@pulumiverse/fortios

import * as pulumi from "@pulumi/pulumi"; import * as inputs from "../types/input"; import * as outputs from "../types/output"; /** * Configure wireless intrusion detection system (WIDS) profiles. * * ## Import * * WirelessController WidsProfile can be imported using any of these accepted formats: * * ```sh * $ pulumi import fortios:wirelesscontroller/widsprofile:Widsprofile labelname {{name}} * ``` * * If you do not want to import arguments of block: * * $ export "FORTIOS_IMPORT_TABLE"="false" * * ```sh * $ pulumi import fortios:wirelesscontroller/widsprofile:Widsprofile labelname {{name}} * ``` * * $ unset "FORTIOS_IMPORT_TABLE" */ export declare class Widsprofile extends pulumi.CustomResource { /** * Get an existing Widsprofile resource's state with the given name, ID, and optional extra * properties used to qualify the lookup. * * @param name The _unique_ name of the resulting resource. * @param id The _unique_ provider ID of the resource to lookup. * @param state Any extra arguments used during the lookup. * @param opts Optional settings to control the behavior of the CustomResource. */ static get(name: string, id: pulumi.Input<pulumi.ID>, state?: WidsprofileState, opts?: pulumi.CustomResourceOptions): Widsprofile; /** * Returns true if the given object is an instance of Widsprofile. This is designed to work even * when multiple copies of the Pulumi SDK have been loaded into the same process. */ static isInstance(obj: any): obj is Widsprofile; /** * Enable/disable on-wire rogue AP auto-suppression (default = disable). Valid values: `enable`, `disable`. */ readonly apAutoSuppress: pulumi.Output<string>; /** * Optionally turn off scanning for one or more days of the week. Separate the days with a space. By default, no days are set. Valid values: `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`. */ readonly apBgscanDisableDay: pulumi.Output<string>; /** * End time, using a 24-hour clock in the format of hh:mm, for disabling background scanning (default = 00:00). */ readonly apBgscanDisableEnd: pulumi.Output<string>; /** * Firewall schedules for turning off FortiAP radio background scan. Background scan will be disabled when at least one of the schedules is valid. Separate multiple schedule names with a space. The structure of `apBgscanDisableSchedules` block is documented below. */ readonly apBgscanDisableSchedules: pulumi.Output<outputs.wirelesscontroller.WidsprofileApBgscanDisableSchedule[] | undefined>; /** * Start time, using a 24-hour clock in the format of hh:mm, for disabling background scanning (default = 00:00). */ readonly apBgscanDisableStart: pulumi.Output<string>; /** * Listen time on scanning a channel (10 - 1000 msec). On FortiOS versions 6.2.0-7.0.1: default = 20. On FortiOS versions >= 7.0.2: default = 30. */ readonly apBgscanDuration: pulumi.Output<number>; /** * Wait time for channel inactivity before scanning this channel (0 - 1000 msec). On FortiOS versions 6.2.0-7.0.1: default = 0. On FortiOS versions >= 7.0.2: default = 20. */ readonly apBgscanIdle: pulumi.Output<number>; /** * Period between successive channel scans (1 - 600 sec). On FortiOS versions 6.2.0-7.0.1: default = 1. On FortiOS versions >= 7.0.2: default = 3. */ readonly apBgscanIntv: pulumi.Output<number>; /** * Period between background scans (default = 600). On FortiOS versions 6.2.0-6.2.6: 60 - 3600 sec. On FortiOS versions 6.4.0-7.0.1: 10 - 3600 sec. */ readonly apBgscanPeriod: pulumi.Output<number>; /** * Period between background scan reports (15 - 600 sec, default = 30). */ readonly apBgscanReportIntv: pulumi.Output<number>; /** * Period between foreground scan reports (15 - 600 sec, default = 15). */ readonly apFgscanReportIntv: pulumi.Output<number>; /** * Enable/disable rogue AP detection. Valid values: `disable`, `enable`. */ readonly apScan: pulumi.Output<string>; /** * Selected ap scan channel list for 2.4G and 5G bands. The structure of `apScanChannelList2g5g` block is documented below. */ readonly apScanChannelList2g5gs: pulumi.Output<outputs.wirelesscontroller.WidsprofileApScanChannelList2g5g[] | undefined>; /** * Selected ap scan channel list for 6G band. The structure of `apScanChannelList6g` block is documented below. */ readonly apScanChannelList6gs: pulumi.Output<outputs.wirelesscontroller.WidsprofileApScanChannelList6g[] | undefined>; /** * Enable/disable passive scanning. Enable means do not send probe request on any channels (default = disable). Valid values: `enable`, `disable`. */ readonly apScanPassive: pulumi.Output<string>; /** * Minimum signal level/threshold in dBm required for the AP to report detected rogue AP (-95 to -20, default = -90). */ readonly apScanThreshold: pulumi.Output<string>; /** * Enable/disable asleap attack detection (default = disable). Valid values: `enable`, `disable`. */ readonly asleapAttack: pulumi.Output<string>; /** * The threshold value for association frame flooding. */ readonly assocFloodThresh: pulumi.Output<number>; /** * Number of seconds after which a station is considered not connected. */ readonly assocFloodTime: pulumi.Output<number>; /** * Enable/disable association frame flooding detection (default = disable). Valid values: `enable`, `disable`. */ readonly assocFrameFlood: pulumi.Output<string>; /** * The threshold value for authentication frame flooding. */ readonly authFloodThresh: pulumi.Output<number>; /** * Number of seconds after which a station is considered not connected. */ readonly authFloodTime: pulumi.Output<number>; /** * Enable/disable authentication frame flooding detection (default = disable). Valid values: `enable`, `disable`. */ readonly authFrameFlood: pulumi.Output<string>; /** * Comment. */ readonly comment: pulumi.Output<string>; /** * Enable/disable broadcasting de-authentication detection (default = disable). Valid values: `enable`, `disable`. */ readonly deauthBroadcast: pulumi.Output<string>; /** * Threshold value per second to deauth unknown src for DoS attack (0: no limit). */ readonly deauthUnknownSrcThresh: pulumi.Output<number>; /** * Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. */ readonly dynamicSortSubtable: pulumi.Output<string | undefined>; /** * Enable/disable EAPOL-Failure flooding (to AP) detection (default = disable). Valid values: `enable`, `disable`. */ readonly eapolFailFlood: pulumi.Output<string>; /** * The detection interval for EAPOL-Failure flooding (1 - 3600 sec). */ readonly eapolFailIntv: pulumi.Output<number>; /** * The threshold value for EAPOL-Failure flooding in specified interval. */ readonly eapolFailThresh: pulumi.Output<number>; /** * Enable/disable EAPOL-Logoff flooding (to AP) detection (default = disable). Valid values: `enable`, `disable`. */ readonly eapolLogoffFlood: pulumi.Output<string>; /** * The detection interval for EAPOL-Logoff flooding (1 - 3600 sec). */ readonly eapolLogoffIntv: pulumi.Output<number>; /** * The threshold value for EAPOL-Logoff flooding in specified interval. */ readonly eapolLogoffThresh: pulumi.Output<number>; /** * Enable/disable premature EAPOL-Failure flooding (to STA) detection (default = disable). Valid values: `enable`, `disable`. */ readonly eapolPreFailFlood: pulumi.Output<string>; /** * The detection interval for premature EAPOL-Failure flooding (1 - 3600 sec). */ readonly eapolPreFailIntv: pulumi.Output<number>; /** * The threshold value for premature EAPOL-Failure flooding in specified interval. */ readonly eapolPreFailThresh: pulumi.Output<number>; /** * Enable/disable premature EAPOL-Success flooding (to STA) detection (default = disable). Valid values: `enable`, `disable`. */ readonly eapolPreSuccFlood: pulumi.Output<string>; /** * The detection interval for premature EAPOL-Success flooding (1 - 3600 sec). */ readonly eapolPreSuccIntv: pulumi.Output<number>; /** * The threshold value for premature EAPOL-Success flooding in specified interval. */ readonly eapolPreSuccThresh: pulumi.Output<number>; /** * Enable/disable EAPOL-Start flooding (to AP) detection (default = disable). Valid values: `enable`, `disable`. */ readonly eapolStartFlood: pulumi.Output<string>; /** * The detection interval for EAPOL-Start flooding (1 - 3600 sec). */ readonly eapolStartIntv: pulumi.Output<number>; /** * The threshold value for EAPOL-Start flooding in specified interval. */ readonly eapolStartThresh: pulumi.Output<number>; /** * Enable/disable EAPOL-Success flooding (to AP) detection (default = disable). Valid values: `enable`, `disable`. */ readonly eapolSuccFlood: pulumi.Output<string>; /** * The detection interval for EAPOL-Success flooding (1 - 3600 sec). */ readonly eapolSuccIntv: pulumi.Output<number>; /** * The threshold value for EAPOL-Success flooding in specified interval. */ readonly eapolSuccThresh: pulumi.Output<number>; /** * Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. */ readonly getAllTables: pulumi.Output<string | undefined>; /** * Enable/disable invalid MAC OUI detection. Valid values: `enable`, `disable`. */ readonly invalidMacOui: pulumi.Output<string>; /** * Enable/disable long duration attack detection based on user configured threshold (default = disable). Valid values: `enable`, `disable`. */ readonly longDurationAttack: pulumi.Output<string>; /** * Threshold value for long duration attack detection (1000 - 32767 usec, default = 8200). */ readonly longDurationThresh: pulumi.Output<number>; /** * WIDS profile name. */ readonly name: pulumi.Output<string>; /** * Enable/disable null SSID probe response detection (default = disable). Valid values: `enable`, `disable`. */ readonly nullSsidProbeResp: pulumi.Output<string>; /** * Scan nearby WiFi stations (default = disable). Valid values: `disable`, `foreign`, `both`. */ readonly sensorMode: pulumi.Output<string>; /** * Enable/disable spoofed de-authentication attack detection (default = disable). Valid values: `enable`, `disable`. */ readonly spoofedDeauth: pulumi.Output<string>; /** * Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. * * The `apScanChannelList2g5g` block supports: */ readonly vdomparam: pulumi.Output<string>; /** * Enable/disable weak WEP IV (Initialization Vector) detection (default = disable). Valid values: `enable`, `disable`. */ readonly weakWepIv: pulumi.Output<string>; /** * Enable/disable wireless bridge detection (default = disable). Valid values: `enable`, `disable`. */ readonly wirelessBridge: pulumi.Output<string>; /** * Create a Widsprofile resource with the given unique name, arguments, and options. * * @param name The _unique_ name of the resource. * @param args The arguments to use to populate this resource's properties. * @param opts A bag of options that control this resource's behavior. */ constructor(name: string, args?: WidsprofileArgs, opts?: pulumi.CustomResourceOptions); } /** * Input properties used for looking up and filtering Widsprofile resources. */ export interface WidsprofileState { /** * Enable/disable on-wire rogue AP auto-suppression (default = disable). Valid values: `enable`, `disable`. */ apAutoSuppress?: pulumi.Input<string>; /** * Optionally turn off scanning for one or more days of the week. Separate the days with a space. By default, no days are set. Valid values: `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`. */ apBgscanDisableDay?: pulumi.Input<string>; /** * End time, using a 24-hour clock in the format of hh:mm, for disabling background scanning (default = 00:00). */ apBgscanDisableEnd?: pulumi.Input<string>; /** * Firewall schedules for turning off FortiAP radio background scan. Background scan will be disabled when at least one of the schedules is valid. Separate multiple schedule names with a space. The structure of `apBgscanDisableSchedules` block is documented below. */ apBgscanDisableSchedules?: pulumi.Input<pulumi.Input<inputs.wirelesscontroller.WidsprofileApBgscanDisableSchedule>[]>; /** * Start time, using a 24-hour clock in the format of hh:mm, for disabling background scanning (default = 00:00). */ apBgscanDisableStart?: pulumi.Input<string>; /** * Listen time on scanning a channel (10 - 1000 msec). On FortiOS versions 6.2.0-7.0.1: default = 20. On FortiOS versions >= 7.0.2: default = 30. */ apBgscanDuration?: pulumi.Input<number>; /** * Wait time for channel inactivity before scanning this channel (0 - 1000 msec). On FortiOS versions 6.2.0-7.0.1: default = 0. On FortiOS versions >= 7.0.2: default = 20. */ apBgscanIdle?: pulumi.Input<number>; /** * Period between successive channel scans (1 - 600 sec). On FortiOS versions 6.2.0-7.0.1: default = 1. On FortiOS versions >= 7.0.2: default = 3. */ apBgscanIntv?: pulumi.Input<number>; /** * Period between background scans (default = 600). On FortiOS versions 6.2.0-6.2.6: 60 - 3600 sec. On FortiOS versions 6.4.0-7.0.1: 10 - 3600 sec. */ apBgscanPeriod?: pulumi.Input<number>; /** * Period between background scan reports (15 - 600 sec, default = 30). */ apBgscanReportIntv?: pulumi.Input<number>; /** * Period between foreground scan reports (15 - 600 sec, default = 15). */ apFgscanReportIntv?: pulumi.Input<number>; /** * Enable/disable rogue AP detection. Valid values: `disable`, `enable`. */ apScan?: pulumi.Input<string>; /** * Selected ap scan channel list for 2.4G and 5G bands. The structure of `apScanChannelList2g5g` block is documented below. */ apScanChannelList2g5gs?: pulumi.Input<pulumi.Input<inputs.wirelesscontroller.WidsprofileApScanChannelList2g5g>[]>; /** * Selected ap scan channel list for 6G band. The structure of `apScanChannelList6g` block is documented below. */ apScanChannelList6gs?: pulumi.Input<pulumi.Input<inputs.wirelesscontroller.WidsprofileApScanChannelList6g>[]>; /** * Enable/disable passive scanning. Enable means do not send probe request on any channels (default = disable). Valid values: `enable`, `disable`. */ apScanPassive?: pulumi.Input<string>; /** * Minimum signal level/threshold in dBm required for the AP to report detected rogue AP (-95 to -20, default = -90). */ apScanThreshold?: pulumi.Input<string>; /** * Enable/disable asleap attack detection (default = disable). Valid values: `enable`, `disable`. */ asleapAttack?: pulumi.Input<string>; /** * The threshold value for association frame flooding. */ assocFloodThresh?: pulumi.Input<number>; /** * Number of seconds after which a station is considered not connected. */ assocFloodTime?: pulumi.Input<number>; /** * Enable/disable association frame flooding detection (default = disable). Valid values: `enable`, `disable`. */ assocFrameFlood?: pulumi.Input<string>; /** * The threshold value for authentication frame flooding. */ authFloodThresh?: pulumi.Input<number>; /** * Number of seconds after which a station is considered not connected. */ authFloodTime?: pulumi.Input<number>; /** * Enable/disable authentication frame flooding detection (default = disable). Valid values: `enable`, `disable`. */ authFrameFlood?: pulumi.Input<string>; /** * Comment. */ comment?: pulumi.Input<string>; /** * Enable/disable broadcasting de-authentication detection (default = disable). Valid values: `enable`, `disable`. */ deauthBroadcast?: pulumi.Input<string>; /** * Threshold value per second to deauth unknown src for DoS attack (0: no limit). */ deauthUnknownSrcThresh?: pulumi.Input<number>; /** * Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. */ dynamicSortSubtable?: pulumi.Input<string>; /** * Enable/disable EAPOL-Failure flooding (to AP) detection (default = disable). Valid values: `enable`, `disable`. */ eapolFailFlood?: pulumi.Input<string>; /** * The detection interval for EAPOL-Failure flooding (1 - 3600 sec). */ eapolFailIntv?: pulumi.Input<number>; /** * The threshold value for EAPOL-Failure flooding in specified interval. */ eapolFailThresh?: pulumi.Input<number>; /** * Enable/disable EAPOL-Logoff flooding (to AP) detection (default = disable). Valid values: `enable`, `disable`. */ eapolLogoffFlood?: pulumi.Input<string>; /** * The detection interval for EAPOL-Logoff flooding (1 - 3600 sec). */ eapolLogoffIntv?: pulumi.Input<number>; /** * The threshold value for EAPOL-Logoff flooding in specified interval. */ eapolLogoffThresh?: pulumi.Input<number>; /** * Enable/disable premature EAPOL-Failure flooding (to STA) detection (default = disable). Valid values: `enable`, `disable`. */ eapolPreFailFlood?: pulumi.Input<string>; /** * The detection interval for premature EAPOL-Failure flooding (1 - 3600 sec). */ eapolPreFailIntv?: pulumi.Input<number>; /** * The threshold value for premature EAPOL-Failure flooding in specified interval. */ eapolPreFailThresh?: pulumi.Input<number>; /** * Enable/disable premature EAPOL-Success flooding (to STA) detection (default = disable). Valid values: `enable`, `disable`. */ eapolPreSuccFlood?: pulumi.Input<string>; /** * The detection interval for premature EAPOL-Success flooding (1 - 3600 sec). */ eapolPreSuccIntv?: pulumi.Input<number>; /** * The threshold value for premature EAPOL-Success flooding in specified interval. */ eapolPreSuccThresh?: pulumi.Input<number>; /** * Enable/disable EAPOL-Start flooding (to AP) detection (default = disable). Valid values: `enable`, `disable`. */ eapolStartFlood?: pulumi.Input<string>; /** * The detection interval for EAPOL-Start flooding (1 - 3600 sec). */ eapolStartIntv?: pulumi.Input<number>; /** * The threshold value for EAPOL-Start flooding in specified interval. */ eapolStartThresh?: pulumi.Input<number>; /** * Enable/disable EAPOL-Success flooding (to AP) detection (default = disable). Valid values: `enable`, `disable`. */ eapolSuccFlood?: pulumi.Input<string>; /** * The detection interval for EAPOL-Success flooding (1 - 3600 sec). */ eapolSuccIntv?: pulumi.Input<number>; /** * The threshold value for EAPOL-Success flooding in specified interval. */ eapolSuccThresh?: pulumi.Input<number>; /** * Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. */ getAllTables?: pulumi.Input<string>; /** * Enable/disable invalid MAC OUI detection. Valid values: `enable`, `disable`. */ invalidMacOui?: pulumi.Input<string>; /** * Enable/disable long duration attack detection based on user configured threshold (default = disable). Valid values: `enable`, `disable`. */ longDurationAttack?: pulumi.Input<string>; /** * Threshold value for long duration attack detection (1000 - 32767 usec, default = 8200). */ longDurationThresh?: pulumi.Input<number>; /** * WIDS profile name. */ name?: pulumi.Input<string>; /** * Enable/disable null SSID probe response detection (default = disable). Valid values: `enable`, `disable`. */ nullSsidProbeResp?: pulumi.Input<string>; /** * Scan nearby WiFi stations (default = disable). Valid values: `disable`, `foreign`, `both`. */ sensorMode?: pulumi.Input<string>; /** * Enable/disable spoofed de-authentication attack detection (default = disable). Valid values: `enable`, `disable`. */ spoofedDeauth?: pulumi.Input<string>; /** * Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. * * The `apScanChannelList2g5g` block supports: */ vdomparam?: pulumi.Input<string>; /** * Enable/disable weak WEP IV (Initialization Vector) detection (default = disable). Valid values: `enable`, `disable`. */ weakWepIv?: pulumi.Input<string>; /** * Enable/disable wireless bridge detection (default = disable). Valid values: `enable`, `disable`. */ wirelessBridge?: pulumi.Input<string>; } /** * The set of arguments for constructing a Widsprofile resource. */ export interface WidsprofileArgs { /** * Enable/disable on-wire rogue AP auto-suppression (default = disable). Valid values: `enable`, `disable`. */ apAutoSuppress?: pulumi.Input<string>; /** * Optionally turn off scanning for one or more days of the week. Separate the days with a space. By default, no days are set. Valid values: `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`. */ apBgscanDisableDay?: pulumi.Input<string>; /** * End time, using a 24-hour clock in the format of hh:mm, for disabling background scanning (default = 00:00). */ apBgscanDisableEnd?: pulumi.Input<string>; /** * Firewall schedules for turning off FortiAP radio background scan. Background scan will be disabled when at least one of the schedules is valid. Separate multiple schedule names with a space. The structure of `apBgscanDisableSchedules` block is documented below. */ apBgscanDisableSchedules?: pulumi.Input<pulumi.Input<inputs.wirelesscontroller.WidsprofileApBgscanDisableSchedule>[]>; /** * Start time, using a 24-hour clock in the format of hh:mm, for disabling background scanning (default = 00:00). */ apBgscanDisableStart?: pulumi.Input<string>; /** * Listen time on scanning a channel (10 - 1000 msec). On FortiOS versions 6.2.0-7.0.1: default = 20. On FortiOS versions >= 7.0.2: default = 30. */ apBgscanDuration?: pulumi.Input<number>; /** * Wait time for channel inactivity before scanning this channel (0 - 1000 msec). On FortiOS versions 6.2.0-7.0.1: default = 0. On FortiOS versions >= 7.0.2: default = 20. */ apBgscanIdle?: pulumi.Input<number>; /** * Period between successive channel scans (1 - 600 sec). On FortiOS versions 6.2.0-7.0.1: default = 1. On FortiOS versions >= 7.0.2: default = 3. */ apBgscanIntv?: pulumi.Input<number>; /** * Period between background scans (default = 600). On FortiOS versions 6.2.0-6.2.6: 60 - 3600 sec. On FortiOS versions 6.4.0-7.0.1: 10 - 3600 sec. */ apBgscanPeriod?: pulumi.Input<number>; /** * Period between background scan reports (15 - 600 sec, default = 30). */ apBgscanReportIntv?: pulumi.Input<number>; /** * Period between foreground scan reports (15 - 600 sec, default = 15). */ apFgscanReportIntv?: pulumi.Input<number>; /** * Enable/disable rogue AP detection. Valid values: `disable`, `enable`. */ apScan?: pulumi.Input<string>; /** * Selected ap scan channel list for 2.4G and 5G bands. The structure of `apScanChannelList2g5g` block is documented below. */ apScanChannelList2g5gs?: pulumi.Input<pulumi.Input<inputs.wirelesscontroller.WidsprofileApScanChannelList2g5g>[]>; /** * Selected ap scan channel list for 6G band. The structure of `apScanChannelList6g` block is documented below. */ apScanChannelList6gs?: pulumi.Input<pulumi.Input<inputs.wirelesscontroller.WidsprofileApScanChannelList6g>[]>; /** * Enable/disable passive scanning. Enable means do not send probe request on any channels (default = disable). Valid values: `enable`, `disable`. */ apScanPassive?: pulumi.Input<string>; /** * Minimum signal level/threshold in dBm required for the AP to report detected rogue AP (-95 to -20, default = -90). */ apScanThreshold?: pulumi.Input<string>; /** * Enable/disable asleap attack detection (default = disable). Valid values: `enable`, `disable`. */ asleapAttack?: pulumi.Input<string>; /** * The threshold value for association frame flooding. */ assocFloodThresh?: pulumi.Input<number>; /** * Number of seconds after which a station is considered not connected. */ assocFloodTime?: pulumi.Input<number>; /** * Enable/disable association frame flooding detection (default = disable). Valid values: `enable`, `disable`. */ assocFrameFlood?: pulumi.Input<string>; /** * The threshold value for authentication frame flooding. */ authFloodThresh?: pulumi.Input<number>; /** * Number of seconds after which a station is considered not connected. */ authFloodTime?: pulumi.Input<number>; /** * Enable/disable authentication frame flooding detection (default = disable). Valid values: `enable`, `disable`. */ authFrameFlood?: pulumi.Input<string>; /** * Comment. */ comment?: pulumi.Input<string>; /** * Enable/disable broadcasting de-authentication detection (default = disable). Valid values: `enable`, `disable`. */ deauthBroadcast?: pulumi.Input<string>; /** * Threshold value per second to deauth unknown src for DoS attack (0: no limit). */ deauthUnknownSrcThresh?: pulumi.Input<number>; /** * Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. */ dynamicSortSubtable?: pulumi.Input<string>; /** * Enable/disable EAPOL-Failure flooding (to AP) detection (default = disable). Valid values: `enable`, `disable`. */ eapolFailFlood?: pulumi.Input<string>; /** * The detection interval for EAPOL-Failure flooding (1 - 3600 sec). */ eapolFailIntv?: pulumi.Input<number>; /** * The threshold value for EAPOL-Failure flooding in specified interval. */ eapolFailThresh?: pulumi.Input<number>; /** * Enable/disable EAPOL-Logoff flooding (to AP) detection (default = disable). Valid values: `enable`, `disable`. */ eapolLogoffFlood?: pulumi.Input<string>; /** * The detection interval for EAPOL-Logoff flooding (1 - 3600 sec). */ eapolLogoffIntv?: pulumi.Input<number>; /** * The threshold value for EAPOL-Logoff flooding in specified interval. */ eapolLogoffThresh?: pulumi.Input<number>; /** * Enable/disable premature EAPOL-Failure flooding (to STA) detection (default = disable). Valid values: `enable`, `disable`. */ eapolPreFailFlood?: pulumi.Input<string>; /** * The detection interval for premature EAPOL-Failure flooding (1 - 3600 sec). */ eapolPreFailIntv?: pulumi.Input<number>; /** * The threshold value for premature EAPOL-Failure flooding in specified interval. */ eapolPreFailThresh?: pulumi.Input<number>; /** * Enable/disable premature EAPOL-Success flooding (to STA) detection (default = disable). Valid values: `enable`, `disable`. */ eapolPreSuccFlood?: pulumi.Input<string>; /** * The detection interval for premature EAPOL-Success flooding (1 - 3600 sec). */ eapolPreSuccIntv?: pulumi.Input<number>; /** * The threshold value for premature EAPOL-Success flooding in specified interval. */ eapolPreSuccThresh?: pulumi.Input<number>; /** * Enable/disable EAPOL-Start flooding (to AP) detection (default = disable). Valid values: `enable`, `disable`. */ eapolStartFlood?: pulumi.Input<string>; /** * The detection interval for EAPOL-Start flooding (1 - 3600 sec). */ eapolStartIntv?: pulumi.Input<number>; /** * The threshold value for EAPOL-Start flooding in specified interval. */ eapolStartThresh?: pulumi.Input<number>; /** * Enable/disable EAPOL-Success flooding (to AP) detection (default = disable). Valid values: `enable`, `disable`. */ eapolSuccFlood?: pulumi.Input<string>; /** * The detection interval for EAPOL-Success flooding (1 - 3600 sec). */ eapolSuccIntv?: pulumi.Input<number>; /** * The threshold value for EAPOL-Success flooding in specified interval. */ eapolSuccThresh?: pulumi.Input<number>; /** * Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. */ getAllTables?: pulumi.Input<string>; /** * Enable/disable invalid MAC OUI detection. Valid values: `enable`, `disable`. */ invalidMacOui?: pulumi.Input<string>; /** * Enable/disable long duration attack detection based on user configured threshold (default = disable). Valid values: `enable`, `disable`. */ longDurationAttack?: pulumi.Input<string>; /** * Threshold value for long duration attack detection (1000 - 32767 usec, default = 8200). */ longDurationThresh?: pulumi.Input<number>; /** * WIDS profile name. */ name?: pulumi.Input<string>; /** * Enable/disable null SSID probe response detection (default = disable). Valid values: `enable`, `disable`. */ nullSsidProbeResp?: pulumi.Input<string>; /** * Scan nearby WiFi stations (default = disable). Valid values: `disable`, `foreign`, `both`. */ sensorMode?: pulumi.Input<string>; /** * Enable/disable spoofed de-authentication attack detection (default = disable). Valid values: `enable`, `disable`. */ spoofedDeauth?: pulumi.Input<string>; /** * Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. * * The `apScanChannelList2g5g` block supports: */ vdomparam?: pulumi.Input<string>; /** * Enable/disable weak WEP IV (Initialization Vector) detection (default = disable). Valid values: `enable`, `disable`. */ weakWepIv?: pulumi.Input<string>; /** * Enable/disable wireless bridge detection (default = disable). Valid values: `enable`, `disable`. */ wirelessBridge?: pulumi.Input<string>; }