@pulumi/scm/serviceConnectionGroup.d.ts

A Pulumi package for managing resources on Strata Cloud Manager.. Based on terraform-provider-scm: version v0.2.1

import * as pulumi from "@pulumi/pulumi";
/**
 * ServiceConnectionGroup resource
 *
 * ## Example Usage
 *
 * ```typescript
 * import * as pulumi from "@pulumi/pulumi";
 * import * as scm from "@pulumi/scm";
 *
 * const config = new pulumi.Config();
 * // The folder scope for the SCM resource (e.g., 'Shared', 'Predefined', or a specific folder name).
 * const folderScope = config.get("folderScope") || "Service Connections";
 * //# 1. IKE Crypto Profile (IKE Phase 1)
 * const example = new scm.IkeCryptoProfile("example", {
 *     name: "example-ike-crypto_sc_grp",
 *     folder: folderScope,
 *     hashes: ["sha256"],
 *     dhGroups: ["group14"],
 *     encryptions: ["aes-256-cbc"],
 * });
 * //# 2. IPsec Crypto Profile (IKE Phase 2)
 * const exampleIpsecCryptoProfile = new scm.IpsecCryptoProfile("example", {
 *     name: "panw-IPSec-Crypto_sc_grp",
 *     folder: folderScope,
 *     esp: {
 *         encryptions: ["aes-256-gcm"],
 *         authentications: ["sha256"],
 *     },
 *     dhGroup: "group14",
 *     lifetime: {
 *         hours: 8,
 *     },
 * });
 * //# 3. IKE Gateway
 * const exampleIkeGateway = new scm.IkeGateway("example", {
 *     name: "example-gateway_sc_grp",
 *     folder: folderScope,
 *     peerAddress: {
 *         ip: "1.1.1.1",
 *     },
 *     authentication: {
 *         preSharedKey: {
 *             key: "secret",
 *         },
 *     },
 *     protocol: {
 *         ikev1: {
 *             ikeCryptoProfile: example.name,
 *         },
 *     },
 * });
 * //# 4. IPsec Tunnel
 * const exampleIpsecTunnel = new scm.IpsecTunnel("example", {
 *     name: "example-tunnel_sc_grp",
 *     folder: folderScope,
 *     tunnelInterface: "tunnel",
 *     antiReplay: true,
 *     copyTos: false,
 *     enableGreEncapsulation: false,
 *     autoKey: {
 *         ikeGateways: [{
 *             name: exampleIkeGateway.name,
 *         }],
 *         ipsecCryptoProfile: exampleIpsecCryptoProfile.name,
 *     },
 * }, {
 *     dependsOn: [exampleIkeGateway],
 * });
 * //# 5. Service Connection (The target for the group)
 * const siteAVpnSc = new scm.ServiceConnection("site_a_vpn_sc", {
 *     name: "creating_a_service_connection_sc_grp",
 *     region: "us-west-1a",
 *     ipsecTunnel: exampleIpsecTunnel.name,
 *     subnets: [
 *         "10.1.0.0/16",
 *         "172.16.0.0/24",
 *     ],
 *     sourceNat: false,
 * });
 * //# 5. Service Connection (The target for the group)
 * const siteAVpnSc2 = new scm.ServiceConnection("site_a_vpn_sc_2", {
 *     name: "creating_a_service_connection_sc_grp_2",
 *     region: "us-west-1a",
 *     ipsecTunnel: exampleIpsecTunnel.name,
 *     subnets: [
 *         "10.1.0.0/16",
 *         "172.16.0.0/24",
 *     ],
 *     sourceNat: true,
 * });
 * // ------------------------------------------------------------------
 * // II. SERVICE CONNECTION GROUP RESOURCE
 * // ------------------------------------------------------------------
 * //# 6. Service Connection Group (Groups the Service Connection created above)
 * const exampleGroup = new scm.ServiceConnectionGroup("example_group", {
 *     name: "service-connection-group-app_sc_grp",
 *     targets: [
 *         siteAVpnSc.name,
 *         siteAVpnSc2.name,
 *     ],
 *     disableSnat: true,
 *     pbfOnly: false,
 * });
 * ```
 */
export declare class ServiceConnectionGroup extends pulumi.CustomResource {
    /**
     * Get an existing ServiceConnectionGroup resource's state with the given name, ID, and optional extra
     * properties used to qualify the lookup.
     *
     * @param name The _unique_ name of the resulting resource.
     * @param id The _unique_ provider ID of the resource to lookup.
     * @param state Any extra arguments used during the lookup.
     * @param opts Optional settings to control the behavior of the CustomResource.
     */
    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: ServiceConnectionGroupState, opts?: pulumi.CustomResourceOptions): ServiceConnectionGroup;
    /**
     * Returns true if the given object is an instance of ServiceConnectionGroup.  This is designed to work even
     * when multiple copies of the Pulumi SDK have been loaded into the same process.
     */
    static isInstance(obj: any): obj is ServiceConnectionGroup;
    /**
     * Disable snat
     */
    readonly disableSnat: pulumi.Output<boolean | undefined>;
    /**
     * Name
     */
    readonly name: pulumi.Output<string>;
    /**
     * Pbf only
     */
    readonly pbfOnly: pulumi.Output<boolean | undefined>;
    /**
     * Target
     */
    readonly targets: pulumi.Output<string[]>;
    readonly tfid: pulumi.Output<string>;
    /**
     * Create a ServiceConnectionGroup resource with the given unique name, arguments, and options.
     *
     * @param name The _unique_ name of the resource.
     * @param args The arguments to use to populate this resource's properties.
     * @param opts A bag of options that control this resource's behavior.
     */
    constructor(name: string, args: ServiceConnectionGroupArgs, opts?: pulumi.CustomResourceOptions);
}
/**
 * Input properties used for looking up and filtering ServiceConnectionGroup resources.
 */
export interface ServiceConnectionGroupState {
    /**
     * Disable snat
     */
    disableSnat?: pulumi.Input<boolean>;
    /**
     * Name
     */
    name?: pulumi.Input<string>;
    /**
     * Pbf only
     */
    pbfOnly?: pulumi.Input<boolean>;
    /**
     * Target
     */
    targets?: pulumi.Input<pulumi.Input<string>[]>;
    tfid?: pulumi.Input<string>;
}
/**
 * The set of arguments for constructing a ServiceConnectionGroup resource.
 */
export interface ServiceConnectionGroupArgs {
    /**
     * Disable snat
     */
    disableSnat?: pulumi.Input<boolean>;
    /**
     * Name
     */
    name?: pulumi.Input<string>;
    /**
     * Pbf only
     */
    pbfOnly?: pulumi.Input<boolean>;
    /**
     * Target
     */
    targets: pulumi.Input<pulumi.Input<string>[]>;
}