@pulumiverse/fortios
Version:
A Pulumi package for creating and managing Fortios resources. Based on terraform-provider-fortios: version v1.16.0
300 lines (299 loc) • 13.2 kB
TypeScript
import * as pulumi from "@pulumi/pulumi";
import * as inputs from "../types/input";
import * as outputs from "../types/output";
/**
* Configure IPv4 access proxy. Applies to FortiOS Version `>= 7.0.1`.
*
* ## Import
*
* Firewall AccessProxy can be imported using any of these accepted formats:
*
* ```sh
* $ pulumi import fortios:firewall/accessproxy:Accessproxy labelname {{name}}
* ```
*
* If you do not want to import arguments of block:
*
* $ export "FORTIOS_IMPORT_TABLE"="false"
*
* ```sh
* $ pulumi import fortios:firewall/accessproxy:Accessproxy labelname {{name}}
* ```
*
* $ unset "FORTIOS_IMPORT_TABLE"
*/
export declare class Accessproxy extends pulumi.CustomResource {
/**
* Get an existing Accessproxy resource's state with the given name, ID, and optional extra
* properties used to qualify the lookup.
*
* @param name The _unique_ name of the resulting resource.
* @param id The _unique_ provider ID of the resource to lookup.
* @param state Any extra arguments used during the lookup.
* @param opts Optional settings to control the behavior of the CustomResource.
*/
static get(name: string, id: pulumi.Input<pulumi.ID>, state?: AccessproxyState, opts?: pulumi.CustomResourceOptions): Accessproxy;
/**
* Returns true if the given object is an instance of Accessproxy. This is designed to work even
* when multiple copies of the Pulumi SDK have been loaded into the same process.
*/
static isInstance(obj: any): obj is Accessproxy;
/**
* Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: `enable`, `disable`.
*/
readonly addVhostDomainToDnsdb: pulumi.Output<string>;
/**
* Set IPv6 API Gateway. The structure of `apiGateway6` block is documented below.
*/
readonly apiGateway6s: pulumi.Output<outputs.firewall.AccessproxyApiGateway6[] | undefined>;
/**
* Set IPv4 API Gateway. The structure of `apiGateway` block is documented below.
*/
readonly apiGateways: pulumi.Output<outputs.firewall.AccessproxyApiGateway[] | undefined>;
/**
* Enable/disable authentication portal. Valid values: `disable`, `enable`.
*/
readonly authPortal: pulumi.Output<string>;
/**
* Virtual host for authentication portal.
*/
readonly authVirtualHost: pulumi.Output<string>;
/**
* Enable/disable to request client certificate. Valid values: `disable`, `enable`.
*/
readonly clientCert: pulumi.Output<string>;
/**
* Decrypted traffic mirror.
*/
readonly decryptedTrafficMirror: pulumi.Output<string>;
/**
* Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
*/
readonly dynamicSortSubtable: pulumi.Output<string | undefined>;
/**
* Action of an empty client certificate.
*/
readonly emptyCertAction: pulumi.Output<string>;
/**
* Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
*/
readonly getAllTables: pulumi.Output<string | undefined>;
/**
* Maximum supported HTTP versions. default = HTTP2 Valid values: `http1`, `http2`.
*/
readonly httpSupportedMaxVersion: pulumi.Output<string>;
/**
* Enable/disable logging of blocked traffic. Valid values: `enable`, `disable`.
*/
readonly logBlockedTraffic: pulumi.Output<string>;
/**
* Access Proxy name.
*/
readonly name: pulumi.Output<string>;
/**
* Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: `enable`, `disable`.
*/
readonly svrPoolMultiplex: pulumi.Output<string>;
/**
* Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
*/
readonly svrPoolServerMaxConcurrentRequest: pulumi.Output<number>;
/**
* Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
*/
readonly svrPoolServerMaxRequest: pulumi.Output<number>;
/**
* Time-to-live in the server pool for idle connections to servers.
*/
readonly svrPoolTtl: pulumi.Output<number>;
/**
* Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: `disable`, `enable`.
*/
readonly userAgentDetect: pulumi.Output<string>;
/**
* Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
*/
readonly vdomparam: pulumi.Output<string>;
/**
* Virtual IP name.
*/
readonly vip: pulumi.Output<string>;
/**
* Create a Accessproxy resource with the given unique name, arguments, and options.
*
* @param name The _unique_ name of the resource.
* @param args The arguments to use to populate this resource's properties.
* @param opts A bag of options that control this resource's behavior.
*/
constructor(name: string, args?: AccessproxyArgs, opts?: pulumi.CustomResourceOptions);
}
/**
* Input properties used for looking up and filtering Accessproxy resources.
*/
export interface AccessproxyState {
/**
* Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: `enable`, `disable`.
*/
addVhostDomainToDnsdb?: pulumi.Input<string>;
/**
* Set IPv6 API Gateway. The structure of `apiGateway6` block is documented below.
*/
apiGateway6s?: pulumi.Input<pulumi.Input<inputs.firewall.AccessproxyApiGateway6>[]>;
/**
* Set IPv4 API Gateway. The structure of `apiGateway` block is documented below.
*/
apiGateways?: pulumi.Input<pulumi.Input<inputs.firewall.AccessproxyApiGateway>[]>;
/**
* Enable/disable authentication portal. Valid values: `disable`, `enable`.
*/
authPortal?: pulumi.Input<string>;
/**
* Virtual host for authentication portal.
*/
authVirtualHost?: pulumi.Input<string>;
/**
* Enable/disable to request client certificate. Valid values: `disable`, `enable`.
*/
clientCert?: pulumi.Input<string>;
/**
* Decrypted traffic mirror.
*/
decryptedTrafficMirror?: pulumi.Input<string>;
/**
* Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
*/
dynamicSortSubtable?: pulumi.Input<string>;
/**
* Action of an empty client certificate.
*/
emptyCertAction?: pulumi.Input<string>;
/**
* Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
*/
getAllTables?: pulumi.Input<string>;
/**
* Maximum supported HTTP versions. default = HTTP2 Valid values: `http1`, `http2`.
*/
httpSupportedMaxVersion?: pulumi.Input<string>;
/**
* Enable/disable logging of blocked traffic. Valid values: `enable`, `disable`.
*/
logBlockedTraffic?: pulumi.Input<string>;
/**
* Access Proxy name.
*/
name?: pulumi.Input<string>;
/**
* Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: `enable`, `disable`.
*/
svrPoolMultiplex?: pulumi.Input<string>;
/**
* Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
*/
svrPoolServerMaxConcurrentRequest?: pulumi.Input<number>;
/**
* Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
*/
svrPoolServerMaxRequest?: pulumi.Input<number>;
/**
* Time-to-live in the server pool for idle connections to servers.
*/
svrPoolTtl?: pulumi.Input<number>;
/**
* Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: `disable`, `enable`.
*/
userAgentDetect?: pulumi.Input<string>;
/**
* Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
*/
vdomparam?: pulumi.Input<string>;
/**
* Virtual IP name.
*/
vip?: pulumi.Input<string>;
}
/**
* The set of arguments for constructing a Accessproxy resource.
*/
export interface AccessproxyArgs {
/**
* Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: `enable`, `disable`.
*/
addVhostDomainToDnsdb?: pulumi.Input<string>;
/**
* Set IPv6 API Gateway. The structure of `apiGateway6` block is documented below.
*/
apiGateway6s?: pulumi.Input<pulumi.Input<inputs.firewall.AccessproxyApiGateway6>[]>;
/**
* Set IPv4 API Gateway. The structure of `apiGateway` block is documented below.
*/
apiGateways?: pulumi.Input<pulumi.Input<inputs.firewall.AccessproxyApiGateway>[]>;
/**
* Enable/disable authentication portal. Valid values: `disable`, `enable`.
*/
authPortal?: pulumi.Input<string>;
/**
* Virtual host for authentication portal.
*/
authVirtualHost?: pulumi.Input<string>;
/**
* Enable/disable to request client certificate. Valid values: `disable`, `enable`.
*/
clientCert?: pulumi.Input<string>;
/**
* Decrypted traffic mirror.
*/
decryptedTrafficMirror?: pulumi.Input<string>;
/**
* Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
*/
dynamicSortSubtable?: pulumi.Input<string>;
/**
* Action of an empty client certificate.
*/
emptyCertAction?: pulumi.Input<string>;
/**
* Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
*/
getAllTables?: pulumi.Input<string>;
/**
* Maximum supported HTTP versions. default = HTTP2 Valid values: `http1`, `http2`.
*/
httpSupportedMaxVersion?: pulumi.Input<string>;
/**
* Enable/disable logging of blocked traffic. Valid values: `enable`, `disable`.
*/
logBlockedTraffic?: pulumi.Input<string>;
/**
* Access Proxy name.
*/
name?: pulumi.Input<string>;
/**
* Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: `enable`, `disable`.
*/
svrPoolMultiplex?: pulumi.Input<string>;
/**
* Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
*/
svrPoolServerMaxConcurrentRequest?: pulumi.Input<number>;
/**
* Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
*/
svrPoolServerMaxRequest?: pulumi.Input<number>;
/**
* Time-to-live in the server pool for idle connections to servers.
*/
svrPoolTtl?: pulumi.Input<number>;
/**
* Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: `disable`, `enable`.
*/
userAgentDetect?: pulumi.Input<string>;
/**
* Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
*/
vdomparam?: pulumi.Input<string>;
/**
* Virtual IP name.
*/
vip?: pulumi.Input<string>;
}