIncomingPort String
    Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    ftpOverHttp String
    Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    httpConnectionMode String
    HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
    httpIncomingPort String
    Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
    httpsIncomingPort String
    Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
    httpsReplacementMessage String
    Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
    incomingIp String
    Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
    incomingIp6 String
    Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
    ipv6Status String
    Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
    messageUponServerError String
    Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
    outgoingIp String
    Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
    outgoingIp6 String
    Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
    pacFileData String
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    pacFileName String
    Pac file name.
    pacFileServerPort String
    Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
    pacFileServerStatus String
    Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
    pacFileThroughHttps String
    Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
    pacFileUrl String
    PAC file access URL.
    pacPolicies List<ExplicitPacPolicy>
    PAC policies. The structure of pac_policy block is documented below.
    prefDnsResult String
    Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
    realm String
    Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
    secDefaultAction String
    Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
    secureWebProxy String
    Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
    secureWebProxyCerts List<ExplicitSecureWebProxyCert>
    Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
    socks String
    Enable/disable the SOCKS proxy. Valid values: enable, disable.
    socksIncomingPort String
    Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    sslAlgorithm String
    Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
    sslDhBits String
    Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
    status String
    Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
    strictGuest String
    Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
    traceAuthNoRsp String
    Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
    unknownHttpVersion String
    Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
    userAgentDetect String
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    clientCert string
    Enable/disable to request client certificate. Valid values: disable, enable.
    dynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emptyCertAction string
    Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
    ftpIncomingPort string
    Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    ftpOverHttp string
    Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
    getAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    httpConnectionMode string
    HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
    httpIncomingPort string
    Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
    httpsIncomingPort string
    Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
    httpsReplacementMessage string
    Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
    incomingIp string
    Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
    incomingIp6 string
    Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
    ipv6Status string
    Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
    messageUponServerError string
    Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
    outgoingIp string
    Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
    outgoingIp6 string
    Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
    pacFileData string
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    pacFileName string
    Pac file name.
    pacFileServerPort string
    Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
    pacFileServerStatus string
    Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
    pacFileThroughHttps string
    Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
    pacFileUrl string
    PAC file access URL.
    pacPolicies ExplicitPacPolicy[]
    PAC policies. The structure of pac_policy block is documented below.
    prefDnsResult string
    Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
    realm string
    Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
    secDefaultAction string
    Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
    secureWebProxy string
    Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
    secureWebProxyCerts ExplicitSecureWebProxyCert[]
    Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
    socks string
    Enable/disable the SOCKS proxy. Valid values: enable, disable.
    socksIncomingPort string
    Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    sslAlgorithm string
    Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
    sslDhBits string
    Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
    status string
    Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
    strictGuest string
    Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
    traceAuthNoRsp string
    Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
    unknownHttpVersion string
    Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
    userAgentDetect string
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    client_cert str
    Enable/disable to request client certificate. Valid values: disable, enable.
    dynamic_sort_subtable str
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    empty_cert_action str
    Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
    ftp_incoming_port str
    Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    ftp_over_http str
    Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
    get_all_tables str
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    http_connection_mode str
    HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
    http_incoming_port str
    Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
    https_incoming_port str
    Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
    https_replacement_message str
    Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
    incoming_ip str
    Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
    incoming_ip6 str
    Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
    ipv6_status str
    Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
    message_upon_server_error str
    Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
    outgoing_ip str
    Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
    outgoing_ip6 str
    Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
    pac_file_data str
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    pac_file_name str
    Pac file name.
    pac_file_server_port str
    Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
    pac_file_server_status str
    Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
    pac_file_through_https str
    Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
    pac_file_url str
    PAC file access URL.
    pac_policies Sequence[ExplicitPacPolicyArgs]
    PAC policies. The structure of pac_policy block is documented below.
    pref_dns_result str
    Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
    realm str
    Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
    sec_default_action str
    Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
    secure_web_proxy str
    Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
    secure_web_proxy_certs Sequence[ExplicitSecureWebProxyCertArgs]
    Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
    socks str
    Enable/disable the SOCKS proxy. Valid values: enable, disable.
    socks_incoming_port str
    Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    ssl_algorithm str
    Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
    ssl_dh_bits str
    Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
    status str
    Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
    strict_guest str
    Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
    trace_auth_no_rsp str
    Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
    unknown_http_version str
    Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
    user_agent_detect str
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam str
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    clientCert String
    Enable/disable to request client certificate. Valid values: disable, enable.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    emptyCertAction String
    Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
    ftpIncomingPort String
    Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    ftpOverHttp String
    Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    httpConnectionMode String
    HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
    httpIncomingPort String
    Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
    httpsIncomingPort String
    Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
    httpsReplacementMessage String
    Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
    incomingIp String
    Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
    incomingIp6 String
    Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
    ipv6Status String
    Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
    messageUponServerError String
    Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
    outgoingIp String
    Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
    outgoingIp6 String
    Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
    pacFileData String
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    pacFileName String
    Pac file name.
    pacFileServerPort String
    Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
    pacFileServerStatus String
    Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
    pacFileThroughHttps String
    Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
    pacFileUrl String
    PAC file access URL.
    pacPolicies List<Property Map>
    PAC policies. The structure of pac_policy block is documented below.
    prefDnsResult String
    Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
    realm String
    Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
    secDefaultAction String
    Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
    secureWebProxy String
    Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
    secureWebProxyCerts List<Property Map>
    Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
    socks String
    Enable/disable the SOCKS proxy. Valid values: enable, disable.
    socksIncomingPort String
    Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
    sslAlgorithm String
    Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
    sslDhBits String
    Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
    status String
    Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
    strictGuest String
    Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
    traceAuthNoRsp String
    Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
    unknownHttpVersion String
    Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
    userAgentDetect String
    Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

    Supporting Types

    ExplicitPacPolicy, ExplicitPacPolicyArgs

    Comments string
    Optional comments.
    Dstaddrs List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitPacPolicyDstaddr>
    Destination address objects. The structure of dstaddr block is documented below.
    PacFileData string
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    PacFileName string
    Pac file name.
    Policyid int
    Policy ID.
    Srcaddr6s List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitPacPolicySrcaddr6>
    Source address6 objects. The structure of srcaddr6 block is documented below.
    Srcaddrs List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitPacPolicySrcaddr>
    Source address objects. The structure of srcaddr block is documented below.
    Status string
    Enable/disable policy. Valid values: enable, disable.
    Comments string
    Optional comments.
    Dstaddrs []ExplicitPacPolicyDstaddr
    Destination address objects. The structure of dstaddr block is documented below.
    PacFileData string
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    PacFileName string
    Pac file name.
    Policyid int
    Policy ID.
    Srcaddr6s []ExplicitPacPolicySrcaddr6
    Source address6 objects. The structure of srcaddr6 block is documented below.
    Srcaddrs []ExplicitPacPolicySrcaddr
    Source address objects. The structure of srcaddr block is documented below.
    Status string
    Enable/disable policy. Valid values: enable, disable.
    comments String
    Optional comments.
    dstaddrs List<ExplicitPacPolicyDstaddr>
    Destination address objects. The structure of dstaddr block is documented below.
    pacFileData String
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    pacFileName String
    Pac file name.
    policyid Integer
    Policy ID.
    srcaddr6s List<ExplicitPacPolicySrcaddr6>
    Source address6 objects. The structure of srcaddr6 block is documented below.
    srcaddrs List<ExplicitPacPolicySrcaddr>
    Source address objects. The structure of srcaddr block is documented below.
    status String
    Enable/disable policy. Valid values: enable, disable.
    comments string
    Optional comments.
    dstaddrs ExplicitPacPolicyDstaddr[]
    Destination address objects. The structure of dstaddr block is documented below.
    pacFileData string
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    pacFileName string
    Pac file name.
    policyid number
    Policy ID.
    srcaddr6s ExplicitPacPolicySrcaddr6[]
    Source address6 objects. The structure of srcaddr6 block is documented below.
    srcaddrs ExplicitPacPolicySrcaddr[]
    Source address objects. The structure of srcaddr block is documented below.
    status string
    Enable/disable policy. Valid values: enable, disable.
    comments str
    Optional comments.
    dstaddrs Sequence[ExplicitPacPolicyDstaddr]
    Destination address objects. The structure of dstaddr block is documented below.
    pac_file_data str
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    pac_file_name str
    Pac file name.
    policyid int
    Policy ID.
    srcaddr6s Sequence[ExplicitPacPolicySrcaddr6]
    Source address6 objects. The structure of srcaddr6 block is documented below.
    srcaddrs Sequence[ExplicitPacPolicySrcaddr]
    Source address objects. The structure of srcaddr block is documented below.
    status str
    Enable/disable policy. Valid values: enable, disable.
    comments String
    Optional comments.
    dstaddrs List<Property Map>
    Destination address objects. The structure of dstaddr block is documented below.
    pacFileData String
    PAC file contents enclosed in quotes (maximum of 256K bytes).
    pacFileName String
    Pac file name.
    policyid Number
    Policy ID.
    srcaddr6s List<Property Map>
    Source address6 objects. The structure of srcaddr6 block is documented below.
    srcaddrs List<Property Map>
    Source address objects. The structure of srcaddr block is documented below.
    status String
    Enable/disable policy. Valid values: enable, disable.

    ExplicitPacPolicyDstaddr, ExplicitPacPolicyDstaddrArgs

    Name string
    Address name.
    Name string
    Address name.
    name String
    Address name.
    name string
    Address name.
    name str
    Address name.
    name String
    Address name.

    ExplicitPacPolicySrcaddr, ExplicitPacPolicySrcaddrArgs

    Name string
    Address name.
    Name string
    Address name.
    name String
    Address name.
    name string
    Address name.
    name str
    Address name.
    name String
    Address name.

    ExplicitPacPolicySrcaddr6, ExplicitPacPolicySrcaddr6Args

    Name string
    Name string
    name String
    name string
    name str
    name String

    ExplicitSecureWebProxyCert, ExplicitSecureWebProxyCertArgs

    Name string
    Certificate list.
    Name string
    Certificate list.
    name String
    Certificate list.
    name string
    Certificate list.
    name str
    Certificate list.
    name String
    Certificate list.

    Import

    WebProxy Explicit can be imported using any of these accepted formats:

    $ pulumi import fortios:webproxy/explicit:Explicit labelname WebProxyExplicit
    

    If you do not want to import arguments of block:

    $ export “FORTIOS_IMPORT_TABLE”=“false”

    $ pulumi import fortios:webproxy/explicit:Explicit labelname WebProxyExplicit
    

    $ unset “FORTIOS_IMPORT_TABLE”

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    fortios pulumiverse/pulumi-fortios
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the fortios Terraform Provider.
    fortios logo
    Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse