@volcengine/pulumi
Version:
A Pulumi package for creating and managing volcengine cloud resources.
878 lines (877 loc) • 29.2 kB
TypeScript
import * as pulumi from "@pulumi/pulumi";
import * as inputs from "../types/input";
import * as outputs from "../types/output";
/**
* Provides a resource to manage waf domain
* ## Example Usage
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as volcengine from "@volcengine/pulumi";
*
* const foo = new volcengine.waf.WafDomain("foo", {
* accessMode: 10,
* backendGroups: [{
* accessPorts: [80],
* backends: [
* {
* ip: "192.168.0.0",
* port: 80,
* protocol: "HTTP",
* weight: 40,
* },
* {
* ip: "192.168.1.0",
* port: 80,
* protocol: "HTTP",
* weight: 60,
* },
* ],
* name: "default",
* }],
* clientIpLocation: 0,
* clientMaxBodySize: 1024,
* customHeaders: [
* "x-top-1",
* "x-top-2",
* ],
* domain: "www.tf-test.com",
* enableIpv6: 0,
* keepAliveRequest: 200,
* keepAliveTimeOut: 100,
* lbAlgorithm: "wlc",
* protocolPorts: {
* https: [80],
* },
* protocols: ["HTTP"],
* proxyConfig: 1,
* proxyConnectTimeOut: 10,
* proxyKeepAlive: 101,
* proxyKeepAliveTimeOut: 20,
* proxyReadTimeOut: 200,
* proxyRetry: 10,
* proxyWriteTimeOut: 120,
* publicRealServer: 0,
* vpcId: "vpc-2d6485y7p95og58ozfcvxxxxx",
* });
* ```
*
* ## Import
*
* WafDomain can be imported using the id, e.g.
*
* ```sh
* $ pulumi import volcengine:waf/wafDomain:WafDomain default resource_id
* ```
*/
export declare class WafDomain extends pulumi.CustomResource {
/**
* Get an existing WafDomain resource's state with the given name, ID, and optional extra
* properties used to qualify the lookup.
*
* @param name The _unique_ name of the resulting resource.
* @param id The _unique_ provider ID of the resource to lookup.
* @param state Any extra arguments used during the lookup.
* @param opts Optional settings to control the behavior of the CustomResource.
*/
static get(name: string, id: pulumi.Input<pulumi.ID>, state?: WafDomainState, opts?: pulumi.CustomResourceOptions): WafDomain;
/**
* Returns true if the given object is an instance of WafDomain. This is designed to work even
* when multiple copies of the Pulumi SDK have been loaded into the same process.
*/
static isInstance(obj: any): obj is WafDomain;
/**
* Access mode.
*/
readonly accessMode: pulumi.Output<number>;
/**
* High-defense instance IP.
*/
readonly advancedDefenseIp: pulumi.Output<string>;
/**
* High-defense instance IPv6.
*/
readonly advancedDefenseIpv6: pulumi.Output<string>;
/**
* Whether to enable the API protection policy. Works only on modified scenes.
*/
readonly apiEnable: pulumi.Output<number>;
/**
* The status of the attack.
*/
readonly attackStatus: pulumi.Output<number>;
/**
* Whether to enable the intelligent CC protection strategy. Works only on modified scenes.
*/
readonly autoCcEnable: pulumi.Output<number>;
/**
* The configuration of source station.
*/
readonly backendGroups: pulumi.Output<outputs.waf.WafDomainBackendGroup[]>;
/**
* Whether to enable the access ban list policy. Works only on modified scenes.
*/
readonly blackIpEnable: pulumi.Output<number>;
/**
* Whether to enable the geographical location access control policy. Works only on modified scenes.
*/
readonly blackLctEnable: pulumi.Output<number>;
/**
* Whether to enable the bot dynamic token. Works only on modified scenes.
*/
readonly botDytokenEnable: pulumi.Output<number | undefined>;
/**
* Whether to enable the bot frequency limit policy. Works only on modified scenes.
*/
readonly botFrequencyEnable: pulumi.Output<number | undefined>;
/**
* Whether to enable the bot frequency limit policy. Works only on modified scenes.
*/
readonly botRepeatEnable: pulumi.Output<number | undefined>;
/**
* Set the default actions of the bot behavior map strategy. Works only on modified scenes.
*/
readonly botSequenceDefaultAction: pulumi.Output<number | undefined>;
/**
* Whether to enable the bot behavior map. Works only on modified scenes.
*/
readonly botSequenceEnable: pulumi.Output<number | undefined>;
/**
* Whether to enable the CC protection policy. Works only on modified scenes.
*/
readonly ccEnable: pulumi.Output<number>;
/**
* When the protocol type is HTTPS, the bound certificate ID needs to be entered.
*/
readonly certificateId: pulumi.Output<number>;
/**
* The name of the certificate.
*/
readonly certificateName: pulumi.Output<string>;
/**
* Certificate custody platform.
*/
readonly certificatePlatform: pulumi.Output<string>;
/**
* The method of obtaining the client IP.
*/
readonly clientIpLocation: pulumi.Output<number>;
/**
* The client requests the maximum value of body.
*/
readonly clientMaxBodySize: pulumi.Output<number>;
/**
* Access port information.If AccessMode is Alb/CLB, this field is required.
*/
readonly cloudAccessConfigs: pulumi.Output<outputs.waf.WafDomainCloudAccessConfig[]>;
/**
* The CNAME value generated by the WAF instance.
*/
readonly cname: pulumi.Output<string>;
/**
* Whether to enable the custom Bot classification strategy. Works only on modified scenes.
*/
readonly customBotEnable: pulumi.Output<number>;
/**
* Custom Header.
*/
readonly customHeaders: pulumi.Output<string[] | undefined>;
/**
* Whether to enable the custom response interception policy. Works only on modified scenes.
*/
readonly customRspEnable: pulumi.Output<number>;
/**
* Custom SNI needs to be configured when EnableSNI=1. Works only on modified scenes.
*/
readonly customSni: pulumi.Output<string | undefined>;
/**
* The protection mode of the instance. Works only on modified scenes.
*/
readonly defenceMode: pulumi.Output<number | undefined>;
/**
* The protection mode of the instance.
*/
readonly defenceModeComputed: pulumi.Output<number>;
/**
* Whether to activate the strategy for preventing the leakage of sensitive information. Works only on modified scenes.
*/
readonly dlpEnable: pulumi.Output<number>;
/**
* List of domain names that need to be protected by WAF.
*/
readonly domain: pulumi.Output<string>;
/**
* Whether to enable user-defined redirection. Works only on modified scenes.
*/
readonly enableCustomRedirect: pulumi.Output<number | undefined>;
/**
* Whether to enable HTTP 2.0.
*/
readonly enableHttp2: pulumi.Output<number>;
/**
* Whether it supports protecting IPv6 requests.
*/
readonly enableIpv6: pulumi.Output<number>;
/**
* Whether to enable the SNI configuration. Works only on modified scenes.
*/
readonly enableSni: pulumi.Output<number | undefined>;
/**
* The protection mode of the exception instance. It takes effect when the access mode is accessed through an application load balancing (ALB) instance (AccessMode=20). Works only on modified scenes.
*/
readonly extraDefenceModeLbInstances: pulumi.Output<outputs.waf.WafDomainExtraDefenceModeLbInstance[] | undefined>;
/**
* The number of long connection multiplexes.
*/
readonly keepAliveRequest: pulumi.Output<number>;
/**
* Long connection retention time.
*/
readonly keepAliveTimeOut: pulumi.Output<number>;
/**
* The types of load balancing algorithms.
*/
readonly lbAlgorithm: pulumi.Output<string>;
/**
* Is LLM available. Works only on modified scenes.
*/
readonly llmAvailable: pulumi.Output<boolean | undefined>;
/**
* The name of project. Works only on modified scenes.
*/
readonly projectName: pulumi.Output<string>;
/**
* Whether to enable protocol following.
*/
readonly protocolFollow: pulumi.Output<number>;
/**
* Access port information.
*/
readonly protocolPorts: pulumi.Output<outputs.waf.WafDomainProtocolPorts>;
/**
* Access protocol types.
*/
readonly protocols: pulumi.Output<string[]>;
/**
* Whether to enable proxy configuration.
*/
readonly proxyConfig: pulumi.Output<number>;
/**
* The timeout period for establishing a connection between the WAF and the backend server.
*/
readonly proxyConnectTimeOut: pulumi.Output<number>;
/**
* The number of reusable WAF origin long connections.
*/
readonly proxyKeepAlive: pulumi.Output<number>;
/**
* Idle long connection timeout period.
*/
readonly proxyKeepAliveTimeOut: pulumi.Output<number>;
/**
* The timeout period during which WAF reads the response from the backend server.
*/
readonly proxyReadTimeOut: pulumi.Output<number>;
/**
* The number of retries for WAF back to source.
*/
readonly proxyRetry: pulumi.Output<number>;
/**
* The timeout period during which the WAF transmits the request to the backend server.
*/
readonly proxyWriteTimeOut: pulumi.Output<number>;
/**
* Connect to the source return mode.
*/
readonly publicRealServer: pulumi.Output<number>;
/**
* When only the HTTPS protocol is enabled, whether to redirect HTTP requests to HTTPS. Works only on modified scenes.
*/
readonly redirectHttps: pulumi.Output<boolean | undefined>;
/**
* The IP of the WAF protection instance.
*/
readonly serverIps: pulumi.Output<string>;
/**
* WAF source IP.
*/
readonly srcIps: pulumi.Output<string>;
/**
* Encryption kit.
*/
readonly sslCiphers: pulumi.Output<string[]>;
/**
* TLS protocol version.
*/
readonly sslProtocols: pulumi.Output<string[]>;
/**
* The status of access.
*/
readonly status: pulumi.Output<number>;
/**
* Whether to enable the managed Bot classification strategy. Works only on modified scenes.
*/
readonly systemBotEnable: pulumi.Output<number>;
/**
* Whether to enable the page tamper-proof policy. Works only on modified scenes.
*/
readonly tamperProofEnable: pulumi.Output<number>;
/**
* Whether to enable the log service.
*/
readonly tlsEnable: pulumi.Output<number>;
/**
* Details of log field configuration. Works only on modified scenes.
*/
readonly tlsFieldsConfig: pulumi.Output<outputs.waf.WafDomainTlsFieldsConfig | undefined>;
/**
* The update time.
*/
readonly updateTime: pulumi.Output<string>;
/**
* When the protocol type is HTTPS, the bound certificate ID needs to be entered.
*/
readonly volcCertificateId: pulumi.Output<string>;
/**
* The ID of vpc.
*/
readonly vpcId: pulumi.Output<string>;
/**
* Whether to enable the vulnerability protection strategy. Works only on modified scenes.
*/
readonly wafEnable: pulumi.Output<number>;
/**
* Whether to enable the whitening strategy for vulnerability protection requests. Works only on modified scenes.
*/
readonly wafWhiteReqEnable: pulumi.Output<number>;
/**
* Whether to enable the access list policy. Works only on modified scenes.
*/
readonly whiteEnable: pulumi.Output<number>;
/**
* Whether to enable the whitening strategy for vulnerability protection fields. Works only on modified scenes.
*/
readonly whiteFieldEnable: pulumi.Output<number>;
/**
* Create a WafDomain resource with the given unique name, arguments, and options.
*
* @param name The _unique_ name of the resource.
* @param args The arguments to use to populate this resource's properties.
* @param opts A bag of options that control this resource's behavior.
*/
constructor(name: string, args: WafDomainArgs, opts?: pulumi.CustomResourceOptions);
}
/**
* Input properties used for looking up and filtering WafDomain resources.
*/
export interface WafDomainState {
/**
* Access mode.
*/
accessMode?: pulumi.Input<number>;
/**
* High-defense instance IP.
*/
advancedDefenseIp?: pulumi.Input<string>;
/**
* High-defense instance IPv6.
*/
advancedDefenseIpv6?: pulumi.Input<string>;
/**
* Whether to enable the API protection policy. Works only on modified scenes.
*/
apiEnable?: pulumi.Input<number>;
/**
* The status of the attack.
*/
attackStatus?: pulumi.Input<number>;
/**
* Whether to enable the intelligent CC protection strategy. Works only on modified scenes.
*/
autoCcEnable?: pulumi.Input<number>;
/**
* The configuration of source station.
*/
backendGroups?: pulumi.Input<pulumi.Input<inputs.waf.WafDomainBackendGroup>[]>;
/**
* Whether to enable the access ban list policy. Works only on modified scenes.
*/
blackIpEnable?: pulumi.Input<number>;
/**
* Whether to enable the geographical location access control policy. Works only on modified scenes.
*/
blackLctEnable?: pulumi.Input<number>;
/**
* Whether to enable the bot dynamic token. Works only on modified scenes.
*/
botDytokenEnable?: pulumi.Input<number>;
/**
* Whether to enable the bot frequency limit policy. Works only on modified scenes.
*/
botFrequencyEnable?: pulumi.Input<number>;
/**
* Whether to enable the bot frequency limit policy. Works only on modified scenes.
*/
botRepeatEnable?: pulumi.Input<number>;
/**
* Set the default actions of the bot behavior map strategy. Works only on modified scenes.
*/
botSequenceDefaultAction?: pulumi.Input<number>;
/**
* Whether to enable the bot behavior map. Works only on modified scenes.
*/
botSequenceEnable?: pulumi.Input<number>;
/**
* Whether to enable the CC protection policy. Works only on modified scenes.
*/
ccEnable?: pulumi.Input<number>;
/**
* When the protocol type is HTTPS, the bound certificate ID needs to be entered.
*/
certificateId?: pulumi.Input<number>;
/**
* The name of the certificate.
*/
certificateName?: pulumi.Input<string>;
/**
* Certificate custody platform.
*/
certificatePlatform?: pulumi.Input<string>;
/**
* The method of obtaining the client IP.
*/
clientIpLocation?: pulumi.Input<number>;
/**
* The client requests the maximum value of body.
*/
clientMaxBodySize?: pulumi.Input<number>;
/**
* Access port information.If AccessMode is Alb/CLB, this field is required.
*/
cloudAccessConfigs?: pulumi.Input<pulumi.Input<inputs.waf.WafDomainCloudAccessConfig>[]>;
/**
* The CNAME value generated by the WAF instance.
*/
cname?: pulumi.Input<string>;
/**
* Whether to enable the custom Bot classification strategy. Works only on modified scenes.
*/
customBotEnable?: pulumi.Input<number>;
/**
* Custom Header.
*/
customHeaders?: pulumi.Input<pulumi.Input<string>[]>;
/**
* Whether to enable the custom response interception policy. Works only on modified scenes.
*/
customRspEnable?: pulumi.Input<number>;
/**
* Custom SNI needs to be configured when EnableSNI=1. Works only on modified scenes.
*/
customSni?: pulumi.Input<string>;
/**
* The protection mode of the instance. Works only on modified scenes.
*/
defenceMode?: pulumi.Input<number>;
/**
* The protection mode of the instance.
*/
defenceModeComputed?: pulumi.Input<number>;
/**
* Whether to activate the strategy for preventing the leakage of sensitive information. Works only on modified scenes.
*/
dlpEnable?: pulumi.Input<number>;
/**
* List of domain names that need to be protected by WAF.
*/
domain?: pulumi.Input<string>;
/**
* Whether to enable user-defined redirection. Works only on modified scenes.
*/
enableCustomRedirect?: pulumi.Input<number>;
/**
* Whether to enable HTTP 2.0.
*/
enableHttp2?: pulumi.Input<number>;
/**
* Whether it supports protecting IPv6 requests.
*/
enableIpv6?: pulumi.Input<number>;
/**
* Whether to enable the SNI configuration. Works only on modified scenes.
*/
enableSni?: pulumi.Input<number>;
/**
* The protection mode of the exception instance. It takes effect when the access mode is accessed through an application load balancing (ALB) instance (AccessMode=20). Works only on modified scenes.
*/
extraDefenceModeLbInstances?: pulumi.Input<pulumi.Input<inputs.waf.WafDomainExtraDefenceModeLbInstance>[]>;
/**
* The number of long connection multiplexes.
*/
keepAliveRequest?: pulumi.Input<number>;
/**
* Long connection retention time.
*/
keepAliveTimeOut?: pulumi.Input<number>;
/**
* The types of load balancing algorithms.
*/
lbAlgorithm?: pulumi.Input<string>;
/**
* Is LLM available. Works only on modified scenes.
*/
llmAvailable?: pulumi.Input<boolean>;
/**
* The name of project. Works only on modified scenes.
*/
projectName?: pulumi.Input<string>;
/**
* Whether to enable protocol following.
*/
protocolFollow?: pulumi.Input<number>;
/**
* Access port information.
*/
protocolPorts?: pulumi.Input<inputs.waf.WafDomainProtocolPorts>;
/**
* Access protocol types.
*/
protocols?: pulumi.Input<pulumi.Input<string>[]>;
/**
* Whether to enable proxy configuration.
*/
proxyConfig?: pulumi.Input<number>;
/**
* The timeout period for establishing a connection between the WAF and the backend server.
*/
proxyConnectTimeOut?: pulumi.Input<number>;
/**
* The number of reusable WAF origin long connections.
*/
proxyKeepAlive?: pulumi.Input<number>;
/**
* Idle long connection timeout period.
*/
proxyKeepAliveTimeOut?: pulumi.Input<number>;
/**
* The timeout period during which WAF reads the response from the backend server.
*/
proxyReadTimeOut?: pulumi.Input<number>;
/**
* The number of retries for WAF back to source.
*/
proxyRetry?: pulumi.Input<number>;
/**
* The timeout period during which the WAF transmits the request to the backend server.
*/
proxyWriteTimeOut?: pulumi.Input<number>;
/**
* Connect to the source return mode.
*/
publicRealServer?: pulumi.Input<number>;
/**
* When only the HTTPS protocol is enabled, whether to redirect HTTP requests to HTTPS. Works only on modified scenes.
*/
redirectHttps?: pulumi.Input<boolean>;
/**
* The IP of the WAF protection instance.
*/
serverIps?: pulumi.Input<string>;
/**
* WAF source IP.
*/
srcIps?: pulumi.Input<string>;
/**
* Encryption kit.
*/
sslCiphers?: pulumi.Input<pulumi.Input<string>[]>;
/**
* TLS protocol version.
*/
sslProtocols?: pulumi.Input<pulumi.Input<string>[]>;
/**
* The status of access.
*/
status?: pulumi.Input<number>;
/**
* Whether to enable the managed Bot classification strategy. Works only on modified scenes.
*/
systemBotEnable?: pulumi.Input<number>;
/**
* Whether to enable the page tamper-proof policy. Works only on modified scenes.
*/
tamperProofEnable?: pulumi.Input<number>;
/**
* Whether to enable the log service.
*/
tlsEnable?: pulumi.Input<number>;
/**
* Details of log field configuration. Works only on modified scenes.
*/
tlsFieldsConfig?: pulumi.Input<inputs.waf.WafDomainTlsFieldsConfig>;
/**
* The update time.
*/
updateTime?: pulumi.Input<string>;
/**
* When the protocol type is HTTPS, the bound certificate ID needs to be entered.
*/
volcCertificateId?: pulumi.Input<string>;
/**
* The ID of vpc.
*/
vpcId?: pulumi.Input<string>;
/**
* Whether to enable the vulnerability protection strategy. Works only on modified scenes.
*/
wafEnable?: pulumi.Input<number>;
/**
* Whether to enable the whitening strategy for vulnerability protection requests. Works only on modified scenes.
*/
wafWhiteReqEnable?: pulumi.Input<number>;
/**
* Whether to enable the access list policy. Works only on modified scenes.
*/
whiteEnable?: pulumi.Input<number>;
/**
* Whether to enable the whitening strategy for vulnerability protection fields. Works only on modified scenes.
*/
whiteFieldEnable?: pulumi.Input<number>;
}
/**
* The set of arguments for constructing a WafDomain resource.
*/
export interface WafDomainArgs {
/**
* Access mode.
*/
accessMode: pulumi.Input<number>;
/**
* Whether to enable the API protection policy. Works only on modified scenes.
*/
apiEnable?: pulumi.Input<number>;
/**
* Whether to enable the intelligent CC protection strategy. Works only on modified scenes.
*/
autoCcEnable?: pulumi.Input<number>;
/**
* The configuration of source station.
*/
backendGroups?: pulumi.Input<pulumi.Input<inputs.waf.WafDomainBackendGroup>[]>;
/**
* Whether to enable the access ban list policy. Works only on modified scenes.
*/
blackIpEnable?: pulumi.Input<number>;
/**
* Whether to enable the geographical location access control policy. Works only on modified scenes.
*/
blackLctEnable?: pulumi.Input<number>;
/**
* Whether to enable the bot dynamic token. Works only on modified scenes.
*/
botDytokenEnable?: pulumi.Input<number>;
/**
* Whether to enable the bot frequency limit policy. Works only on modified scenes.
*/
botFrequencyEnable?: pulumi.Input<number>;
/**
* Whether to enable the bot frequency limit policy. Works only on modified scenes.
*/
botRepeatEnable?: pulumi.Input<number>;
/**
* Set the default actions of the bot behavior map strategy. Works only on modified scenes.
*/
botSequenceDefaultAction?: pulumi.Input<number>;
/**
* Whether to enable the bot behavior map. Works only on modified scenes.
*/
botSequenceEnable?: pulumi.Input<number>;
/**
* Whether to enable the CC protection policy. Works only on modified scenes.
*/
ccEnable?: pulumi.Input<number>;
/**
* When the protocol type is HTTPS, the bound certificate ID needs to be entered.
*/
certificateId?: pulumi.Input<number>;
/**
* Certificate custody platform.
*/
certificatePlatform?: pulumi.Input<string>;
/**
* The method of obtaining the client IP.
*/
clientIpLocation?: pulumi.Input<number>;
/**
* The client requests the maximum value of body.
*/
clientMaxBodySize?: pulumi.Input<number>;
/**
* Access port information.If AccessMode is Alb/CLB, this field is required.
*/
cloudAccessConfigs?: pulumi.Input<pulumi.Input<inputs.waf.WafDomainCloudAccessConfig>[]>;
/**
* Whether to enable the custom Bot classification strategy. Works only on modified scenes.
*/
customBotEnable?: pulumi.Input<number>;
/**
* Custom Header.
*/
customHeaders?: pulumi.Input<pulumi.Input<string>[]>;
/**
* Whether to enable the custom response interception policy. Works only on modified scenes.
*/
customRspEnable?: pulumi.Input<number>;
/**
* Custom SNI needs to be configured when EnableSNI=1. Works only on modified scenes.
*/
customSni?: pulumi.Input<string>;
/**
* The protection mode of the instance. Works only on modified scenes.
*/
defenceMode?: pulumi.Input<number>;
/**
* Whether to activate the strategy for preventing the leakage of sensitive information. Works only on modified scenes.
*/
dlpEnable?: pulumi.Input<number>;
/**
* List of domain names that need to be protected by WAF.
*/
domain: pulumi.Input<string>;
/**
* Whether to enable user-defined redirection. Works only on modified scenes.
*/
enableCustomRedirect?: pulumi.Input<number>;
/**
* Whether to enable HTTP 2.0.
*/
enableHttp2?: pulumi.Input<number>;
/**
* Whether it supports protecting IPv6 requests.
*/
enableIpv6?: pulumi.Input<number>;
/**
* Whether to enable the SNI configuration. Works only on modified scenes.
*/
enableSni?: pulumi.Input<number>;
/**
* The protection mode of the exception instance. It takes effect when the access mode is accessed through an application load balancing (ALB) instance (AccessMode=20). Works only on modified scenes.
*/
extraDefenceModeLbInstances?: pulumi.Input<pulumi.Input<inputs.waf.WafDomainExtraDefenceModeLbInstance>[]>;
/**
* The number of long connection multiplexes.
*/
keepAliveRequest?: pulumi.Input<number>;
/**
* Long connection retention time.
*/
keepAliveTimeOut?: pulumi.Input<number>;
/**
* The types of load balancing algorithms.
*/
lbAlgorithm?: pulumi.Input<string>;
/**
* Is LLM available. Works only on modified scenes.
*/
llmAvailable?: pulumi.Input<boolean>;
/**
* The name of project. Works only on modified scenes.
*/
projectName?: pulumi.Input<string>;
/**
* Whether to enable protocol following.
*/
protocolFollow?: pulumi.Input<number>;
/**
* Access port information.
*/
protocolPorts?: pulumi.Input<inputs.waf.WafDomainProtocolPorts>;
/**
* Access protocol types.
*/
protocols?: pulumi.Input<pulumi.Input<string>[]>;
/**
* Whether to enable proxy configuration.
*/
proxyConfig?: pulumi.Input<number>;
/**
* The timeout period for establishing a connection between the WAF and the backend server.
*/
proxyConnectTimeOut?: pulumi.Input<number>;
/**
* The number of reusable WAF origin long connections.
*/
proxyKeepAlive?: pulumi.Input<number>;
/**
* Idle long connection timeout period.
*/
proxyKeepAliveTimeOut?: pulumi.Input<number>;
/**
* The timeout period during which WAF reads the response from the backend server.
*/
proxyReadTimeOut?: pulumi.Input<number>;
/**
* The number of retries for WAF back to source.
*/
proxyRetry?: pulumi.Input<number>;
/**
* The timeout period during which the WAF transmits the request to the backend server.
*/
proxyWriteTimeOut?: pulumi.Input<number>;
/**
* Connect to the source return mode.
*/
publicRealServer?: pulumi.Input<number>;
/**
* When only the HTTPS protocol is enabled, whether to redirect HTTP requests to HTTPS. Works only on modified scenes.
*/
redirectHttps?: pulumi.Input<boolean>;
/**
* Encryption kit.
*/
sslCiphers?: pulumi.Input<pulumi.Input<string>[]>;
/**
* TLS protocol version.
*/
sslProtocols?: pulumi.Input<pulumi.Input<string>[]>;
/**
* Whether to enable the managed Bot classification strategy. Works only on modified scenes.
*/
systemBotEnable?: pulumi.Input<number>;
/**
* Whether to enable the page tamper-proof policy. Works only on modified scenes.
*/
tamperProofEnable?: pulumi.Input<number>;
/**
* Whether to enable the log service.
*/
tlsEnable?: pulumi.Input<number>;
/**
* Details of log field configuration. Works only on modified scenes.
*/
tlsFieldsConfig?: pulumi.Input<inputs.waf.WafDomainTlsFieldsConfig>;
/**
* When the protocol type is HTTPS, the bound certificate ID needs to be entered.
*/
volcCertificateId?: pulumi.Input<string>;
/**
* The ID of vpc.
*/
vpcId?: pulumi.Input<string>;
/**
* Whether to enable the vulnerability protection strategy. Works only on modified scenes.
*/
wafEnable?: pulumi.Input<number>;
/**
* Whether to enable the whitening strategy for vulnerability protection requests. Works only on modified scenes.
*/
wafWhiteReqEnable?: pulumi.Input<number>;
/**
* Whether to enable the access list policy. Works only on modified scenes.
*/
whiteEnable?: pulumi.Input<number>;
/**
* Whether to enable the whitening strategy for vulnerability protection fields. Works only on modified scenes.
*/
whiteFieldEnable?: pulumi.Input<number>;
}