@pulumi/sdwan
Version:
A Pulumi package for managing resources on Cisco Catalyst SD-WAN.. Based on terraform-provider-sdwan: version v0.4.1
795 lines (794 loc) • 25.6 kB
TypeScript
import * as pulumi from "@pulumi/pulumi";
/**
* This resource can manage a Cisco VPN Interface IPSec feature template.
* - Minimum SD-WAN Manager version: `15.0.0`
*
* ## Example Usage
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as sdwan from "@pulumi/sdwan";
*
* const example = new sdwan.CiscoVpnInterfaceIpsecFeatureTemplate("example", {
* name: "Example",
* description: "My Example",
* deviceTypes: ["vedge-C8000V"],
* interfaceName: "ipsec1",
* shutdown: false,
* interfaceDescription: "My Description",
* ipAddress: "1.1.1.1/24",
* tunnelSource: "1.2.3.4",
* tunnelSourceInterface: "e1",
* tunnelDestination: "3.4.5.6",
* application: "sig",
* tcpMssAdjust: 1400,
* clearDontFragment: true,
* mtu: 1500,
* deadPeerDetectionInterval: 100,
* deadPeerDetectionRetries: 4,
* ikeVersion: 2,
* ikeMode: "main",
* ikeRekeyInterval: 20000,
* ikeCiphersuite: "aes256-cbc-sha1",
* ikeGroup: "20",
* ikePreSharedKey: "cisco123",
* ikePreSharedKeyLocalId: "1",
* ikePreSharedKeyRemoteId: "2",
* ipsecRekeyInterval: 7200,
* ipsecReplayWindow: 128,
* ipsecCiphersuite: "aes256-cbc-sha256",
* ipsecPerfectForwardSecrecy: "group-20",
* trackers: ["TRACKER1"],
* tunnelRouteVia: "g0/0",
* });
* ```
*
* ## Import
*
* The `pulumi import` command can be used, for example:
*
* ```sh
* $ pulumi import sdwan:index/ciscoVpnInterfaceIpsecFeatureTemplate:CiscoVpnInterfaceIpsecFeatureTemplate example "f6b2c44c-693c-4763-b010-895aa3d236bd"
* ```
*/
export declare class CiscoVpnInterfaceIpsecFeatureTemplate extends pulumi.CustomResource {
/**
* Get an existing CiscoVpnInterfaceIpsecFeatureTemplate resource's state with the given name, ID, and optional extra
* properties used to qualify the lookup.
*
* @param name The _unique_ name of the resulting resource.
* @param id The _unique_ provider ID of the resource to lookup.
* @param state Any extra arguments used during the lookup.
* @param opts Optional settings to control the behavior of the CustomResource.
*/
static get(name: string, id: pulumi.Input<pulumi.ID>, state?: CiscoVpnInterfaceIpsecFeatureTemplateState, opts?: pulumi.CustomResourceOptions): CiscoVpnInterfaceIpsecFeatureTemplate;
/**
* Returns true if the given object is an instance of CiscoVpnInterfaceIpsecFeatureTemplate. This is designed to work even
* when multiple copies of the Pulumi SDK have been loaded into the same process.
*/
static isInstance(obj: any): obj is CiscoVpnInterfaceIpsecFeatureTemplate;
/**
* Enable Application Tunnel Type - Choices: `none`, `sig` - Default value: `none`
*/
readonly application: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly applicationVariable: pulumi.Output<string | undefined>;
/**
* Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: `false`
*/
readonly clearDontFragment: pulumi.Output<boolean | undefined>;
/**
* Variable name
*/
readonly clearDontFragmentVariable: pulumi.Output<string | undefined>;
/**
* IKE keepalive interval (seconds) - Range: `10`-`3600` - Default value: `10`
*/
readonly deadPeerDetectionInterval: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly deadPeerDetectionIntervalVariable: pulumi.Output<string | undefined>;
/**
* IKE keepalive retries - Range: `2`-`60` - Default value: `3`
*/
readonly deadPeerDetectionRetries: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly deadPeerDetectionRetriesVariable: pulumi.Output<string | undefined>;
/**
* The description of the feature template
*/
readonly description: pulumi.Output<string>;
/**
* List of supported device types - Choices: `vedge-C8000V`, `vedge-C8300-1N1S-4T2X`, `vedge-C8300-1N1S-6T`,
* `vedge-C8300-2N2S-6T`, `vedge-C8300-2N2S-4T2X`, `vedge-C8500-12X4QC`, `vedge-C8500-12X`, `vedge-C8500-20X6C`,
* `vedge-C8500L-8S4X`, `vedge-C8200-1N-4T`, `vedge-C8200L-1N-4T`
*/
readonly deviceTypes: pulumi.Output<string[]>;
/**
* IKE identity the IKE preshared secret belongs to - Choices: `aes256-cbc-sha1`, `aes256-cbc-sha2`, `aes128-cbc-sha1`,
* `aes128-cbc-sha2` - Default value: `aes256-cbc-sha1`
*/
readonly ikeCiphersuite: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ikeCiphersuiteVariable: pulumi.Output<string | undefined>;
/**
* IKE Diffie Hellman Groups - Choices: `2`, `14`, `15`, `16`, `19`, `20`, `21`, `24` - Default value: `16`
*/
readonly ikeGroup: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ikeGroupVariable: pulumi.Output<string | undefined>;
/**
* IKE integrity protocol - Choices: `main`, `aggressive` - Default value: `main`
*/
readonly ikeMode: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ikeModeVariable: pulumi.Output<string | undefined>;
/**
* Use preshared key to authenticate IKE peer
*/
readonly ikePreSharedKey: pulumi.Output<string | undefined>;
/**
* IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
*/
readonly ikePreSharedKeyLocalId: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ikePreSharedKeyLocalIdVariable: pulumi.Output<string | undefined>;
/**
* IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
*/
readonly ikePreSharedKeyRemoteId: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ikePreSharedKeyRemoteIdVariable: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ikePreSharedKeyVariable: pulumi.Output<string | undefined>;
/**
* IKE rekey interval <60..86400> seconds - Range: `60`-`86400` - Default value: `14400`
*/
readonly ikeRekeyInterval: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly ikeRekeyIntervalVariable: pulumi.Output<string | undefined>;
/**
* IKE Version <1..2> - Range: `1`-`2` - Default value: `1`
*/
readonly ikeVersion: pulumi.Output<number | undefined>;
/**
* Interface description
*/
readonly interfaceDescription: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly interfaceDescriptionVariable: pulumi.Output<string | undefined>;
/**
* Interface name: IPsec when present
*/
readonly interfaceName: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly interfaceNameVariable: pulumi.Output<string | undefined>;
/**
* Assign IPv4 address
*/
readonly ipAddress: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ipAddressVariable: pulumi.Output<string | undefined>;
/**
* IPsec(ESP) encryption and integrity protocol - Choices: `aes256-cbc-sha1`, `aes256-cbc-sha384`, `aes256-cbc-sha256`,
* `aes256-cbc-sha512`, `aes256-gcm`, `null-sha1`, `null-sha384`, `null-sha256`, `null-sha512` - Default value:
* `aes256-gcm`
*/
readonly ipsecCiphersuite: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ipsecCiphersuiteVariable: pulumi.Output<string | undefined>;
/**
* IPsec perfect forward secrecy settings - Choices: `group-1`, `group-2`, `group-5`, `group-14`, `group-15`, `group-16`,
* `group-19`, `group-20`, `group-21`, `group-24`, `none` - Default value: `group-16`
*/
readonly ipsecPerfectForwardSecrecy: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ipsecPerfectForwardSecrecyVariable: pulumi.Output<string | undefined>;
/**
* IPsec rekey interval <300..1209600> seconds - Range: `120`-`2592000` - Default value: `3600`
*/
readonly ipsecRekeyInterval: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly ipsecRekeyIntervalVariable: pulumi.Output<string | undefined>;
/**
* Replay window size 32..8192 (must be a power of 2) - Range: `64`-`4096` - Default value: `512`
*/
readonly ipsecReplayWindow: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly ipsecReplayWindowVariable: pulumi.Output<string | undefined>;
/**
* Interface MTU <68..9216>, in bytes - Range: `68`-`9216` - Default value: `1500`
*/
readonly mtu: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly mtuVariable: pulumi.Output<string | undefined>;
/**
* The name of the feature template
*/
readonly name: pulumi.Output<string>;
/**
* Administrative state - Default value: `true`
*/
readonly shutdown: pulumi.Output<boolean | undefined>;
/**
* Variable name
*/
readonly shutdownVariable: pulumi.Output<string | undefined>;
/**
* TCP MSS on SYN packets, in bytes - Range: `500`-`1460`
*/
readonly tcpMssAdjust: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly tcpMssAdjustVariable: pulumi.Output<string | undefined>;
/**
* The template type
*/
readonly templateType: pulumi.Output<string>;
/**
* Variable name
*/
readonly trackerVariable: pulumi.Output<string | undefined>;
/**
* Enable tracker for this interface
*/
readonly trackers: pulumi.Output<string[] | undefined>;
/**
* Tunnel destination IP address
*/
readonly tunnelDestination: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly tunnelDestinationVariable: pulumi.Output<string | undefined>;
/**
* <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
*/
readonly tunnelRouteVia: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly tunnelRouteViaVariable: pulumi.Output<string | undefined>;
/**
* Tunnel source IP Address
*/
readonly tunnelSource: pulumi.Output<string | undefined>;
/**
* <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
*/
readonly tunnelSourceInterface: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly tunnelSourceInterfaceVariable: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly tunnelSourceVariable: pulumi.Output<string | undefined>;
/**
* The version of the feature template
*/
readonly version: pulumi.Output<number>;
/**
* Create a CiscoVpnInterfaceIpsecFeatureTemplate resource with the given unique name, arguments, and options.
*
* @param name The _unique_ name of the resource.
* @param args The arguments to use to populate this resource's properties.
* @param opts A bag of options that control this resource's behavior.
*/
constructor(name: string, args: CiscoVpnInterfaceIpsecFeatureTemplateArgs, opts?: pulumi.CustomResourceOptions);
}
/**
* Input properties used for looking up and filtering CiscoVpnInterfaceIpsecFeatureTemplate resources.
*/
export interface CiscoVpnInterfaceIpsecFeatureTemplateState {
/**
* Enable Application Tunnel Type - Choices: `none`, `sig` - Default value: `none`
*/
application?: pulumi.Input<string>;
/**
* Variable name
*/
applicationVariable?: pulumi.Input<string>;
/**
* Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: `false`
*/
clearDontFragment?: pulumi.Input<boolean>;
/**
* Variable name
*/
clearDontFragmentVariable?: pulumi.Input<string>;
/**
* IKE keepalive interval (seconds) - Range: `10`-`3600` - Default value: `10`
*/
deadPeerDetectionInterval?: pulumi.Input<number>;
/**
* Variable name
*/
deadPeerDetectionIntervalVariable?: pulumi.Input<string>;
/**
* IKE keepalive retries - Range: `2`-`60` - Default value: `3`
*/
deadPeerDetectionRetries?: pulumi.Input<number>;
/**
* Variable name
*/
deadPeerDetectionRetriesVariable?: pulumi.Input<string>;
/**
* The description of the feature template
*/
description?: pulumi.Input<string>;
/**
* List of supported device types - Choices: `vedge-C8000V`, `vedge-C8300-1N1S-4T2X`, `vedge-C8300-1N1S-6T`,
* `vedge-C8300-2N2S-6T`, `vedge-C8300-2N2S-4T2X`, `vedge-C8500-12X4QC`, `vedge-C8500-12X`, `vedge-C8500-20X6C`,
* `vedge-C8500L-8S4X`, `vedge-C8200-1N-4T`, `vedge-C8200L-1N-4T`
*/
deviceTypes?: pulumi.Input<pulumi.Input<string>[]>;
/**
* IKE identity the IKE preshared secret belongs to - Choices: `aes256-cbc-sha1`, `aes256-cbc-sha2`, `aes128-cbc-sha1`,
* `aes128-cbc-sha2` - Default value: `aes256-cbc-sha1`
*/
ikeCiphersuite?: pulumi.Input<string>;
/**
* Variable name
*/
ikeCiphersuiteVariable?: pulumi.Input<string>;
/**
* IKE Diffie Hellman Groups - Choices: `2`, `14`, `15`, `16`, `19`, `20`, `21`, `24` - Default value: `16`
*/
ikeGroup?: pulumi.Input<string>;
/**
* Variable name
*/
ikeGroupVariable?: pulumi.Input<string>;
/**
* IKE integrity protocol - Choices: `main`, `aggressive` - Default value: `main`
*/
ikeMode?: pulumi.Input<string>;
/**
* Variable name
*/
ikeModeVariable?: pulumi.Input<string>;
/**
* Use preshared key to authenticate IKE peer
*/
ikePreSharedKey?: pulumi.Input<string>;
/**
* IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
*/
ikePreSharedKeyLocalId?: pulumi.Input<string>;
/**
* Variable name
*/
ikePreSharedKeyLocalIdVariable?: pulumi.Input<string>;
/**
* IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
*/
ikePreSharedKeyRemoteId?: pulumi.Input<string>;
/**
* Variable name
*/
ikePreSharedKeyRemoteIdVariable?: pulumi.Input<string>;
/**
* Variable name
*/
ikePreSharedKeyVariable?: pulumi.Input<string>;
/**
* IKE rekey interval <60..86400> seconds - Range: `60`-`86400` - Default value: `14400`
*/
ikeRekeyInterval?: pulumi.Input<number>;
/**
* Variable name
*/
ikeRekeyIntervalVariable?: pulumi.Input<string>;
/**
* IKE Version <1..2> - Range: `1`-`2` - Default value: `1`
*/
ikeVersion?: pulumi.Input<number>;
/**
* Interface description
*/
interfaceDescription?: pulumi.Input<string>;
/**
* Variable name
*/
interfaceDescriptionVariable?: pulumi.Input<string>;
/**
* Interface name: IPsec when present
*/
interfaceName?: pulumi.Input<string>;
/**
* Variable name
*/
interfaceNameVariable?: pulumi.Input<string>;
/**
* Assign IPv4 address
*/
ipAddress?: pulumi.Input<string>;
/**
* Variable name
*/
ipAddressVariable?: pulumi.Input<string>;
/**
* IPsec(ESP) encryption and integrity protocol - Choices: `aes256-cbc-sha1`, `aes256-cbc-sha384`, `aes256-cbc-sha256`,
* `aes256-cbc-sha512`, `aes256-gcm`, `null-sha1`, `null-sha384`, `null-sha256`, `null-sha512` - Default value:
* `aes256-gcm`
*/
ipsecCiphersuite?: pulumi.Input<string>;
/**
* Variable name
*/
ipsecCiphersuiteVariable?: pulumi.Input<string>;
/**
* IPsec perfect forward secrecy settings - Choices: `group-1`, `group-2`, `group-5`, `group-14`, `group-15`, `group-16`,
* `group-19`, `group-20`, `group-21`, `group-24`, `none` - Default value: `group-16`
*/
ipsecPerfectForwardSecrecy?: pulumi.Input<string>;
/**
* Variable name
*/
ipsecPerfectForwardSecrecyVariable?: pulumi.Input<string>;
/**
* IPsec rekey interval <300..1209600> seconds - Range: `120`-`2592000` - Default value: `3600`
*/
ipsecRekeyInterval?: pulumi.Input<number>;
/**
* Variable name
*/
ipsecRekeyIntervalVariable?: pulumi.Input<string>;
/**
* Replay window size 32..8192 (must be a power of 2) - Range: `64`-`4096` - Default value: `512`
*/
ipsecReplayWindow?: pulumi.Input<number>;
/**
* Variable name
*/
ipsecReplayWindowVariable?: pulumi.Input<string>;
/**
* Interface MTU <68..9216>, in bytes - Range: `68`-`9216` - Default value: `1500`
*/
mtu?: pulumi.Input<number>;
/**
* Variable name
*/
mtuVariable?: pulumi.Input<string>;
/**
* The name of the feature template
*/
name?: pulumi.Input<string>;
/**
* Administrative state - Default value: `true`
*/
shutdown?: pulumi.Input<boolean>;
/**
* Variable name
*/
shutdownVariable?: pulumi.Input<string>;
/**
* TCP MSS on SYN packets, in bytes - Range: `500`-`1460`
*/
tcpMssAdjust?: pulumi.Input<number>;
/**
* Variable name
*/
tcpMssAdjustVariable?: pulumi.Input<string>;
/**
* The template type
*/
templateType?: pulumi.Input<string>;
/**
* Variable name
*/
trackerVariable?: pulumi.Input<string>;
/**
* Enable tracker for this interface
*/
trackers?: pulumi.Input<pulumi.Input<string>[]>;
/**
* Tunnel destination IP address
*/
tunnelDestination?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelDestinationVariable?: pulumi.Input<string>;
/**
* <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
*/
tunnelRouteVia?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelRouteViaVariable?: pulumi.Input<string>;
/**
* Tunnel source IP Address
*/
tunnelSource?: pulumi.Input<string>;
/**
* <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
*/
tunnelSourceInterface?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelSourceInterfaceVariable?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelSourceVariable?: pulumi.Input<string>;
/**
* The version of the feature template
*/
version?: pulumi.Input<number>;
}
/**
* The set of arguments for constructing a CiscoVpnInterfaceIpsecFeatureTemplate resource.
*/
export interface CiscoVpnInterfaceIpsecFeatureTemplateArgs {
/**
* Enable Application Tunnel Type - Choices: `none`, `sig` - Default value: `none`
*/
application?: pulumi.Input<string>;
/**
* Variable name
*/
applicationVariable?: pulumi.Input<string>;
/**
* Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: `false`
*/
clearDontFragment?: pulumi.Input<boolean>;
/**
* Variable name
*/
clearDontFragmentVariable?: pulumi.Input<string>;
/**
* IKE keepalive interval (seconds) - Range: `10`-`3600` - Default value: `10`
*/
deadPeerDetectionInterval?: pulumi.Input<number>;
/**
* Variable name
*/
deadPeerDetectionIntervalVariable?: pulumi.Input<string>;
/**
* IKE keepalive retries - Range: `2`-`60` - Default value: `3`
*/
deadPeerDetectionRetries?: pulumi.Input<number>;
/**
* Variable name
*/
deadPeerDetectionRetriesVariable?: pulumi.Input<string>;
/**
* The description of the feature template
*/
description: pulumi.Input<string>;
/**
* List of supported device types - Choices: `vedge-C8000V`, `vedge-C8300-1N1S-4T2X`, `vedge-C8300-1N1S-6T`,
* `vedge-C8300-2N2S-6T`, `vedge-C8300-2N2S-4T2X`, `vedge-C8500-12X4QC`, `vedge-C8500-12X`, `vedge-C8500-20X6C`,
* `vedge-C8500L-8S4X`, `vedge-C8200-1N-4T`, `vedge-C8200L-1N-4T`
*/
deviceTypes: pulumi.Input<pulumi.Input<string>[]>;
/**
* IKE identity the IKE preshared secret belongs to - Choices: `aes256-cbc-sha1`, `aes256-cbc-sha2`, `aes128-cbc-sha1`,
* `aes128-cbc-sha2` - Default value: `aes256-cbc-sha1`
*/
ikeCiphersuite?: pulumi.Input<string>;
/**
* Variable name
*/
ikeCiphersuiteVariable?: pulumi.Input<string>;
/**
* IKE Diffie Hellman Groups - Choices: `2`, `14`, `15`, `16`, `19`, `20`, `21`, `24` - Default value: `16`
*/
ikeGroup?: pulumi.Input<string>;
/**
* Variable name
*/
ikeGroupVariable?: pulumi.Input<string>;
/**
* IKE integrity protocol - Choices: `main`, `aggressive` - Default value: `main`
*/
ikeMode?: pulumi.Input<string>;
/**
* Variable name
*/
ikeModeVariable?: pulumi.Input<string>;
/**
* Use preshared key to authenticate IKE peer
*/
ikePreSharedKey?: pulumi.Input<string>;
/**
* IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
*/
ikePreSharedKeyLocalId?: pulumi.Input<string>;
/**
* Variable name
*/
ikePreSharedKeyLocalIdVariable?: pulumi.Input<string>;
/**
* IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
*/
ikePreSharedKeyRemoteId?: pulumi.Input<string>;
/**
* Variable name
*/
ikePreSharedKeyRemoteIdVariable?: pulumi.Input<string>;
/**
* Variable name
*/
ikePreSharedKeyVariable?: pulumi.Input<string>;
/**
* IKE rekey interval <60..86400> seconds - Range: `60`-`86400` - Default value: `14400`
*/
ikeRekeyInterval?: pulumi.Input<number>;
/**
* Variable name
*/
ikeRekeyIntervalVariable?: pulumi.Input<string>;
/**
* IKE Version <1..2> - Range: `1`-`2` - Default value: `1`
*/
ikeVersion?: pulumi.Input<number>;
/**
* Interface description
*/
interfaceDescription?: pulumi.Input<string>;
/**
* Variable name
*/
interfaceDescriptionVariable?: pulumi.Input<string>;
/**
* Interface name: IPsec when present
*/
interfaceName?: pulumi.Input<string>;
/**
* Variable name
*/
interfaceNameVariable?: pulumi.Input<string>;
/**
* Assign IPv4 address
*/
ipAddress?: pulumi.Input<string>;
/**
* Variable name
*/
ipAddressVariable?: pulumi.Input<string>;
/**
* IPsec(ESP) encryption and integrity protocol - Choices: `aes256-cbc-sha1`, `aes256-cbc-sha384`, `aes256-cbc-sha256`,
* `aes256-cbc-sha512`, `aes256-gcm`, `null-sha1`, `null-sha384`, `null-sha256`, `null-sha512` - Default value:
* `aes256-gcm`
*/
ipsecCiphersuite?: pulumi.Input<string>;
/**
* Variable name
*/
ipsecCiphersuiteVariable?: pulumi.Input<string>;
/**
* IPsec perfect forward secrecy settings - Choices: `group-1`, `group-2`, `group-5`, `group-14`, `group-15`, `group-16`,
* `group-19`, `group-20`, `group-21`, `group-24`, `none` - Default value: `group-16`
*/
ipsecPerfectForwardSecrecy?: pulumi.Input<string>;
/**
* Variable name
*/
ipsecPerfectForwardSecrecyVariable?: pulumi.Input<string>;
/**
* IPsec rekey interval <300..1209600> seconds - Range: `120`-`2592000` - Default value: `3600`
*/
ipsecRekeyInterval?: pulumi.Input<number>;
/**
* Variable name
*/
ipsecRekeyIntervalVariable?: pulumi.Input<string>;
/**
* Replay window size 32..8192 (must be a power of 2) - Range: `64`-`4096` - Default value: `512`
*/
ipsecReplayWindow?: pulumi.Input<number>;
/**
* Variable name
*/
ipsecReplayWindowVariable?: pulumi.Input<string>;
/**
* Interface MTU <68..9216>, in bytes - Range: `68`-`9216` - Default value: `1500`
*/
mtu?: pulumi.Input<number>;
/**
* Variable name
*/
mtuVariable?: pulumi.Input<string>;
/**
* The name of the feature template
*/
name?: pulumi.Input<string>;
/**
* Administrative state - Default value: `true`
*/
shutdown?: pulumi.Input<boolean>;
/**
* Variable name
*/
shutdownVariable?: pulumi.Input<string>;
/**
* TCP MSS on SYN packets, in bytes - Range: `500`-`1460`
*/
tcpMssAdjust?: pulumi.Input<number>;
/**
* Variable name
*/
tcpMssAdjustVariable?: pulumi.Input<string>;
/**
* Variable name
*/
trackerVariable?: pulumi.Input<string>;
/**
* Enable tracker for this interface
*/
trackers?: pulumi.Input<pulumi.Input<string>[]>;
/**
* Tunnel destination IP address
*/
tunnelDestination?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelDestinationVariable?: pulumi.Input<string>;
/**
* <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
*/
tunnelRouteVia?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelRouteViaVariable?: pulumi.Input<string>;
/**
* Tunnel source IP Address
*/
tunnelSource?: pulumi.Input<string>;
/**
* <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
*/
tunnelSourceInterface?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelSourceInterfaceVariable?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelSourceVariable?: pulumi.Input<string>;
}