@pulumi/sdwan
Version:
A Pulumi package for managing resources on Cisco Catalyst SD-WAN.. Based on terraform-provider-sdwan: version v0.4.1
879 lines (878 loc) • 31.4 kB
TypeScript
import * as pulumi from "@pulumi/pulumi";
/**
* This resource can manage a Transport WAN VPN Interface IPSEC Feature.
* - Minimum SD-WAN Manager version: `20.12.0`
*
* ## Example Usage
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as sdwan from "@pulumi/sdwan";
*
* const example = new sdwan.TransportWanVpnInterfaceIpsecFeature("example", {
* name: "Example",
* description: "My Example",
* featureProfileId: "f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac",
* transportWanVpnFeatureId: "140331f6-5418-4755-a059-13c77eb96037",
* interfaceName: "ipsec987",
* shutdown: true,
* interfaceDescription: "ipsec987",
* ipv4Address: "9.7.5.4",
* ipv4SubnetMask: "255.255.255.0",
* tunnelSourceIpv4Address: "1.3.5.88",
* tunnelSourceIpv4SubnetMask: "255.255.255.0",
* tunnelSourceInterface: "GigabitEthernet8",
* tunnelDestinationIpv4Address: "2.55.67.99",
* tunnelDestinationIpv4SubnetMask: "255.255.255.0",
* applicationTunnelType: "none",
* tcpMss: 1460,
* clearDontFragment: false,
* ipMtu: 1500,
* dpdInterval: 10,
* dpdRetries: 3,
* ikePresharedKey: "123",
* ikeVersion: 1,
* ikeIntegrityProtocol: "main",
* ikeRekeyInterval: 14400,
* ikeCiphersuite: "aes256-cbc-sha1",
* ikeDiffieHellmanGroup: "16",
* ikeIdLocalEndPoint: "xxx",
* ikeIdRemoteEndPoint: "xxx",
* ipsecRekeyInterval: 3600,
* ipsecReplayWindow: 512,
* ipsecCiphersuite: "aes256-gcm",
* perfectForwardSecrecy: "group-16",
* tunnelRouteVia: "2222",
* });
* ```
*
* ## Import
*
* The `pulumi import` command can be used, for example:
*
* Expected import identifier with the format: "transport_wan_vpn_interface_ipsec_feature_id,feature_profile_id,transport_wan_vpn_feature_id"
*
* ```sh
* $ pulumi import sdwan:index/transportWanVpnInterfaceIpsecFeature:TransportWanVpnInterfaceIpsecFeature example "f6b2c44c-693c-4763-b010-895aa3d236bd,f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac,140331f6-5418-4755-a059-13c77eb96037"
* ```
*/
export declare class TransportWanVpnInterfaceIpsecFeature extends pulumi.CustomResource {
/**
* Get an existing TransportWanVpnInterfaceIpsecFeature resource's state with the given name, ID, and optional extra
* properties used to qualify the lookup.
*
* @param name The _unique_ name of the resulting resource.
* @param id The _unique_ provider ID of the resource to lookup.
* @param state Any extra arguments used during the lookup.
* @param opts Optional settings to control the behavior of the CustomResource.
*/
static get(name: string, id: pulumi.Input<pulumi.ID>, state?: TransportWanVpnInterfaceIpsecFeatureState, opts?: pulumi.CustomResourceOptions): TransportWanVpnInterfaceIpsecFeature;
/**
* Returns true if the given object is an instance of TransportWanVpnInterfaceIpsecFeature. This is designed to work even
* when multiple copies of the Pulumi SDK have been loaded into the same process.
*/
static isInstance(obj: any): obj is TransportWanVpnInterfaceIpsecFeature;
/**
* Enable Application Tunnel Type - Choices: `none`, `sig`
*/
readonly applicationTunnelType: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly applicationTunnelTypeVariable: pulumi.Output<string | undefined>;
/**
* Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: `false`
*/
readonly clearDontFragment: pulumi.Output<boolean | undefined>;
/**
* Variable name
*/
readonly clearDontFragmentVariable: pulumi.Output<string | undefined>;
/**
* The description of the Feature
*/
readonly description: pulumi.Output<string | undefined>;
/**
* IKE keepalive interval (seconds) - Range: `10`-`3600` - Default value: `10`
*/
readonly dpdInterval: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly dpdIntervalVariable: pulumi.Output<string | undefined>;
/**
* IKE keepalive retries - Range: `2`-`60` - Default value: `3`
*/
readonly dpdRetries: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly dpdRetriesVariable: pulumi.Output<string | undefined>;
/**
* Feature Profile ID
*/
readonly featureProfileId: pulumi.Output<string>;
/**
* IKE identity the IKE preshared secret belongs to - Choices: `aes256-cbc-sha1`, `aes256-cbc-sha2`, `aes128-cbc-sha1`,
* `aes128-cbc-sha2` - Default value: `aes256-cbc-sha1`
*/
readonly ikeCiphersuite: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ikeCiphersuiteVariable: pulumi.Output<string | undefined>;
/**
* IKE Diffie Hellman Groups - Choices: `2`, `14`, `15`, `16`, `19`, `20`, `21`, `24` - Default value: `16`
*/
readonly ikeDiffieHellmanGroup: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ikeDiffieHellmanGroupVariable: pulumi.Output<string | undefined>;
/**
* IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
*/
readonly ikeIdLocalEndPoint: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ikeIdLocalEndPointVariable: pulumi.Output<string | undefined>;
/**
* IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
*/
readonly ikeIdRemoteEndPoint: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ikeIdRemoteEndPointVariable: pulumi.Output<string | undefined>;
/**
* IKE integrity protocol - Choices: `main`, `aggressive` - Default value: `main`
*/
readonly ikeIntegrityProtocol: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ikeIntegrityProtocolVariable: pulumi.Output<string | undefined>;
/**
* Use preshared key to authenticate IKE peer
*/
readonly ikePresharedKey: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ikePresharedKeyVariable: pulumi.Output<string | undefined>;
/**
* IKE rekey interval <60..86400> seconds - Range: `60`-`86400` - Default value: `14400`
*/
readonly ikeRekeyInterval: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly ikeRekeyIntervalVariable: pulumi.Output<string | undefined>;
/**
* IKE Version <1..2> - Range: `1`-`2` - Default value: `1`
*/
readonly ikeVersion: pulumi.Output<number | undefined>;
/**
* Interface description
*/
readonly interfaceDescription: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly interfaceDescriptionVariable: pulumi.Output<string | undefined>;
/**
* Interface name: IPsec when present
*/
readonly interfaceName: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly interfaceNameVariable: pulumi.Output<string | undefined>;
/**
* Interface MTU <68..9216>, in bytes - Range: `68`-`9216` - Default value: `1500`
*/
readonly ipMtu: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly ipMtuVariable: pulumi.Output<string | undefined>;
/**
* IPsec(ESP) encryption and integrity protocol - Choices: `aes256-cbc-sha1`, `aes256-cbc-sha384`, `aes256-cbc-sha256`,
* `aes256-cbc-sha512`, `aes256-gcm`, `null-sha1`, `null-sha384`, `null-sha256`, `null-sha512` - Default value:
* `aes256-gcm`
*/
readonly ipsecCiphersuite: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ipsecCiphersuiteVariable: pulumi.Output<string | undefined>;
/**
* IPsec rekey interval <300..1209600> seconds - Range: `120`-`2592000` - Default value: `3600`
*/
readonly ipsecRekeyInterval: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly ipsecRekeyIntervalVariable: pulumi.Output<string | undefined>;
/**
* Replay window size 32..8192 (must be a power of 2) - Range: `64`-`4096` - Default value: `512`
*/
readonly ipsecReplayWindow: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly ipsecReplayWindowVariable: pulumi.Output<string | undefined>;
readonly ipv4Address: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ipv4AddressVariable: pulumi.Output<string | undefined>;
/**
* - Choices: `255.255.255.255`, `255.255.255.254`, `255.255.255.252`, `255.255.255.248`, `255.255.255.240`,
* `255.255.255.224`, `255.255.255.192`, `255.255.255.128`, `255.255.255.0`, `255.255.254.0`, `255.255.252.0`,
* `255.255.248.0`, `255.255.240.0`, `255.255.224.0`, `255.255.192.0`, `255.255.128.0`, `255.255.0.0`, `255.254.0.0`,
* `255.252.0.0`, `255.240.0.0`, `255.224.0.0`, `255.192.0.0`, `255.128.0.0`, `255.0.0.0`, `254.0.0.0`, `252.0.0.0`,
* `248.0.0.0`, `240.0.0.0`, `224.0.0.0`, `192.0.0.0`, `128.0.0.0`, `0.0.0.0`
*/
readonly ipv4SubnetMask: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly ipv4SubnetMaskVariable: pulumi.Output<string | undefined>;
/**
* The name of the Feature
*/
readonly name: pulumi.Output<string>;
/**
* IPsec perfect forward secrecy settings - Choices: `group-1`, `group-2`, `group-5`, `group-14`, `group-15`, `group-16`,
* `group-19`, `group-20`, `group-21`, `group-24`, `none` - Default value: `group-16`
*/
readonly perfectForwardSecrecy: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly perfectForwardSecrecyVariable: pulumi.Output<string | undefined>;
/**
* Administrative state - Default value: `true`
*/
readonly shutdown: pulumi.Output<boolean | undefined>;
/**
* Variable name
*/
readonly shutdownVariable: pulumi.Output<string | undefined>;
/**
* TCP MSS on SYN packets, in bytes - Range: `500`-`1460`
*/
readonly tcpMss: pulumi.Output<number | undefined>;
/**
* Variable name
*/
readonly tcpMssVariable: pulumi.Output<string | undefined>;
/**
* Enable tracker for this interface
*/
readonly trackerId: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly trackerIdVariable: pulumi.Output<string | undefined>;
/**
* Transport WAN VPN Feature ID
*/
readonly transportWanVpnFeatureId: pulumi.Output<string>;
readonly tunnelDestinationIpv4Address: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly tunnelDestinationIpv4AddressVariable: pulumi.Output<string | undefined>;
/**
* - Choices: `255.255.255.255`, `255.255.255.254`, `255.255.255.252`, `255.255.255.248`, `255.255.255.240`,
* `255.255.255.224`, `255.255.255.192`, `255.255.255.128`, `255.255.255.0`, `255.255.254.0`, `255.255.252.0`,
* `255.255.248.0`, `255.255.240.0`, `255.255.224.0`, `255.255.192.0`, `255.255.128.0`, `255.255.0.0`, `255.254.0.0`,
* `255.252.0.0`, `255.240.0.0`, `255.224.0.0`, `255.192.0.0`, `255.128.0.0`, `255.0.0.0`, `254.0.0.0`, `252.0.0.0`,
* `248.0.0.0`, `240.0.0.0`, `224.0.0.0`, `192.0.0.0`, `128.0.0.0`, `0.0.0.0`
*/
readonly tunnelDestinationIpv4SubnetMask: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly tunnelDestinationIpv4SubnetMaskVariable: pulumi.Output<string | undefined>;
/**
* <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
*/
readonly tunnelRouteVia: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly tunnelRouteViaVariable: pulumi.Output<string | undefined>;
/**
* <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
*/
readonly tunnelSourceInterface: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly tunnelSourceInterfaceVariable: pulumi.Output<string | undefined>;
readonly tunnelSourceIpv4Address: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly tunnelSourceIpv4AddressVariable: pulumi.Output<string | undefined>;
/**
* - Choices: `255.255.255.255`, `255.255.255.254`, `255.255.255.252`, `255.255.255.248`, `255.255.255.240`,
* `255.255.255.224`, `255.255.255.192`, `255.255.255.128`, `255.255.255.0`, `255.255.254.0`, `255.255.252.0`,
* `255.255.248.0`, `255.255.240.0`, `255.255.224.0`, `255.255.192.0`, `255.255.128.0`, `255.255.0.0`, `255.254.0.0`,
* `255.252.0.0`, `255.240.0.0`, `255.224.0.0`, `255.192.0.0`, `255.128.0.0`, `255.0.0.0`, `254.0.0.0`, `252.0.0.0`,
* `248.0.0.0`, `240.0.0.0`, `224.0.0.0`, `192.0.0.0`, `128.0.0.0`, `0.0.0.0`
*/
readonly tunnelSourceIpv4SubnetMask: pulumi.Output<string | undefined>;
/**
* Variable name
*/
readonly tunnelSourceIpv4SubnetMaskVariable: pulumi.Output<string | undefined>;
/**
* The version of the Feature
*/
readonly version: pulumi.Output<number>;
/**
* Create a TransportWanVpnInterfaceIpsecFeature resource with the given unique name, arguments, and options.
*
* @param name The _unique_ name of the resource.
* @param args The arguments to use to populate this resource's properties.
* @param opts A bag of options that control this resource's behavior.
*/
constructor(name: string, args: TransportWanVpnInterfaceIpsecFeatureArgs, opts?: pulumi.CustomResourceOptions);
}
/**
* Input properties used for looking up and filtering TransportWanVpnInterfaceIpsecFeature resources.
*/
export interface TransportWanVpnInterfaceIpsecFeatureState {
/**
* Enable Application Tunnel Type - Choices: `none`, `sig`
*/
applicationTunnelType?: pulumi.Input<string>;
/**
* Variable name
*/
applicationTunnelTypeVariable?: pulumi.Input<string>;
/**
* Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: `false`
*/
clearDontFragment?: pulumi.Input<boolean>;
/**
* Variable name
*/
clearDontFragmentVariable?: pulumi.Input<string>;
/**
* The description of the Feature
*/
description?: pulumi.Input<string>;
/**
* IKE keepalive interval (seconds) - Range: `10`-`3600` - Default value: `10`
*/
dpdInterval?: pulumi.Input<number>;
/**
* Variable name
*/
dpdIntervalVariable?: pulumi.Input<string>;
/**
* IKE keepalive retries - Range: `2`-`60` - Default value: `3`
*/
dpdRetries?: pulumi.Input<number>;
/**
* Variable name
*/
dpdRetriesVariable?: pulumi.Input<string>;
/**
* Feature Profile ID
*/
featureProfileId?: pulumi.Input<string>;
/**
* IKE identity the IKE preshared secret belongs to - Choices: `aes256-cbc-sha1`, `aes256-cbc-sha2`, `aes128-cbc-sha1`,
* `aes128-cbc-sha2` - Default value: `aes256-cbc-sha1`
*/
ikeCiphersuite?: pulumi.Input<string>;
/**
* Variable name
*/
ikeCiphersuiteVariable?: pulumi.Input<string>;
/**
* IKE Diffie Hellman Groups - Choices: `2`, `14`, `15`, `16`, `19`, `20`, `21`, `24` - Default value: `16`
*/
ikeDiffieHellmanGroup?: pulumi.Input<string>;
/**
* Variable name
*/
ikeDiffieHellmanGroupVariable?: pulumi.Input<string>;
/**
* IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
*/
ikeIdLocalEndPoint?: pulumi.Input<string>;
/**
* Variable name
*/
ikeIdLocalEndPointVariable?: pulumi.Input<string>;
/**
* IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
*/
ikeIdRemoteEndPoint?: pulumi.Input<string>;
/**
* Variable name
*/
ikeIdRemoteEndPointVariable?: pulumi.Input<string>;
/**
* IKE integrity protocol - Choices: `main`, `aggressive` - Default value: `main`
*/
ikeIntegrityProtocol?: pulumi.Input<string>;
/**
* Variable name
*/
ikeIntegrityProtocolVariable?: pulumi.Input<string>;
/**
* Use preshared key to authenticate IKE peer
*/
ikePresharedKey?: pulumi.Input<string>;
/**
* Variable name
*/
ikePresharedKeyVariable?: pulumi.Input<string>;
/**
* IKE rekey interval <60..86400> seconds - Range: `60`-`86400` - Default value: `14400`
*/
ikeRekeyInterval?: pulumi.Input<number>;
/**
* Variable name
*/
ikeRekeyIntervalVariable?: pulumi.Input<string>;
/**
* IKE Version <1..2> - Range: `1`-`2` - Default value: `1`
*/
ikeVersion?: pulumi.Input<number>;
/**
* Interface description
*/
interfaceDescription?: pulumi.Input<string>;
/**
* Variable name
*/
interfaceDescriptionVariable?: pulumi.Input<string>;
/**
* Interface name: IPsec when present
*/
interfaceName?: pulumi.Input<string>;
/**
* Variable name
*/
interfaceNameVariable?: pulumi.Input<string>;
/**
* Interface MTU <68..9216>, in bytes - Range: `68`-`9216` - Default value: `1500`
*/
ipMtu?: pulumi.Input<number>;
/**
* Variable name
*/
ipMtuVariable?: pulumi.Input<string>;
/**
* IPsec(ESP) encryption and integrity protocol - Choices: `aes256-cbc-sha1`, `aes256-cbc-sha384`, `aes256-cbc-sha256`,
* `aes256-cbc-sha512`, `aes256-gcm`, `null-sha1`, `null-sha384`, `null-sha256`, `null-sha512` - Default value:
* `aes256-gcm`
*/
ipsecCiphersuite?: pulumi.Input<string>;
/**
* Variable name
*/
ipsecCiphersuiteVariable?: pulumi.Input<string>;
/**
* IPsec rekey interval <300..1209600> seconds - Range: `120`-`2592000` - Default value: `3600`
*/
ipsecRekeyInterval?: pulumi.Input<number>;
/**
* Variable name
*/
ipsecRekeyIntervalVariable?: pulumi.Input<string>;
/**
* Replay window size 32..8192 (must be a power of 2) - Range: `64`-`4096` - Default value: `512`
*/
ipsecReplayWindow?: pulumi.Input<number>;
/**
* Variable name
*/
ipsecReplayWindowVariable?: pulumi.Input<string>;
ipv4Address?: pulumi.Input<string>;
/**
* Variable name
*/
ipv4AddressVariable?: pulumi.Input<string>;
/**
* - Choices: `255.255.255.255`, `255.255.255.254`, `255.255.255.252`, `255.255.255.248`, `255.255.255.240`,
* `255.255.255.224`, `255.255.255.192`, `255.255.255.128`, `255.255.255.0`, `255.255.254.0`, `255.255.252.0`,
* `255.255.248.0`, `255.255.240.0`, `255.255.224.0`, `255.255.192.0`, `255.255.128.0`, `255.255.0.0`, `255.254.0.0`,
* `255.252.0.0`, `255.240.0.0`, `255.224.0.0`, `255.192.0.0`, `255.128.0.0`, `255.0.0.0`, `254.0.0.0`, `252.0.0.0`,
* `248.0.0.0`, `240.0.0.0`, `224.0.0.0`, `192.0.0.0`, `128.0.0.0`, `0.0.0.0`
*/
ipv4SubnetMask?: pulumi.Input<string>;
/**
* Variable name
*/
ipv4SubnetMaskVariable?: pulumi.Input<string>;
/**
* The name of the Feature
*/
name?: pulumi.Input<string>;
/**
* IPsec perfect forward secrecy settings - Choices: `group-1`, `group-2`, `group-5`, `group-14`, `group-15`, `group-16`,
* `group-19`, `group-20`, `group-21`, `group-24`, `none` - Default value: `group-16`
*/
perfectForwardSecrecy?: pulumi.Input<string>;
/**
* Variable name
*/
perfectForwardSecrecyVariable?: pulumi.Input<string>;
/**
* Administrative state - Default value: `true`
*/
shutdown?: pulumi.Input<boolean>;
/**
* Variable name
*/
shutdownVariable?: pulumi.Input<string>;
/**
* TCP MSS on SYN packets, in bytes - Range: `500`-`1460`
*/
tcpMss?: pulumi.Input<number>;
/**
* Variable name
*/
tcpMssVariable?: pulumi.Input<string>;
/**
* Enable tracker for this interface
*/
trackerId?: pulumi.Input<string>;
/**
* Variable name
*/
trackerIdVariable?: pulumi.Input<string>;
/**
* Transport WAN VPN Feature ID
*/
transportWanVpnFeatureId?: pulumi.Input<string>;
tunnelDestinationIpv4Address?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelDestinationIpv4AddressVariable?: pulumi.Input<string>;
/**
* - Choices: `255.255.255.255`, `255.255.255.254`, `255.255.255.252`, `255.255.255.248`, `255.255.255.240`,
* `255.255.255.224`, `255.255.255.192`, `255.255.255.128`, `255.255.255.0`, `255.255.254.0`, `255.255.252.0`,
* `255.255.248.0`, `255.255.240.0`, `255.255.224.0`, `255.255.192.0`, `255.255.128.0`, `255.255.0.0`, `255.254.0.0`,
* `255.252.0.0`, `255.240.0.0`, `255.224.0.0`, `255.192.0.0`, `255.128.0.0`, `255.0.0.0`, `254.0.0.0`, `252.0.0.0`,
* `248.0.0.0`, `240.0.0.0`, `224.0.0.0`, `192.0.0.0`, `128.0.0.0`, `0.0.0.0`
*/
tunnelDestinationIpv4SubnetMask?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelDestinationIpv4SubnetMaskVariable?: pulumi.Input<string>;
/**
* <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
*/
tunnelRouteVia?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelRouteViaVariable?: pulumi.Input<string>;
/**
* <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
*/
tunnelSourceInterface?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelSourceInterfaceVariable?: pulumi.Input<string>;
tunnelSourceIpv4Address?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelSourceIpv4AddressVariable?: pulumi.Input<string>;
/**
* - Choices: `255.255.255.255`, `255.255.255.254`, `255.255.255.252`, `255.255.255.248`, `255.255.255.240`,
* `255.255.255.224`, `255.255.255.192`, `255.255.255.128`, `255.255.255.0`, `255.255.254.0`, `255.255.252.0`,
* `255.255.248.0`, `255.255.240.0`, `255.255.224.0`, `255.255.192.0`, `255.255.128.0`, `255.255.0.0`, `255.254.0.0`,
* `255.252.0.0`, `255.240.0.0`, `255.224.0.0`, `255.192.0.0`, `255.128.0.0`, `255.0.0.0`, `254.0.0.0`, `252.0.0.0`,
* `248.0.0.0`, `240.0.0.0`, `224.0.0.0`, `192.0.0.0`, `128.0.0.0`, `0.0.0.0`
*/
tunnelSourceIpv4SubnetMask?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelSourceIpv4SubnetMaskVariable?: pulumi.Input<string>;
/**
* The version of the Feature
*/
version?: pulumi.Input<number>;
}
/**
* The set of arguments for constructing a TransportWanVpnInterfaceIpsecFeature resource.
*/
export interface TransportWanVpnInterfaceIpsecFeatureArgs {
/**
* Enable Application Tunnel Type - Choices: `none`, `sig`
*/
applicationTunnelType?: pulumi.Input<string>;
/**
* Variable name
*/
applicationTunnelTypeVariable?: pulumi.Input<string>;
/**
* Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: `false`
*/
clearDontFragment?: pulumi.Input<boolean>;
/**
* Variable name
*/
clearDontFragmentVariable?: pulumi.Input<string>;
/**
* The description of the Feature
*/
description?: pulumi.Input<string>;
/**
* IKE keepalive interval (seconds) - Range: `10`-`3600` - Default value: `10`
*/
dpdInterval?: pulumi.Input<number>;
/**
* Variable name
*/
dpdIntervalVariable?: pulumi.Input<string>;
/**
* IKE keepalive retries - Range: `2`-`60` - Default value: `3`
*/
dpdRetries?: pulumi.Input<number>;
/**
* Variable name
*/
dpdRetriesVariable?: pulumi.Input<string>;
/**
* Feature Profile ID
*/
featureProfileId: pulumi.Input<string>;
/**
* IKE identity the IKE preshared secret belongs to - Choices: `aes256-cbc-sha1`, `aes256-cbc-sha2`, `aes128-cbc-sha1`,
* `aes128-cbc-sha2` - Default value: `aes256-cbc-sha1`
*/
ikeCiphersuite?: pulumi.Input<string>;
/**
* Variable name
*/
ikeCiphersuiteVariable?: pulumi.Input<string>;
/**
* IKE Diffie Hellman Groups - Choices: `2`, `14`, `15`, `16`, `19`, `20`, `21`, `24` - Default value: `16`
*/
ikeDiffieHellmanGroup?: pulumi.Input<string>;
/**
* Variable name
*/
ikeDiffieHellmanGroupVariable?: pulumi.Input<string>;
/**
* IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
*/
ikeIdLocalEndPoint?: pulumi.Input<string>;
/**
* Variable name
*/
ikeIdLocalEndPointVariable?: pulumi.Input<string>;
/**
* IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
*/
ikeIdRemoteEndPoint?: pulumi.Input<string>;
/**
* Variable name
*/
ikeIdRemoteEndPointVariable?: pulumi.Input<string>;
/**
* IKE integrity protocol - Choices: `main`, `aggressive` - Default value: `main`
*/
ikeIntegrityProtocol?: pulumi.Input<string>;
/**
* Variable name
*/
ikeIntegrityProtocolVariable?: pulumi.Input<string>;
/**
* Use preshared key to authenticate IKE peer
*/
ikePresharedKey?: pulumi.Input<string>;
/**
* Variable name
*/
ikePresharedKeyVariable?: pulumi.Input<string>;
/**
* IKE rekey interval <60..86400> seconds - Range: `60`-`86400` - Default value: `14400`
*/
ikeRekeyInterval?: pulumi.Input<number>;
/**
* Variable name
*/
ikeRekeyIntervalVariable?: pulumi.Input<string>;
/**
* IKE Version <1..2> - Range: `1`-`2` - Default value: `1`
*/
ikeVersion?: pulumi.Input<number>;
/**
* Interface description
*/
interfaceDescription?: pulumi.Input<string>;
/**
* Variable name
*/
interfaceDescriptionVariable?: pulumi.Input<string>;
/**
* Interface name: IPsec when present
*/
interfaceName?: pulumi.Input<string>;
/**
* Variable name
*/
interfaceNameVariable?: pulumi.Input<string>;
/**
* Interface MTU <68..9216>, in bytes - Range: `68`-`9216` - Default value: `1500`
*/
ipMtu?: pulumi.Input<number>;
/**
* Variable name
*/
ipMtuVariable?: pulumi.Input<string>;
/**
* IPsec(ESP) encryption and integrity protocol - Choices: `aes256-cbc-sha1`, `aes256-cbc-sha384`, `aes256-cbc-sha256`,
* `aes256-cbc-sha512`, `aes256-gcm`, `null-sha1`, `null-sha384`, `null-sha256`, `null-sha512` - Default value:
* `aes256-gcm`
*/
ipsecCiphersuite?: pulumi.Input<string>;
/**
* Variable name
*/
ipsecCiphersuiteVariable?: pulumi.Input<string>;
/**
* IPsec rekey interval <300..1209600> seconds - Range: `120`-`2592000` - Default value: `3600`
*/
ipsecRekeyInterval?: pulumi.Input<number>;
/**
* Variable name
*/
ipsecRekeyIntervalVariable?: pulumi.Input<string>;
/**
* Replay window size 32..8192 (must be a power of 2) - Range: `64`-`4096` - Default value: `512`
*/
ipsecReplayWindow?: pulumi.Input<number>;
/**
* Variable name
*/
ipsecReplayWindowVariable?: pulumi.Input<string>;
ipv4Address?: pulumi.Input<string>;
/**
* Variable name
*/
ipv4AddressVariable?: pulumi.Input<string>;
/**
* - Choices: `255.255.255.255`, `255.255.255.254`, `255.255.255.252`, `255.255.255.248`, `255.255.255.240`,
* `255.255.255.224`, `255.255.255.192`, `255.255.255.128`, `255.255.255.0`, `255.255.254.0`, `255.255.252.0`,
* `255.255.248.0`, `255.255.240.0`, `255.255.224.0`, `255.255.192.0`, `255.255.128.0`, `255.255.0.0`, `255.254.0.0`,
* `255.252.0.0`, `255.240.0.0`, `255.224.0.0`, `255.192.0.0`, `255.128.0.0`, `255.0.0.0`, `254.0.0.0`, `252.0.0.0`,
* `248.0.0.0`, `240.0.0.0`, `224.0.0.0`, `192.0.0.0`, `128.0.0.0`, `0.0.0.0`
*/
ipv4SubnetMask?: pulumi.Input<string>;
/**
* Variable name
*/
ipv4SubnetMaskVariable?: pulumi.Input<string>;
/**
* The name of the Feature
*/
name?: pulumi.Input<string>;
/**
* IPsec perfect forward secrecy settings - Choices: `group-1`, `group-2`, `group-5`, `group-14`, `group-15`, `group-16`,
* `group-19`, `group-20`, `group-21`, `group-24`, `none` - Default value: `group-16`
*/
perfectForwardSecrecy?: pulumi.Input<string>;
/**
* Variable name
*/
perfectForwardSecrecyVariable?: pulumi.Input<string>;
/**
* Administrative state - Default value: `true`
*/
shutdown?: pulumi.Input<boolean>;
/**
* Variable name
*/
shutdownVariable?: pulumi.Input<string>;
/**
* TCP MSS on SYN packets, in bytes - Range: `500`-`1460`
*/
tcpMss?: pulumi.Input<number>;
/**
* Variable name
*/
tcpMssVariable?: pulumi.Input<string>;
/**
* Enable tracker for this interface
*/
trackerId?: pulumi.Input<string>;
/**
* Variable name
*/
trackerIdVariable?: pulumi.Input<string>;
/**
* Transport WAN VPN Feature ID
*/
transportWanVpnFeatureId: pulumi.Input<string>;
tunnelDestinationIpv4Address?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelDestinationIpv4AddressVariable?: pulumi.Input<string>;
/**
* - Choices: `255.255.255.255`, `255.255.255.254`, `255.255.255.252`, `255.255.255.248`, `255.255.255.240`,
* `255.255.255.224`, `255.255.255.192`, `255.255.255.128`, `255.255.255.0`, `255.255.254.0`, `255.255.252.0`,
* `255.255.248.0`, `255.255.240.0`, `255.255.224.0`, `255.255.192.0`, `255.255.128.0`, `255.255.0.0`, `255.254.0.0`,
* `255.252.0.0`, `255.240.0.0`, `255.224.0.0`, `255.192.0.0`, `255.128.0.0`, `255.0.0.0`, `254.0.0.0`, `252.0.0.0`,
* `248.0.0.0`, `240.0.0.0`, `224.0.0.0`, `192.0.0.0`, `128.0.0.0`, `0.0.0.0`
*/
tunnelDestinationIpv4SubnetMask?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelDestinationIpv4SubnetMaskVariable?: pulumi.Input<string>;
/**
* <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
*/
tunnelRouteVia?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelRouteViaVariable?: pulumi.Input<string>;
/**
* <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
*/
tunnelSourceInterface?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelSourceInterfaceVariable?: pulumi.Input<string>;
tunnelSourceIpv4Address?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelSourceIpv4AddressVariable?: pulumi.Input<string>;
/**
* - Choices: `255.255.255.255`, `255.255.255.254`, `255.255.255.252`, `255.255.255.248`, `255.255.255.240`,
* `255.255.255.224`, `255.255.255.192`, `255.255.255.128`, `255.255.255.0`, `255.255.254.0`, `255.255.252.0`,
* `255.255.248.0`, `255.255.240.0`, `255.255.224.0`, `255.255.192.0`, `255.255.128.0`, `255.255.0.0`, `255.254.0.0`,
* `255.252.0.0`, `255.240.0.0`, `255.224.0.0`, `255.192.0.0`, `255.128.0.0`, `255.0.0.0`, `254.0.0.0`, `252.0.0.0`,
* `248.0.0.0`, `240.0.0.0`, `224.0.0.0`, `192.0.0.0`, `128.0.0.0`, `0.0.0.0`
*/
tunnelSourceIpv4SubnetMask?: pulumi.Input<string>;
/**
* Variable name
*/
tunnelSourceIpv4SubnetMaskVariable?: pulumi.Input<string>;
}