@pulumiverse/fortios
Version:
A Pulumi package for creating and managing Fortios resources. Based on terraform-provider-fortios: version v1.16.0
878 lines (877 loc) • 35.4 kB
TypeScript
import * as pulumi from "@pulumi/pulumi";
/**
* Configure FortiGuard services.
*
* ## Example Usage
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as fortios from "@pulumiverse/fortios";
*
* const trname = new fortios.system.Fortiguard("trname", {
* antispamCache: "enable",
* antispamCacheMpercent: 2,
* antispamCacheTtl: 1800,
* antispamExpiration: 1618617600,
* antispamForceOff: "disable",
* antispamLicense: 1,
* antispamTimeout: 7,
* autoJoinForticloud: "enable",
* ddnsServerIp: "0.0.0.0",
* ddnsServerPort: 443,
* loadBalanceServers: 1,
* outbreakPreventionCache: "enable",
* outbreakPreventionCacheMpercent: 2,
* outbreakPreventionCacheTtl: 300,
* outbreakPreventionExpiration: 1618617600,
* outbreakPreventionForceOff: "disable",
* outbreakPreventionLicense: 1,
* outbreakPreventionTimeout: 7,
* port: "8888",
* sdnsServerIp: "\"208.91.112.220\" ",
* sdnsServerPort: 53,
* sourceIp: "0.0.0.0",
* sourceIp6: "::",
* updateServerLocation: "usa",
* webfilterCache: "enable",
* webfilterCacheTtl: 3600,
* webfilterExpiration: 1618617600,
* webfilterForceOff: "disable",
* webfilterLicense: 1,
* webfilterTimeout: 15,
* });
* ```
*
* ## Import
*
* System Fortiguard can be imported using any of these accepted formats:
*
* ```sh
* $ pulumi import fortios:system/fortiguard:Fortiguard labelname SystemFortiguard
* ```
*
* If you do not want to import arguments of block:
*
* $ export "FORTIOS_IMPORT_TABLE"="false"
*
* ```sh
* $ pulumi import fortios:system/fortiguard:Fortiguard labelname SystemFortiguard
* ```
*
* $ unset "FORTIOS_IMPORT_TABLE"
*/
export declare class Fortiguard extends pulumi.CustomResource {
/**
* Get an existing Fortiguard resource's state with the given name, ID, and optional extra
* properties used to qualify the lookup.
*
* @param name The _unique_ name of the resulting resource.
* @param id The _unique_ provider ID of the resource to lookup.
* @param state Any extra arguments used during the lookup.
* @param opts Optional settings to control the behavior of the CustomResource.
*/
static get(name: string, id: pulumi.Input<pulumi.ID>, state?: FortiguardState, opts?: pulumi.CustomResourceOptions): Fortiguard;
/**
* Returns true if the given object is an instance of Fortiguard. This is designed to work even
* when multiple copies of the Pulumi SDK have been loaded into the same process.
*/
static isInstance(obj: any): obj is Fortiguard;
/**
* Enable/disable FortiGuard antispam request caching. Uses a small amount of memory but improves performance. Valid values: `enable`, `disable`.
*/
readonly antispamCache: pulumi.Output<string>;
/**
* Maximum percentage of FortiGate memory the antispam cache is allowed to use (1 - 15).
*/
readonly antispamCacheMpercent: pulumi.Output<number>;
/**
* Maximum permille of FortiGate memory the antispam cache is allowed to use (1 - 150).
*/
readonly antispamCacheMpermille: pulumi.Output<number>;
/**
* Time-to-live for antispam cache entries in seconds (300 - 86400). Lower times reduce the cache size. Higher times may improve performance since the cache will have more entries.
*/
readonly antispamCacheTtl: pulumi.Output<number>;
/**
* Expiration date of the FortiGuard antispam contract.
*/
readonly antispamExpiration: pulumi.Output<number>;
/**
* Enable/disable turning off the FortiGuard antispam service. Valid values: `enable`, `disable`.
*/
readonly antispamForceOff: pulumi.Output<string>;
/**
* Interval of time between license checks for the FortiGuard antispam contract.
*/
readonly antispamLicense: pulumi.Output<number>;
/**
* Antispam query time out (1 - 30 sec, default = 7).
*/
readonly antispamTimeout: pulumi.Output<number>;
/**
* IP address of the FortiGuard anycast DNS rating server.
*/
readonly anycastSdnsServerIp: pulumi.Output<string>;
/**
* Port to connect to on the FortiGuard anycast DNS rating server.
*/
readonly anycastSdnsServerPort: pulumi.Output<number>;
/**
* Enable/disable automatic patch-level firmware upgrade from FortiGuard. The FortiGate unit searches for new patches only in the same major and minor version. Valid values: `enable`, `disable`.
*/
readonly autoFirmwareUpgrade: pulumi.Output<string>;
/**
* Allowed day(s) of the week to install an automatic patch-level firmware upgrade from FortiGuard (default is none). Disallow any day of the week to use auto-firmware-upgrade-delay instead, which waits for designated days before installing an automatic patch-level firmware upgrade. Valid values: `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`.
*/
readonly autoFirmwareUpgradeDay: pulumi.Output<string>;
/**
* Delay of day(s) before installing an automatic patch-level firmware upgrade from FortiGuard (default = 3). Set it 0 to use auto-firmware-upgrade-day instead, which selects allowed day(s) of the week for installing an automatic patch-level firmware upgrade.
*/
readonly autoFirmwareUpgradeDelay: pulumi.Output<number>;
/**
* End time in the designated time window for automatic patch-level firmware upgrade from FortiGuard in 24 hour time (0 ~ 23, default = 4). When the end time is smaller than the start time, the end time is interpreted as the next day. The actual upgrade time is selected randomly within the time window.
*/
readonly autoFirmwareUpgradeEndHour: pulumi.Output<number>;
/**
* Start time in the designated time window for automatic patch-level firmware upgrade from FortiGuard in 24 hour time (0 ~ 23, default = 2). The actual upgrade time is selected randomly within the time window.
*/
readonly autoFirmwareUpgradeStartHour: pulumi.Output<number>;
/**
* Automatically connect to and login to FortiCloud. Valid values: `enable`, `disable`.
*/
readonly autoJoinForticloud: pulumi.Output<string>;
/**
* IP address of the FortiDDNS server.
*/
readonly ddnsServerIp: pulumi.Output<string>;
/**
* IPv6 address of the FortiDDNS server.
*/
readonly ddnsServerIp6: pulumi.Output<string>;
/**
* Port used to communicate with FortiDDNS servers.
*/
readonly ddnsServerPort: pulumi.Output<number>;
/**
* Threshold for number of days before FortiGuard license expiration to generate license expiring event log (1 - 100 days, default = 15).
*/
readonly fdsLicenseExpiringDays: pulumi.Output<number>;
/**
* Enable/disable use of FortiGuard's anycast network. Valid values: `enable`, `disable`.
*/
readonly fortiguardAnycast: pulumi.Output<string>;
/**
* Configure which of Fortinet's servers to provide FortiGuard services in FortiGuard's anycast network. Default is Fortinet. Valid values: `fortinet`, `aws`, `debug`.
*/
readonly fortiguardAnycastSource: pulumi.Output<string>;
/**
* Enable/disable prompting of automatic patch-level firmware upgrade recommendation. Valid values: `enable`, `disable`.
*/
readonly guiPromptAutoUpgrade: pulumi.Output<string>;
/**
* Specify outgoing interface to reach server.
*/
readonly interface: pulumi.Output<string>;
/**
* Specify how to select outgoing interface to reach server. Valid values: `auto`, `sdwan`, `specify`.
*/
readonly interfaceSelectMethod: pulumi.Output<string>;
/**
* Number of servers to alternate between as first FortiGuard option.
*/
readonly loadBalanceServers: pulumi.Output<number>;
/**
* Enable/disable FortiGuard Virus Outbreak Prevention cache. Valid values: `enable`, `disable`.
*/
readonly outbreakPreventionCache: pulumi.Output<string>;
/**
* Maximum percent of memory FortiGuard Virus Outbreak Prevention cache can use (1 - 15%, default = 2).
*/
readonly outbreakPreventionCacheMpercent: pulumi.Output<number>;
/**
* Maximum permille of memory FortiGuard Virus Outbreak Prevention cache can use (1 - 150 permille, default = 1).
*/
readonly outbreakPreventionCacheMpermille: pulumi.Output<number>;
/**
* Time-to-live for FortiGuard Virus Outbreak Prevention cache entries (300 - 86400 sec, default = 300).
*/
readonly outbreakPreventionCacheTtl: pulumi.Output<number>;
/**
* Expiration date of FortiGuard Virus Outbreak Prevention contract.
*/
readonly outbreakPreventionExpiration: pulumi.Output<number>;
/**
* Turn off FortiGuard Virus Outbreak Prevention service. Valid values: `enable`, `disable`.
*/
readonly outbreakPreventionForceOff: pulumi.Output<string>;
/**
* Interval of time between license checks for FortiGuard Virus Outbreak Prevention contract.
*/
readonly outbreakPreventionLicense: pulumi.Output<number>;
/**
* FortiGuard Virus Outbreak Prevention time out (1 - 30 sec, default = 7).
*/
readonly outbreakPreventionTimeout: pulumi.Output<number>;
/**
* Enable/disable use of persistent connection to receive update notification from FortiGuard. Valid values: `enable`, `disable`.
*/
readonly persistentConnection: pulumi.Output<string>;
/**
* Port used to communicate with the FortiGuard servers.
*/
readonly port: pulumi.Output<string>;
/**
* Protocol used to communicate with the FortiGuard servers. Valid values: `udp`, `http`, `https`.
*/
readonly protocol: pulumi.Output<string>;
/**
* Proxy user password.
*/
readonly proxyPassword: pulumi.Output<string | undefined>;
/**
* IP address of the proxy server.
*/
readonly proxyServerIp: pulumi.Output<string>;
/**
* Port used to communicate with the proxy server.
*/
readonly proxyServerPort: pulumi.Output<number>;
/**
* Proxy user name.
*/
readonly proxyUsername: pulumi.Output<string>;
/**
* Enable/disable FortiCloud Sandbox inline-scan. Valid values: `enable`, `disable`.
*/
readonly sandboxInlineScan: pulumi.Output<string>;
/**
* Cloud sandbox region.
*/
readonly sandboxRegion: pulumi.Output<string>;
/**
* Customization options for the FortiGuard DNS service. Valid values: `include-question-section`.
*/
readonly sdnsOptions: pulumi.Output<string>;
/**
* IP address of the FortiDNS server.
*/
readonly sdnsServerIp: pulumi.Output<string>;
/**
* Port used to communicate with FortiDNS servers.
*/
readonly sdnsServerPort: pulumi.Output<number>;
/**
* Service account ID.
*/
readonly serviceAccountId: pulumi.Output<string>;
/**
* Source IPv4 address used to communicate with FortiGuard.
*/
readonly sourceIp: pulumi.Output<string>;
/**
* Source IPv6 address used to communicate with FortiGuard.
*/
readonly sourceIp6: pulumi.Output<string>;
/**
* Enable/disable proxy dictionary rebuild. Valid values: `enable`, `disable`.
*/
readonly updateBuildProxy: pulumi.Output<string>;
/**
* Enable/disable DLP signature update. Valid values: `enable`, `disable`.
*/
readonly updateDldb: pulumi.Output<string>;
/**
* Enable/disable external resource update. Valid values: `enable`, `disable`.
*/
readonly updateExtdb: pulumi.Output<string>;
/**
* Enable/disable Internet Service Database update. Valid values: `enable`, `disable`.
*/
readonly updateFfdb: pulumi.Output<string>;
/**
* Signature update server location.
*/
readonly updateServerLocation: pulumi.Output<string>;
/**
* Enable/disable allowlist update. Valid values: `enable`, `disable`.
*/
readonly updateUwdb: pulumi.Output<string>;
/**
* FortiGuard Service virtual domain name.
*/
readonly vdom: pulumi.Output<string>;
/**
* Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
*/
readonly vdomparam: pulumi.Output<string>;
/**
* Expiration date of the FortiGuard video filter contract.
*/
readonly videofilterExpiration: pulumi.Output<number>;
/**
* Interval of time between license checks for the FortiGuard video filter contract.
*/
readonly videofilterLicense: pulumi.Output<number>;
/**
* Enable/disable FortiGuard web filter caching. Valid values: `enable`, `disable`.
*/
readonly webfilterCache: pulumi.Output<string>;
/**
* Time-to-live for web filter cache entries in seconds (300 - 86400).
*/
readonly webfilterCacheTtl: pulumi.Output<number>;
/**
* Expiration date of the FortiGuard web filter contract.
*/
readonly webfilterExpiration: pulumi.Output<number>;
/**
* Enable/disable turning off the FortiGuard web filtering service. Valid values: `enable`, `disable`.
*/
readonly webfilterForceOff: pulumi.Output<string>;
/**
* Interval of time between license checks for the FortiGuard web filter contract.
*/
readonly webfilterLicense: pulumi.Output<number>;
/**
* Web filter query time out, 1 - 30 sec. On FortiOS versions 6.2.0-7.4.0: default = 7. On FortiOS versions >= 7.4.1: default = 15.
*/
readonly webfilterTimeout: pulumi.Output<number>;
/**
* Create a Fortiguard resource with the given unique name, arguments, and options.
*
* @param name The _unique_ name of the resource.
* @param args The arguments to use to populate this resource's properties.
* @param opts A bag of options that control this resource's behavior.
*/
constructor(name: string, args: FortiguardArgs, opts?: pulumi.CustomResourceOptions);
}
/**
* Input properties used for looking up and filtering Fortiguard resources.
*/
export interface FortiguardState {
/**
* Enable/disable FortiGuard antispam request caching. Uses a small amount of memory but improves performance. Valid values: `enable`, `disable`.
*/
antispamCache?: pulumi.Input<string>;
/**
* Maximum percentage of FortiGate memory the antispam cache is allowed to use (1 - 15).
*/
antispamCacheMpercent?: pulumi.Input<number>;
/**
* Maximum permille of FortiGate memory the antispam cache is allowed to use (1 - 150).
*/
antispamCacheMpermille?: pulumi.Input<number>;
/**
* Time-to-live for antispam cache entries in seconds (300 - 86400). Lower times reduce the cache size. Higher times may improve performance since the cache will have more entries.
*/
antispamCacheTtl?: pulumi.Input<number>;
/**
* Expiration date of the FortiGuard antispam contract.
*/
antispamExpiration?: pulumi.Input<number>;
/**
* Enable/disable turning off the FortiGuard antispam service. Valid values: `enable`, `disable`.
*/
antispamForceOff?: pulumi.Input<string>;
/**
* Interval of time between license checks for the FortiGuard antispam contract.
*/
antispamLicense?: pulumi.Input<number>;
/**
* Antispam query time out (1 - 30 sec, default = 7).
*/
antispamTimeout?: pulumi.Input<number>;
/**
* IP address of the FortiGuard anycast DNS rating server.
*/
anycastSdnsServerIp?: pulumi.Input<string>;
/**
* Port to connect to on the FortiGuard anycast DNS rating server.
*/
anycastSdnsServerPort?: pulumi.Input<number>;
/**
* Enable/disable automatic patch-level firmware upgrade from FortiGuard. The FortiGate unit searches for new patches only in the same major and minor version. Valid values: `enable`, `disable`.
*/
autoFirmwareUpgrade?: pulumi.Input<string>;
/**
* Allowed day(s) of the week to install an automatic patch-level firmware upgrade from FortiGuard (default is none). Disallow any day of the week to use auto-firmware-upgrade-delay instead, which waits for designated days before installing an automatic patch-level firmware upgrade. Valid values: `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`.
*/
autoFirmwareUpgradeDay?: pulumi.Input<string>;
/**
* Delay of day(s) before installing an automatic patch-level firmware upgrade from FortiGuard (default = 3). Set it 0 to use auto-firmware-upgrade-day instead, which selects allowed day(s) of the week for installing an automatic patch-level firmware upgrade.
*/
autoFirmwareUpgradeDelay?: pulumi.Input<number>;
/**
* End time in the designated time window for automatic patch-level firmware upgrade from FortiGuard in 24 hour time (0 ~ 23, default = 4). When the end time is smaller than the start time, the end time is interpreted as the next day. The actual upgrade time is selected randomly within the time window.
*/
autoFirmwareUpgradeEndHour?: pulumi.Input<number>;
/**
* Start time in the designated time window for automatic patch-level firmware upgrade from FortiGuard in 24 hour time (0 ~ 23, default = 2). The actual upgrade time is selected randomly within the time window.
*/
autoFirmwareUpgradeStartHour?: pulumi.Input<number>;
/**
* Automatically connect to and login to FortiCloud. Valid values: `enable`, `disable`.
*/
autoJoinForticloud?: pulumi.Input<string>;
/**
* IP address of the FortiDDNS server.
*/
ddnsServerIp?: pulumi.Input<string>;
/**
* IPv6 address of the FortiDDNS server.
*/
ddnsServerIp6?: pulumi.Input<string>;
/**
* Port used to communicate with FortiDDNS servers.
*/
ddnsServerPort?: pulumi.Input<number>;
/**
* Threshold for number of days before FortiGuard license expiration to generate license expiring event log (1 - 100 days, default = 15).
*/
fdsLicenseExpiringDays?: pulumi.Input<number>;
/**
* Enable/disable use of FortiGuard's anycast network. Valid values: `enable`, `disable`.
*/
fortiguardAnycast?: pulumi.Input<string>;
/**
* Configure which of Fortinet's servers to provide FortiGuard services in FortiGuard's anycast network. Default is Fortinet. Valid values: `fortinet`, `aws`, `debug`.
*/
fortiguardAnycastSource?: pulumi.Input<string>;
/**
* Enable/disable prompting of automatic patch-level firmware upgrade recommendation. Valid values: `enable`, `disable`.
*/
guiPromptAutoUpgrade?: pulumi.Input<string>;
/**
* Specify outgoing interface to reach server.
*/
interface?: pulumi.Input<string>;
/**
* Specify how to select outgoing interface to reach server. Valid values: `auto`, `sdwan`, `specify`.
*/
interfaceSelectMethod?: pulumi.Input<string>;
/**
* Number of servers to alternate between as first FortiGuard option.
*/
loadBalanceServers?: pulumi.Input<number>;
/**
* Enable/disable FortiGuard Virus Outbreak Prevention cache. Valid values: `enable`, `disable`.
*/
outbreakPreventionCache?: pulumi.Input<string>;
/**
* Maximum percent of memory FortiGuard Virus Outbreak Prevention cache can use (1 - 15%, default = 2).
*/
outbreakPreventionCacheMpercent?: pulumi.Input<number>;
/**
* Maximum permille of memory FortiGuard Virus Outbreak Prevention cache can use (1 - 150 permille, default = 1).
*/
outbreakPreventionCacheMpermille?: pulumi.Input<number>;
/**
* Time-to-live for FortiGuard Virus Outbreak Prevention cache entries (300 - 86400 sec, default = 300).
*/
outbreakPreventionCacheTtl?: pulumi.Input<number>;
/**
* Expiration date of FortiGuard Virus Outbreak Prevention contract.
*/
outbreakPreventionExpiration?: pulumi.Input<number>;
/**
* Turn off FortiGuard Virus Outbreak Prevention service. Valid values: `enable`, `disable`.
*/
outbreakPreventionForceOff?: pulumi.Input<string>;
/**
* Interval of time between license checks for FortiGuard Virus Outbreak Prevention contract.
*/
outbreakPreventionLicense?: pulumi.Input<number>;
/**
* FortiGuard Virus Outbreak Prevention time out (1 - 30 sec, default = 7).
*/
outbreakPreventionTimeout?: pulumi.Input<number>;
/**
* Enable/disable use of persistent connection to receive update notification from FortiGuard. Valid values: `enable`, `disable`.
*/
persistentConnection?: pulumi.Input<string>;
/**
* Port used to communicate with the FortiGuard servers.
*/
port?: pulumi.Input<string>;
/**
* Protocol used to communicate with the FortiGuard servers. Valid values: `udp`, `http`, `https`.
*/
protocol?: pulumi.Input<string>;
/**
* Proxy user password.
*/
proxyPassword?: pulumi.Input<string>;
/**
* IP address of the proxy server.
*/
proxyServerIp?: pulumi.Input<string>;
/**
* Port used to communicate with the proxy server.
*/
proxyServerPort?: pulumi.Input<number>;
/**
* Proxy user name.
*/
proxyUsername?: pulumi.Input<string>;
/**
* Enable/disable FortiCloud Sandbox inline-scan. Valid values: `enable`, `disable`.
*/
sandboxInlineScan?: pulumi.Input<string>;
/**
* Cloud sandbox region.
*/
sandboxRegion?: pulumi.Input<string>;
/**
* Customization options for the FortiGuard DNS service. Valid values: `include-question-section`.
*/
sdnsOptions?: pulumi.Input<string>;
/**
* IP address of the FortiDNS server.
*/
sdnsServerIp?: pulumi.Input<string>;
/**
* Port used to communicate with FortiDNS servers.
*/
sdnsServerPort?: pulumi.Input<number>;
/**
* Service account ID.
*/
serviceAccountId?: pulumi.Input<string>;
/**
* Source IPv4 address used to communicate with FortiGuard.
*/
sourceIp?: pulumi.Input<string>;
/**
* Source IPv6 address used to communicate with FortiGuard.
*/
sourceIp6?: pulumi.Input<string>;
/**
* Enable/disable proxy dictionary rebuild. Valid values: `enable`, `disable`.
*/
updateBuildProxy?: pulumi.Input<string>;
/**
* Enable/disable DLP signature update. Valid values: `enable`, `disable`.
*/
updateDldb?: pulumi.Input<string>;
/**
* Enable/disable external resource update. Valid values: `enable`, `disable`.
*/
updateExtdb?: pulumi.Input<string>;
/**
* Enable/disable Internet Service Database update. Valid values: `enable`, `disable`.
*/
updateFfdb?: pulumi.Input<string>;
/**
* Signature update server location.
*/
updateServerLocation?: pulumi.Input<string>;
/**
* Enable/disable allowlist update. Valid values: `enable`, `disable`.
*/
updateUwdb?: pulumi.Input<string>;
/**
* FortiGuard Service virtual domain name.
*/
vdom?: pulumi.Input<string>;
/**
* Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
*/
vdomparam?: pulumi.Input<string>;
/**
* Expiration date of the FortiGuard video filter contract.
*/
videofilterExpiration?: pulumi.Input<number>;
/**
* Interval of time between license checks for the FortiGuard video filter contract.
*/
videofilterLicense?: pulumi.Input<number>;
/**
* Enable/disable FortiGuard web filter caching. Valid values: `enable`, `disable`.
*/
webfilterCache?: pulumi.Input<string>;
/**
* Time-to-live for web filter cache entries in seconds (300 - 86400).
*/
webfilterCacheTtl?: pulumi.Input<number>;
/**
* Expiration date of the FortiGuard web filter contract.
*/
webfilterExpiration?: pulumi.Input<number>;
/**
* Enable/disable turning off the FortiGuard web filtering service. Valid values: `enable`, `disable`.
*/
webfilterForceOff?: pulumi.Input<string>;
/**
* Interval of time between license checks for the FortiGuard web filter contract.
*/
webfilterLicense?: pulumi.Input<number>;
/**
* Web filter query time out, 1 - 30 sec. On FortiOS versions 6.2.0-7.4.0: default = 7. On FortiOS versions >= 7.4.1: default = 15.
*/
webfilterTimeout?: pulumi.Input<number>;
}
/**
* The set of arguments for constructing a Fortiguard resource.
*/
export interface FortiguardArgs {
/**
* Enable/disable FortiGuard antispam request caching. Uses a small amount of memory but improves performance. Valid values: `enable`, `disable`.
*/
antispamCache?: pulumi.Input<string>;
/**
* Maximum percentage of FortiGate memory the antispam cache is allowed to use (1 - 15).
*/
antispamCacheMpercent?: pulumi.Input<number>;
/**
* Maximum permille of FortiGate memory the antispam cache is allowed to use (1 - 150).
*/
antispamCacheMpermille?: pulumi.Input<number>;
/**
* Time-to-live for antispam cache entries in seconds (300 - 86400). Lower times reduce the cache size. Higher times may improve performance since the cache will have more entries.
*/
antispamCacheTtl?: pulumi.Input<number>;
/**
* Expiration date of the FortiGuard antispam contract.
*/
antispamExpiration?: pulumi.Input<number>;
/**
* Enable/disable turning off the FortiGuard antispam service. Valid values: `enable`, `disable`.
*/
antispamForceOff?: pulumi.Input<string>;
/**
* Interval of time between license checks for the FortiGuard antispam contract.
*/
antispamLicense?: pulumi.Input<number>;
/**
* Antispam query time out (1 - 30 sec, default = 7).
*/
antispamTimeout: pulumi.Input<number>;
/**
* IP address of the FortiGuard anycast DNS rating server.
*/
anycastSdnsServerIp?: pulumi.Input<string>;
/**
* Port to connect to on the FortiGuard anycast DNS rating server.
*/
anycastSdnsServerPort?: pulumi.Input<number>;
/**
* Enable/disable automatic patch-level firmware upgrade from FortiGuard. The FortiGate unit searches for new patches only in the same major and minor version. Valid values: `enable`, `disable`.
*/
autoFirmwareUpgrade?: pulumi.Input<string>;
/**
* Allowed day(s) of the week to install an automatic patch-level firmware upgrade from FortiGuard (default is none). Disallow any day of the week to use auto-firmware-upgrade-delay instead, which waits for designated days before installing an automatic patch-level firmware upgrade. Valid values: `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`.
*/
autoFirmwareUpgradeDay?: pulumi.Input<string>;
/**
* Delay of day(s) before installing an automatic patch-level firmware upgrade from FortiGuard (default = 3). Set it 0 to use auto-firmware-upgrade-day instead, which selects allowed day(s) of the week for installing an automatic patch-level firmware upgrade.
*/
autoFirmwareUpgradeDelay?: pulumi.Input<number>;
/**
* End time in the designated time window for automatic patch-level firmware upgrade from FortiGuard in 24 hour time (0 ~ 23, default = 4). When the end time is smaller than the start time, the end time is interpreted as the next day. The actual upgrade time is selected randomly within the time window.
*/
autoFirmwareUpgradeEndHour?: pulumi.Input<number>;
/**
* Start time in the designated time window for automatic patch-level firmware upgrade from FortiGuard in 24 hour time (0 ~ 23, default = 2). The actual upgrade time is selected randomly within the time window.
*/
autoFirmwareUpgradeStartHour?: pulumi.Input<number>;
/**
* Automatically connect to and login to FortiCloud. Valid values: `enable`, `disable`.
*/
autoJoinForticloud?: pulumi.Input<string>;
/**
* IP address of the FortiDDNS server.
*/
ddnsServerIp?: pulumi.Input<string>;
/**
* IPv6 address of the FortiDDNS server.
*/
ddnsServerIp6?: pulumi.Input<string>;
/**
* Port used to communicate with FortiDDNS servers.
*/
ddnsServerPort?: pulumi.Input<number>;
/**
* Threshold for number of days before FortiGuard license expiration to generate license expiring event log (1 - 100 days, default = 15).
*/
fdsLicenseExpiringDays?: pulumi.Input<number>;
/**
* Enable/disable use of FortiGuard's anycast network. Valid values: `enable`, `disable`.
*/
fortiguardAnycast?: pulumi.Input<string>;
/**
* Configure which of Fortinet's servers to provide FortiGuard services in FortiGuard's anycast network. Default is Fortinet. Valid values: `fortinet`, `aws`, `debug`.
*/
fortiguardAnycastSource?: pulumi.Input<string>;
/**
* Enable/disable prompting of automatic patch-level firmware upgrade recommendation. Valid values: `enable`, `disable`.
*/
guiPromptAutoUpgrade?: pulumi.Input<string>;
/**
* Specify outgoing interface to reach server.
*/
interface?: pulumi.Input<string>;
/**
* Specify how to select outgoing interface to reach server. Valid values: `auto`, `sdwan`, `specify`.
*/
interfaceSelectMethod?: pulumi.Input<string>;
/**
* Number of servers to alternate between as first FortiGuard option.
*/
loadBalanceServers?: pulumi.Input<number>;
/**
* Enable/disable FortiGuard Virus Outbreak Prevention cache. Valid values: `enable`, `disable`.
*/
outbreakPreventionCache?: pulumi.Input<string>;
/**
* Maximum percent of memory FortiGuard Virus Outbreak Prevention cache can use (1 - 15%, default = 2).
*/
outbreakPreventionCacheMpercent?: pulumi.Input<number>;
/**
* Maximum permille of memory FortiGuard Virus Outbreak Prevention cache can use (1 - 150 permille, default = 1).
*/
outbreakPreventionCacheMpermille?: pulumi.Input<number>;
/**
* Time-to-live for FortiGuard Virus Outbreak Prevention cache entries (300 - 86400 sec, default = 300).
*/
outbreakPreventionCacheTtl?: pulumi.Input<number>;
/**
* Expiration date of FortiGuard Virus Outbreak Prevention contract.
*/
outbreakPreventionExpiration?: pulumi.Input<number>;
/**
* Turn off FortiGuard Virus Outbreak Prevention service. Valid values: `enable`, `disable`.
*/
outbreakPreventionForceOff?: pulumi.Input<string>;
/**
* Interval of time between license checks for FortiGuard Virus Outbreak Prevention contract.
*/
outbreakPreventionLicense?: pulumi.Input<number>;
/**
* FortiGuard Virus Outbreak Prevention time out (1 - 30 sec, default = 7).
*/
outbreakPreventionTimeout: pulumi.Input<number>;
/**
* Enable/disable use of persistent connection to receive update notification from FortiGuard. Valid values: `enable`, `disable`.
*/
persistentConnection?: pulumi.Input<string>;
/**
* Port used to communicate with the FortiGuard servers.
*/
port?: pulumi.Input<string>;
/**
* Protocol used to communicate with the FortiGuard servers. Valid values: `udp`, `http`, `https`.
*/
protocol?: pulumi.Input<string>;
/**
* Proxy user password.
*/
proxyPassword?: pulumi.Input<string>;
/**
* IP address of the proxy server.
*/
proxyServerIp?: pulumi.Input<string>;
/**
* Port used to communicate with the proxy server.
*/
proxyServerPort?: pulumi.Input<number>;
/**
* Proxy user name.
*/
proxyUsername?: pulumi.Input<string>;
/**
* Enable/disable FortiCloud Sandbox inline-scan. Valid values: `enable`, `disable`.
*/
sandboxInlineScan?: pulumi.Input<string>;
/**
* Cloud sandbox region.
*/
sandboxRegion?: pulumi.Input<string>;
/**
* Customization options for the FortiGuard DNS service. Valid values: `include-question-section`.
*/
sdnsOptions?: pulumi.Input<string>;
/**
* IP address of the FortiDNS server.
*/
sdnsServerIp?: pulumi.Input<string>;
/**
* Port used to communicate with FortiDNS servers.
*/
sdnsServerPort?: pulumi.Input<number>;
/**
* Service account ID.
*/
serviceAccountId?: pulumi.Input<string>;
/**
* Source IPv4 address used to communicate with FortiGuard.
*/
sourceIp?: pulumi.Input<string>;
/**
* Source IPv6 address used to communicate with FortiGuard.
*/
sourceIp6?: pulumi.Input<string>;
/**
* Enable/disable proxy dictionary rebuild. Valid values: `enable`, `disable`.
*/
updateBuildProxy?: pulumi.Input<string>;
/**
* Enable/disable DLP signature update. Valid values: `enable`, `disable`.
*/
updateDldb?: pulumi.Input<string>;
/**
* Enable/disable external resource update. Valid values: `enable`, `disable`.
*/
updateExtdb?: pulumi.Input<string>;
/**
* Enable/disable Internet Service Database update. Valid values: `enable`, `disable`.
*/
updateFfdb?: pulumi.Input<string>;
/**
* Signature update server location.
*/
updateServerLocation?: pulumi.Input<string>;
/**
* Enable/disable allowlist update. Valid values: `enable`, `disable`.
*/
updateUwdb?: pulumi.Input<string>;
/**
* FortiGuard Service virtual domain name.
*/
vdom?: pulumi.Input<string>;
/**
* Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
*/
vdomparam?: pulumi.Input<string>;
/**
* Expiration date of the FortiGuard video filter contract.
*/
videofilterExpiration?: pulumi.Input<number>;
/**
* Interval of time between license checks for the FortiGuard video filter contract.
*/
videofilterLicense?: pulumi.Input<number>;
/**
* Enable/disable FortiGuard web filter caching. Valid values: `enable`, `disable`.
*/
webfilterCache?: pulumi.Input<string>;
/**
* Time-to-live for web filter cache entries in seconds (300 - 86400).
*/
webfilterCacheTtl?: pulumi.Input<number>;
/**
* Expiration date of the FortiGuard web filter contract.
*/
webfilterExpiration?: pulumi.Input<number>;
/**
* Enable/disable turning off the FortiGuard web filtering service. Valid values: `enable`, `disable`.
*/
webfilterForceOff?: pulumi.Input<string>;
/**
* Interval of time between license checks for the FortiGuard web filter contract.
*/
webfilterLicense?: pulumi.Input<number>;
/**
* Web filter query time out, 1 - 30 sec. On FortiOS versions 6.2.0-7.4.0: default = 7. On FortiOS versions >= 7.4.1: default = 15.
*/
webfilterTimeout: pulumi.Input<number>;
}