ipsec

package
v0.0.2 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 24, 2024 License: Apache-2.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Concentrator 

type Concentrator struct {
	pulumi.CustomResourceState

	// Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
	DynamicSortSubtable pulumi.StringPtrOutput `pulumi:"dynamicSortSubtable"`
	// Concentrator ID. (1-65535)
	Fosid pulumi.IntOutput `pulumi:"fosid"`
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrOutput `pulumi:"getAllTables"`
	// Names of up to 3 VPN tunnels to add to the concentrator. The structure of `member` block is documented below.
	Members ConcentratorMemberArrayOutput `pulumi:"members"`
	// Concentrator name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Enable to check source address of phase 2 selector. Disable to check only the destination selector. Valid values: `disable`, `enable`.
	SrcCheck pulumi.StringOutput `pulumi:"srcCheck"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
}

Concentrator configuration.

## Example Usage

<!--Start PulumiCodeChooser --> ```go package main

import ( 

"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := vpn.NewConcentrator(ctx, "trname", &vpn.ConcentratorArgs{
			SrcCheck: pulumi.String("disable"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` <!--End PulumiCodeChooser -->

## Import

VpnIpsec Concentrator can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/ipsec/concentrator:Concentrator labelname {{name}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/ipsec/concentrator:Concentrator labelname {{name}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetConcentrator 

func GetConcentrator(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *ConcentratorState, opts ...pulumi.ResourceOption) (*Concentrator, error)

GetConcentrator gets an existing Concentrator resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewConcentrator 

func NewConcentrator(ctx *pulumi.Context,
	name string, args *ConcentratorArgs, opts ...pulumi.ResourceOption) (*Concentrator, error)

NewConcentrator registers a new resource with the given unique name, arguments, and options.

func (*Concentrator) ElementType 

func (*Concentrator) ElementType() reflect.Type

func (*Concentrator) ToConcentratorOutput 

func (i *Concentrator) ToConcentratorOutput() ConcentratorOutput

func (*Concentrator) ToConcentratorOutputWithContext 

func (i *Concentrator) ToConcentratorOutputWithContext(ctx context.Context) ConcentratorOutput

type ConcentratorArgs 

type ConcentratorArgs struct {
	// Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
	DynamicSortSubtable pulumi.StringPtrInput
	// Concentrator ID. (1-65535)
	Fosid pulumi.IntPtrInput
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrInput
	// Names of up to 3 VPN tunnels to add to the concentrator. The structure of `member` block is documented below.
	Members ConcentratorMemberArrayInput
	// Concentrator name.
	Name pulumi.StringPtrInput
	// Enable to check source address of phase 2 selector. Disable to check only the destination selector. Valid values: `disable`, `enable`.
	SrcCheck pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

The set of arguments for constructing a Concentrator resource.

func (ConcentratorArgs) ElementType 

func (ConcentratorArgs) ElementType() reflect.Type

type ConcentratorArray 

type ConcentratorArray []ConcentratorInput

func (ConcentratorArray) ElementType 

func (ConcentratorArray) ElementType() reflect.Type

func (ConcentratorArray) ToConcentratorArrayOutput 

func (i ConcentratorArray) ToConcentratorArrayOutput() ConcentratorArrayOutput

func (ConcentratorArray) ToConcentratorArrayOutputWithContext 

func (i ConcentratorArray) ToConcentratorArrayOutputWithContext(ctx context.Context) ConcentratorArrayOutput

type ConcentratorArrayInput 

type ConcentratorArrayInput interface {
	pulumi.Input

	ToConcentratorArrayOutput() ConcentratorArrayOutput
	ToConcentratorArrayOutputWithContext(context.Context) ConcentratorArrayOutput
}

ConcentratorArrayInput is an input type that accepts ConcentratorArray and ConcentratorArrayOutput values. You can construct a concrete instance of `ConcentratorArrayInput` via: 

ConcentratorArray{ ConcentratorArgs{...} }

type ConcentratorArrayOutput 

type ConcentratorArrayOutput struct{ *pulumi.OutputState }

func (ConcentratorArrayOutput) ElementType 

func (ConcentratorArrayOutput) ElementType() reflect.Type

func (ConcentratorArrayOutput) Index 

func (o ConcentratorArrayOutput) Index(i pulumi.IntInput) ConcentratorOutput

func (ConcentratorArrayOutput) ToConcentratorArrayOutput 

func (o ConcentratorArrayOutput) ToConcentratorArrayOutput() ConcentratorArrayOutput

func (ConcentratorArrayOutput) ToConcentratorArrayOutputWithContext 

func (o ConcentratorArrayOutput) ToConcentratorArrayOutputWithContext(ctx context.Context) ConcentratorArrayOutput

type ConcentratorInput 

type ConcentratorInput interface {
	pulumi.Input

	ToConcentratorOutput() ConcentratorOutput
	ToConcentratorOutputWithContext(ctx context.Context) ConcentratorOutput
}

type ConcentratorMap 

type ConcentratorMap map[string]ConcentratorInput

func (ConcentratorMap) ElementType 

func (ConcentratorMap) ElementType() reflect.Type

func (ConcentratorMap) ToConcentratorMapOutput 

func (i ConcentratorMap) ToConcentratorMapOutput() ConcentratorMapOutput

func (ConcentratorMap) ToConcentratorMapOutputWithContext 

func (i ConcentratorMap) ToConcentratorMapOutputWithContext(ctx context.Context) ConcentratorMapOutput

type ConcentratorMapInput 

type ConcentratorMapInput interface {
	pulumi.Input

	ToConcentratorMapOutput() ConcentratorMapOutput
	ToConcentratorMapOutputWithContext(context.Context) ConcentratorMapOutput
}

ConcentratorMapInput is an input type that accepts ConcentratorMap and ConcentratorMapOutput values. You can construct a concrete instance of `ConcentratorMapInput` via: 

ConcentratorMap{ "key": ConcentratorArgs{...} }

type ConcentratorMapOutput 

type ConcentratorMapOutput struct{ *pulumi.OutputState }

func (ConcentratorMapOutput) ElementType 

func (ConcentratorMapOutput) ElementType() reflect.Type

func (ConcentratorMapOutput) MapIndex 

func (o ConcentratorMapOutput) MapIndex(k pulumi.StringInput) ConcentratorOutput

func (ConcentratorMapOutput) ToConcentratorMapOutput 

func (o ConcentratorMapOutput) ToConcentratorMapOutput() ConcentratorMapOutput

func (ConcentratorMapOutput) ToConcentratorMapOutputWithContext 

func (o ConcentratorMapOutput) ToConcentratorMapOutputWithContext(ctx context.Context) ConcentratorMapOutput

type ConcentratorMember 

type ConcentratorMember struct {
	// Member name.
	Name *string `pulumi:"name"`
}

type ConcentratorMemberArgs 

type ConcentratorMemberArgs struct {
	// Member name.
	Name pulumi.StringPtrInput `pulumi:"name"`
}

func (ConcentratorMemberArgs) ElementType 

func (ConcentratorMemberArgs) ElementType() reflect.Type

func (ConcentratorMemberArgs) ToConcentratorMemberOutput 

func (i ConcentratorMemberArgs) ToConcentratorMemberOutput() ConcentratorMemberOutput

func (ConcentratorMemberArgs) ToConcentratorMemberOutputWithContext 

func (i ConcentratorMemberArgs) ToConcentratorMemberOutputWithContext(ctx context.Context) ConcentratorMemberOutput

type ConcentratorMemberArray 

type ConcentratorMemberArray []ConcentratorMemberInput

func (ConcentratorMemberArray) ElementType 

func (ConcentratorMemberArray) ElementType() reflect.Type

func (ConcentratorMemberArray) ToConcentratorMemberArrayOutput 

func (i ConcentratorMemberArray) ToConcentratorMemberArrayOutput() ConcentratorMemberArrayOutput

func (ConcentratorMemberArray) ToConcentratorMemberArrayOutputWithContext 

func (i ConcentratorMemberArray) ToConcentratorMemberArrayOutputWithContext(ctx context.Context) ConcentratorMemberArrayOutput

type ConcentratorMemberArrayInput 

type ConcentratorMemberArrayInput interface {
	pulumi.Input

	ToConcentratorMemberArrayOutput() ConcentratorMemberArrayOutput
	ToConcentratorMemberArrayOutputWithContext(context.Context) ConcentratorMemberArrayOutput
}

ConcentratorMemberArrayInput is an input type that accepts ConcentratorMemberArray and ConcentratorMemberArrayOutput values. You can construct a concrete instance of `ConcentratorMemberArrayInput` via: 

ConcentratorMemberArray{ ConcentratorMemberArgs{...} }

type ConcentratorMemberArrayOutput 

type ConcentratorMemberArrayOutput struct{ *pulumi.OutputState }

func (ConcentratorMemberArrayOutput) ElementType 

func (ConcentratorMemberArrayOutput) ElementType() reflect.Type

func (ConcentratorMemberArrayOutput) Index 

func (o ConcentratorMemberArrayOutput) Index(i pulumi.IntInput) ConcentratorMemberOutput

func (ConcentratorMemberArrayOutput) ToConcentratorMemberArrayOutput 

func (o ConcentratorMemberArrayOutput) ToConcentratorMemberArrayOutput() ConcentratorMemberArrayOutput

func (ConcentratorMemberArrayOutput) ToConcentratorMemberArrayOutputWithContext 

func (o ConcentratorMemberArrayOutput) ToConcentratorMemberArrayOutputWithContext(ctx context.Context) ConcentratorMemberArrayOutput

type ConcentratorMemberInput 

type ConcentratorMemberInput interface {
	pulumi.Input

	ToConcentratorMemberOutput() ConcentratorMemberOutput
	ToConcentratorMemberOutputWithContext(context.Context) ConcentratorMemberOutput
}

ConcentratorMemberInput is an input type that accepts ConcentratorMemberArgs and ConcentratorMemberOutput values. You can construct a concrete instance of `ConcentratorMemberInput` via: 

ConcentratorMemberArgs{...}

type ConcentratorMemberOutput 

type ConcentratorMemberOutput struct{ *pulumi.OutputState }

func (ConcentratorMemberOutput) ElementType 

func (ConcentratorMemberOutput) ElementType() reflect.Type

func (ConcentratorMemberOutput) Name 

func (o ConcentratorMemberOutput) Name() pulumi.StringPtrOutput

Member name.

func (ConcentratorMemberOutput) ToConcentratorMemberOutput 

func (o ConcentratorMemberOutput) ToConcentratorMemberOutput() ConcentratorMemberOutput

func (ConcentratorMemberOutput) ToConcentratorMemberOutputWithContext 

func (o ConcentratorMemberOutput) ToConcentratorMemberOutputWithContext(ctx context.Context) ConcentratorMemberOutput

type ConcentratorOutput 

type ConcentratorOutput struct{ *pulumi.OutputState }

func (ConcentratorOutput) DynamicSortSubtable 

func (o ConcentratorOutput) DynamicSortSubtable() pulumi.StringPtrOutput

Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].

func (ConcentratorOutput) ElementType 

func (ConcentratorOutput) ElementType() reflect.Type

func (ConcentratorOutput) Fosid 

func (o ConcentratorOutput) Fosid() pulumi.IntOutput

Concentrator ID. (1-65535)

func (ConcentratorOutput) GetAllTables 

func (o ConcentratorOutput) GetAllTables() pulumi.StringPtrOutput

Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.

func (ConcentratorOutput) Members 

func (o ConcentratorOutput) Members() ConcentratorMemberArrayOutput

Names of up to 3 VPN tunnels to add to the concentrator. The structure of `member` block is documented below.

func (ConcentratorOutput) Name 

func (o ConcentratorOutput) Name() pulumi.StringOutput

Concentrator name.

func (ConcentratorOutput) SrcCheck 

func (o ConcentratorOutput) SrcCheck() pulumi.StringOutput

Enable to check source address of phase 2 selector. Disable to check only the destination selector. Valid values: `disable`, `enable`.

func (ConcentratorOutput) ToConcentratorOutput 

func (o ConcentratorOutput) ToConcentratorOutput() ConcentratorOutput

func (ConcentratorOutput) ToConcentratorOutputWithContext 

func (o ConcentratorOutput) ToConcentratorOutputWithContext(ctx context.Context) ConcentratorOutput

func (ConcentratorOutput) Vdomparam 

func (o ConcentratorOutput) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

type ConcentratorState 

type ConcentratorState struct {
	// Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
	DynamicSortSubtable pulumi.StringPtrInput
	// Concentrator ID. (1-65535)
	Fosid pulumi.IntPtrInput
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrInput
	// Names of up to 3 VPN tunnels to add to the concentrator. The structure of `member` block is documented below.
	Members ConcentratorMemberArrayInput
	// Concentrator name.
	Name pulumi.StringPtrInput
	// Enable to check source address of phase 2 selector. Disable to check only the destination selector. Valid values: `disable`, `enable`.
	SrcCheck pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

func (ConcentratorState) ElementType 

func (ConcentratorState) ElementType() reflect.Type

type Fec 

type Fec struct {
	pulumi.CustomResourceState

	// Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
	DynamicSortSubtable pulumi.StringPtrOutput `pulumi:"dynamicSortSubtable"`
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrOutput `pulumi:"getAllTables"`
	// FEC redundancy mapping table. The structure of `mappings` block is documented below.
	Mappings FecMappingArrayOutput `pulumi:"mappings"`
	// Profile name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
}

Configure Forward Error Correction (FEC) mapping profiles. Applies to FortiOS Version `>= 7.0.2`.

## Import

VpnIpsec Fec can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/ipsec/fec:Fec labelname {{name}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/ipsec/fec:Fec labelname {{name}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetFec 

func GetFec(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *FecState, opts ...pulumi.ResourceOption) (*Fec, error)

GetFec gets an existing Fec resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewFec 

func NewFec(ctx *pulumi.Context,
	name string, args *FecArgs, opts ...pulumi.ResourceOption) (*Fec, error)

NewFec registers a new resource with the given unique name, arguments, and options.

func (*Fec) ElementType 

func (*Fec) ElementType() reflect.Type

func (*Fec) ToFecOutput 

func (i *Fec) ToFecOutput() FecOutput

func (*Fec) ToFecOutputWithContext 

func (i *Fec) ToFecOutputWithContext(ctx context.Context) FecOutput

type FecArgs 

type FecArgs struct {
	// Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
	DynamicSortSubtable pulumi.StringPtrInput
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrInput
	// FEC redundancy mapping table. The structure of `mappings` block is documented below.
	Mappings FecMappingArrayInput
	// Profile name.
	Name pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

The set of arguments for constructing a Fec resource.

func (FecArgs) ElementType 

func (FecArgs) ElementType() reflect.Type

type FecArray 

type FecArray []FecInput

func (FecArray) ElementType 

func (FecArray) ElementType() reflect.Type

func (FecArray) ToFecArrayOutput 

func (i FecArray) ToFecArrayOutput() FecArrayOutput

func (FecArray) ToFecArrayOutputWithContext 

func (i FecArray) ToFecArrayOutputWithContext(ctx context.Context) FecArrayOutput

type FecArrayInput 

type FecArrayInput interface {
	pulumi.Input

	ToFecArrayOutput() FecArrayOutput
	ToFecArrayOutputWithContext(context.Context) FecArrayOutput
}

FecArrayInput is an input type that accepts FecArray and FecArrayOutput values. You can construct a concrete instance of `FecArrayInput` via: 

FecArray{ FecArgs{...} }

type FecArrayOutput 

type FecArrayOutput struct{ *pulumi.OutputState }

func (FecArrayOutput) ElementType 

func (FecArrayOutput) ElementType() reflect.Type

func (FecArrayOutput) Index 

func (o FecArrayOutput) Index(i pulumi.IntInput) FecOutput

func (FecArrayOutput) ToFecArrayOutput 

func (o FecArrayOutput) ToFecArrayOutput() FecArrayOutput

func (FecArrayOutput) ToFecArrayOutputWithContext 

func (o FecArrayOutput) ToFecArrayOutputWithContext(ctx context.Context) FecArrayOutput

type FecInput 

type FecInput interface {
	pulumi.Input

	ToFecOutput() FecOutput
	ToFecOutputWithContext(ctx context.Context) FecOutput
}

type FecMap 

type FecMap map[string]FecInput

func (FecMap) ElementType 

func (FecMap) ElementType() reflect.Type

func (FecMap) ToFecMapOutput 

func (i FecMap) ToFecMapOutput() FecMapOutput

func (FecMap) ToFecMapOutputWithContext 

func (i FecMap) ToFecMapOutputWithContext(ctx context.Context) FecMapOutput

type FecMapInput 

type FecMapInput interface {
	pulumi.Input

	ToFecMapOutput() FecMapOutput
	ToFecMapOutputWithContext(context.Context) FecMapOutput
}

FecMapInput is an input type that accepts FecMap and FecMapOutput values. You can construct a concrete instance of `FecMapInput` via: 

FecMap{ "key": FecArgs{...} }

type FecMapOutput 

type FecMapOutput struct{ *pulumi.OutputState }

func (FecMapOutput) ElementType 

func (FecMapOutput) ElementType() reflect.Type

func (FecMapOutput) MapIndex 

func (o FecMapOutput) MapIndex(k pulumi.StringInput) FecOutput

func (FecMapOutput) ToFecMapOutput 

func (o FecMapOutput) ToFecMapOutput() FecMapOutput

func (FecMapOutput) ToFecMapOutputWithContext 

func (o FecMapOutput) ToFecMapOutputWithContext(ctx context.Context) FecMapOutput

type FecMapping 

type FecMapping struct {
	// Apply FEC parameters when available bi-bandwidth is >= threshold (kbps, 0 means no threshold).
	BandwidthBiThreshold *int `pulumi:"bandwidthBiThreshold"`
	// Apply FEC parameters when available down bandwidth is >= threshold (kbps, 0 means no threshold).
	BandwidthDownThreshold *int `pulumi:"bandwidthDownThreshold"`
	// Apply FEC parameters when available up bandwidth is >= threshold (kbps, 0 means no threshold).
	BandwidthUpThreshold *int `pulumi:"bandwidthUpThreshold"`
	// Number of base FEC packets (1 - 20).
	Base *int `pulumi:"base"`
	// Apply FEC parameters when latency is <= threshold (0 means no threshold).
	LatencyThreshold *int `pulumi:"latencyThreshold"`
	// Apply FEC parameters when packet loss is >= threshold (0 - 100, 0 means no threshold).
	PacketLossThreshold *int `pulumi:"packetLossThreshold"`
	// Number of redundant FEC packets (1 - 5).
	Redundant *int `pulumi:"redundant"`
	// Sequence number (1 - 64).
	Seqno *int `pulumi:"seqno"`
}

type FecMappingArgs 

type FecMappingArgs struct {
	// Apply FEC parameters when available bi-bandwidth is >= threshold (kbps, 0 means no threshold).
	BandwidthBiThreshold pulumi.IntPtrInput `pulumi:"bandwidthBiThreshold"`
	// Apply FEC parameters when available down bandwidth is >= threshold (kbps, 0 means no threshold).
	BandwidthDownThreshold pulumi.IntPtrInput `pulumi:"bandwidthDownThreshold"`
	// Apply FEC parameters when available up bandwidth is >= threshold (kbps, 0 means no threshold).
	BandwidthUpThreshold pulumi.IntPtrInput `pulumi:"bandwidthUpThreshold"`
	// Number of base FEC packets (1 - 20).
	Base pulumi.IntPtrInput `pulumi:"base"`
	// Apply FEC parameters when latency is <= threshold (0 means no threshold).
	LatencyThreshold pulumi.IntPtrInput `pulumi:"latencyThreshold"`
	// Apply FEC parameters when packet loss is >= threshold (0 - 100, 0 means no threshold).
	PacketLossThreshold pulumi.IntPtrInput `pulumi:"packetLossThreshold"`
	// Number of redundant FEC packets (1 - 5).
	Redundant pulumi.IntPtrInput `pulumi:"redundant"`
	// Sequence number (1 - 64).
	Seqno pulumi.IntPtrInput `pulumi:"seqno"`
}

func (FecMappingArgs) ElementType 

func (FecMappingArgs) ElementType() reflect.Type

func (FecMappingArgs) ToFecMappingOutput 

func (i FecMappingArgs) ToFecMappingOutput() FecMappingOutput

func (FecMappingArgs) ToFecMappingOutputWithContext 

func (i FecMappingArgs) ToFecMappingOutputWithContext(ctx context.Context) FecMappingOutput

type FecMappingArray 

type FecMappingArray []FecMappingInput

func (FecMappingArray) ElementType 

func (FecMappingArray) ElementType() reflect.Type

func (FecMappingArray) ToFecMappingArrayOutput 

func (i FecMappingArray) ToFecMappingArrayOutput() FecMappingArrayOutput

func (FecMappingArray) ToFecMappingArrayOutputWithContext 

func (i FecMappingArray) ToFecMappingArrayOutputWithContext(ctx context.Context) FecMappingArrayOutput

type FecMappingArrayInput 

type FecMappingArrayInput interface {
	pulumi.Input

	ToFecMappingArrayOutput() FecMappingArrayOutput
	ToFecMappingArrayOutputWithContext(context.Context) FecMappingArrayOutput
}

FecMappingArrayInput is an input type that accepts FecMappingArray and FecMappingArrayOutput values. You can construct a concrete instance of `FecMappingArrayInput` via: 

FecMappingArray{ FecMappingArgs{...} }

type FecMappingArrayOutput 

type FecMappingArrayOutput struct{ *pulumi.OutputState }

func (FecMappingArrayOutput) ElementType 

func (FecMappingArrayOutput) ElementType() reflect.Type

func (FecMappingArrayOutput) Index 

func (o FecMappingArrayOutput) Index(i pulumi.IntInput) FecMappingOutput

func (FecMappingArrayOutput) ToFecMappingArrayOutput 

func (o FecMappingArrayOutput) ToFecMappingArrayOutput() FecMappingArrayOutput

func (FecMappingArrayOutput) ToFecMappingArrayOutputWithContext 

func (o FecMappingArrayOutput) ToFecMappingArrayOutputWithContext(ctx context.Context) FecMappingArrayOutput

type FecMappingInput 

type FecMappingInput interface {
	pulumi.Input

	ToFecMappingOutput() FecMappingOutput
	ToFecMappingOutputWithContext(context.Context) FecMappingOutput
}

FecMappingInput is an input type that accepts FecMappingArgs and FecMappingOutput values. You can construct a concrete instance of `FecMappingInput` via: 

FecMappingArgs{...}

type FecMappingOutput 

type FecMappingOutput struct{ *pulumi.OutputState }

func (FecMappingOutput) BandwidthBiThreshold 

func (o FecMappingOutput) BandwidthBiThreshold() pulumi.IntPtrOutput

Apply FEC parameters when available bi-bandwidth is >= threshold (kbps, 0 means no threshold).

func (FecMappingOutput) BandwidthDownThreshold 

func (o FecMappingOutput) BandwidthDownThreshold() pulumi.IntPtrOutput

Apply FEC parameters when available down bandwidth is >= threshold (kbps, 0 means no threshold).

func (FecMappingOutput) BandwidthUpThreshold 

func (o FecMappingOutput) BandwidthUpThreshold() pulumi.IntPtrOutput

Apply FEC parameters when available up bandwidth is >= threshold (kbps, 0 means no threshold).

func (FecMappingOutput) Base 

func (o FecMappingOutput) Base() pulumi.IntPtrOutput

Number of base FEC packets (1 - 20).

func (FecMappingOutput) ElementType 

func (FecMappingOutput) ElementType() reflect.Type

func (FecMappingOutput) LatencyThreshold 

func (o FecMappingOutput) LatencyThreshold() pulumi.IntPtrOutput

Apply FEC parameters when latency is <= threshold (0 means no threshold).

func (FecMappingOutput) PacketLossThreshold 

func (o FecMappingOutput) PacketLossThreshold() pulumi.IntPtrOutput

Apply FEC parameters when packet loss is >= threshold (0 - 100, 0 means no threshold).

func (FecMappingOutput) Redundant 

func (o FecMappingOutput) Redundant() pulumi.IntPtrOutput

Number of redundant FEC packets (1 - 5).

func (FecMappingOutput) Seqno 

func (o FecMappingOutput) Seqno() pulumi.IntPtrOutput

Sequence number (1 - 64).

func (FecMappingOutput) ToFecMappingOutput 

func (o FecMappingOutput) ToFecMappingOutput() FecMappingOutput

func (FecMappingOutput) ToFecMappingOutputWithContext 

func (o FecMappingOutput) ToFecMappingOutputWithContext(ctx context.Context) FecMappingOutput

type FecOutput 

type FecOutput struct{ *pulumi.OutputState }

func (FecOutput) DynamicSortSubtable 

func (o FecOutput) DynamicSortSubtable() pulumi.StringPtrOutput

Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].

func (FecOutput) ElementType 

func (FecOutput) ElementType() reflect.Type

func (FecOutput) GetAllTables 

func (o FecOutput) GetAllTables() pulumi.StringPtrOutput

Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.

func (FecOutput) Mappings 

func (o FecOutput) Mappings() FecMappingArrayOutput

FEC redundancy mapping table. The structure of `mappings` block is documented below.

func (FecOutput) Name 

func (o FecOutput) Name() pulumi.StringOutput

Profile name.

func (FecOutput) ToFecOutput 

func (o FecOutput) ToFecOutput() FecOutput

func (FecOutput) ToFecOutputWithContext 

func (o FecOutput) ToFecOutputWithContext(ctx context.Context) FecOutput

func (FecOutput) Vdomparam 

func (o FecOutput) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

type FecState 

type FecState struct {
	// Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
	DynamicSortSubtable pulumi.StringPtrInput
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrInput
	// FEC redundancy mapping table. The structure of `mappings` block is documented below.
	Mappings FecMappingArrayInput
	// Profile name.
	Name pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

func (FecState) ElementType 

func (FecState) ElementType() reflect.Type

type Forticlient 

type Forticlient struct {
	pulumi.CustomResourceState

	// Phase 2 tunnel name that you defined in the FortiClient dialup configuration.
	Phase2name pulumi.StringOutput `pulumi:"phase2name"`
	// FortiClient realm name.
	Realm pulumi.StringOutput `pulumi:"realm"`
	// Enable/disable this FortiClient configuration. Valid values: `enable`, `disable`.
	Status pulumi.StringOutput `pulumi:"status"`
	// User group name for FortiClient users.
	Usergroupname pulumi.StringOutput `pulumi:"usergroupname"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
}

Configure FortiClient policy realm.

## Example Usage

<!--Start PulumiCodeChooser --> ```go package main

import ( 

"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		// fortios_vpnipsec_phase1interface.trname2:
		trname4, err := vpn.NewPhase1interface(ctx, "trname4", &vpn.Phase1interfaceArgs{
			AcctVerify:             pulumi.String("disable"),
			AddGwRoute:             pulumi.String("disable"),
			AddRoute:               pulumi.String("enable"),
			AssignIp:               pulumi.String("enable"),
			AssignIpFrom:           pulumi.String("range"),
			Authmethod:             pulumi.String("psk"),
			Authusrgrp:             pulumi.String("Guest-group"),
			AutoDiscoveryForwarder: pulumi.String("disable"),
			AutoDiscoveryPsk:       pulumi.String("disable"),
			AutoDiscoveryReceiver:  pulumi.String("disable"),
			AutoDiscoverySender:    pulumi.String("disable"),
			AutoNegotiate:          pulumi.String("enable"),
			CertIdValidation:       pulumi.String("enable"),
			ChildlessIke:           pulumi.String("disable"),
			ClientAutoNegotiate:    pulumi.String("disable"),
			ClientKeepAlive:        pulumi.String("disable"),
			Comments:               pulumi.String("VPN: Dialup_IPsec (Created by VPN wizard)"),
			DefaultGw:              pulumi.String("0.0.0.0"),
			DefaultGwPriority:      pulumi.Int(0),
			Dhgrp:                  pulumi.String("14 5"),
			DigitalSignatureAuth:   pulumi.String("disable"),
			Distance:               pulumi.Int(15),
			DnsMode:                pulumi.String("auto"),
			Dpd:                    pulumi.String("on-idle"),
			DpdRetrycount:          pulumi.Int(3),
			DpdRetryinterval:       pulumi.String("60"),
			Eap:                    pulumi.String("disable"),
			EapIdentity:            pulumi.String("use-id-payload"),
			EncapLocalGw4:          pulumi.String("0.0.0.0"),
			EncapLocalGw6:          pulumi.String("::"),
			EncapRemoteGw4:         pulumi.String("0.0.0.0"),
			EncapRemoteGw6:         pulumi.String("::"),
			Encapsulation:          pulumi.String("none"),
			EncapsulationAddress:   pulumi.String("ike"),
			EnforceUniqueId:        pulumi.String("disable"),
			ExchangeInterfaceIp:    pulumi.String("disable"),
			ExchangeIpAddr4:        pulumi.String("0.0.0.0"),
			ExchangeIpAddr6:        pulumi.String("::"),
			ForticlientEnforcement: pulumi.String("disable"),
			Fragmentation:          pulumi.String("enable"),
			FragmentationMtu:       pulumi.Int(1200),
			GroupAuthentication:    pulumi.String("disable"),
			HaSyncEspSeqno:         pulumi.String("enable"),
			IdleTimeout:            pulumi.String("disable"),
			IdleTimeoutinterval:    pulumi.Int(15),
			IkeVersion:             pulumi.String("1"),
			IncludeLocalLan:        pulumi.String("disable"),
			Interface:              pulumi.String("port4"),
			IpVersion:              pulumi.String("4"),
			Ipv4DnsServer1:         pulumi.String("0.0.0.0"),
			Ipv4DnsServer2:         pulumi.String("0.0.0.0"),
			Ipv4DnsServer3:         pulumi.String("0.0.0.0"),
			Ipv4EndIp:              pulumi.String("10.10.10.10"),
			Ipv4Netmask:            pulumi.String("255.255.255.192"),
			Ipv4SplitInclude:       pulumi.String("FIREWALL_AUTH_PORTAL_ADDRESS"),
			Ipv4StartIp:            pulumi.String("10.10.10.1"),
			Ipv4WinsServer1:        pulumi.String("0.0.0.0"),
			Ipv4WinsServer2:        pulumi.String("0.0.0.0"),
			Ipv6DnsServer1:         pulumi.String("::"),
			Ipv6DnsServer2:         pulumi.String("::"),
			Ipv6DnsServer3:         pulumi.String("::"),
			Ipv6EndIp:              pulumi.String("::"),
			Ipv6Prefix:             pulumi.Int(128),
			Ipv6StartIp:            pulumi.String("::"),
			Keepalive:              pulumi.Int(10),
			Keylife:                pulumi.Int(86400),
			LocalGw:                pulumi.String("0.0.0.0"),
			LocalGw6:               pulumi.String("::"),
			LocalidType:            pulumi.String("auto"),
			MeshSelectorType:       pulumi.String("disable"),
			Mode:                   pulumi.String("aggressive"),
			ModeCfg:                pulumi.String("enable"),
			MonitorHoldDownDelay:   pulumi.Int(0),
			MonitorHoldDownTime:    pulumi.String("00:00"),
			MonitorHoldDownType:    pulumi.String("immediate"),
			MonitorHoldDownWeekday: pulumi.String("sunday"),
			Nattraversal:           pulumi.String("enable"),
			NegotiateTimeout:       pulumi.Int(30),
			NetDevice:              pulumi.String("enable"),
			PassiveMode:            pulumi.String("disable"),
			Peertype:               pulumi.String("any"),
			Psksecret:              pulumi.String("NCIEW32930293203932"),
			Ppk:                    pulumi.String("disable"),
			Priority:               pulumi.Int(0),
			Proposal:               pulumi.String("aes128-sha256 aes256-sha256 aes128-sha1 aes256-sha1"),
			Reauth:                 pulumi.String("disable"),
			Rekey:                  pulumi.String("enable"),
			RemoteGw:               pulumi.String("0.0.0.0"),
			RemoteGw6:              pulumi.String("::"),
			RsaSignatureFormat:     pulumi.String("pkcs1"),
			SavePassword:           pulumi.String("enable"),
			SendCertChain:          pulumi.String("enable"),
			SignatureHashAlg:       pulumi.String("sha2-512 sha2-384 sha2-256 sha1"),
			SuiteB:                 pulumi.String("disable"),
			TunnelSearch:           pulumi.String("selectors"),
			Type:                   pulumi.String("dynamic"),
			UnitySupport:           pulumi.String("enable"),
			WizardType:             pulumi.String("dialup-forticlient"),
			Xauthtype:              pulumi.String("auto"),
		})
		if err != nil {
			return err
		}
		// fortios_vpnipsec_phase2interface.trname1:
		trname3, err := vpn.NewPhase2interface(ctx, "trname3", &vpn.Phase2interfaceArgs{
			AddRoute:               pulumi.String("phase1"),
			AutoDiscoveryForwarder: pulumi.String("phase1"),
			AutoDiscoverySender:    pulumi.String("phase1"),
			AutoNegotiate:          pulumi.String("disable"),
			DhcpIpsec:              pulumi.String("disable"),
			Dhgrp:                  pulumi.String("14 5"),
			DstAddrType:            pulumi.String("subnet"),
			DstEndIp:               pulumi.String("0.0.0.0"),
			DstEndIp6:              pulumi.String("::"),
			DstPort:                pulumi.Int(0),
			DstStartIp:             pulumi.String("0.0.0.0"),
			DstStartIp6:            pulumi.String("::"),
			DstSubnet:              pulumi.String("0.0.0.0 0.0.0.0"),
			DstSubnet6:             pulumi.String("::/0"),
			Encapsulation:          pulumi.String("tunnel-mode"),
			Keepalive:              pulumi.String("disable"),
			KeylifeType:            pulumi.String("seconds"),
			Keylifekbs:             pulumi.Int(5120),
			Keylifeseconds:         pulumi.Int(43200),
			L2tp:                   pulumi.String("disable"),
			Pfs:                    pulumi.String("enable"),
			Phase1name:             trname4.Name,
			Proposal:               pulumi.String("aes128-sha1 aes256-sha1 aes128-sha256 aes256-sha256 aes128gcm aes256gcm chacha20poly1305"),
			Protocol:               pulumi.Int(0),
			Replay:                 pulumi.String("enable"),
			RouteOverlap:           pulumi.String("use-new"),
			SingleSource:           pulumi.String("disable"),
			SrcAddrType:            pulumi.String("subnet"),
			SrcEndIp:               pulumi.String("0.0.0.0"),
			SrcEndIp6:              pulumi.String("::"),
			SrcPort:                pulumi.Int(0),
			SrcStartIp:             pulumi.String("0.0.0.0"),
			SrcStartIp6:            pulumi.String("::"),
			SrcSubnet:              pulumi.String("0.0.0.0 0.0.0.0"),
			SrcSubnet6:             pulumi.String("::/0"),
		})
		if err != nil {
			return err
		}
		_, err = vpn.NewForticlient(ctx, "trname", &vpn.ForticlientArgs{
			Phase2name:    trname3.Name,
			Realm:         pulumi.String("1"),
			Status:        pulumi.String("enable"),
			Usergroupname: pulumi.String("Guest-group"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` <!--End PulumiCodeChooser -->

## Import

VpnIpsec Forticlient can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/ipsec/forticlient:Forticlient labelname {{realm}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/ipsec/forticlient:Forticlient labelname {{realm}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetForticlient 

func GetForticlient(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *ForticlientState, opts ...pulumi.ResourceOption) (*Forticlient, error)

GetForticlient gets an existing Forticlient resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewForticlient 

func NewForticlient(ctx *pulumi.Context,
	name string, args *ForticlientArgs, opts ...pulumi.ResourceOption) (*Forticlient, error)

NewForticlient registers a new resource with the given unique name, arguments, and options.

func (*Forticlient) ElementType 

func (*Forticlient) ElementType() reflect.Type

func (*Forticlient) ToForticlientOutput 

func (i *Forticlient) ToForticlientOutput() ForticlientOutput

func (*Forticlient) ToForticlientOutputWithContext 

func (i *Forticlient) ToForticlientOutputWithContext(ctx context.Context) ForticlientOutput

type ForticlientArgs 

type ForticlientArgs struct {
	// Phase 2 tunnel name that you defined in the FortiClient dialup configuration.
	Phase2name pulumi.StringInput
	// FortiClient realm name.
	Realm pulumi.StringPtrInput
	// Enable/disable this FortiClient configuration. Valid values: `enable`, `disable`.
	Status pulumi.StringPtrInput
	// User group name for FortiClient users.
	Usergroupname pulumi.StringInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

The set of arguments for constructing a Forticlient resource.

func (ForticlientArgs) ElementType 

func (ForticlientArgs) ElementType() reflect.Type

type ForticlientArray 

type ForticlientArray []ForticlientInput

func (ForticlientArray) ElementType 

func (ForticlientArray) ElementType() reflect.Type

func (ForticlientArray) ToForticlientArrayOutput 

func (i ForticlientArray) ToForticlientArrayOutput() ForticlientArrayOutput

func (ForticlientArray) ToForticlientArrayOutputWithContext 

func (i ForticlientArray) ToForticlientArrayOutputWithContext(ctx context.Context) ForticlientArrayOutput

type ForticlientArrayInput 

type ForticlientArrayInput interface {
	pulumi.Input

	ToForticlientArrayOutput() ForticlientArrayOutput
	ToForticlientArrayOutputWithContext(context.Context) ForticlientArrayOutput
}

ForticlientArrayInput is an input type that accepts ForticlientArray and ForticlientArrayOutput values. You can construct a concrete instance of `ForticlientArrayInput` via: 

ForticlientArray{ ForticlientArgs{...} }

type ForticlientArrayOutput 

type ForticlientArrayOutput struct{ *pulumi.OutputState }

func (ForticlientArrayOutput) ElementType 

func (ForticlientArrayOutput) ElementType() reflect.Type

func (ForticlientArrayOutput) Index 

func (o ForticlientArrayOutput) Index(i pulumi.IntInput) ForticlientOutput

func (ForticlientArrayOutput) ToForticlientArrayOutput 

func (o ForticlientArrayOutput) ToForticlientArrayOutput() ForticlientArrayOutput

func (ForticlientArrayOutput) ToForticlientArrayOutputWithContext 

func (o ForticlientArrayOutput) ToForticlientArrayOutputWithContext(ctx context.Context) ForticlientArrayOutput

type ForticlientInput 

type ForticlientInput interface {
	pulumi.Input

	ToForticlientOutput() ForticlientOutput
	ToForticlientOutputWithContext(ctx context.Context) ForticlientOutput
}

type ForticlientMap 

type ForticlientMap map[string]ForticlientInput

func (ForticlientMap) ElementType 

func (ForticlientMap) ElementType() reflect.Type

func (ForticlientMap) ToForticlientMapOutput 

func (i ForticlientMap) ToForticlientMapOutput() ForticlientMapOutput

func (ForticlientMap) ToForticlientMapOutputWithContext 

func (i ForticlientMap) ToForticlientMapOutputWithContext(ctx context.Context) ForticlientMapOutput

type ForticlientMapInput 

type ForticlientMapInput interface {
	pulumi.Input

	ToForticlientMapOutput() ForticlientMapOutput
	ToForticlientMapOutputWithContext(context.Context) ForticlientMapOutput
}

ForticlientMapInput is an input type that accepts ForticlientMap and ForticlientMapOutput values. You can construct a concrete instance of `ForticlientMapInput` via: 

ForticlientMap{ "key": ForticlientArgs{...} }

type ForticlientMapOutput 

type ForticlientMapOutput struct{ *pulumi.OutputState }

func (ForticlientMapOutput) ElementType 

func (ForticlientMapOutput) ElementType() reflect.Type

func (ForticlientMapOutput) MapIndex 

func (o ForticlientMapOutput) MapIndex(k pulumi.StringInput) ForticlientOutput

func (ForticlientMapOutput) ToForticlientMapOutput 

func (o ForticlientMapOutput) ToForticlientMapOutput() ForticlientMapOutput

func (ForticlientMapOutput) ToForticlientMapOutputWithContext 

func (o ForticlientMapOutput) ToForticlientMapOutputWithContext(ctx context.Context) ForticlientMapOutput

type ForticlientOutput 

type ForticlientOutput struct{ *pulumi.OutputState }

func (ForticlientOutput) ElementType 

func (ForticlientOutput) ElementType() reflect.Type

func (ForticlientOutput) Phase2name 

func (o ForticlientOutput) Phase2name() pulumi.StringOutput

Phase 2 tunnel name that you defined in the FortiClient dialup configuration.

func (ForticlientOutput) Realm 

func (o ForticlientOutput) Realm() pulumi.StringOutput

FortiClient realm name.

func (ForticlientOutput) Status 

func (o ForticlientOutput) Status() pulumi.StringOutput

Enable/disable this FortiClient configuration. Valid values: `enable`, `disable`.

func (ForticlientOutput) ToForticlientOutput 

func (o ForticlientOutput) ToForticlientOutput() ForticlientOutput

func (ForticlientOutput) ToForticlientOutputWithContext 

func (o ForticlientOutput) ToForticlientOutputWithContext(ctx context.Context) ForticlientOutput

func (ForticlientOutput) Usergroupname 

func (o ForticlientOutput) Usergroupname() pulumi.StringOutput

User group name for FortiClient users.

func (ForticlientOutput) Vdomparam 

func (o ForticlientOutput) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

type ForticlientState 

type ForticlientState struct {
	// Phase 2 tunnel name that you defined in the FortiClient dialup configuration.
	Phase2name pulumi.StringPtrInput
	// FortiClient realm name.
	Realm pulumi.StringPtrInput
	// Enable/disable this FortiClient configuration. Valid values: `enable`, `disable`.
	Status pulumi.StringPtrInput
	// User group name for FortiClient users.
	Usergroupname pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

func (ForticlientState) ElementType 

func (ForticlientState) ElementType() reflect.Type

type Manualkey 

type Manualkey struct {
	pulumi.CustomResourceState

	// Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`.
	Authentication pulumi.StringOutput `pulumi:"authentication"`
	// Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens.
	Authkey pulumi.StringOutput `pulumi:"authkey"`
	// Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens.
	Enckey pulumi.StringOutput `pulumi:"enckey"`
	// Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`.
	Encryption pulumi.StringOutput `pulumi:"encryption"`
	// Name of the physical, aggregate, or VLAN interface.
	Interface pulumi.StringOutput `pulumi:"interface"`
	// Local gateway.
	LocalGw pulumi.StringOutput `pulumi:"localGw"`
	// Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
	Localspi pulumi.StringOutput `pulumi:"localspi"`
	// IPsec tunnel name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Enable/disable NPU offloading. Valid values: `enable`, `disable`.
	NpuOffload pulumi.StringOutput `pulumi:"npuOffload"`
	// Peer gateway.
	RemoteGw pulumi.StringOutput `pulumi:"remoteGw"`
	// Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
	Remotespi pulumi.StringOutput `pulumi:"remotespi"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
}

Configure IPsec manual keys.

## Example Usage

<!--Start PulumiCodeChooser --> ```go package main

import ( 

"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := vpn.NewManualkey(ctx, "trname", &vpn.ManualkeyArgs{
			Authentication: pulumi.String("md5"),
			Authkey:        pulumi.String("EE32CA121ECD772A-ECACAABA212345EC"),
			Enckey:         pulumi.String("-"),
			Encryption:     pulumi.String("null"),
			Interface:      pulumi.String("port4"),
			LocalGw:        pulumi.String("0.0.0.0"),
			Localspi:       pulumi.String("0x100"),
			RemoteGw:       pulumi.String("1.1.1.1"),
			Remotespi:      pulumi.String("0x100"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` <!--End PulumiCodeChooser -->

## Import

VpnIpsec Manualkey can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/ipsec/manualkey:Manualkey labelname {{name}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/ipsec/manualkey:Manualkey labelname {{name}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetManualkey 

func GetManualkey(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *ManualkeyState, opts ...pulumi.ResourceOption) (*Manualkey, error)

GetManualkey gets an existing Manualkey resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewManualkey 

func NewManualkey(ctx *pulumi.Context,
	name string, args *ManualkeyArgs, opts ...pulumi.ResourceOption) (*Manualkey, error)

NewManualkey registers a new resource with the given unique name, arguments, and options.

func (*Manualkey) ElementType 

func (*Manualkey) ElementType() reflect.Type

func (*Manualkey) ToManualkeyOutput 

func (i *Manualkey) ToManualkeyOutput() ManualkeyOutput

func (*Manualkey) ToManualkeyOutputWithContext 

func (i *Manualkey) ToManualkeyOutputWithContext(ctx context.Context) ManualkeyOutput

type ManualkeyArgs 

type ManualkeyArgs struct {
	// Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`.
	Authentication pulumi.StringInput
	// Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens.
	Authkey pulumi.StringPtrInput
	// Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens.
	Enckey pulumi.StringPtrInput
	// Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`.
	Encryption pulumi.StringInput
	// Name of the physical, aggregate, or VLAN interface.
	Interface pulumi.StringInput
	// Local gateway.
	LocalGw pulumi.StringPtrInput
	// Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
	Localspi pulumi.StringPtrInput
	// IPsec tunnel name.
	Name pulumi.StringPtrInput
	// Enable/disable NPU offloading. Valid values: `enable`, `disable`.
	NpuOffload pulumi.StringPtrInput
	// Peer gateway.
	RemoteGw pulumi.StringInput
	// Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
	Remotespi pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

The set of arguments for constructing a Manualkey resource.

func (ManualkeyArgs) ElementType 

func (ManualkeyArgs) ElementType() reflect.Type

type ManualkeyArray 

type ManualkeyArray []ManualkeyInput

func (ManualkeyArray) ElementType 

func (ManualkeyArray) ElementType() reflect.Type

func (ManualkeyArray) ToManualkeyArrayOutput 

func (i ManualkeyArray) ToManualkeyArrayOutput() ManualkeyArrayOutput

func (ManualkeyArray) ToManualkeyArrayOutputWithContext 

func (i ManualkeyArray) ToManualkeyArrayOutputWithContext(ctx context.Context) ManualkeyArrayOutput

type ManualkeyArrayInput 

type ManualkeyArrayInput interface {
	pulumi.Input

	ToManualkeyArrayOutput() ManualkeyArrayOutput
	ToManualkeyArrayOutputWithContext(context.Context) ManualkeyArrayOutput
}

ManualkeyArrayInput is an input type that accepts ManualkeyArray and ManualkeyArrayOutput values. You can construct a concrete instance of `ManualkeyArrayInput` via: 

ManualkeyArray{ ManualkeyArgs{...} }

type ManualkeyArrayOutput 

type ManualkeyArrayOutput struct{ *pulumi.OutputState }

func (ManualkeyArrayOutput) ElementType 

func (ManualkeyArrayOutput) ElementType() reflect.Type

func (ManualkeyArrayOutput) Index 

func (o ManualkeyArrayOutput) Index(i pulumi.IntInput) ManualkeyOutput

func (ManualkeyArrayOutput) ToManualkeyArrayOutput 

func (o ManualkeyArrayOutput) ToManualkeyArrayOutput() ManualkeyArrayOutput

func (ManualkeyArrayOutput) ToManualkeyArrayOutputWithContext 

func (o ManualkeyArrayOutput) ToManualkeyArrayOutputWithContext(ctx context.Context) ManualkeyArrayOutput

type ManualkeyInput 

type ManualkeyInput interface {
	pulumi.Input

	ToManualkeyOutput() ManualkeyOutput
	ToManualkeyOutputWithContext(ctx context.Context) ManualkeyOutput
}

type ManualkeyMap 

type ManualkeyMap map[string]ManualkeyInput

func (ManualkeyMap) ElementType 

func (ManualkeyMap) ElementType() reflect.Type

func (ManualkeyMap) ToManualkeyMapOutput 

func (i ManualkeyMap) ToManualkeyMapOutput() ManualkeyMapOutput

func (ManualkeyMap) ToManualkeyMapOutputWithContext 

func (i ManualkeyMap) ToManualkeyMapOutputWithContext(ctx context.Context) ManualkeyMapOutput

type ManualkeyMapInput 

type ManualkeyMapInput interface {
	pulumi.Input

	ToManualkeyMapOutput() ManualkeyMapOutput
	ToManualkeyMapOutputWithContext(context.Context) ManualkeyMapOutput
}

ManualkeyMapInput is an input type that accepts ManualkeyMap and ManualkeyMapOutput values. You can construct a concrete instance of `ManualkeyMapInput` via: 

ManualkeyMap{ "key": ManualkeyArgs{...} }

type ManualkeyMapOutput 

type ManualkeyMapOutput struct{ *pulumi.OutputState }

func (ManualkeyMapOutput) ElementType 

func (ManualkeyMapOutput) ElementType() reflect.Type

func (ManualkeyMapOutput) MapIndex 

func (o ManualkeyMapOutput) MapIndex(k pulumi.StringInput) ManualkeyOutput

func (ManualkeyMapOutput) ToManualkeyMapOutput 

func (o ManualkeyMapOutput) ToManualkeyMapOutput() ManualkeyMapOutput

func (ManualkeyMapOutput) ToManualkeyMapOutputWithContext 

func (o ManualkeyMapOutput) ToManualkeyMapOutputWithContext(ctx context.Context) ManualkeyMapOutput

type ManualkeyOutput 

type ManualkeyOutput struct{ *pulumi.OutputState }

func (ManualkeyOutput) Authentication 

func (o ManualkeyOutput) Authentication() pulumi.StringOutput

Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`.

func (ManualkeyOutput) Authkey 

func (o ManualkeyOutput) Authkey() pulumi.StringOutput

Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens.

func (ManualkeyOutput) ElementType 

func (ManualkeyOutput) ElementType() reflect.Type

func (ManualkeyOutput) Enckey 

func (o ManualkeyOutput) Enckey() pulumi.StringOutput

Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens.

func (ManualkeyOutput) Encryption 

func (o ManualkeyOutput) Encryption() pulumi.StringOutput

Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`.

func (ManualkeyOutput) Interface 

func (o ManualkeyOutput) Interface() pulumi.StringOutput

Name of the physical, aggregate, or VLAN interface.

func (ManualkeyOutput) LocalGw 

func (o ManualkeyOutput) LocalGw() pulumi.StringOutput

Local gateway.

func (ManualkeyOutput) Localspi 

func (o ManualkeyOutput) Localspi() pulumi.StringOutput

Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.

func (ManualkeyOutput) Name 

func (o ManualkeyOutput) Name() pulumi.StringOutput

IPsec tunnel name.

func (ManualkeyOutput) NpuOffload 

func (o ManualkeyOutput) NpuOffload() pulumi.StringOutput

Enable/disable NPU offloading. Valid values: `enable`, `disable`.

func (ManualkeyOutput) RemoteGw 

func (o ManualkeyOutput) RemoteGw() pulumi.StringOutput

Peer gateway.

func (ManualkeyOutput) Remotespi 

func (o ManualkeyOutput) Remotespi() pulumi.StringOutput

Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.

func (ManualkeyOutput) ToManualkeyOutput 

func (o ManualkeyOutput) ToManualkeyOutput() ManualkeyOutput

func (ManualkeyOutput) ToManualkeyOutputWithContext 

func (o ManualkeyOutput) ToManualkeyOutputWithContext(ctx context.Context) ManualkeyOutput

func (ManualkeyOutput) Vdomparam 

func (o ManualkeyOutput) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

type ManualkeyState 

type ManualkeyState struct {
	// Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`.
	Authentication pulumi.StringPtrInput
	// Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens.
	Authkey pulumi.StringPtrInput
	// Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens.
	Enckey pulumi.StringPtrInput
	// Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`.
	Encryption pulumi.StringPtrInput
	// Name of the physical, aggregate, or VLAN interface.
	Interface pulumi.StringPtrInput
	// Local gateway.
	LocalGw pulumi.StringPtrInput
	// Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
	Localspi pulumi.StringPtrInput
	// IPsec tunnel name.
	Name pulumi.StringPtrInput
	// Enable/disable NPU offloading. Valid values: `enable`, `disable`.
	NpuOffload pulumi.StringPtrInput
	// Peer gateway.
	RemoteGw pulumi.StringPtrInput
	// Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
	Remotespi pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

func (ManualkeyState) ElementType 

func (ManualkeyState) ElementType() reflect.Type

type Manualkeyinterface 

type Manualkeyinterface struct {
	pulumi.CustomResourceState

	// IP version to use for IP packets. Valid values: `4`, `6`.
	AddrType pulumi.StringOutput `pulumi:"addrType"`
	// Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`.
	AuthAlg pulumi.StringOutput `pulumi:"authAlg"`
	// Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens.
	AuthKey pulumi.StringOutput `pulumi:"authKey"`
	// Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`.
	EncAlg pulumi.StringOutput `pulumi:"encAlg"`
	// Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens.
	EncKey pulumi.StringOutput `pulumi:"encKey"`
	// Name of the physical, aggregate, or VLAN interface.
	Interface pulumi.StringOutput `pulumi:"interface"`
	// IP version to use for VPN interface. Valid values: `4`, `6`.
	IpVersion pulumi.StringOutput `pulumi:"ipVersion"`
	// IPv4 address of the local gateway's external interface.
	LocalGw pulumi.StringOutput `pulumi:"localGw"`
	// Local IPv6 address of VPN gateway.
	LocalGw6 pulumi.StringOutput `pulumi:"localGw6"`
	// Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
	LocalSpi pulumi.StringOutput `pulumi:"localSpi"`
	// IPsec tunnel name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Enable/disable offloading IPsec VPN manual key sessions to NPUs. Valid values: `enable`, `disable`.
	NpuOffload pulumi.StringOutput `pulumi:"npuOffload"`
	// IPv4 address of the remote gateway's external interface.
	RemoteGw pulumi.StringOutput `pulumi:"remoteGw"`
	// Remote IPv6 address of VPN gateway.
	RemoteGw6 pulumi.StringOutput `pulumi:"remoteGw6"`
	// Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
	RemoteSpi pulumi.StringOutput `pulumi:"remoteSpi"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
}

Configure IPsec manual keys.

## Example Usage

<!--Start PulumiCodeChooser --> ```go package main

import ( 

"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := vpn.NewManualkeyinterface(ctx, "trname", &vpn.ManualkeyinterfaceArgs{
			AddrType:  pulumi.String("4"),
			AuthAlg:   pulumi.String("null"),
			AuthKey:   pulumi.String("-"),
			EncAlg:    pulumi.String("des"),
			EncKey:    pulumi.String("CECA2184ACADAEEF"),
			Interface: pulumi.String("port3"),
			IpVersion: pulumi.String("4"),
			LocalGw:   pulumi.String("0.0.0.0"),
			LocalGw6:  pulumi.String("::"),
			LocalSpi:  pulumi.String("0x100"),
			RemoteGw:  pulumi.String("2.2.2.2"),
			RemoteGw6: pulumi.String("::"),
			RemoteSpi: pulumi.String("0x100"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` <!--End PulumiCodeChooser -->

## Import

VpnIpsec ManualkeyInterface can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/ipsec/manualkeyinterface:Manualkeyinterface labelname {{name}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/ipsec/manualkeyinterface:Manualkeyinterface labelname {{name}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetManualkeyinterface 

func GetManualkeyinterface(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *ManualkeyinterfaceState, opts ...pulumi.ResourceOption) (*Manualkeyinterface, error)

GetManualkeyinterface gets an existing Manualkeyinterface resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewManualkeyinterface 

func NewManualkeyinterface(ctx *pulumi.Context,
	name string, args *ManualkeyinterfaceArgs, opts ...pulumi.ResourceOption) (*Manualkeyinterface, error)

NewManualkeyinterface registers a new resource with the given unique name, arguments, and options.

func (*Manualkeyinterface) ElementType 

func (*Manualkeyinterface) ElementType() reflect.Type

func (*Manualkeyinterface) ToManualkeyinterfaceOutput 

func (i *Manualkeyinterface) ToManualkeyinterfaceOutput() ManualkeyinterfaceOutput

func (*Manualkeyinterface) ToManualkeyinterfaceOutputWithContext 

func (i *Manualkeyinterface) ToManualkeyinterfaceOutputWithContext(ctx context.Context) ManualkeyinterfaceOutput

type ManualkeyinterfaceArgs 

type ManualkeyinterfaceArgs struct {
	// IP version to use for IP packets. Valid values: `4`, `6`.
	AddrType pulumi.StringPtrInput
	// Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`.
	AuthAlg pulumi.StringInput
	// Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens.
	AuthKey pulumi.StringPtrInput
	// Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`.
	EncAlg pulumi.StringInput
	// Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens.
	EncKey pulumi.StringPtrInput
	// Name of the physical, aggregate, or VLAN interface.
	Interface pulumi.StringInput
	// IP version to use for VPN interface. Valid values: `4`, `6`.
	IpVersion pulumi.StringPtrInput
	// IPv4 address of the local gateway's external interface.
	LocalGw pulumi.StringPtrInput
	// Local IPv6 address of VPN gateway.
	LocalGw6 pulumi.StringPtrInput
	// Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
	LocalSpi pulumi.StringPtrInput
	// IPsec tunnel name.
	Name pulumi.StringPtrInput
	// Enable/disable offloading IPsec VPN manual key sessions to NPUs. Valid values: `enable`, `disable`.
	NpuOffload pulumi.StringPtrInput
	// IPv4 address of the remote gateway's external interface.
	RemoteGw pulumi.StringInput
	// Remote IPv6 address of VPN gateway.
	RemoteGw6 pulumi.StringInput
	// Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
	RemoteSpi pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

The set of arguments for constructing a Manualkeyinterface resource.

func (ManualkeyinterfaceArgs) ElementType 

func (ManualkeyinterfaceArgs) ElementType() reflect.Type

type ManualkeyinterfaceArray 

type ManualkeyinterfaceArray []ManualkeyinterfaceInput

func (ManualkeyinterfaceArray) ElementType 

func (ManualkeyinterfaceArray) ElementType() reflect.Type

func (ManualkeyinterfaceArray) ToManualkeyinterfaceArrayOutput 

func (i ManualkeyinterfaceArray) ToManualkeyinterfaceArrayOutput() ManualkeyinterfaceArrayOutput

func (ManualkeyinterfaceArray) ToManualkeyinterfaceArrayOutputWithContext 

func (i ManualkeyinterfaceArray) ToManualkeyinterfaceArrayOutputWithContext(ctx context.Context) ManualkeyinterfaceArrayOutput

type ManualkeyinterfaceArrayInput 

type ManualkeyinterfaceArrayInput interface {
	pulumi.Input

	ToManualkeyinterfaceArrayOutput() ManualkeyinterfaceArrayOutput
	ToManualkeyinterfaceArrayOutputWithContext(context.Context) ManualkeyinterfaceArrayOutput
}

ManualkeyinterfaceArrayInput is an input type that accepts ManualkeyinterfaceArray and ManualkeyinterfaceArrayOutput values. You can construct a concrete instance of `ManualkeyinterfaceArrayInput` via: 

ManualkeyinterfaceArray{ ManualkeyinterfaceArgs{...} }

type ManualkeyinterfaceArrayOutput 

type ManualkeyinterfaceArrayOutput struct{ *pulumi.OutputState }

func (ManualkeyinterfaceArrayOutput) ElementType 

func (ManualkeyinterfaceArrayOutput) ElementType() reflect.Type

func (ManualkeyinterfaceArrayOutput) Index 

func (o ManualkeyinterfaceArrayOutput) Index(i pulumi.IntInput) ManualkeyinterfaceOutput

func (ManualkeyinterfaceArrayOutput) ToManualkeyinterfaceArrayOutput 

func (o ManualkeyinterfaceArrayOutput) ToManualkeyinterfaceArrayOutput() ManualkeyinterfaceArrayOutput

func (ManualkeyinterfaceArrayOutput) ToManualkeyinterfaceArrayOutputWithContext 

func (o ManualkeyinterfaceArrayOutput) ToManualkeyinterfaceArrayOutputWithContext(ctx context.Context) ManualkeyinterfaceArrayOutput

type ManualkeyinterfaceInput 

type ManualkeyinterfaceInput interface {
	pulumi.Input

	ToManualkeyinterfaceOutput() ManualkeyinterfaceOutput
	ToManualkeyinterfaceOutputWithContext(ctx context.Context) ManualkeyinterfaceOutput
}

type ManualkeyinterfaceMap 

type ManualkeyinterfaceMap map[string]ManualkeyinterfaceInput

func (ManualkeyinterfaceMap) ElementType 

func (ManualkeyinterfaceMap) ElementType() reflect.Type

func (ManualkeyinterfaceMap) ToManualkeyinterfaceMapOutput 

func (i ManualkeyinterfaceMap) ToManualkeyinterfaceMapOutput() ManualkeyinterfaceMapOutput

func (ManualkeyinterfaceMap) ToManualkeyinterfaceMapOutputWithContext 

func (i ManualkeyinterfaceMap) ToManualkeyinterfaceMapOutputWithContext(ctx context.Context) ManualkeyinterfaceMapOutput

type ManualkeyinterfaceMapInput 

type ManualkeyinterfaceMapInput interface {
	pulumi.Input

	ToManualkeyinterfaceMapOutput() ManualkeyinterfaceMapOutput
	ToManualkeyinterfaceMapOutputWithContext(context.Context) ManualkeyinterfaceMapOutput
}

ManualkeyinterfaceMapInput is an input type that accepts ManualkeyinterfaceMap and ManualkeyinterfaceMapOutput values. You can construct a concrete instance of `ManualkeyinterfaceMapInput` via: 

ManualkeyinterfaceMap{ "key": ManualkeyinterfaceArgs{...} }

type ManualkeyinterfaceMapOutput 

type ManualkeyinterfaceMapOutput struct{ *pulumi.OutputState }

func (ManualkeyinterfaceMapOutput) ElementType 

func (ManualkeyinterfaceMapOutput) ElementType() reflect.Type

func (ManualkeyinterfaceMapOutput) MapIndex 

func (o ManualkeyinterfaceMapOutput) MapIndex(k pulumi.StringInput) ManualkeyinterfaceOutput

func (ManualkeyinterfaceMapOutput) ToManualkeyinterfaceMapOutput 

func (o ManualkeyinterfaceMapOutput) ToManualkeyinterfaceMapOutput() ManualkeyinterfaceMapOutput

func (ManualkeyinterfaceMapOutput) ToManualkeyinterfaceMapOutputWithContext 

func (o ManualkeyinterfaceMapOutput) ToManualkeyinterfaceMapOutputWithContext(ctx context.Context) ManualkeyinterfaceMapOutput

type ManualkeyinterfaceOutput 

type ManualkeyinterfaceOutput struct{ *pulumi.OutputState }

func (ManualkeyinterfaceOutput) AddrType 

func (o ManualkeyinterfaceOutput) AddrType() pulumi.StringOutput

IP version to use for IP packets. Valid values: `4`, `6`.

func (ManualkeyinterfaceOutput) AuthAlg 

func (o ManualkeyinterfaceOutput) AuthAlg() pulumi.StringOutput

Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`.

func (ManualkeyinterfaceOutput) AuthKey 

func (o ManualkeyinterfaceOutput) AuthKey() pulumi.StringOutput

Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens.

func (ManualkeyinterfaceOutput) ElementType 

func (ManualkeyinterfaceOutput) ElementType() reflect.Type

func (ManualkeyinterfaceOutput) EncAlg 

func (o ManualkeyinterfaceOutput) EncAlg() pulumi.StringOutput

Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`.

func (ManualkeyinterfaceOutput) EncKey 

func (o ManualkeyinterfaceOutput) EncKey() pulumi.StringOutput

Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens.

func (ManualkeyinterfaceOutput) Interface 

func (o ManualkeyinterfaceOutput) Interface() pulumi.StringOutput

Name of the physical, aggregate, or VLAN interface.

func (ManualkeyinterfaceOutput) IpVersion 

func (o ManualkeyinterfaceOutput) IpVersion() pulumi.StringOutput

IP version to use for VPN interface. Valid values: `4`, `6`.

func (ManualkeyinterfaceOutput) LocalGw 

func (o ManualkeyinterfaceOutput) LocalGw() pulumi.StringOutput

IPv4 address of the local gateway's external interface.

func (ManualkeyinterfaceOutput) LocalGw6 

func (o ManualkeyinterfaceOutput) LocalGw6() pulumi.StringOutput

Local IPv6 address of VPN gateway.

func (ManualkeyinterfaceOutput) LocalSpi 

func (o ManualkeyinterfaceOutput) LocalSpi() pulumi.StringOutput

Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.

func (ManualkeyinterfaceOutput) Name 

func (o ManualkeyinterfaceOutput) Name() pulumi.StringOutput

IPsec tunnel name.

func (ManualkeyinterfaceOutput) NpuOffload 

func (o ManualkeyinterfaceOutput) NpuOffload() pulumi.StringOutput

Enable/disable offloading IPsec VPN manual key sessions to NPUs. Valid values: `enable`, `disable`.

func (ManualkeyinterfaceOutput) RemoteGw 

func (o ManualkeyinterfaceOutput) RemoteGw() pulumi.StringOutput

IPv4 address of the remote gateway's external interface.

func (ManualkeyinterfaceOutput) RemoteGw6 

func (o ManualkeyinterfaceOutput) RemoteGw6() pulumi.StringOutput

Remote IPv6 address of VPN gateway.

func (ManualkeyinterfaceOutput) RemoteSpi 

func (o ManualkeyinterfaceOutput) RemoteSpi() pulumi.StringOutput

Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.

func (ManualkeyinterfaceOutput) ToManualkeyinterfaceOutput 

func (o ManualkeyinterfaceOutput) ToManualkeyinterfaceOutput() ManualkeyinterfaceOutput

func (ManualkeyinterfaceOutput) ToManualkeyinterfaceOutputWithContext 

func (o ManualkeyinterfaceOutput) ToManualkeyinterfaceOutputWithContext(ctx context.Context) ManualkeyinterfaceOutput

func (ManualkeyinterfaceOutput) Vdomparam 

func (o ManualkeyinterfaceOutput) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

type ManualkeyinterfaceState 

type ManualkeyinterfaceState struct {
	// IP version to use for IP packets. Valid values: `4`, `6`.
	AddrType pulumi.StringPtrInput
	// Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`.
	AuthAlg pulumi.StringPtrInput
	// Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens.
	AuthKey pulumi.StringPtrInput
	// Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`.
	EncAlg pulumi.StringPtrInput
	// Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens.
	EncKey pulumi.StringPtrInput
	// Name of the physical, aggregate, or VLAN interface.
	Interface pulumi.StringPtrInput
	// IP version to use for VPN interface. Valid values: `4`, `6`.
	IpVersion pulumi.StringPtrInput
	// IPv4 address of the local gateway's external interface.
	LocalGw pulumi.StringPtrInput
	// Local IPv6 address of VPN gateway.
	LocalGw6 pulumi.StringPtrInput
	// Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
	LocalSpi pulumi.StringPtrInput
	// IPsec tunnel name.
	Name pulumi.StringPtrInput
	// Enable/disable offloading IPsec VPN manual key sessions to NPUs. Valid values: `enable`, `disable`.
	NpuOffload pulumi.StringPtrInput
	// IPv4 address of the remote gateway's external interface.
	RemoteGw pulumi.StringPtrInput
	// Remote IPv6 address of VPN gateway.
	RemoteGw6 pulumi.StringPtrInput
	// Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
	RemoteSpi pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

func (ManualkeyinterfaceState) ElementType 

func (ManualkeyinterfaceState) ElementType() reflect.Type

type Phase1 

type Phase1 struct {
	pulumi.CustomResourceState

	// Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`.
	AcctVerify pulumi.StringOutput `pulumi:"acctVerify"`
	// Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`.
	AddGwRoute pulumi.StringOutput `pulumi:"addGwRoute"`
	// Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`.
	AddRoute pulumi.StringOutput `pulumi:"addRoute"`
	// Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`.
	AssignIp pulumi.StringOutput `pulumi:"assignIp"`
	// Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`.
	AssignIpFrom pulumi.StringOutput `pulumi:"assignIpFrom"`
	// Authentication method. Valid values: `psk`, `signature`.
	Authmethod pulumi.StringOutput `pulumi:"authmethod"`
	// Authentication method (remote side). Valid values: `psk`, `signature`.
	AuthmethodRemote pulumi.StringOutput `pulumi:"authmethodRemote"`
	// XAuth password (max 35 characters).
	Authpasswd pulumi.StringPtrOutput `pulumi:"authpasswd"`
	// XAuth user name.
	Authusr pulumi.StringOutput `pulumi:"authusr"`
	// Authentication user group.
	Authusrgrp pulumi.StringOutput `pulumi:"authusrgrp"`
	// Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`.
	AutoNegotiate pulumi.StringOutput `pulumi:"autoNegotiate"`
	// Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`.
	AzureAdAutoconnect pulumi.StringOutput `pulumi:"azureAdAutoconnect"`
	// Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below.
	BackupGateways Phase1BackupGatewayArrayOutput `pulumi:"backupGateways"`
	// Message that unity client should display after connecting.
	Banner pulumi.StringPtrOutput `pulumi:"banner"`
	// Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`.
	CertIdValidation pulumi.StringOutput `pulumi:"certIdValidation"`
	// CA certificate trust store. Valid values: `local`, `ems`.
	CertTrustStore pulumi.StringOutput `pulumi:"certTrustStore"`
	// Names of up to 4 signed personal certificates. The structure of `certificate` block is documented below.
	Certificates Phase1CertificateArrayOutput `pulumi:"certificates"`
	// Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`.
	ChildlessIke pulumi.StringOutput `pulumi:"childlessIke"`
	// Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`.
	ClientAutoNegotiate pulumi.StringOutput `pulumi:"clientAutoNegotiate"`
	// Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`.
	ClientKeepAlive pulumi.StringOutput `pulumi:"clientKeepAlive"`
	// Comment.
	Comments pulumi.StringPtrOutput `pulumi:"comments"`
	// Device ID carried by the device ID notification.
	DevId pulumi.StringOutput `pulumi:"devId"`
	// Enable/disable device ID notification. Valid values: `disable`, `enable`.
	DevIdNotification pulumi.StringOutput `pulumi:"devIdNotification"`
	// Relay agent IPv6 link address to use in DHCP6 requests.
	Dhcp6RaLinkaddr pulumi.StringOutput `pulumi:"dhcp6RaLinkaddr"`
	// Relay agent gateway IP address to use in the giaddr field of DHCP requests.
	DhcpRaGiaddr pulumi.StringOutput `pulumi:"dhcpRaGiaddr"`
	// DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
	Dhgrp pulumi.StringOutput `pulumi:"dhgrp"`
	// Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`.
	DigitalSignatureAuth pulumi.StringOutput `pulumi:"digitalSignatureAuth"`
	// Distance for routes added by IKE (1 - 255).
	Distance pulumi.IntOutput `pulumi:"distance"`
	// DNS server mode. Valid values: `manual`, `auto`.
	DnsMode pulumi.StringOutput `pulumi:"dnsMode"`
	// Instruct unity clients about the default DNS domain.
	Domain pulumi.StringOutput `pulumi:"domain"`
	// Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`.
	Dpd pulumi.StringOutput `pulumi:"dpd"`
	// Number of DPD retry attempts.
	DpdRetrycount pulumi.IntOutput `pulumi:"dpdRetrycount"`
	// DPD retry interval.
	DpdRetryinterval pulumi.StringOutput `pulumi:"dpdRetryinterval"`
	// Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
	DynamicSortSubtable pulumi.StringPtrOutput `pulumi:"dynamicSortSubtable"`
	// Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`.
	Eap pulumi.StringOutput `pulumi:"eap"`
	// Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`.
	EapCertAuth pulumi.StringOutput `pulumi:"eapCertAuth"`
	// Peer group excluded from EAP authentication.
	EapExcludePeergrp pulumi.StringOutput `pulumi:"eapExcludePeergrp"`
	// IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`.
	EapIdentity pulumi.StringOutput `pulumi:"eapIdentity"`
	// Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`.
	EmsSnCheck pulumi.StringOutput `pulumi:"emsSnCheck"`
	// Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`.
	EnforceUniqueId pulumi.StringOutput `pulumi:"enforceUniqueId"`
	// Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`.
	Esn pulumi.StringOutput `pulumi:"esn"`
	// Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`.
	ExchangeFgtDeviceId pulumi.StringOutput `pulumi:"exchangeFgtDeviceId"`
	// Timeout in seconds before falling back IKE/IPsec traffic to tcp.
	FallbackTcpThreshold pulumi.IntOutput `pulumi:"fallbackTcpThreshold"`
	// Number of base Forward Error Correction packets (1 - 100).
	FecBase pulumi.IntOutput `pulumi:"fecBase"`
	// ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor).
	FecCodec pulumi.IntOutput `pulumi:"fecCodec"`
	// Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`.
	FecCodecString pulumi.StringOutput `pulumi:"fecCodecString"`
	// Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`.
	FecEgress pulumi.StringOutput `pulumi:"fecEgress"`
	// SD-WAN health check.
	FecHealthCheck pulumi.StringOutput `pulumi:"fecHealthCheck"`
	// Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`.
	FecIngress pulumi.StringOutput `pulumi:"fecIngress"`
	// Forward Error Correction (FEC) mapping profile.
	FecMappingProfile pulumi.StringOutput `pulumi:"fecMappingProfile"`
	// Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000).
	FecReceiveTimeout pulumi.IntOutput `pulumi:"fecReceiveTimeout"`
	// Number of redundant Forward Error Correction packets (1 - 100).
	FecRedundant pulumi.IntOutput `pulumi:"fecRedundant"`
	// Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000).
	FecSendTimeout pulumi.IntOutput `pulumi:"fecSendTimeout"`
	// Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`.
	FgspSync pulumi.StringOutput `pulumi:"fgspSync"`
	// Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`.
	ForticlientEnforcement pulumi.StringOutput `pulumi:"forticlientEnforcement"`
	// Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`.
	FortinetEsp pulumi.StringOutput `pulumi:"fortinetEsp"`
	// Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`.
	Fragmentation pulumi.StringOutput `pulumi:"fragmentation"`
	// IKE fragmentation MTU (500 - 16000).
	FragmentationMtu pulumi.IntOutput `pulumi:"fragmentationMtu"`
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrOutput `pulumi:"getAllTables"`
	// Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`.
	GroupAuthentication pulumi.StringOutput `pulumi:"groupAuthentication"`
	// Password for IKEv2 IDi group authentication.  (ASCII string or hexadecimal indicated by a leading 0x.)
	GroupAuthenticationSecret pulumi.StringPtrOutput `pulumi:"groupAuthenticationSecret"`
	// Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`.
	HaSyncEspSeqno pulumi.StringOutput `pulumi:"haSyncEspSeqno"`
	// Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`.
	IdleTimeout pulumi.StringOutput `pulumi:"idleTimeout"`
	// IPsec tunnel idle timeout in minutes (5 - 43200).
	IdleTimeoutinterval pulumi.IntOutput `pulumi:"idleTimeoutinterval"`
	// IKE protocol version. Valid values: `1`, `2`.
	IkeVersion pulumi.StringOutput `pulumi:"ikeVersion"`
	// Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`.
	InboundDscpCopy pulumi.StringOutput `pulumi:"inboundDscpCopy"`
	// Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`.
	IncludeLocalLan pulumi.StringOutput `pulumi:"includeLocalLan"`
	// Local physical, aggregate, or VLAN outgoing interface.
	Interface pulumi.StringOutput `pulumi:"interface"`
	// One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below.
	InternalDomainLists Phase1InternalDomainListArrayOutput `pulumi:"internalDomainLists"`
	// IP address reuse delay interval in seconds (0 - 28800).
	IpDelayInterval pulumi.IntOutput `pulumi:"ipDelayInterval"`
	// IPv4 DNS server 1.
	Ipv4DnsServer1 pulumi.StringOutput `pulumi:"ipv4DnsServer1"`
	// IPv4 DNS server 2.
	Ipv4DnsServer2 pulumi.StringOutput `pulumi:"ipv4DnsServer2"`
	// IPv4 DNS server 3.
	Ipv4DnsServer3 pulumi.StringOutput `pulumi:"ipv4DnsServer3"`
	// End of IPv4 range.
	Ipv4EndIp pulumi.StringOutput `pulumi:"ipv4EndIp"`
	// Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below.
	Ipv4ExcludeRanges Phase1Ipv4ExcludeRangeArrayOutput `pulumi:"ipv4ExcludeRanges"`
	// IPv4 address name.
	Ipv4Name pulumi.StringOutput `pulumi:"ipv4Name"`
	// IPv4 Netmask.
	Ipv4Netmask pulumi.StringOutput `pulumi:"ipv4Netmask"`
	// IPv4 subnets that should not be sent over the IPsec tunnel.
	Ipv4SplitExclude pulumi.StringOutput `pulumi:"ipv4SplitExclude"`
	// IPv4 split-include subnets.
	Ipv4SplitInclude pulumi.StringOutput `pulumi:"ipv4SplitInclude"`
	// Start of IPv4 range.
	Ipv4StartIp pulumi.StringOutput `pulumi:"ipv4StartIp"`
	// WINS server 1.
	Ipv4WinsServer1 pulumi.StringOutput `pulumi:"ipv4WinsServer1"`
	// WINS server 2.
	Ipv4WinsServer2 pulumi.StringOutput `pulumi:"ipv4WinsServer2"`
	// IPv6 DNS server 1.
	Ipv6DnsServer1 pulumi.StringOutput `pulumi:"ipv6DnsServer1"`
	// IPv6 DNS server 2.
	Ipv6DnsServer2 pulumi.StringOutput `pulumi:"ipv6DnsServer2"`
	// IPv6 DNS server 3.
	Ipv6DnsServer3 pulumi.StringOutput `pulumi:"ipv6DnsServer3"`
	// End of IPv6 range.
	Ipv6EndIp pulumi.StringOutput `pulumi:"ipv6EndIp"`
	// Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below.
	Ipv6ExcludeRanges Phase1Ipv6ExcludeRangeArrayOutput `pulumi:"ipv6ExcludeRanges"`
	// IPv6 address name.
	Ipv6Name pulumi.StringOutput `pulumi:"ipv6Name"`
	// IPv6 prefix.
	Ipv6Prefix pulumi.IntOutput `pulumi:"ipv6Prefix"`
	// IPv6 subnets that should not be sent over the IPsec tunnel.
	Ipv6SplitExclude pulumi.StringOutput `pulumi:"ipv6SplitExclude"`
	// IPv6 split-include subnets.
	Ipv6SplitInclude pulumi.StringOutput `pulumi:"ipv6SplitInclude"`
	// Start of IPv6 range.
	Ipv6StartIp pulumi.StringOutput `pulumi:"ipv6StartIp"`
	// NAT-T keep alive interval.
	Keepalive pulumi.IntOutput `pulumi:"keepalive"`
	// Time to wait in seconds before phase 1 encryption key expires.
	Keylife pulumi.IntOutput `pulumi:"keylife"`
	// Key Management Services server.
	Kms pulumi.StringOutput `pulumi:"kms"`
	// VPN tunnel underlay link cost.
	LinkCost pulumi.IntOutput `pulumi:"linkCost"`
	// Local VPN gateway.
	LocalGw pulumi.StringOutput `pulumi:"localGw"`
	// Local ID.
	Localid pulumi.StringOutput `pulumi:"localid"`
	// Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`.
	LocalidType pulumi.StringOutput `pulumi:"localidType"`
	// Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`.
	LoopbackAsymroute pulumi.StringOutput `pulumi:"loopbackAsymroute"`
	// Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`.
	MeshSelectorType pulumi.StringOutput `pulumi:"meshSelectorType"`
	// ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`.
	Mode pulumi.StringOutput `pulumi:"mode"`
	// Enable/disable configuration method. Valid values: `disable`, `enable`.
	ModeCfg pulumi.StringOutput `pulumi:"modeCfg"`
	// Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`.
	ModeCfgAllowClientSelector pulumi.StringOutput `pulumi:"modeCfgAllowClientSelector"`
	// IPsec remote gateway name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`.
	Nattraversal pulumi.StringOutput `pulumi:"nattraversal"`
	// IKE SA negotiation timeout in seconds (1 - 300).
	NegotiateTimeout pulumi.IntOutput `pulumi:"negotiateTimeout"`
	// VPN gateway network ID.
	NetworkId pulumi.IntOutput `pulumi:"networkId"`
	// Enable/disable network overlays. Valid values: `disable`, `enable`.
	NetworkOverlay pulumi.StringOutput `pulumi:"networkOverlay"`
	// Enable/disable offloading NPU. Valid values: `enable`, `disable`.
	NpuOffload pulumi.StringOutput `pulumi:"npuOffload"`
	// Accept this peer certificate.
	Peer pulumi.StringOutput `pulumi:"peer"`
	// Accept this peer certificate group.
	Peergrp pulumi.StringOutput `pulumi:"peergrp"`
	// Accept this peer identity.
	Peerid pulumi.StringOutput `pulumi:"peerid"`
	// Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`.
	Peertype pulumi.StringOutput `pulumi:"peertype"`
	// Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`.
	Ppk pulumi.StringOutput `pulumi:"ppk"`
	// IKEv2 Postquantum Preshared Key Identity.
	PpkIdentity pulumi.StringOutput `pulumi:"ppkIdentity"`
	// IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x).
	PpkSecret pulumi.StringPtrOutput `pulumi:"ppkSecret"`
	// Priority for routes added by IKE (0 - 4294967295).
	Priority pulumi.IntOutput `pulumi:"priority"`
	// Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
	Proposal pulumi.StringOutput `pulumi:"proposal"`
	// Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
	Psksecret pulumi.StringOutput `pulumi:"psksecret"`
	// Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
	PsksecretRemote pulumi.StringPtrOutput `pulumi:"psksecretRemote"`
	// Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`.
	Qkd pulumi.StringOutput `pulumi:"qkd"`
	// Quantum Key Distribution (QKD) server profile.
	QkdProfile pulumi.StringOutput `pulumi:"qkdProfile"`
	// Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`.
	Reauth pulumi.StringOutput `pulumi:"reauth"`
	// Enable/disable phase1 rekey. Valid values: `enable`, `disable`.
	Rekey pulumi.StringOutput `pulumi:"rekey"`
	// Remote VPN gateway.
	RemoteGw pulumi.StringOutput `pulumi:"remoteGw"`
	// Domain name of remote gateway (eg. name.DDNS.com).
	RemotegwDdns pulumi.StringOutput `pulumi:"remotegwDdns"`
	// Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`.
	RsaSignatureFormat pulumi.StringOutput `pulumi:"rsaSignatureFormat"`
	// Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`.
	RsaSignatureHashOverride pulumi.StringOutput `pulumi:"rsaSignatureHashOverride"`
	// Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`.
	SavePassword pulumi.StringOutput `pulumi:"savePassword"`
	// Enable/disable sending certificate chain. Valid values: `enable`, `disable`.
	SendCertChain pulumi.StringOutput `pulumi:"sendCertChain"`
	// Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`.
	SignatureHashAlg pulumi.StringOutput `pulumi:"signatureHashAlg"`
	// Split-include services.
	SplitIncludeService pulumi.StringOutput `pulumi:"splitIncludeService"`
	// Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`.
	SuiteB pulumi.StringOutput `pulumi:"suiteB"`
	// Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`.
	Transport pulumi.StringOutput `pulumi:"transport"`
	// Remote gateway type. Valid values: `static`, `dynamic`, `ddns`.
	Type pulumi.StringOutput `pulumi:"type"`
	// Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`.
	UnitySupport pulumi.StringOutput `pulumi:"unitySupport"`
	// User group name for dialup peers.
	Usrgrp pulumi.StringOutput `pulumi:"usrgrp"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
	// GUI VPN Wizard Type.
	WizardType pulumi.StringOutput `pulumi:"wizardType"`
	// XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`.
	Xauthtype pulumi.StringOutput `pulumi:"xauthtype"`
}

Configure VPN remote gateway.

## Example Usage

<!--Start PulumiCodeChooser --> ```go package main

import ( 

"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := vpn.NewPhase1(ctx, "trnamex1", &vpn.Phase1Args{
			AcctVerify:             pulumi.String("disable"),
			AddGwRoute:             pulumi.String("disable"),
			AddRoute:               pulumi.String("disable"),
			AssignIp:               pulumi.String("enable"),
			AssignIpFrom:           pulumi.String("range"),
			Authmethod:             pulumi.String("psk"),
			AutoNegotiate:          pulumi.String("enable"),
			CertIdValidation:       pulumi.String("enable"),
			ChildlessIke:           pulumi.String("disable"),
			ClientAutoNegotiate:    pulumi.String("disable"),
			ClientKeepAlive:        pulumi.String("disable"),
			Dhgrp:                  pulumi.String("14 5"),
			DigitalSignatureAuth:   pulumi.String("disable"),
			Distance:               pulumi.Int(15),
			DnsMode:                pulumi.String("manual"),
			Dpd:                    pulumi.String("on-demand"),
			DpdRetrycount:          pulumi.Int(3),
			DpdRetryinterval:       pulumi.String("20"),
			Eap:                    pulumi.String("disable"),
			EapIdentity:            pulumi.String("use-id-payload"),
			EnforceUniqueId:        pulumi.String("disable"),
			ForticlientEnforcement: pulumi.String("disable"),
			Fragmentation:          pulumi.String("enable"),
			FragmentationMtu:       pulumi.Int(1200),
			GroupAuthentication:    pulumi.String("disable"),
			HaSyncEspSeqno:         pulumi.String("enable"),
			IdleTimeout:            pulumi.String("disable"),
			IdleTimeoutinterval:    pulumi.Int(15),
			IkeVersion:             pulumi.String("1"),
			IncludeLocalLan:        pulumi.String("disable"),
			Interface:              pulumi.String("port4"),
			Ipv4DnsServer1:         pulumi.String("0.0.0.0"),
			Ipv4DnsServer2:         pulumi.String("0.0.0.0"),
			Ipv4DnsServer3:         pulumi.String("0.0.0.0"),
			Ipv4EndIp:              pulumi.String("0.0.0.0"),
			Ipv4Netmask:            pulumi.String("255.255.255.255"),
			Ipv4StartIp:            pulumi.String("0.0.0.0"),
			Ipv4WinsServer1:        pulumi.String("0.0.0.0"),
			Ipv4WinsServer2:        pulumi.String("0.0.0.0"),
			Ipv6DnsServer1:         pulumi.String("::"),
			Ipv6DnsServer2:         pulumi.String("::"),
			Ipv6DnsServer3:         pulumi.String("::"),
			Ipv6EndIp:              pulumi.String("::"),
			Ipv6Prefix:             pulumi.Int(128),
			Ipv6StartIp:            pulumi.String("::"),
			Keepalive:              pulumi.Int(10),
			Keylife:                pulumi.Int(86400),
			LocalGw:                pulumi.String("0.0.0.0"),
			LocalidType:            pulumi.String("auto"),
			MeshSelectorType:       pulumi.String("disable"),
			Mode:                   pulumi.String("main"),
			ModeCfg:                pulumi.String("disable"),
			Nattraversal:           pulumi.String("enable"),
			NegotiateTimeout:       pulumi.Int(30),
			Peertype:               pulumi.String("any"),
			Ppk:                    pulumi.String("disable"),
			Priority:               pulumi.Int(0),
			Proposal:               pulumi.String("aes128-sha256 aes256-sha256 aes128-sha1 aes256-sha1"),
			Psksecret:              pulumi.String("dewcEde2112"),
			Reauth:                 pulumi.String("disable"),
			Rekey:                  pulumi.String("enable"),
			RemoteGw:               pulumi.String("1.1.1.1"),
			RsaSignatureFormat:     pulumi.String("pkcs1"),
			SavePassword:           pulumi.String("disable"),
			SendCertChain:          pulumi.String("enable"),
			SignatureHashAlg:       pulumi.String("sha2-512 sha2-384 sha2-256 sha1"),
			SuiteB:                 pulumi.String("disable"),
			Type:                   pulumi.String("static"),
			UnitySupport:           pulumi.String("enable"),
			WizardType:             pulumi.String("custom"),
			Xauthtype:              pulumi.String("disable"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` <!--End PulumiCodeChooser -->

## Import

VpnIpsec Phase1 can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/ipsec/phase1:Phase1 labelname {{name}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/ipsec/phase1:Phase1 labelname {{name}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetPhase1 

func GetPhase1(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *Phase1State, opts ...pulumi.ResourceOption) (*Phase1, error)

GetPhase1 gets an existing Phase1 resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPhase1 

func NewPhase1(ctx *pulumi.Context,
	name string, args *Phase1Args, opts ...pulumi.ResourceOption) (*Phase1, error)

NewPhase1 registers a new resource with the given unique name, arguments, and options.

func (*Phase1) ElementType 

func (*Phase1) ElementType() reflect.Type

func (*Phase1) ToPhase1Output 

func (i *Phase1) ToPhase1Output() Phase1Output

func (*Phase1) ToPhase1OutputWithContext 

func (i *Phase1) ToPhase1OutputWithContext(ctx context.Context) Phase1Output

type Phase1Args 

type Phase1Args struct {
	// Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`.
	AcctVerify pulumi.StringPtrInput
	// Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`.
	AddGwRoute pulumi.StringPtrInput
	// Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`.
	AddRoute pulumi.StringPtrInput
	// Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`.
	AssignIp pulumi.StringPtrInput
	// Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`.
	AssignIpFrom pulumi.StringPtrInput
	// Authentication method. Valid values: `psk`, `signature`.
	Authmethod pulumi.StringPtrInput
	// Authentication method (remote side). Valid values: `psk`, `signature`.
	AuthmethodRemote pulumi.StringPtrInput
	// XAuth password (max 35 characters).
	Authpasswd pulumi.StringPtrInput
	// XAuth user name.
	Authusr pulumi.StringPtrInput
	// Authentication user group.
	Authusrgrp pulumi.StringPtrInput
	// Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`.
	AutoNegotiate pulumi.StringPtrInput
	// Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`.
	AzureAdAutoconnect pulumi.StringPtrInput
	// Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below.
	BackupGateways Phase1BackupGatewayArrayInput
	// Message that unity client should display after connecting.
	Banner pulumi.StringPtrInput
	// Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`.
	CertIdValidation pulumi.StringPtrInput
	// CA certificate trust store. Valid values: `local`, `ems`.
	CertTrustStore pulumi.StringPtrInput
	// Names of up to 4 signed personal certificates. The structure of `certificate` block is documented below.
	Certificates Phase1CertificateArrayInput
	// Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`.
	ChildlessIke pulumi.StringPtrInput
	// Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`.
	ClientAutoNegotiate pulumi.StringPtrInput
	// Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`.
	ClientKeepAlive pulumi.StringPtrInput
	// Comment.
	Comments pulumi.StringPtrInput
	// Device ID carried by the device ID notification.
	DevId pulumi.StringPtrInput
	// Enable/disable device ID notification. Valid values: `disable`, `enable`.
	DevIdNotification pulumi.StringPtrInput
	// Relay agent IPv6 link address to use in DHCP6 requests.
	Dhcp6RaLinkaddr pulumi.StringPtrInput
	// Relay agent gateway IP address to use in the giaddr field of DHCP requests.
	DhcpRaGiaddr pulumi.StringPtrInput
	// DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
	Dhgrp pulumi.StringPtrInput
	// Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`.
	DigitalSignatureAuth pulumi.StringPtrInput
	// Distance for routes added by IKE (1 - 255).
	Distance pulumi.IntPtrInput
	// DNS server mode. Valid values: `manual`, `auto`.
	DnsMode pulumi.StringPtrInput
	// Instruct unity clients about the default DNS domain.
	Domain pulumi.StringPtrInput
	// Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`.
	Dpd pulumi.StringPtrInput
	// Number of DPD retry attempts.
	DpdRetrycount pulumi.IntPtrInput
	// DPD retry interval.
	DpdRetryinterval pulumi.StringPtrInput
	// Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
	DynamicSortSubtable pulumi.StringPtrInput
	// Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`.
	Eap pulumi.StringPtrInput
	// Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`.
	EapCertAuth pulumi.StringPtrInput
	// Peer group excluded from EAP authentication.
	EapExcludePeergrp pulumi.StringPtrInput
	// IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`.
	EapIdentity pulumi.StringPtrInput
	// Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`.
	EmsSnCheck pulumi.StringPtrInput
	// Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`.
	EnforceUniqueId pulumi.StringPtrInput
	// Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`.
	Esn pulumi.StringPtrInput
	// Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`.
	ExchangeFgtDeviceId pulumi.StringPtrInput
	// Timeout in seconds before falling back IKE/IPsec traffic to tcp.
	FallbackTcpThreshold pulumi.IntPtrInput
	// Number of base Forward Error Correction packets (1 - 100).
	FecBase pulumi.IntPtrInput
	// ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor).
	FecCodec pulumi.IntPtrInput
	// Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`.
	FecCodecString pulumi.StringPtrInput
	// Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`.
	FecEgress pulumi.StringPtrInput
	// SD-WAN health check.
	FecHealthCheck pulumi.StringPtrInput
	// Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`.
	FecIngress pulumi.StringPtrInput
	// Forward Error Correction (FEC) mapping profile.
	FecMappingProfile pulumi.StringPtrInput
	// Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000).
	FecReceiveTimeout pulumi.IntPtrInput
	// Number of redundant Forward Error Correction packets (1 - 100).
	FecRedundant pulumi.IntPtrInput
	// Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000).
	FecSendTimeout pulumi.IntPtrInput
	// Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`.
	FgspSync pulumi.StringPtrInput
	// Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`.
	ForticlientEnforcement pulumi.StringPtrInput
	// Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`.
	FortinetEsp pulumi.StringPtrInput
	// Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`.
	Fragmentation pulumi.StringPtrInput
	// IKE fragmentation MTU (500 - 16000).
	FragmentationMtu pulumi.IntPtrInput
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrInput
	// Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`.
	GroupAuthentication pulumi.StringPtrInput
	// Password for IKEv2 IDi group authentication.  (ASCII string or hexadecimal indicated by a leading 0x.)
	GroupAuthenticationSecret pulumi.StringPtrInput
	// Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`.
	HaSyncEspSeqno pulumi.StringPtrInput
	// Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`.
	IdleTimeout pulumi.StringPtrInput
	// IPsec tunnel idle timeout in minutes (5 - 43200).
	IdleTimeoutinterval pulumi.IntPtrInput
	// IKE protocol version. Valid values: `1`, `2`.
	IkeVersion pulumi.StringPtrInput
	// Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`.
	InboundDscpCopy pulumi.StringPtrInput
	// Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`.
	IncludeLocalLan pulumi.StringPtrInput
	// Local physical, aggregate, or VLAN outgoing interface.
	Interface pulumi.StringInput
	// One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below.
	InternalDomainLists Phase1InternalDomainListArrayInput
	// IP address reuse delay interval in seconds (0 - 28800).
	IpDelayInterval pulumi.IntPtrInput
	// IPv4 DNS server 1.
	Ipv4DnsServer1 pulumi.StringPtrInput
	// IPv4 DNS server 2.
	Ipv4DnsServer2 pulumi.StringPtrInput
	// IPv4 DNS server 3.
	Ipv4DnsServer3 pulumi.StringPtrInput
	// End of IPv4 range.
	Ipv4EndIp pulumi.StringPtrInput
	// Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below.
	Ipv4ExcludeRanges Phase1Ipv4ExcludeRangeArrayInput
	// IPv4 address name.
	Ipv4Name pulumi.StringPtrInput
	// IPv4 Netmask.
	Ipv4Netmask pulumi.StringPtrInput
	// IPv4 subnets that should not be sent over the IPsec tunnel.
	Ipv4SplitExclude pulumi.StringPtrInput
	// IPv4 split-include subnets.
	Ipv4SplitInclude pulumi.StringPtrInput
	// Start of IPv4 range.
	Ipv4StartIp pulumi.StringPtrInput
	// WINS server 1.
	Ipv4WinsServer1 pulumi.StringPtrInput
	// WINS server 2.
	Ipv4WinsServer2 pulumi.StringPtrInput
	// IPv6 DNS server 1.
	Ipv6DnsServer1 pulumi.StringPtrInput
	// IPv6 DNS server 2.
	Ipv6DnsServer2 pulumi.StringPtrInput
	// IPv6 DNS server 3.
	Ipv6DnsServer3 pulumi.StringPtrInput
	// End of IPv6 range.
	Ipv6EndIp pulumi.StringPtrInput
	// Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below.
	Ipv6ExcludeRanges Phase1Ipv6ExcludeRangeArrayInput
	// IPv6 address name.
	Ipv6Name pulumi.StringPtrInput
	// IPv6 prefix.
	Ipv6Prefix pulumi.IntPtrInput
	// IPv6 subnets that should not be sent over the IPsec tunnel.
	Ipv6SplitExclude pulumi.StringPtrInput
	// IPv6 split-include subnets.
	Ipv6SplitInclude pulumi.StringPtrInput
	// Start of IPv6 range.
	Ipv6StartIp pulumi.StringPtrInput
	// NAT-T keep alive interval.
	Keepalive pulumi.IntPtrInput
	// Time to wait in seconds before phase 1 encryption key expires.
	Keylife pulumi.IntPtrInput
	// Key Management Services server.
	Kms pulumi.StringPtrInput
	// VPN tunnel underlay link cost.
	LinkCost pulumi.IntPtrInput
	// Local VPN gateway.
	LocalGw pulumi.StringPtrInput
	// Local ID.
	Localid pulumi.StringPtrInput
	// Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`.
	LocalidType pulumi.StringPtrInput
	// Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`.
	LoopbackAsymroute pulumi.StringPtrInput
	// Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`.
	MeshSelectorType pulumi.StringPtrInput
	// ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`.
	Mode pulumi.StringPtrInput
	// Enable/disable configuration method. Valid values: `disable`, `enable`.
	ModeCfg pulumi.StringPtrInput
	// Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`.
	ModeCfgAllowClientSelector pulumi.StringPtrInput
	// IPsec remote gateway name.
	Name pulumi.StringPtrInput
	// Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`.
	Nattraversal pulumi.StringPtrInput
	// IKE SA negotiation timeout in seconds (1 - 300).
	NegotiateTimeout pulumi.IntPtrInput
	// VPN gateway network ID.
	NetworkId pulumi.IntPtrInput
	// Enable/disable network overlays. Valid values: `disable`, `enable`.
	NetworkOverlay pulumi.StringPtrInput
	// Enable/disable offloading NPU. Valid values: `enable`, `disable`.
	NpuOffload pulumi.StringPtrInput
	// Accept this peer certificate.
	Peer pulumi.StringPtrInput
	// Accept this peer certificate group.
	Peergrp pulumi.StringPtrInput
	// Accept this peer identity.
	Peerid pulumi.StringPtrInput
	// Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`.
	Peertype pulumi.StringPtrInput
	// Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`.
	Ppk pulumi.StringPtrInput
	// IKEv2 Postquantum Preshared Key Identity.
	PpkIdentity pulumi.StringPtrInput
	// IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x).
	PpkSecret pulumi.StringPtrInput
	// Priority for routes added by IKE (0 - 4294967295).
	Priority pulumi.IntPtrInput
	// Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
	Proposal pulumi.StringInput
	// Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
	Psksecret pulumi.StringInput
	// Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
	PsksecretRemote pulumi.StringPtrInput
	// Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`.
	Qkd pulumi.StringPtrInput
	// Quantum Key Distribution (QKD) server profile.
	QkdProfile pulumi.StringPtrInput
	// Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`.
	Reauth pulumi.StringPtrInput
	// Enable/disable phase1 rekey. Valid values: `enable`, `disable`.
	Rekey pulumi.StringPtrInput
	// Remote VPN gateway.
	RemoteGw pulumi.StringPtrInput
	// Domain name of remote gateway (eg. name.DDNS.com).
	RemotegwDdns pulumi.StringPtrInput
	// Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`.
	RsaSignatureFormat pulumi.StringPtrInput
	// Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`.
	RsaSignatureHashOverride pulumi.StringPtrInput
	// Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`.
	SavePassword pulumi.StringPtrInput
	// Enable/disable sending certificate chain. Valid values: `enable`, `disable`.
	SendCertChain pulumi.StringPtrInput
	// Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`.
	SignatureHashAlg pulumi.StringPtrInput
	// Split-include services.
	SplitIncludeService pulumi.StringPtrInput
	// Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`.
	SuiteB pulumi.StringPtrInput
	// Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`.
	Transport pulumi.StringPtrInput
	// Remote gateway type. Valid values: `static`, `dynamic`, `ddns`.
	Type pulumi.StringPtrInput
	// Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`.
	UnitySupport pulumi.StringPtrInput
	// User group name for dialup peers.
	Usrgrp pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
	// GUI VPN Wizard Type.
	WizardType pulumi.StringPtrInput
	// XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`.
	Xauthtype pulumi.StringPtrInput
}

The set of arguments for constructing a Phase1 resource.

func (Phase1Args) ElementType 

func (Phase1Args) ElementType() reflect.Type

type Phase1Array 

type Phase1Array []Phase1Input

func (Phase1Array) ElementType 

func (Phase1Array) ElementType() reflect.Type

func (Phase1Array) ToPhase1ArrayOutput 

func (i Phase1Array) ToPhase1ArrayOutput() Phase1ArrayOutput

func (Phase1Array) ToPhase1ArrayOutputWithContext 

func (i Phase1Array) ToPhase1ArrayOutputWithContext(ctx context.Context) Phase1ArrayOutput

type Phase1ArrayInput 

type Phase1ArrayInput interface {
	pulumi.Input

	ToPhase1ArrayOutput() Phase1ArrayOutput
	ToPhase1ArrayOutputWithContext(context.Context) Phase1ArrayOutput
}

Phase1ArrayInput is an input type that accepts Phase1Array and Phase1ArrayOutput values. You can construct a concrete instance of `Phase1ArrayInput` via: 

Phase1Array{ Phase1Args{...} }

type Phase1ArrayOutput 

type Phase1ArrayOutput struct{ *pulumi.OutputState }

func (Phase1ArrayOutput) ElementType 

func (Phase1ArrayOutput) ElementType() reflect.Type

func (Phase1ArrayOutput) Index 

func (o Phase1ArrayOutput) Index(i pulumi.IntInput) Phase1Output

func (Phase1ArrayOutput) ToPhase1ArrayOutput 

func (o Phase1ArrayOutput) ToPhase1ArrayOutput() Phase1ArrayOutput

func (Phase1ArrayOutput) ToPhase1ArrayOutputWithContext 

func (o Phase1ArrayOutput) ToPhase1ArrayOutputWithContext(ctx context.Context) Phase1ArrayOutput

type Phase1BackupGateway 

type Phase1BackupGateway struct {
	// Address of backup gateway.
	Address *string `pulumi:"address"`
}

type Phase1BackupGatewayArgs 

type Phase1BackupGatewayArgs struct {
	// Address of backup gateway.
	Address pulumi.StringPtrInput `pulumi:"address"`
}

func (Phase1BackupGatewayArgs) ElementType 

func (Phase1BackupGatewayArgs) ElementType() reflect.Type

func (Phase1BackupGatewayArgs) ToPhase1BackupGatewayOutput 

func (i Phase1BackupGatewayArgs) ToPhase1BackupGatewayOutput() Phase1BackupGatewayOutput

func (Phase1BackupGatewayArgs) ToPhase1BackupGatewayOutputWithContext 

func (i Phase1BackupGatewayArgs) ToPhase1BackupGatewayOutputWithContext(ctx context.Context) Phase1BackupGatewayOutput

type Phase1BackupGatewayArray 

type Phase1BackupGatewayArray []Phase1BackupGatewayInput

func (Phase1BackupGatewayArray) ElementType 

func (Phase1BackupGatewayArray) ElementType() reflect.Type

func (Phase1BackupGatewayArray) ToPhase1BackupGatewayArrayOutput 

func (i Phase1BackupGatewayArray) ToPhase1BackupGatewayArrayOutput() Phase1BackupGatewayArrayOutput

func (Phase1BackupGatewayArray) ToPhase1BackupGatewayArrayOutputWithContext 

func (i Phase1BackupGatewayArray) ToPhase1BackupGatewayArrayOutputWithContext(ctx context.Context) Phase1BackupGatewayArrayOutput

type Phase1BackupGatewayArrayInput 

type Phase1BackupGatewayArrayInput interface {
	pulumi.Input

	ToPhase1BackupGatewayArrayOutput() Phase1BackupGatewayArrayOutput
	ToPhase1BackupGatewayArrayOutputWithContext(context.Context) Phase1BackupGatewayArrayOutput
}

Phase1BackupGatewayArrayInput is an input type that accepts Phase1BackupGatewayArray and Phase1BackupGatewayArrayOutput values. You can construct a concrete instance of `Phase1BackupGatewayArrayInput` via: 

Phase1BackupGatewayArray{ Phase1BackupGatewayArgs{...} }

type Phase1BackupGatewayArrayOutput 

type Phase1BackupGatewayArrayOutput struct{ *pulumi.OutputState }

func (Phase1BackupGatewayArrayOutput) ElementType 

func (Phase1BackupGatewayArrayOutput) ElementType() reflect.Type

func (Phase1BackupGatewayArrayOutput) Index 

func (o Phase1BackupGatewayArrayOutput) Index(i pulumi.IntInput) Phase1BackupGatewayOutput

func (Phase1BackupGatewayArrayOutput) ToPhase1BackupGatewayArrayOutput 

func (o Phase1BackupGatewayArrayOutput) ToPhase1BackupGatewayArrayOutput() Phase1BackupGatewayArrayOutput

func (Phase1BackupGatewayArrayOutput) ToPhase1BackupGatewayArrayOutputWithContext 

func (o Phase1BackupGatewayArrayOutput) ToPhase1BackupGatewayArrayOutputWithContext(ctx context.Context) Phase1BackupGatewayArrayOutput

type Phase1BackupGatewayInput 

type Phase1BackupGatewayInput interface {
	pulumi.Input

	ToPhase1BackupGatewayOutput() Phase1BackupGatewayOutput
	ToPhase1BackupGatewayOutputWithContext(context.Context) Phase1BackupGatewayOutput
}

Phase1BackupGatewayInput is an input type that accepts Phase1BackupGatewayArgs and Phase1BackupGatewayOutput values. You can construct a concrete instance of `Phase1BackupGatewayInput` via: 

Phase1BackupGatewayArgs{...}

type Phase1BackupGatewayOutput 

type Phase1BackupGatewayOutput struct{ *pulumi.OutputState }

func (Phase1BackupGatewayOutput) Address 

func (o Phase1BackupGatewayOutput) Address() pulumi.StringPtrOutput

Address of backup gateway.

func (Phase1BackupGatewayOutput) ElementType 

func (Phase1BackupGatewayOutput) ElementType() reflect.Type

func (Phase1BackupGatewayOutput) ToPhase1BackupGatewayOutput 

func (o Phase1BackupGatewayOutput) ToPhase1BackupGatewayOutput() Phase1BackupGatewayOutput

func (Phase1BackupGatewayOutput) ToPhase1BackupGatewayOutputWithContext 

func (o Phase1BackupGatewayOutput) ToPhase1BackupGatewayOutputWithContext(ctx context.Context) Phase1BackupGatewayOutput

type Phase1Certificate 

type Phase1Certificate struct {
	// Certificate name.
	Name *string `pulumi:"name"`
}

type Phase1CertificateArgs 

type Phase1CertificateArgs struct {
	// Certificate name.
	Name pulumi.StringPtrInput `pulumi:"name"`
}

func (Phase1CertificateArgs) ElementType 

func (Phase1CertificateArgs) ElementType() reflect.Type

func (Phase1CertificateArgs) ToPhase1CertificateOutput 

func (i Phase1CertificateArgs) ToPhase1CertificateOutput() Phase1CertificateOutput

func (Phase1CertificateArgs) ToPhase1CertificateOutputWithContext 

func (i Phase1CertificateArgs) ToPhase1CertificateOutputWithContext(ctx context.Context) Phase1CertificateOutput

type Phase1CertificateArray 

type Phase1CertificateArray []Phase1CertificateInput

func (Phase1CertificateArray) ElementType 

func (Phase1CertificateArray) ElementType() reflect.Type

func (Phase1CertificateArray) ToPhase1CertificateArrayOutput 

func (i Phase1CertificateArray) ToPhase1CertificateArrayOutput() Phase1CertificateArrayOutput

func (Phase1CertificateArray) ToPhase1CertificateArrayOutputWithContext 

func (i Phase1CertificateArray) ToPhase1CertificateArrayOutputWithContext(ctx context.Context) Phase1CertificateArrayOutput

type Phase1CertificateArrayInput 

type Phase1CertificateArrayInput interface {
	pulumi.Input

	ToPhase1CertificateArrayOutput() Phase1CertificateArrayOutput
	ToPhase1CertificateArrayOutputWithContext(context.Context) Phase1CertificateArrayOutput
}

Phase1CertificateArrayInput is an input type that accepts Phase1CertificateArray and Phase1CertificateArrayOutput values. You can construct a concrete instance of `Phase1CertificateArrayInput` via: 

Phase1CertificateArray{ Phase1CertificateArgs{...} }

type Phase1CertificateArrayOutput 

type Phase1CertificateArrayOutput struct{ *pulumi.OutputState }

func (Phase1CertificateArrayOutput) ElementType 

func (Phase1CertificateArrayOutput) ElementType() reflect.Type

func (Phase1CertificateArrayOutput) Index 

func (o Phase1CertificateArrayOutput) Index(i pulumi.IntInput) Phase1CertificateOutput

func (Phase1CertificateArrayOutput) ToPhase1CertificateArrayOutput 

func (o Phase1CertificateArrayOutput) ToPhase1CertificateArrayOutput() Phase1CertificateArrayOutput

func (Phase1CertificateArrayOutput) ToPhase1CertificateArrayOutputWithContext 

func (o Phase1CertificateArrayOutput) ToPhase1CertificateArrayOutputWithContext(ctx context.Context) Phase1CertificateArrayOutput

type Phase1CertificateInput 

type Phase1CertificateInput interface {
	pulumi.Input

	ToPhase1CertificateOutput() Phase1CertificateOutput
	ToPhase1CertificateOutputWithContext(context.Context) Phase1CertificateOutput
}

Phase1CertificateInput is an input type that accepts Phase1CertificateArgs and Phase1CertificateOutput values. You can construct a concrete instance of `Phase1CertificateInput` via: 

Phase1CertificateArgs{...}

type Phase1CertificateOutput 

type Phase1CertificateOutput struct{ *pulumi.OutputState }

func (Phase1CertificateOutput) ElementType 

func (Phase1CertificateOutput) ElementType() reflect.Type

func (Phase1CertificateOutput) Name 

func (o Phase1CertificateOutput) Name() pulumi.StringPtrOutput

Certificate name.

func (Phase1CertificateOutput) ToPhase1CertificateOutput 

func (o Phase1CertificateOutput) ToPhase1CertificateOutput() Phase1CertificateOutput

func (Phase1CertificateOutput) ToPhase1CertificateOutputWithContext 

func (o Phase1CertificateOutput) ToPhase1CertificateOutputWithContext(ctx context.Context) Phase1CertificateOutput

type Phase1Input 

type Phase1Input interface {
	pulumi.Input

	ToPhase1Output() Phase1Output
	ToPhase1OutputWithContext(ctx context.Context) Phase1Output
}

type Phase1InternalDomainList 

type Phase1InternalDomainList struct {
	// Domain name.
	//
	// The `ipv4ExcludeRange` block supports:
	DomainName *string `pulumi:"domainName"`
}

type Phase1InternalDomainListArgs 

type Phase1InternalDomainListArgs struct {
	// Domain name.
	//
	// The `ipv4ExcludeRange` block supports:
	DomainName pulumi.StringPtrInput `pulumi:"domainName"`
}

func (Phase1InternalDomainListArgs) ElementType 

func (Phase1InternalDomainListArgs) ElementType() reflect.Type

func (Phase1InternalDomainListArgs) ToPhase1InternalDomainListOutput 

func (i Phase1InternalDomainListArgs) ToPhase1InternalDomainListOutput() Phase1InternalDomainListOutput

func (Phase1InternalDomainListArgs) ToPhase1InternalDomainListOutputWithContext 

func (i Phase1InternalDomainListArgs) ToPhase1InternalDomainListOutputWithContext(ctx context.Context) Phase1InternalDomainListOutput

type Phase1InternalDomainListArray 

type Phase1InternalDomainListArray []Phase1InternalDomainListInput

func (Phase1InternalDomainListArray) ElementType 

func (Phase1InternalDomainListArray) ElementType() reflect.Type

func (Phase1InternalDomainListArray) ToPhase1InternalDomainListArrayOutput 

func (i Phase1InternalDomainListArray) ToPhase1InternalDomainListArrayOutput() Phase1InternalDomainListArrayOutput

func (Phase1InternalDomainListArray) ToPhase1InternalDomainListArrayOutputWithContext 

func (i Phase1InternalDomainListArray) ToPhase1InternalDomainListArrayOutputWithContext(ctx context.Context) Phase1InternalDomainListArrayOutput

type Phase1InternalDomainListArrayInput 

type Phase1InternalDomainListArrayInput interface {
	pulumi.Input

	ToPhase1InternalDomainListArrayOutput() Phase1InternalDomainListArrayOutput
	ToPhase1InternalDomainListArrayOutputWithContext(context.Context) Phase1InternalDomainListArrayOutput
}

Phase1InternalDomainListArrayInput is an input type that accepts Phase1InternalDomainListArray and Phase1InternalDomainListArrayOutput values. You can construct a concrete instance of `Phase1InternalDomainListArrayInput` via: 

Phase1InternalDomainListArray{ Phase1InternalDomainListArgs{...} }

type Phase1InternalDomainListArrayOutput 

type Phase1InternalDomainListArrayOutput struct{ *pulumi.OutputState }

func (Phase1InternalDomainListArrayOutput) ElementType 

func (Phase1InternalDomainListArrayOutput) ElementType() reflect.Type

func (Phase1InternalDomainListArrayOutput) Index 

func (o Phase1InternalDomainListArrayOutput) Index(i pulumi.IntInput) Phase1InternalDomainListOutput

func (Phase1InternalDomainListArrayOutput) ToPhase1InternalDomainListArrayOutput 

func (o Phase1InternalDomainListArrayOutput) ToPhase1InternalDomainListArrayOutput() Phase1InternalDomainListArrayOutput

func (Phase1InternalDomainListArrayOutput) ToPhase1InternalDomainListArrayOutputWithContext 

func (o Phase1InternalDomainListArrayOutput) ToPhase1InternalDomainListArrayOutputWithContext(ctx context.Context) Phase1InternalDomainListArrayOutput

type Phase1InternalDomainListInput 

type Phase1InternalDomainListInput interface {
	pulumi.Input

	ToPhase1InternalDomainListOutput() Phase1InternalDomainListOutput
	ToPhase1InternalDomainListOutputWithContext(context.Context) Phase1InternalDomainListOutput
}

Phase1InternalDomainListInput is an input type that accepts Phase1InternalDomainListArgs and Phase1InternalDomainListOutput values. You can construct a concrete instance of `Phase1InternalDomainListInput` via: 

Phase1InternalDomainListArgs{...}

type Phase1InternalDomainListOutput 

type Phase1InternalDomainListOutput struct{ *pulumi.OutputState }

func (Phase1InternalDomainListOutput) DomainName 

func (o Phase1InternalDomainListOutput) DomainName() pulumi.StringPtrOutput

Domain name.

The `ipv4ExcludeRange` block supports:

func (Phase1InternalDomainListOutput) ElementType 

func (Phase1InternalDomainListOutput) ElementType() reflect.Type

func (Phase1InternalDomainListOutput) ToPhase1InternalDomainListOutput 

func (o Phase1InternalDomainListOutput) ToPhase1InternalDomainListOutput() Phase1InternalDomainListOutput

func (Phase1InternalDomainListOutput) ToPhase1InternalDomainListOutputWithContext 

func (o Phase1InternalDomainListOutput) ToPhase1InternalDomainListOutputWithContext(ctx context.Context) Phase1InternalDomainListOutput

type Phase1Ipv4ExcludeRange 

type Phase1Ipv4ExcludeRange struct {
	// End of IPv6 exclusive range.
	EndIp *string `pulumi:"endIp"`
	// ID.
	Id *int `pulumi:"id"`
	// Start of IPv6 exclusive range.
	StartIp *string `pulumi:"startIp"`
}

type Phase1Ipv4ExcludeRangeArgs 

type Phase1Ipv4ExcludeRangeArgs struct {
	// End of IPv6 exclusive range.
	EndIp pulumi.StringPtrInput `pulumi:"endIp"`
	// ID.
	Id pulumi.IntPtrInput `pulumi:"id"`
	// Start of IPv6 exclusive range.
	StartIp pulumi.StringPtrInput `pulumi:"startIp"`
}

func (Phase1Ipv4ExcludeRangeArgs) ElementType 

func (Phase1Ipv4ExcludeRangeArgs) ElementType() reflect.Type

func (Phase1Ipv4ExcludeRangeArgs) ToPhase1Ipv4ExcludeRangeOutput 

func (i Phase1Ipv4ExcludeRangeArgs) ToPhase1Ipv4ExcludeRangeOutput() Phase1Ipv4ExcludeRangeOutput

func (Phase1Ipv4ExcludeRangeArgs) ToPhase1Ipv4ExcludeRangeOutputWithContext 

func (i Phase1Ipv4ExcludeRangeArgs) ToPhase1Ipv4ExcludeRangeOutputWithContext(ctx context.Context) Phase1Ipv4ExcludeRangeOutput

type Phase1Ipv4ExcludeRangeArray 

type Phase1Ipv4ExcludeRangeArray []Phase1Ipv4ExcludeRangeInput

func (Phase1Ipv4ExcludeRangeArray) ElementType 

func (Phase1Ipv4ExcludeRangeArray) ElementType() reflect.Type

func (Phase1Ipv4ExcludeRangeArray) ToPhase1Ipv4ExcludeRangeArrayOutput 

func (i Phase1Ipv4ExcludeRangeArray) ToPhase1Ipv4ExcludeRangeArrayOutput() Phase1Ipv4ExcludeRangeArrayOutput

func (Phase1Ipv4ExcludeRangeArray) ToPhase1Ipv4ExcludeRangeArrayOutputWithContext 

func (i Phase1Ipv4ExcludeRangeArray) ToPhase1Ipv4ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1Ipv4ExcludeRangeArrayOutput

type Phase1Ipv4ExcludeRangeArrayInput 

type Phase1Ipv4ExcludeRangeArrayInput interface {
	pulumi.Input

	ToPhase1Ipv4ExcludeRangeArrayOutput() Phase1Ipv4ExcludeRangeArrayOutput
	ToPhase1Ipv4ExcludeRangeArrayOutputWithContext(context.Context) Phase1Ipv4ExcludeRangeArrayOutput
}

Phase1Ipv4ExcludeRangeArrayInput is an input type that accepts Phase1Ipv4ExcludeRangeArray and Phase1Ipv4ExcludeRangeArrayOutput values. You can construct a concrete instance of `Phase1Ipv4ExcludeRangeArrayInput` via: 

Phase1Ipv4ExcludeRangeArray{ Phase1Ipv4ExcludeRangeArgs{...} }

type Phase1Ipv4ExcludeRangeArrayOutput 

type Phase1Ipv4ExcludeRangeArrayOutput struct{ *pulumi.OutputState }

func (Phase1Ipv4ExcludeRangeArrayOutput) ElementType 

func (Phase1Ipv4ExcludeRangeArrayOutput) ElementType() reflect.Type

func (Phase1Ipv4ExcludeRangeArrayOutput) Index 

func (o Phase1Ipv4ExcludeRangeArrayOutput) Index(i pulumi.IntInput) Phase1Ipv4ExcludeRangeOutput

func (Phase1Ipv4ExcludeRangeArrayOutput) ToPhase1Ipv4ExcludeRangeArrayOutput 

func (o Phase1Ipv4ExcludeRangeArrayOutput) ToPhase1Ipv4ExcludeRangeArrayOutput() Phase1Ipv4ExcludeRangeArrayOutput

func (Phase1Ipv4ExcludeRangeArrayOutput) ToPhase1Ipv4ExcludeRangeArrayOutputWithContext 

func (o Phase1Ipv4ExcludeRangeArrayOutput) ToPhase1Ipv4ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1Ipv4ExcludeRangeArrayOutput

type Phase1Ipv4ExcludeRangeInput 

type Phase1Ipv4ExcludeRangeInput interface {
	pulumi.Input

	ToPhase1Ipv4ExcludeRangeOutput() Phase1Ipv4ExcludeRangeOutput
	ToPhase1Ipv4ExcludeRangeOutputWithContext(context.Context) Phase1Ipv4ExcludeRangeOutput
}

Phase1Ipv4ExcludeRangeInput is an input type that accepts Phase1Ipv4ExcludeRangeArgs and Phase1Ipv4ExcludeRangeOutput values. You can construct a concrete instance of `Phase1Ipv4ExcludeRangeInput` via: 

Phase1Ipv4ExcludeRangeArgs{...}

type Phase1Ipv4ExcludeRangeOutput 

type Phase1Ipv4ExcludeRangeOutput struct{ *pulumi.OutputState }

func (Phase1Ipv4ExcludeRangeOutput) ElementType 

func (Phase1Ipv4ExcludeRangeOutput) ElementType() reflect.Type

func (Phase1Ipv4ExcludeRangeOutput) EndIp 

func (o Phase1Ipv4ExcludeRangeOutput) EndIp() pulumi.StringPtrOutput

End of IPv6 exclusive range.

func (Phase1Ipv4ExcludeRangeOutput) Id 

func (o Phase1Ipv4ExcludeRangeOutput) Id() pulumi.IntPtrOutput

ID.

func (Phase1Ipv4ExcludeRangeOutput) StartIp 

func (o Phase1Ipv4ExcludeRangeOutput) StartIp() pulumi.StringPtrOutput

Start of IPv6 exclusive range.

func (Phase1Ipv4ExcludeRangeOutput) ToPhase1Ipv4ExcludeRangeOutput 

func (o Phase1Ipv4ExcludeRangeOutput) ToPhase1Ipv4ExcludeRangeOutput() Phase1Ipv4ExcludeRangeOutput

func (Phase1Ipv4ExcludeRangeOutput) ToPhase1Ipv4ExcludeRangeOutputWithContext 

func (o Phase1Ipv4ExcludeRangeOutput) ToPhase1Ipv4ExcludeRangeOutputWithContext(ctx context.Context) Phase1Ipv4ExcludeRangeOutput

type Phase1Ipv6ExcludeRange 

type Phase1Ipv6ExcludeRange struct {
	// End of IPv6 exclusive range.
	EndIp *string `pulumi:"endIp"`
	// ID.
	Id *int `pulumi:"id"`
	// Start of IPv6 exclusive range.
	StartIp *string `pulumi:"startIp"`
}

type Phase1Ipv6ExcludeRangeArgs 

type Phase1Ipv6ExcludeRangeArgs struct {
	// End of IPv6 exclusive range.
	EndIp pulumi.StringPtrInput `pulumi:"endIp"`
	// ID.
	Id pulumi.IntPtrInput `pulumi:"id"`
	// Start of IPv6 exclusive range.
	StartIp pulumi.StringPtrInput `pulumi:"startIp"`
}

func (Phase1Ipv6ExcludeRangeArgs) ElementType 

func (Phase1Ipv6ExcludeRangeArgs) ElementType() reflect.Type

func (Phase1Ipv6ExcludeRangeArgs) ToPhase1Ipv6ExcludeRangeOutput 

func (i Phase1Ipv6ExcludeRangeArgs) ToPhase1Ipv6ExcludeRangeOutput() Phase1Ipv6ExcludeRangeOutput

func (Phase1Ipv6ExcludeRangeArgs) ToPhase1Ipv6ExcludeRangeOutputWithContext 

func (i Phase1Ipv6ExcludeRangeArgs) ToPhase1Ipv6ExcludeRangeOutputWithContext(ctx context.Context) Phase1Ipv6ExcludeRangeOutput

type Phase1Ipv6ExcludeRangeArray 

type Phase1Ipv6ExcludeRangeArray []Phase1Ipv6ExcludeRangeInput

func (Phase1Ipv6ExcludeRangeArray) ElementType 

func (Phase1Ipv6ExcludeRangeArray) ElementType() reflect.Type

func (Phase1Ipv6ExcludeRangeArray) ToPhase1Ipv6ExcludeRangeArrayOutput 

func (i Phase1Ipv6ExcludeRangeArray) ToPhase1Ipv6ExcludeRangeArrayOutput() Phase1Ipv6ExcludeRangeArrayOutput

func (Phase1Ipv6ExcludeRangeArray) ToPhase1Ipv6ExcludeRangeArrayOutputWithContext 

func (i Phase1Ipv6ExcludeRangeArray) ToPhase1Ipv6ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1Ipv6ExcludeRangeArrayOutput

type Phase1Ipv6ExcludeRangeArrayInput 

type Phase1Ipv6ExcludeRangeArrayInput interface {
	pulumi.Input

	ToPhase1Ipv6ExcludeRangeArrayOutput() Phase1Ipv6ExcludeRangeArrayOutput
	ToPhase1Ipv6ExcludeRangeArrayOutputWithContext(context.Context) Phase1Ipv6ExcludeRangeArrayOutput
}

Phase1Ipv6ExcludeRangeArrayInput is an input type that accepts Phase1Ipv6ExcludeRangeArray and Phase1Ipv6ExcludeRangeArrayOutput values. You can construct a concrete instance of `Phase1Ipv6ExcludeRangeArrayInput` via: 

Phase1Ipv6ExcludeRangeArray{ Phase1Ipv6ExcludeRangeArgs{...} }

type Phase1Ipv6ExcludeRangeArrayOutput 

type Phase1Ipv6ExcludeRangeArrayOutput struct{ *pulumi.OutputState }

func (Phase1Ipv6ExcludeRangeArrayOutput) ElementType 

func (Phase1Ipv6ExcludeRangeArrayOutput) ElementType() reflect.Type

func (Phase1Ipv6ExcludeRangeArrayOutput) Index 

func (o Phase1Ipv6ExcludeRangeArrayOutput) Index(i pulumi.IntInput) Phase1Ipv6ExcludeRangeOutput

func (Phase1Ipv6ExcludeRangeArrayOutput) ToPhase1Ipv6ExcludeRangeArrayOutput 

func (o Phase1Ipv6ExcludeRangeArrayOutput) ToPhase1Ipv6ExcludeRangeArrayOutput() Phase1Ipv6ExcludeRangeArrayOutput

func (Phase1Ipv6ExcludeRangeArrayOutput) ToPhase1Ipv6ExcludeRangeArrayOutputWithContext 

func (o Phase1Ipv6ExcludeRangeArrayOutput) ToPhase1Ipv6ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1Ipv6ExcludeRangeArrayOutput

type Phase1Ipv6ExcludeRangeInput 

type Phase1Ipv6ExcludeRangeInput interface {
	pulumi.Input

	ToPhase1Ipv6ExcludeRangeOutput() Phase1Ipv6ExcludeRangeOutput
	ToPhase1Ipv6ExcludeRangeOutputWithContext(context.Context) Phase1Ipv6ExcludeRangeOutput
}

Phase1Ipv6ExcludeRangeInput is an input type that accepts Phase1Ipv6ExcludeRangeArgs and Phase1Ipv6ExcludeRangeOutput values. You can construct a concrete instance of `Phase1Ipv6ExcludeRangeInput` via: 

Phase1Ipv6ExcludeRangeArgs{...}

type Phase1Ipv6ExcludeRangeOutput 

type Phase1Ipv6ExcludeRangeOutput struct{ *pulumi.OutputState }

func (Phase1Ipv6ExcludeRangeOutput) ElementType 

func (Phase1Ipv6ExcludeRangeOutput) ElementType() reflect.Type

func (Phase1Ipv6ExcludeRangeOutput) EndIp 

func (o Phase1Ipv6ExcludeRangeOutput) EndIp() pulumi.StringPtrOutput

End of IPv6 exclusive range.

func (Phase1Ipv6ExcludeRangeOutput) Id 

func (o Phase1Ipv6ExcludeRangeOutput) Id() pulumi.IntPtrOutput

ID.

func (Phase1Ipv6ExcludeRangeOutput) StartIp 

func (o Phase1Ipv6ExcludeRangeOutput) StartIp() pulumi.StringPtrOutput

Start of IPv6 exclusive range.

func (Phase1Ipv6ExcludeRangeOutput) ToPhase1Ipv6ExcludeRangeOutput 

func (o Phase1Ipv6ExcludeRangeOutput) ToPhase1Ipv6ExcludeRangeOutput() Phase1Ipv6ExcludeRangeOutput

func (Phase1Ipv6ExcludeRangeOutput) ToPhase1Ipv6ExcludeRangeOutputWithContext 

func (o Phase1Ipv6ExcludeRangeOutput) ToPhase1Ipv6ExcludeRangeOutputWithContext(ctx context.Context) Phase1Ipv6ExcludeRangeOutput

type Phase1Map 

type Phase1Map map[string]Phase1Input

func (Phase1Map) ElementType 

func (Phase1Map) ElementType() reflect.Type

func (Phase1Map) ToPhase1MapOutput 

func (i Phase1Map) ToPhase1MapOutput() Phase1MapOutput

func (Phase1Map) ToPhase1MapOutputWithContext 

func (i Phase1Map) ToPhase1MapOutputWithContext(ctx context.Context) Phase1MapOutput

type Phase1MapInput 

type Phase1MapInput interface {
	pulumi.Input

	ToPhase1MapOutput() Phase1MapOutput
	ToPhase1MapOutputWithContext(context.Context) Phase1MapOutput
}

Phase1MapInput is an input type that accepts Phase1Map and Phase1MapOutput values. You can construct a concrete instance of `Phase1MapInput` via: 

Phase1Map{ "key": Phase1Args{...} }

type Phase1MapOutput 

type Phase1MapOutput struct{ *pulumi.OutputState }

func (Phase1MapOutput) ElementType 

func (Phase1MapOutput) ElementType() reflect.Type

func (Phase1MapOutput) MapIndex 

func (o Phase1MapOutput) MapIndex(k pulumi.StringInput) Phase1Output

func (Phase1MapOutput) ToPhase1MapOutput 

func (o Phase1MapOutput) ToPhase1MapOutput() Phase1MapOutput

func (Phase1MapOutput) ToPhase1MapOutputWithContext 

func (o Phase1MapOutput) ToPhase1MapOutputWithContext(ctx context.Context) Phase1MapOutput

type Phase1Output 

type Phase1Output struct{ *pulumi.OutputState }

func (Phase1Output) AcctVerify 

func (o Phase1Output) AcctVerify() pulumi.StringOutput

Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`.

func (Phase1Output) AddGwRoute 

func (o Phase1Output) AddGwRoute() pulumi.StringOutput

Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`.

func (Phase1Output) AddRoute 

func (o Phase1Output) AddRoute() pulumi.StringOutput

Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`.

func (Phase1Output) AssignIp 

func (o Phase1Output) AssignIp() pulumi.StringOutput

Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`.

func (Phase1Output) AssignIpFrom 

func (o Phase1Output) AssignIpFrom() pulumi.StringOutput

Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`.

func (Phase1Output) Authmethod 

func (o Phase1Output) Authmethod() pulumi.StringOutput

Authentication method. Valid values: `psk`, `signature`.

func (Phase1Output) AuthmethodRemote 

func (o Phase1Output) AuthmethodRemote() pulumi.StringOutput

Authentication method (remote side). Valid values: `psk`, `signature`.

func (Phase1Output) Authpasswd 

func (o Phase1Output) Authpasswd() pulumi.StringPtrOutput

XAuth password (max 35 characters).

func (Phase1Output) Authusr 

func (o Phase1Output) Authusr() pulumi.StringOutput

XAuth user name.

func (Phase1Output) Authusrgrp 

func (o Phase1Output) Authusrgrp() pulumi.StringOutput

Authentication user group.

func (Phase1Output) AutoNegotiate 

func (o Phase1Output) AutoNegotiate() pulumi.StringOutput

Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`.

func (Phase1Output) AzureAdAutoconnect 

func (o Phase1Output) AzureAdAutoconnect() pulumi.StringOutput

Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`.

func (Phase1Output) BackupGateways 

func (o Phase1Output) BackupGateways() Phase1BackupGatewayArrayOutput

Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below.

func (Phase1Output) Banner 

func (o Phase1Output) Banner() pulumi.StringPtrOutput

Message that unity client should display after connecting.

func (Phase1Output) CertIdValidation 

func (o Phase1Output) CertIdValidation() pulumi.StringOutput

Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`.

func (Phase1Output) CertTrustStore 

func (o Phase1Output) CertTrustStore() pulumi.StringOutput

CA certificate trust store. Valid values: `local`, `ems`.

func (Phase1Output) Certificates 

func (o Phase1Output) Certificates() Phase1CertificateArrayOutput

Names of up to 4 signed personal certificates. The structure of `certificate` block is documented below.

func (Phase1Output) ChildlessIke 

func (o Phase1Output) ChildlessIke() pulumi.StringOutput

Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`.

func (Phase1Output) ClientAutoNegotiate 

func (o Phase1Output) ClientAutoNegotiate() pulumi.StringOutput

Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`.

func (Phase1Output) ClientKeepAlive 

func (o Phase1Output) ClientKeepAlive() pulumi.StringOutput

Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`.

func (Phase1Output) Comments 

func (o Phase1Output) Comments() pulumi.StringPtrOutput

Comment.

func (Phase1Output) DevId 

func (o Phase1Output) DevId() pulumi.StringOutput

Device ID carried by the device ID notification.

func (Phase1Output) DevIdNotification 

func (o Phase1Output) DevIdNotification() pulumi.StringOutput

Enable/disable device ID notification. Valid values: `disable`, `enable`.

func (Phase1Output) Dhcp6RaLinkaddr 

func (o Phase1Output) Dhcp6RaLinkaddr() pulumi.StringOutput

Relay agent IPv6 link address to use in DHCP6 requests.

func (Phase1Output) DhcpRaGiaddr 

func (o Phase1Output) DhcpRaGiaddr() pulumi.StringOutput

Relay agent gateway IP address to use in the giaddr field of DHCP requests.

func (Phase1Output) Dhgrp 

func (o Phase1Output) Dhgrp() pulumi.StringOutput

DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.

func (Phase1Output) DigitalSignatureAuth 

func (o Phase1Output) DigitalSignatureAuth() pulumi.StringOutput

Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`.

func (Phase1Output) Distance 

func (o Phase1Output) Distance() pulumi.IntOutput

Distance for routes added by IKE (1 - 255).

func (Phase1Output) DnsMode 

func (o Phase1Output) DnsMode() pulumi.StringOutput

DNS server mode. Valid values: `manual`, `auto`.

func (Phase1Output) Domain 

func (o Phase1Output) Domain() pulumi.StringOutput

Instruct unity clients about the default DNS domain.

func (Phase1Output) Dpd 

func (o Phase1Output) Dpd() pulumi.StringOutput

Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`.

func (Phase1Output) DpdRetrycount 

func (o Phase1Output) DpdRetrycount() pulumi.IntOutput

Number of DPD retry attempts.

func (Phase1Output) DpdRetryinterval 

func (o Phase1Output) DpdRetryinterval() pulumi.StringOutput

DPD retry interval.

func (Phase1Output) DynamicSortSubtable 

func (o Phase1Output) DynamicSortSubtable() pulumi.StringPtrOutput

Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].

func (Phase1Output) Eap 

func (o Phase1Output) Eap() pulumi.StringOutput

Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`.

func (Phase1Output) EapCertAuth 

func (o Phase1Output) EapCertAuth() pulumi.StringOutput

Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`.

func (Phase1Output) EapExcludePeergrp 

func (o Phase1Output) EapExcludePeergrp() pulumi.StringOutput

Peer group excluded from EAP authentication.

func (Phase1Output) EapIdentity 

func (o Phase1Output) EapIdentity() pulumi.StringOutput

IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`.

func (Phase1Output) ElementType 

func (Phase1Output) ElementType() reflect.Type

func (Phase1Output) EmsSnCheck 

func (o Phase1Output) EmsSnCheck() pulumi.StringOutput

Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`.

func (Phase1Output) EnforceUniqueId 

func (o Phase1Output) EnforceUniqueId() pulumi.StringOutput

Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`.

func (Phase1Output) Esn 

func (o Phase1Output) Esn() pulumi.StringOutput

Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`.

func (Phase1Output) ExchangeFgtDeviceId 

func (o Phase1Output) ExchangeFgtDeviceId() pulumi.StringOutput

Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`.

func (Phase1Output) FallbackTcpThreshold 

func (o Phase1Output) FallbackTcpThreshold() pulumi.IntOutput

Timeout in seconds before falling back IKE/IPsec traffic to tcp.

func (Phase1Output) FecBase 

func (o Phase1Output) FecBase() pulumi.IntOutput

Number of base Forward Error Correction packets (1 - 100).

func (Phase1Output) FecCodec 

func (o Phase1Output) FecCodec() pulumi.IntOutput

ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor).

func (Phase1Output) FecCodecString 

func (o Phase1Output) FecCodecString() pulumi.StringOutput

Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`.

func (Phase1Output) FecEgress 

func (o Phase1Output) FecEgress() pulumi.StringOutput

Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`.

func (Phase1Output) FecHealthCheck 

func (o Phase1Output) FecHealthCheck() pulumi.StringOutput

SD-WAN health check.

func (Phase1Output) FecIngress 

func (o Phase1Output) FecIngress() pulumi.StringOutput

Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`.

func (Phase1Output) FecMappingProfile 

func (o Phase1Output) FecMappingProfile() pulumi.StringOutput

Forward Error Correction (FEC) mapping profile.

func (Phase1Output) FecReceiveTimeout 

func (o Phase1Output) FecReceiveTimeout() pulumi.IntOutput

Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000).

func (Phase1Output) FecRedundant 

func (o Phase1Output) FecRedundant() pulumi.IntOutput

Number of redundant Forward Error Correction packets (1 - 100).

func (Phase1Output) FecSendTimeout 

func (o Phase1Output) FecSendTimeout() pulumi.IntOutput

Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000).

func (Phase1Output) FgspSync 

func (o Phase1Output) FgspSync() pulumi.StringOutput

Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`.

func (Phase1Output) ForticlientEnforcement 

func (o Phase1Output) ForticlientEnforcement() pulumi.StringOutput

Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`.

func (Phase1Output) FortinetEsp 

func (o Phase1Output) FortinetEsp() pulumi.StringOutput

Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`.

func (Phase1Output) Fragmentation 

func (o Phase1Output) Fragmentation() pulumi.StringOutput

Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`.

func (Phase1Output) FragmentationMtu 

func (o Phase1Output) FragmentationMtu() pulumi.IntOutput

IKE fragmentation MTU (500 - 16000).

func (Phase1Output) GetAllTables 

func (o Phase1Output) GetAllTables() pulumi.StringPtrOutput

Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.

func (Phase1Output) GroupAuthentication 

func (o Phase1Output) GroupAuthentication() pulumi.StringOutput

Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`.

func (Phase1Output) GroupAuthenticationSecret 

func (o Phase1Output) GroupAuthenticationSecret() pulumi.StringPtrOutput

Password for IKEv2 IDi group authentication. (ASCII string or hexadecimal indicated by a leading 0x.)

func (Phase1Output) HaSyncEspSeqno 

func (o Phase1Output) HaSyncEspSeqno() pulumi.StringOutput

Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`.

func (Phase1Output) IdleTimeout 

func (o Phase1Output) IdleTimeout() pulumi.StringOutput

Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`.

func (Phase1Output) IdleTimeoutinterval 

func (o Phase1Output) IdleTimeoutinterval() pulumi.IntOutput

IPsec tunnel idle timeout in minutes (5 - 43200).

func (Phase1Output) IkeVersion 

func (o Phase1Output) IkeVersion() pulumi.StringOutput

IKE protocol version. Valid values: `1`, `2`.

func (Phase1Output) InboundDscpCopy 

func (o Phase1Output) InboundDscpCopy() pulumi.StringOutput

Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`.

func (Phase1Output) IncludeLocalLan 

func (o Phase1Output) IncludeLocalLan() pulumi.StringOutput

Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`.

func (Phase1Output) Interface 

func (o Phase1Output) Interface() pulumi.StringOutput

Local physical, aggregate, or VLAN outgoing interface.

func (Phase1Output) InternalDomainLists 

func (o Phase1Output) InternalDomainLists() Phase1InternalDomainListArrayOutput

One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below.

func (Phase1Output) IpDelayInterval 

func (o Phase1Output) IpDelayInterval() pulumi.IntOutput

IP address reuse delay interval in seconds (0 - 28800).

func (Phase1Output) Ipv4DnsServer1 

func (o Phase1Output) Ipv4DnsServer1() pulumi.StringOutput

IPv4 DNS server 1.

func (Phase1Output) Ipv4DnsServer2 

func (o Phase1Output) Ipv4DnsServer2() pulumi.StringOutput

IPv4 DNS server 2.

func (Phase1Output) Ipv4DnsServer3 

func (o Phase1Output) Ipv4DnsServer3() pulumi.StringOutput

IPv4 DNS server 3.

func (Phase1Output) Ipv4EndIp 

func (o Phase1Output) Ipv4EndIp() pulumi.StringOutput

End of IPv4 range.

func (Phase1Output) Ipv4ExcludeRanges 

func (o Phase1Output) Ipv4ExcludeRanges() Phase1Ipv4ExcludeRangeArrayOutput

Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below.

func (Phase1Output) Ipv4Name 

func (o Phase1Output) Ipv4Name() pulumi.StringOutput

IPv4 address name.

func (Phase1Output) Ipv4Netmask 

func (o Phase1Output) Ipv4Netmask() pulumi.StringOutput

IPv4 Netmask.

func (Phase1Output) Ipv4SplitExclude 

func (o Phase1Output) Ipv4SplitExclude() pulumi.StringOutput

IPv4 subnets that should not be sent over the IPsec tunnel.

func (Phase1Output) Ipv4SplitInclude 

func (o Phase1Output) Ipv4SplitInclude() pulumi.StringOutput

IPv4 split-include subnets.

func (Phase1Output) Ipv4StartIp 

func (o Phase1Output) Ipv4StartIp() pulumi.StringOutput

Start of IPv4 range.

func (Phase1Output) Ipv4WinsServer1 

func (o Phase1Output) Ipv4WinsServer1() pulumi.StringOutput

WINS server 1.

func (Phase1Output) Ipv4WinsServer2 

func (o Phase1Output) Ipv4WinsServer2() pulumi.StringOutput

WINS server 2.

func (Phase1Output) Ipv6DnsServer1 

func (o Phase1Output) Ipv6DnsServer1() pulumi.StringOutput

IPv6 DNS server 1.

func (Phase1Output) Ipv6DnsServer2 

func (o Phase1Output) Ipv6DnsServer2() pulumi.StringOutput

IPv6 DNS server 2.

func (Phase1Output) Ipv6DnsServer3 

func (o Phase1Output) Ipv6DnsServer3() pulumi.StringOutput

IPv6 DNS server 3.

func (Phase1Output) Ipv6EndIp 

func (o Phase1Output) Ipv6EndIp() pulumi.StringOutput

End of IPv6 range.

func (Phase1Output) Ipv6ExcludeRanges 

func (o Phase1Output) Ipv6ExcludeRanges() Phase1Ipv6ExcludeRangeArrayOutput

Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below.

func (Phase1Output) Ipv6Name 

func (o Phase1Output) Ipv6Name() pulumi.StringOutput

IPv6 address name.

func (Phase1Output) Ipv6Prefix 

func (o Phase1Output) Ipv6Prefix() pulumi.IntOutput

IPv6 prefix.

func (Phase1Output) Ipv6SplitExclude 

func (o Phase1Output) Ipv6SplitExclude() pulumi.StringOutput

IPv6 subnets that should not be sent over the IPsec tunnel.

func (Phase1Output) Ipv6SplitInclude 

func (o Phase1Output) Ipv6SplitInclude() pulumi.StringOutput

IPv6 split-include subnets.

func (Phase1Output) Ipv6StartIp 

func (o Phase1Output) Ipv6StartIp() pulumi.StringOutput

Start of IPv6 range.

func (Phase1Output) Keepalive 

func (o Phase1Output) Keepalive() pulumi.IntOutput

NAT-T keep alive interval.

func (Phase1Output) Keylife 

func (o Phase1Output) Keylife() pulumi.IntOutput

Time to wait in seconds before phase 1 encryption key expires.

func (Phase1Output) Kms 

func (o Phase1Output) Kms() pulumi.StringOutput

Key Management Services server.

func (Phase1Output) LinkCost 

func (o Phase1Output) LinkCost() pulumi.IntOutput

VPN tunnel underlay link cost.

func (Phase1Output) LocalGw 

func (o Phase1Output) LocalGw() pulumi.StringOutput

Local VPN gateway.

func (Phase1Output) Localid 

func (o Phase1Output) Localid() pulumi.StringOutput

Local ID.

func (Phase1Output) LocalidType 

func (o Phase1Output) LocalidType() pulumi.StringOutput

Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`.

func (Phase1Output) LoopbackAsymroute 

func (o Phase1Output) LoopbackAsymroute() pulumi.StringOutput

Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`.

func (Phase1Output) MeshSelectorType 

func (o Phase1Output) MeshSelectorType() pulumi.StringOutput

Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`.

func (Phase1Output) Mode 

func (o Phase1Output) Mode() pulumi.StringOutput

ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`.

func (Phase1Output) ModeCfg 

func (o Phase1Output) ModeCfg() pulumi.StringOutput

Enable/disable configuration method. Valid values: `disable`, `enable`.

func (Phase1Output) ModeCfgAllowClientSelector 

func (o Phase1Output) ModeCfgAllowClientSelector() pulumi.StringOutput

Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`.

func (Phase1Output) Name 

func (o Phase1Output) Name() pulumi.StringOutput

IPsec remote gateway name.

func (Phase1Output) Nattraversal 

func (o Phase1Output) Nattraversal() pulumi.StringOutput

Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`.

func (Phase1Output) NegotiateTimeout 

func (o Phase1Output) NegotiateTimeout() pulumi.IntOutput

IKE SA negotiation timeout in seconds (1 - 300).

func (Phase1Output) NetworkId 

func (o Phase1Output) NetworkId() pulumi.IntOutput

VPN gateway network ID.

func (Phase1Output) NetworkOverlay 

func (o Phase1Output) NetworkOverlay() pulumi.StringOutput

Enable/disable network overlays. Valid values: `disable`, `enable`.

func (Phase1Output) NpuOffload 

func (o Phase1Output) NpuOffload() pulumi.StringOutput

Enable/disable offloading NPU. Valid values: `enable`, `disable`.

func (Phase1Output) Peer 

func (o Phase1Output) Peer() pulumi.StringOutput

Accept this peer certificate.

func (Phase1Output) Peergrp 

func (o Phase1Output) Peergrp() pulumi.StringOutput

Accept this peer certificate group.

func (Phase1Output) Peerid 

func (o Phase1Output) Peerid() pulumi.StringOutput

Accept this peer identity.

func (Phase1Output) Peertype 

func (o Phase1Output) Peertype() pulumi.StringOutput

Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`.

func (Phase1Output) Ppk 

func (o Phase1Output) Ppk() pulumi.StringOutput

Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`.

func (Phase1Output) PpkIdentity 

func (o Phase1Output) PpkIdentity() pulumi.StringOutput

IKEv2 Postquantum Preshared Key Identity.

func (Phase1Output) PpkSecret 

func (o Phase1Output) PpkSecret() pulumi.StringPtrOutput

IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x).

func (Phase1Output) Priority 

func (o Phase1Output) Priority() pulumi.IntOutput

Priority for routes added by IKE (0 - 4294967295).

func (Phase1Output) Proposal 

func (o Phase1Output) Proposal() pulumi.StringOutput

Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.

func (Phase1Output) Psksecret 

func (o Phase1Output) Psksecret() pulumi.StringOutput

Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).

func (Phase1Output) PsksecretRemote 

func (o Phase1Output) PsksecretRemote() pulumi.StringPtrOutput

Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).

func (Phase1Output) Qkd 

func (o Phase1Output) Qkd() pulumi.StringOutput

Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`.

func (Phase1Output) QkdProfile 

func (o Phase1Output) QkdProfile() pulumi.StringOutput

Quantum Key Distribution (QKD) server profile.

func (Phase1Output) Reauth 

func (o Phase1Output) Reauth() pulumi.StringOutput

Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`.

func (Phase1Output) Rekey 

func (o Phase1Output) Rekey() pulumi.StringOutput

Enable/disable phase1 rekey. Valid values: `enable`, `disable`.

func (Phase1Output) RemoteGw 

func (o Phase1Output) RemoteGw() pulumi.StringOutput

Remote VPN gateway.

func (Phase1Output) RemotegwDdns 

func (o Phase1Output) RemotegwDdns() pulumi.StringOutput

Domain name of remote gateway (eg. name.DDNS.com).

func (Phase1Output) RsaSignatureFormat 

func (o Phase1Output) RsaSignatureFormat() pulumi.StringOutput

Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`.

func (Phase1Output) RsaSignatureHashOverride 

func (o Phase1Output) RsaSignatureHashOverride() pulumi.StringOutput

Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`.

func (Phase1Output) SavePassword 

func (o Phase1Output) SavePassword() pulumi.StringOutput

Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`.

func (Phase1Output) SendCertChain 

func (o Phase1Output) SendCertChain() pulumi.StringOutput

Enable/disable sending certificate chain. Valid values: `enable`, `disable`.

func (Phase1Output) SignatureHashAlg 

func (o Phase1Output) SignatureHashAlg() pulumi.StringOutput

Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`.

func (Phase1Output) SplitIncludeService 

func (o Phase1Output) SplitIncludeService() pulumi.StringOutput

Split-include services.

func (Phase1Output) SuiteB 

func (o Phase1Output) SuiteB() pulumi.StringOutput

Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`.

func (Phase1Output) ToPhase1Output 

func (o Phase1Output) ToPhase1Output() Phase1Output

func (Phase1Output) ToPhase1OutputWithContext 

func (o Phase1Output) ToPhase1OutputWithContext(ctx context.Context) Phase1Output

func (Phase1Output) Transport 

func (o Phase1Output) Transport() pulumi.StringOutput

Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`.

func (Phase1Output) Type 

func (o Phase1Output) Type() pulumi.StringOutput

Remote gateway type. Valid values: `static`, `dynamic`, `ddns`.

func (Phase1Output) UnitySupport 

func (o Phase1Output) UnitySupport() pulumi.StringOutput

Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`.

func (Phase1Output) Usrgrp 

func (o Phase1Output) Usrgrp() pulumi.StringOutput

User group name for dialup peers.

func (Phase1Output) Vdomparam 

func (o Phase1Output) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

func (Phase1Output) WizardType 

func (o Phase1Output) WizardType() pulumi.StringOutput

GUI VPN Wizard Type.

func (Phase1Output) Xauthtype 

func (o Phase1Output) Xauthtype() pulumi.StringOutput

XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`.

type Phase1State 

type Phase1State struct {
	// Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`.
	AcctVerify pulumi.StringPtrInput
	// Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`.
	AddGwRoute pulumi.StringPtrInput
	// Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`.
	AddRoute pulumi.StringPtrInput
	// Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`.
	AssignIp pulumi.StringPtrInput
	// Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`.
	AssignIpFrom pulumi.StringPtrInput
	// Authentication method. Valid values: `psk`, `signature`.
	Authmethod pulumi.StringPtrInput
	// Authentication method (remote side). Valid values: `psk`, `signature`.
	AuthmethodRemote pulumi.StringPtrInput
	// XAuth password (max 35 characters).
	Authpasswd pulumi.StringPtrInput
	// XAuth user name.
	Authusr pulumi.StringPtrInput
	// Authentication user group.
	Authusrgrp pulumi.StringPtrInput
	// Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`.
	AutoNegotiate pulumi.StringPtrInput
	// Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`.
	AzureAdAutoconnect pulumi.StringPtrInput
	// Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below.
	BackupGateways Phase1BackupGatewayArrayInput
	// Message that unity client should display after connecting.
	Banner pulumi.StringPtrInput
	// Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`.
	CertIdValidation pulumi.StringPtrInput
	// CA certificate trust store. Valid values: `local`, `ems`.
	CertTrustStore pulumi.StringPtrInput
	// Names of up to 4 signed personal certificates. The structure of `certificate` block is documented below.
	Certificates Phase1CertificateArrayInput
	// Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`.
	ChildlessIke pulumi.StringPtrInput
	// Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`.
	ClientAutoNegotiate pulumi.StringPtrInput
	// Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`.
	ClientKeepAlive pulumi.StringPtrInput
	// Comment.
	Comments pulumi.StringPtrInput
	// Device ID carried by the device ID notification.
	DevId pulumi.StringPtrInput
	// Enable/disable device ID notification. Valid values: `disable`, `enable`.
	DevIdNotification pulumi.StringPtrInput
	// Relay agent IPv6 link address to use in DHCP6 requests.
	Dhcp6RaLinkaddr pulumi.StringPtrInput
	// Relay agent gateway IP address to use in the giaddr field of DHCP requests.
	DhcpRaGiaddr pulumi.StringPtrInput
	// DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
	Dhgrp pulumi.StringPtrInput
	// Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`.
	DigitalSignatureAuth pulumi.StringPtrInput
	// Distance for routes added by IKE (1 - 255).
	Distance pulumi.IntPtrInput
	// DNS server mode. Valid values: `manual`, `auto`.
	DnsMode pulumi.StringPtrInput
	// Instruct unity clients about the default DNS domain.
	Domain pulumi.StringPtrInput
	// Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`.
	Dpd pulumi.StringPtrInput
	// Number of DPD retry attempts.
	DpdRetrycount pulumi.IntPtrInput
	// DPD retry interval.
	DpdRetryinterval pulumi.StringPtrInput
	// Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
	DynamicSortSubtable pulumi.StringPtrInput
	// Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`.
	Eap pulumi.StringPtrInput
	// Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`.
	EapCertAuth pulumi.StringPtrInput
	// Peer group excluded from EAP authentication.
	EapExcludePeergrp pulumi.StringPtrInput
	// IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`.
	EapIdentity pulumi.StringPtrInput
	// Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`.
	EmsSnCheck pulumi.StringPtrInput
	// Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`.
	EnforceUniqueId pulumi.StringPtrInput
	// Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`.
	Esn pulumi.StringPtrInput
	// Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`.
	ExchangeFgtDeviceId pulumi.StringPtrInput
	// Timeout in seconds before falling back IKE/IPsec traffic to tcp.
	FallbackTcpThreshold pulumi.IntPtrInput
	// Number of base Forward Error Correction packets (1 - 100).
	FecBase pulumi.IntPtrInput
	// ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor).
	FecCodec pulumi.IntPtrInput
	// Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`.
	FecCodecString pulumi.StringPtrInput
	// Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`.
	FecEgress pulumi.StringPtrInput
	// SD-WAN health check.
	FecHealthCheck pulumi.StringPtrInput
	// Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`.
	FecIngress pulumi.StringPtrInput
	// Forward Error Correction (FEC) mapping profile.
	FecMappingProfile pulumi.StringPtrInput
	// Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000).
	FecReceiveTimeout pulumi.IntPtrInput
	// Number of redundant Forward Error Correction packets (1 - 100).
	FecRedundant pulumi.IntPtrInput
	// Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000).
	FecSendTimeout pulumi.IntPtrInput
	// Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`.
	FgspSync pulumi.StringPtrInput
	// Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`.
	ForticlientEnforcement pulumi.StringPtrInput
	// Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`.
	FortinetEsp pulumi.StringPtrInput
	// Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`.
	Fragmentation pulumi.StringPtrInput
	// IKE fragmentation MTU (500 - 16000).
	FragmentationMtu pulumi.IntPtrInput
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrInput
	// Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`.
	GroupAuthentication pulumi.StringPtrInput
	// Password for IKEv2 IDi group authentication.  (ASCII string or hexadecimal indicated by a leading 0x.)
	GroupAuthenticationSecret pulumi.StringPtrInput
	// Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`.
	HaSyncEspSeqno pulumi.StringPtrInput
	// Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`.
	IdleTimeout pulumi.StringPtrInput
	// IPsec tunnel idle timeout in minutes (5 - 43200).
	IdleTimeoutinterval pulumi.IntPtrInput
	// IKE protocol version. Valid values: `1`, `2`.
	IkeVersion pulumi.StringPtrInput
	// Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`.
	InboundDscpCopy pulumi.StringPtrInput
	// Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`.
	IncludeLocalLan pulumi.StringPtrInput
	// Local physical, aggregate, or VLAN outgoing interface.
	Interface pulumi.StringPtrInput
	// One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below.
	InternalDomainLists Phase1InternalDomainListArrayInput
	// IP address reuse delay interval in seconds (0 - 28800).
	IpDelayInterval pulumi.IntPtrInput
	// IPv4 DNS server 1.
	Ipv4DnsServer1 pulumi.StringPtrInput
	// IPv4 DNS server 2.
	Ipv4DnsServer2 pulumi.StringPtrInput
	// IPv4 DNS server 3.
	Ipv4DnsServer3 pulumi.StringPtrInput
	// End of IPv4 range.
	Ipv4EndIp pulumi.StringPtrInput
	// Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below.
	Ipv4ExcludeRanges Phase1Ipv4ExcludeRangeArrayInput
	// IPv4 address name.
	Ipv4Name pulumi.StringPtrInput
	// IPv4 Netmask.
	Ipv4Netmask pulumi.StringPtrInput
	// IPv4 subnets that should not be sent over the IPsec tunnel.
	Ipv4SplitExclude pulumi.StringPtrInput
	// IPv4 split-include subnets.
	Ipv4SplitInclude pulumi.StringPtrInput
	// Start of IPv4 range.
	Ipv4StartIp pulumi.StringPtrInput
	// WINS server 1.
	Ipv4WinsServer1 pulumi.StringPtrInput
	// WINS server 2.
	Ipv4WinsServer2 pulumi.StringPtrInput
	// IPv6 DNS server 1.
	Ipv6DnsServer1 pulumi.StringPtrInput
	// IPv6 DNS server 2.
	Ipv6DnsServer2 pulumi.StringPtrInput
	// IPv6 DNS server 3.
	Ipv6DnsServer3 pulumi.StringPtrInput
	// End of IPv6 range.
	Ipv6EndIp pulumi.StringPtrInput
	// Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below.
	Ipv6ExcludeRanges Phase1Ipv6ExcludeRangeArrayInput
	// IPv6 address name.
	Ipv6Name pulumi.StringPtrInput
	// IPv6 prefix.
	Ipv6Prefix pulumi.IntPtrInput
	// IPv6 subnets that should not be sent over the IPsec tunnel.
	Ipv6SplitExclude pulumi.StringPtrInput
	// IPv6 split-include subnets.
	Ipv6SplitInclude pulumi.StringPtrInput
	// Start of IPv6 range.
	Ipv6StartIp pulumi.StringPtrInput
	// NAT-T keep alive interval.
	Keepalive pulumi.IntPtrInput
	// Time to wait in seconds before phase 1 encryption key expires.
	Keylife pulumi.IntPtrInput
	// Key Management Services server.
	Kms pulumi.StringPtrInput
	// VPN tunnel underlay link cost.
	LinkCost pulumi.IntPtrInput
	// Local VPN gateway.
	LocalGw pulumi.StringPtrInput
	// Local ID.
	Localid pulumi.StringPtrInput
	// Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`.
	LocalidType pulumi.StringPtrInput
	// Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`.
	LoopbackAsymroute pulumi.StringPtrInput
	// Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`.
	MeshSelectorType pulumi.StringPtrInput
	// ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`.
	Mode pulumi.StringPtrInput
	// Enable/disable configuration method. Valid values: `disable`, `enable`.
	ModeCfg pulumi.StringPtrInput
	// Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`.
	ModeCfgAllowClientSelector pulumi.StringPtrInput
	// IPsec remote gateway name.
	Name pulumi.StringPtrInput
	// Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`.
	Nattraversal pulumi.StringPtrInput
	// IKE SA negotiation timeout in seconds (1 - 300).
	NegotiateTimeout pulumi.IntPtrInput
	// VPN gateway network ID.
	NetworkId pulumi.IntPtrInput
	// Enable/disable network overlays. Valid values: `disable`, `enable`.
	NetworkOverlay pulumi.StringPtrInput
	// Enable/disable offloading NPU. Valid values: `enable`, `disable`.
	NpuOffload pulumi.StringPtrInput
	// Accept this peer certificate.
	Peer pulumi.StringPtrInput
	// Accept this peer certificate group.
	Peergrp pulumi.StringPtrInput
	// Accept this peer identity.
	Peerid pulumi.StringPtrInput
	// Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`.
	Peertype pulumi.StringPtrInput
	// Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`.
	Ppk pulumi.StringPtrInput
	// IKEv2 Postquantum Preshared Key Identity.
	PpkIdentity pulumi.StringPtrInput
	// IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x).
	PpkSecret pulumi.StringPtrInput
	// Priority for routes added by IKE (0 - 4294967295).
	Priority pulumi.IntPtrInput
	// Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
	Proposal pulumi.StringPtrInput
	// Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
	Psksecret pulumi.StringPtrInput
	// Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
	PsksecretRemote pulumi.StringPtrInput
	// Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`.
	Qkd pulumi.StringPtrInput
	// Quantum Key Distribution (QKD) server profile.
	QkdProfile pulumi.StringPtrInput
	// Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`.
	Reauth pulumi.StringPtrInput
	// Enable/disable phase1 rekey. Valid values: `enable`, `disable`.
	Rekey pulumi.StringPtrInput
	// Remote VPN gateway.
	RemoteGw pulumi.StringPtrInput
	// Domain name of remote gateway (eg. name.DDNS.com).
	RemotegwDdns pulumi.StringPtrInput
	// Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`.
	RsaSignatureFormat pulumi.StringPtrInput
	// Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`.
	RsaSignatureHashOverride pulumi.StringPtrInput
	// Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`.
	SavePassword pulumi.StringPtrInput
	// Enable/disable sending certificate chain. Valid values: `enable`, `disable`.
	SendCertChain pulumi.StringPtrInput
	// Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`.
	SignatureHashAlg pulumi.StringPtrInput
	// Split-include services.
	SplitIncludeService pulumi.StringPtrInput
	// Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`.
	SuiteB pulumi.StringPtrInput
	// Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`.
	Transport pulumi.StringPtrInput
	// Remote gateway type. Valid values: `static`, `dynamic`, `ddns`.
	Type pulumi.StringPtrInput
	// Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`.
	UnitySupport pulumi.StringPtrInput
	// User group name for dialup peers.
	Usrgrp pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
	// GUI VPN Wizard Type.
	WizardType pulumi.StringPtrInput
	// XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`.
	Xauthtype pulumi.StringPtrInput
}

func (Phase1State) ElementType 

func (Phase1State) ElementType() reflect.Type

type Phase1interface 

type Phase1interface struct {
	pulumi.CustomResourceState

	// Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`.
	AcctVerify pulumi.StringOutput `pulumi:"acctVerify"`
	// Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`.
	AddGwRoute pulumi.StringOutput `pulumi:"addGwRoute"`
	// Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`.
	AddRoute pulumi.StringOutput `pulumi:"addRoute"`
	// Enable/disable use as an aggregate member. Valid values: `enable`, `disable`.
	AggregateMember pulumi.StringOutput `pulumi:"aggregateMember"`
	// Link weight for aggregate.
	AggregateWeight pulumi.IntOutput `pulumi:"aggregateWeight"`
	// Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`.
	AssignIp pulumi.StringOutput `pulumi:"assignIp"`
	// Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`.
	AssignIpFrom pulumi.StringOutput `pulumi:"assignIpFrom"`
	// Authentication method. Valid values: `psk`, `signature`.
	Authmethod pulumi.StringOutput `pulumi:"authmethod"`
	// Authentication method (remote side). Valid values: `psk`, `signature`.
	AuthmethodRemote pulumi.StringOutput `pulumi:"authmethodRemote"`
	// XAuth password (max 35 characters).
	Authpasswd pulumi.StringPtrOutput `pulumi:"authpasswd"`
	// XAuth user name.
	Authusr pulumi.StringOutput `pulumi:"authusr"`
	// Authentication user group.
	Authusrgrp pulumi.StringOutput `pulumi:"authusrgrp"`
	// Allow/block set-up of short-cut tunnels between different network IDs. Valid values: `allow`, `block`.
	AutoDiscoveryCrossover pulumi.StringOutput `pulumi:"autoDiscoveryCrossover"`
	// Enable/disable forwarding auto-discovery short-cut messages. Valid values: `enable`, `disable`.
	AutoDiscoveryForwarder pulumi.StringOutput `pulumi:"autoDiscoveryForwarder"`
	// Interval between shortcut offer messages in seconds (1 - 300, default = 5).
	AutoDiscoveryOfferInterval pulumi.IntOutput `pulumi:"autoDiscoveryOfferInterval"`
	// Enable/disable use of pre-shared secrets for authentication of auto-discovery tunnels. Valid values: `enable`, `disable`.
	AutoDiscoveryPsk pulumi.StringOutput `pulumi:"autoDiscoveryPsk"`
	// Enable/disable accepting auto-discovery short-cut messages. Valid values: `enable`, `disable`.
	AutoDiscoveryReceiver pulumi.StringOutput `pulumi:"autoDiscoveryReceiver"`
	// Enable/disable sending auto-discovery short-cut messages. Valid values: `enable`, `disable`.
	AutoDiscoverySender pulumi.StringOutput `pulumi:"autoDiscoverySender"`
	// Control deletion of child short-cut tunnels when the parent tunnel goes down. Valid values: `independent`, `dependent`.
	AutoDiscoveryShortcuts pulumi.StringOutput `pulumi:"autoDiscoveryShortcuts"`
	// Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`.
	AutoNegotiate pulumi.StringOutput `pulumi:"autoNegotiate"`
	// Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`.
	AzureAdAutoconnect pulumi.StringOutput `pulumi:"azureAdAutoconnect"`
	// Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below.
	BackupGateways Phase1interfaceBackupGatewayArrayOutput `pulumi:"backupGateways"`
	// Message that unity client should display after connecting.
	Banner pulumi.StringPtrOutput `pulumi:"banner"`
	// Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`.
	CertIdValidation pulumi.StringOutput `pulumi:"certIdValidation"`
	// CA certificate trust store. Valid values: `local`, `ems`.
	CertTrustStore pulumi.StringOutput `pulumi:"certTrustStore"`
	// The names of up to 4 signed personal certificates. The structure of `certificate` block is documented below.
	Certificates Phase1interfaceCertificateArrayOutput `pulumi:"certificates"`
	// Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`.
	ChildlessIke pulumi.StringOutput `pulumi:"childlessIke"`
	// Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`.
	ClientAutoNegotiate pulumi.StringOutput `pulumi:"clientAutoNegotiate"`
	// Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`.
	ClientKeepAlive pulumi.StringOutput `pulumi:"clientKeepAlive"`
	// Comment.
	Comments pulumi.StringPtrOutput `pulumi:"comments"`
	// IPv4 address of default route gateway to use for traffic exiting the interface.
	DefaultGw pulumi.StringOutput `pulumi:"defaultGw"`
	// Priority for default gateway route. A higher priority number signifies a less preferred route.
	DefaultGwPriority pulumi.IntOutput `pulumi:"defaultGwPriority"`
	// Device ID carried by the device ID notification.
	DevId pulumi.StringOutput `pulumi:"devId"`
	// Enable/disable device ID notification. Valid values: `disable`, `enable`.
	DevIdNotification pulumi.StringOutput `pulumi:"devIdNotification"`
	// Relay agent IPv6 link address to use in DHCP6 requests.
	Dhcp6RaLinkaddr pulumi.StringOutput `pulumi:"dhcp6RaLinkaddr"`
	// Relay agent gateway IP address to use in the giaddr field of DHCP requests.
	DhcpRaGiaddr pulumi.StringOutput `pulumi:"dhcpRaGiaddr"`
	// DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
	Dhgrp pulumi.StringOutput `pulumi:"dhgrp"`
	// Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`.
	DigitalSignatureAuth pulumi.StringOutput `pulumi:"digitalSignatureAuth"`
	// Distance for routes added by IKE (1 - 255).
	Distance pulumi.IntOutput `pulumi:"distance"`
	// DNS server mode. Valid values: `manual`, `auto`.
	DnsMode pulumi.StringOutput `pulumi:"dnsMode"`
	// Instruct unity clients about the default DNS domain.
	Domain pulumi.StringOutput `pulumi:"domain"`
	// Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`.
	Dpd pulumi.StringOutput `pulumi:"dpd"`
	// Number of DPD retry attempts.
	DpdRetrycount pulumi.IntOutput `pulumi:"dpdRetrycount"`
	// DPD retry interval.
	DpdRetryinterval pulumi.StringOutput `pulumi:"dpdRetryinterval"`
	// Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
	DynamicSortSubtable pulumi.StringPtrOutput `pulumi:"dynamicSortSubtable"`
	// Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`.
	Eap pulumi.StringOutput `pulumi:"eap"`
	// Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`.
	EapCertAuth pulumi.StringOutput `pulumi:"eapCertAuth"`
	// Peer group excluded from EAP authentication.
	EapExcludePeergrp pulumi.StringOutput `pulumi:"eapExcludePeergrp"`
	// IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`.
	EapIdentity pulumi.StringOutput `pulumi:"eapIdentity"`
	// Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`.
	EmsSnCheck pulumi.StringOutput `pulumi:"emsSnCheck"`
	// Local IPv4 address of GRE/VXLAN tunnel.
	EncapLocalGw4 pulumi.StringOutput `pulumi:"encapLocalGw4"`
	// Local IPv6 address of GRE/VXLAN tunnel.
	EncapLocalGw6 pulumi.StringOutput `pulumi:"encapLocalGw6"`
	// Remote IPv4 address of GRE/VXLAN tunnel.
	EncapRemoteGw4 pulumi.StringOutput `pulumi:"encapRemoteGw4"`
	// Remote IPv6 address of GRE/VXLAN tunnel.
	EncapRemoteGw6 pulumi.StringOutput `pulumi:"encapRemoteGw6"`
	// Enable/disable GRE/VXLAN encapsulation.
	Encapsulation pulumi.StringOutput `pulumi:"encapsulation"`
	// Source for GRE/VXLAN tunnel address. Valid values: `ike`, `ipv4`, `ipv6`.
	EncapsulationAddress pulumi.StringOutput `pulumi:"encapsulationAddress"`
	// Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`.
	EnforceUniqueId pulumi.StringOutput `pulumi:"enforceUniqueId"`
	// Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`.
	Esn pulumi.StringOutput `pulumi:"esn"`
	// Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`.
	ExchangeFgtDeviceId pulumi.StringOutput `pulumi:"exchangeFgtDeviceId"`
	// Enable/disable exchange of IPsec interface IP address. Valid values: `enable`, `disable`.
	ExchangeInterfaceIp pulumi.StringOutput `pulumi:"exchangeInterfaceIp"`
	// IPv4 address to exchange with peers.
	ExchangeIpAddr4 pulumi.StringOutput `pulumi:"exchangeIpAddr4"`
	// IPv6 address to exchange with peers
	ExchangeIpAddr6 pulumi.StringOutput `pulumi:"exchangeIpAddr6"`
	// Timeout in seconds before falling back IKE/IPsec traffic to tcp.
	FallbackTcpThreshold pulumi.IntOutput `pulumi:"fallbackTcpThreshold"`
	// Number of base Forward Error Correction packets (1 - 100).
	FecBase pulumi.IntOutput `pulumi:"fecBase"`
	// ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor).
	FecCodec pulumi.IntOutput `pulumi:"fecCodec"`
	// Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`.
	FecCodecString pulumi.StringOutput `pulumi:"fecCodecString"`
	// Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`.
	FecEgress pulumi.StringOutput `pulumi:"fecEgress"`
	// SD-WAN health check.
	FecHealthCheck pulumi.StringOutput `pulumi:"fecHealthCheck"`
	// Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`.
	FecIngress pulumi.StringOutput `pulumi:"fecIngress"`
	// Forward Error Correction (FEC) mapping profile.
	FecMappingProfile pulumi.StringOutput `pulumi:"fecMappingProfile"`
	// Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000).
	FecReceiveTimeout pulumi.IntOutput `pulumi:"fecReceiveTimeout"`
	// Number of redundant Forward Error Correction packets (1 - 100).
	FecRedundant pulumi.IntOutput `pulumi:"fecRedundant"`
	// Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000).
	FecSendTimeout pulumi.IntOutput `pulumi:"fecSendTimeout"`
	// Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`.
	FgspSync pulumi.StringOutput `pulumi:"fgspSync"`
	// Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`.
	ForticlientEnforcement pulumi.StringOutput `pulumi:"forticlientEnforcement"`
	// Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`.
	FortinetEsp pulumi.StringOutput `pulumi:"fortinetEsp"`
	// Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`.
	Fragmentation pulumi.StringOutput `pulumi:"fragmentation"`
	// IKE fragmentation MTU (500 - 16000).
	FragmentationMtu pulumi.IntOutput `pulumi:"fragmentationMtu"`
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrOutput `pulumi:"getAllTables"`
	// Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`.
	GroupAuthentication pulumi.StringOutput `pulumi:"groupAuthentication"`
	// Password for IKEv2 IDi group authentication.  (ASCII string or hexadecimal indicated by a leading 0x.)
	GroupAuthenticationSecret pulumi.StringPtrOutput `pulumi:"groupAuthenticationSecret"`
	// Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`.
	HaSyncEspSeqno pulumi.StringOutput `pulumi:"haSyncEspSeqno"`
	// Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`.
	IdleTimeout pulumi.StringOutput `pulumi:"idleTimeout"`
	// IPsec tunnel idle timeout in minutes (5 - 43200).
	IdleTimeoutinterval pulumi.IntOutput `pulumi:"idleTimeoutinterval"`
	// IKE protocol version. Valid values: `1`, `2`.
	IkeVersion pulumi.StringOutput `pulumi:"ikeVersion"`
	// Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`.
	InboundDscpCopy pulumi.StringOutput `pulumi:"inboundDscpCopy"`
	// Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`.
	IncludeLocalLan pulumi.StringOutput `pulumi:"includeLocalLan"`
	// Local physical, aggregate, or VLAN outgoing interface.
	Interface pulumi.StringOutput `pulumi:"interface"`
	// One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below.
	InternalDomainLists Phase1interfaceInternalDomainListArrayOutput `pulumi:"internalDomainLists"`
	// IP address reuse delay interval in seconds (0 - 28800).
	IpDelayInterval pulumi.IntOutput `pulumi:"ipDelayInterval"`
	// Determine whether IP packets are fragmented before or after IPsec encapsulation. Valid values: `pre-encapsulation`, `post-encapsulation`.
	IpFragmentation pulumi.StringOutput `pulumi:"ipFragmentation"`
	// IP version to use for VPN interface. Valid values: `4`, `6`.
	IpVersion pulumi.StringOutput `pulumi:"ipVersion"`
	// IPv4 DNS server 1.
	Ipv4DnsServer1 pulumi.StringOutput `pulumi:"ipv4DnsServer1"`
	// IPv4 DNS server 2.
	Ipv4DnsServer2 pulumi.StringOutput `pulumi:"ipv4DnsServer2"`
	// IPv4 DNS server 3.
	Ipv4DnsServer3 pulumi.StringOutput `pulumi:"ipv4DnsServer3"`
	// End of IPv4 range.
	Ipv4EndIp pulumi.StringOutput `pulumi:"ipv4EndIp"`
	// Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below.
	Ipv4ExcludeRanges Phase1interfaceIpv4ExcludeRangeArrayOutput `pulumi:"ipv4ExcludeRanges"`
	// IPv4 address name.
	Ipv4Name pulumi.StringOutput `pulumi:"ipv4Name"`
	// IPv4 Netmask.
	Ipv4Netmask pulumi.StringOutput `pulumi:"ipv4Netmask"`
	// IPv4 subnets that should not be sent over the IPsec tunnel.
	Ipv4SplitExclude pulumi.StringOutput `pulumi:"ipv4SplitExclude"`
	// IPv4 split-include subnets.
	Ipv4SplitInclude pulumi.StringOutput `pulumi:"ipv4SplitInclude"`
	// Start of IPv4 range.
	Ipv4StartIp pulumi.StringOutput `pulumi:"ipv4StartIp"`
	// WINS server 1.
	Ipv4WinsServer1 pulumi.StringOutput `pulumi:"ipv4WinsServer1"`
	// WINS server 2.
	Ipv4WinsServer2 pulumi.StringOutput `pulumi:"ipv4WinsServer2"`
	// IPv6 DNS server 1.
	Ipv6DnsServer1 pulumi.StringOutput `pulumi:"ipv6DnsServer1"`
	// IPv6 DNS server 2.
	Ipv6DnsServer2 pulumi.StringOutput `pulumi:"ipv6DnsServer2"`
	// IPv6 DNS server 3.
	Ipv6DnsServer3 pulumi.StringOutput `pulumi:"ipv6DnsServer3"`
	// End of IPv6 range.
	Ipv6EndIp pulumi.StringOutput `pulumi:"ipv6EndIp"`
	// Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below.
	Ipv6ExcludeRanges Phase1interfaceIpv6ExcludeRangeArrayOutput `pulumi:"ipv6ExcludeRanges"`
	// IPv6 address name.
	Ipv6Name pulumi.StringOutput `pulumi:"ipv6Name"`
	// IPv6 prefix.
	Ipv6Prefix pulumi.IntOutput `pulumi:"ipv6Prefix"`
	// IPv6 subnets that should not be sent over the IPsec tunnel.
	Ipv6SplitExclude pulumi.StringOutput `pulumi:"ipv6SplitExclude"`
	// IPv6 split-include subnets.
	Ipv6SplitInclude pulumi.StringOutput `pulumi:"ipv6SplitInclude"`
	// Start of IPv6 range.
	Ipv6StartIp pulumi.StringOutput `pulumi:"ipv6StartIp"`
	// NAT-T keep alive interval.
	Keepalive pulumi.IntOutput `pulumi:"keepalive"`
	// Time to wait in seconds before phase 1 encryption key expires.
	Keylife pulumi.IntOutput `pulumi:"keylife"`
	// Key Management Services server.
	Kms pulumi.StringOutput `pulumi:"kms"`
	// VPN tunnel underlay link cost.
	LinkCost pulumi.IntOutput `pulumi:"linkCost"`
	// IPv4 address of the local gateway's external interface.
	LocalGw pulumi.StringOutput `pulumi:"localGw"`
	// IPv6 address of the local gateway's external interface.
	LocalGw6 pulumi.StringOutput `pulumi:"localGw6"`
	// Local ID.
	Localid pulumi.StringOutput `pulumi:"localid"`
	// Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`.
	LocalidType pulumi.StringOutput `pulumi:"localidType"`
	// Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`.
	LoopbackAsymroute pulumi.StringOutput `pulumi:"loopbackAsymroute"`
	// Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`.
	MeshSelectorType pulumi.StringOutput `pulumi:"meshSelectorType"`
	// The ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`.
	Mode pulumi.StringOutput `pulumi:"mode"`
	// Enable/disable configuration method. Valid values: `disable`, `enable`.
	ModeCfg pulumi.StringOutput `pulumi:"modeCfg"`
	// Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`.
	ModeCfgAllowClientSelector pulumi.StringOutput `pulumi:"modeCfgAllowClientSelector"`
	// IPsec interface as backup for primary interface.
	Monitor pulumi.StringOutput `pulumi:"monitor"`
	// Time to wait in seconds before recovery once primary re-establishes.
	MonitorHoldDownDelay pulumi.IntOutput `pulumi:"monitorHoldDownDelay"`
	// Time of day at which to fail back to primary after it re-establishes.
	MonitorHoldDownTime pulumi.StringOutput `pulumi:"monitorHoldDownTime"`
	// Recovery time method when primary interface re-establishes. Valid values: `immediate`, `delay`, `time`.
	MonitorHoldDownType pulumi.StringOutput `pulumi:"monitorHoldDownType"`
	// Day of the week to recover once primary re-establishes. Valid values: `everyday`, `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`.
	MonitorHoldDownWeekday pulumi.StringOutput `pulumi:"monitorHoldDownWeekday"`
	// Minimum number of links to become degraded before activating this interface.  Zero (0) means all links must be down before activating this interface.
	MonitorMin pulumi.IntOutput `pulumi:"monitorMin"`
	// IPsec remote gateway name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`.
	Nattraversal pulumi.StringOutput `pulumi:"nattraversal"`
	// IKE SA negotiation timeout in seconds (1 - 300).
	NegotiateTimeout pulumi.IntOutput `pulumi:"negotiateTimeout"`
	// Enable/disable kernel device creation. Valid values: `enable`, `disable`.
	NetDevice pulumi.StringOutput `pulumi:"netDevice"`
	// VPN gateway network ID.
	NetworkId pulumi.IntOutput `pulumi:"networkId"`
	// Enable/disable network overlays. Valid values: `disable`, `enable`.
	NetworkOverlay pulumi.StringOutput `pulumi:"networkOverlay"`
	// Enable/disable offloading NPU. Valid values: `enable`, `disable`.
	NpuOffload pulumi.StringOutput `pulumi:"npuOffload"`
	// Enable/disable packet distribution (RPS) on the IPsec interface. Valid values: `enable`, `disable`.
	PacketRedistribution pulumi.StringOutput `pulumi:"packetRedistribution"`
	// Enable/disable IPsec passive mode for static tunnels. Valid values: `enable`, `disable`.
	PassiveMode pulumi.StringOutput `pulumi:"passiveMode"`
	// Accept this peer certificate.
	Peer pulumi.StringOutput `pulumi:"peer"`
	// Accept this peer certificate group.
	Peergrp pulumi.StringOutput `pulumi:"peergrp"`
	// Accept this peer identity.
	Peerid pulumi.StringOutput `pulumi:"peerid"`
	// Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`.
	Peertype pulumi.StringOutput `pulumi:"peertype"`
	// Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`.
	Ppk pulumi.StringOutput `pulumi:"ppk"`
	// IKEv2 Postquantum Preshared Key Identity.
	PpkIdentity pulumi.StringOutput `pulumi:"ppkIdentity"`
	// IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x).
	PpkSecret pulumi.StringPtrOutput `pulumi:"ppkSecret"`
	// Priority for routes added by IKE (0 - 4294967295).
	Priority pulumi.IntOutput `pulumi:"priority"`
	// Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
	Proposal pulumi.StringOutput `pulumi:"proposal"`
	// Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
	Psksecret pulumi.StringPtrOutput `pulumi:"psksecret"`
	// Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
	PsksecretRemote pulumi.StringPtrOutput `pulumi:"psksecretRemote"`
	// Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`.
	Qkd pulumi.StringOutput `pulumi:"qkd"`
	// Quantum Key Distribution (QKD) server profile.
	QkdProfile pulumi.StringOutput `pulumi:"qkdProfile"`
	// Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`.
	Reauth pulumi.StringOutput `pulumi:"reauth"`
	// Enable/disable phase1 rekey. Valid values: `enable`, `disable`.
	Rekey pulumi.StringOutput `pulumi:"rekey"`
	// IPv4 address of the remote gateway's external interface.
	RemoteGw pulumi.StringOutput `pulumi:"remoteGw"`
	// IPv6 address of the remote gateway's external interface.
	RemoteGw6 pulumi.StringOutput `pulumi:"remoteGw6"`
	// Domain name of remote gateway (eg. name.DDNS.com).
	RemotegwDdns pulumi.StringOutput `pulumi:"remotegwDdns"`
	// Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`.
	RsaSignatureFormat pulumi.StringOutput `pulumi:"rsaSignatureFormat"`
	// Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`.
	RsaSignatureHashOverride pulumi.StringOutput `pulumi:"rsaSignatureHashOverride"`
	// Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`.
	SavePassword pulumi.StringOutput `pulumi:"savePassword"`
	// Enable/disable sending certificate chain. Valid values: `enable`, `disable`.
	SendCertChain pulumi.StringOutput `pulumi:"sendCertChain"`
	// Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`.
	SignatureHashAlg pulumi.StringOutput `pulumi:"signatureHashAlg"`
	// Split-include services.
	SplitIncludeService pulumi.StringOutput `pulumi:"splitIncludeService"`
	// Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`.
	SuiteB pulumi.StringOutput `pulumi:"suiteB"`
	// Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`.
	Transport pulumi.StringOutput `pulumi:"transport"`
	// Tunnel search method for when the interface is shared. Valid values: `selectors`, `nexthop`.
	TunnelSearch pulumi.StringOutput `pulumi:"tunnelSearch"`
	// Remote gateway type. Valid values: `static`, `dynamic`, `ddns`.
	Type pulumi.StringOutput `pulumi:"type"`
	// Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`.
	UnitySupport pulumi.StringOutput `pulumi:"unitySupport"`
	// User group name for dialup peers.
	Usrgrp pulumi.StringOutput `pulumi:"usrgrp"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
	// VNI of VXLAN tunnel.
	Vni pulumi.IntOutput `pulumi:"vni"`
	// GUI VPN Wizard Type.
	WizardType pulumi.StringOutput `pulumi:"wizardType"`
	// XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`.
	Xauthtype pulumi.StringOutput `pulumi:"xauthtype"`
}

Configure VPN remote gateway.

## Example Usage

<!--Start PulumiCodeChooser --> ```go package main

import ( 

"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := vpn.NewPhase1interface(ctx, "trname2", &vpn.Phase1interfaceArgs{
			AcctVerify:             pulumi.String("disable"),
			AddGwRoute:             pulumi.String("disable"),
			AddRoute:               pulumi.String("enable"),
			AssignIp:               pulumi.String("enable"),
			AssignIpFrom:           pulumi.String("range"),
			Authmethod:             pulumi.String("psk"),
			AutoDiscoveryForwarder: pulumi.String("disable"),
			AutoDiscoveryPsk:       pulumi.String("disable"),
			AutoDiscoveryReceiver:  pulumi.String("disable"),
			AutoDiscoverySender:    pulumi.String("disable"),
			AutoNegotiate:          pulumi.String("enable"),
			CertIdValidation:       pulumi.String("enable"),
			ChildlessIke:           pulumi.String("disable"),
			ClientAutoNegotiate:    pulumi.String("disable"),
			ClientKeepAlive:        pulumi.String("disable"),
			DefaultGw:              pulumi.String("0.0.0.0"),
			DefaultGwPriority:      pulumi.Int(0),
			Dhgrp:                  pulumi.String("14 5"),
			DigitalSignatureAuth:   pulumi.String("disable"),
			Distance:               pulumi.Int(15),
			DnsMode:                pulumi.String("manual"),
			Dpd:                    pulumi.String("on-demand"),
			DpdRetrycount:          pulumi.Int(3),
			DpdRetryinterval:       pulumi.String("20"),
			Eap:                    pulumi.String("disable"),
			EapIdentity:            pulumi.String("use-id-payload"),
			EncapLocalGw4:          pulumi.String("0.0.0.0"),
			EncapLocalGw6:          pulumi.String("::"),
			EncapRemoteGw4:         pulumi.String("0.0.0.0"),
			EncapRemoteGw6:         pulumi.String("::"),
			Encapsulation:          pulumi.String("none"),
			EncapsulationAddress:   pulumi.String("ike"),
			EnforceUniqueId:        pulumi.String("disable"),
			ExchangeInterfaceIp:    pulumi.String("disable"),
			ExchangeIpAddr4:        pulumi.String("0.0.0.0"),
			ExchangeIpAddr6:        pulumi.String("::"),
			ForticlientEnforcement: pulumi.String("disable"),
			Fragmentation:          pulumi.String("enable"),
			FragmentationMtu:       pulumi.Int(1200),
			GroupAuthentication:    pulumi.String("disable"),
			HaSyncEspSeqno:         pulumi.String("enable"),
			IdleTimeout:            pulumi.String("disable"),
			IdleTimeoutinterval:    pulumi.Int(15),
			IkeVersion:             pulumi.String("1"),
			IncludeLocalLan:        pulumi.String("disable"),
			Interface:              pulumi.String("port3"),
			IpVersion:              pulumi.String("4"),
			Ipv4DnsServer1:         pulumi.String("0.0.0.0"),
			Ipv4DnsServer2:         pulumi.String("0.0.0.0"),
			Ipv4DnsServer3:         pulumi.String("0.0.0.0"),
			Ipv4EndIp:              pulumi.String("0.0.0.0"),
			Ipv4Netmask:            pulumi.String("255.255.255.255"),
			Ipv4StartIp:            pulumi.String("0.0.0.0"),
			Ipv4WinsServer1:        pulumi.String("0.0.0.0"),
			Ipv4WinsServer2:        pulumi.String("0.0.0.0"),
			Ipv6DnsServer1:         pulumi.String("::"),
			Ipv6DnsServer2:         pulumi.String("::"),
			Ipv6DnsServer3:         pulumi.String("::"),
			Ipv6EndIp:              pulumi.String("::"),
			Ipv6Prefix:             pulumi.Int(128),
			Ipv6StartIp:            pulumi.String("::"),
			Keepalive:              pulumi.Int(10),
			Keylife:                pulumi.Int(86400),
			LocalGw:                pulumi.String("0.0.0.0"),
			LocalGw6:               pulumi.String("::"),
			LocalidType:            pulumi.String("auto"),
			MeshSelectorType:       pulumi.String("disable"),
			Mode:                   pulumi.String("main"),
			ModeCfg:                pulumi.String("disable"),
			MonitorHoldDownDelay:   pulumi.Int(0),
			MonitorHoldDownTime:    pulumi.String("00:00"),
			MonitorHoldDownType:    pulumi.String("immediate"),
			MonitorHoldDownWeekday: pulumi.String("sunday"),
			Nattraversal:           pulumi.String("enable"),
			NegotiateTimeout:       pulumi.Int(30),
			NetDevice:              pulumi.String("disable"),
			PassiveMode:            pulumi.String("disable"),
			Peertype:               pulumi.String("any"),
			Ppk:                    pulumi.String("disable"),
			Priority:               pulumi.Int(0),
			Proposal:               pulumi.String("aes128-sha256 aes256-sha256 aes128-sha1 aes256-sha1"),
			Psksecret:              pulumi.String("eweeeeeeeecee"),
			Reauth:                 pulumi.String("disable"),
			Rekey:                  pulumi.String("enable"),
			RemoteGw:               pulumi.String("102.2.2.12"),
			RemoteGw6:              pulumi.String("::"),
			RsaSignatureFormat:     pulumi.String("pkcs1"),
			SavePassword:           pulumi.String("disable"),
			SendCertChain:          pulumi.String("enable"),
			SignatureHashAlg:       pulumi.String("sha2-512 sha2-384 sha2-256 sha1"),
			SuiteB:                 pulumi.String("disable"),
			TunnelSearch:           pulumi.String("selectors"),
			Type:                   pulumi.String("static"),
			UnitySupport:           pulumi.String("enable"),
			WizardType:             pulumi.String("custom"),
			Xauthtype:              pulumi.String("disable"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` <!--End PulumiCodeChooser -->

## Import

VpnIpsec Phase1Interface can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/ipsec/phase1interface:Phase1interface labelname {{name}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/ipsec/phase1interface:Phase1interface labelname {{name}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetPhase1interface 

func GetPhase1interface(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *Phase1interfaceState, opts ...pulumi.ResourceOption) (*Phase1interface, error)

GetPhase1interface gets an existing Phase1interface resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPhase1interface 

func NewPhase1interface(ctx *pulumi.Context,
	name string, args *Phase1interfaceArgs, opts ...pulumi.ResourceOption) (*Phase1interface, error)

NewPhase1interface registers a new resource with the given unique name, arguments, and options.

func (*Phase1interface) ElementType 

func (*Phase1interface) ElementType() reflect.Type

func (*Phase1interface) ToPhase1interfaceOutput 

func (i *Phase1interface) ToPhase1interfaceOutput() Phase1interfaceOutput

func (*Phase1interface) ToPhase1interfaceOutputWithContext 

func (i *Phase1interface) ToPhase1interfaceOutputWithContext(ctx context.Context) Phase1interfaceOutput

type Phase1interfaceArgs 

type Phase1interfaceArgs struct {
	// Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`.
	AcctVerify pulumi.StringPtrInput
	// Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`.
	AddGwRoute pulumi.StringPtrInput
	// Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`.
	AddRoute pulumi.StringPtrInput
	// Enable/disable use as an aggregate member. Valid values: `enable`, `disable`.
	AggregateMember pulumi.StringPtrInput
	// Link weight for aggregate.
	AggregateWeight pulumi.IntPtrInput
	// Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`.
	AssignIp pulumi.StringPtrInput
	// Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`.
	AssignIpFrom pulumi.StringPtrInput
	// Authentication method. Valid values: `psk`, `signature`.
	Authmethod pulumi.StringPtrInput
	// Authentication method (remote side). Valid values: `psk`, `signature`.
	AuthmethodRemote pulumi.StringPtrInput
	// XAuth password (max 35 characters).
	Authpasswd pulumi.StringPtrInput
	// XAuth user name.
	Authusr pulumi.StringPtrInput
	// Authentication user group.
	Authusrgrp pulumi.StringPtrInput
	// Allow/block set-up of short-cut tunnels between different network IDs. Valid values: `allow`, `block`.
	AutoDiscoveryCrossover pulumi.StringPtrInput
	// Enable/disable forwarding auto-discovery short-cut messages. Valid values: `enable`, `disable`.
	AutoDiscoveryForwarder pulumi.StringPtrInput
	// Interval between shortcut offer messages in seconds (1 - 300, default = 5).
	AutoDiscoveryOfferInterval pulumi.IntPtrInput
	// Enable/disable use of pre-shared secrets for authentication of auto-discovery tunnels. Valid values: `enable`, `disable`.
	AutoDiscoveryPsk pulumi.StringPtrInput
	// Enable/disable accepting auto-discovery short-cut messages. Valid values: `enable`, `disable`.
	AutoDiscoveryReceiver pulumi.StringPtrInput
	// Enable/disable sending auto-discovery short-cut messages. Valid values: `enable`, `disable`.
	AutoDiscoverySender pulumi.StringPtrInput
	// Control deletion of child short-cut tunnels when the parent tunnel goes down. Valid values: `independent`, `dependent`.
	AutoDiscoveryShortcuts pulumi.StringPtrInput
	// Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`.
	AutoNegotiate pulumi.StringPtrInput
	// Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`.
	AzureAdAutoconnect pulumi.StringPtrInput
	// Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below.
	BackupGateways Phase1interfaceBackupGatewayArrayInput
	// Message that unity client should display after connecting.
	Banner pulumi.StringPtrInput
	// Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`.
	CertIdValidation pulumi.StringPtrInput
	// CA certificate trust store. Valid values: `local`, `ems`.
	CertTrustStore pulumi.StringPtrInput
	// The names of up to 4 signed personal certificates. The structure of `certificate` block is documented below.
	Certificates Phase1interfaceCertificateArrayInput
	// Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`.
	ChildlessIke pulumi.StringPtrInput
	// Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`.
	ClientAutoNegotiate pulumi.StringPtrInput
	// Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`.
	ClientKeepAlive pulumi.StringPtrInput
	// Comment.
	Comments pulumi.StringPtrInput
	// IPv4 address of default route gateway to use for traffic exiting the interface.
	DefaultGw pulumi.StringPtrInput
	// Priority for default gateway route. A higher priority number signifies a less preferred route.
	DefaultGwPriority pulumi.IntPtrInput
	// Device ID carried by the device ID notification.
	DevId pulumi.StringPtrInput
	// Enable/disable device ID notification. Valid values: `disable`, `enable`.
	DevIdNotification pulumi.StringPtrInput
	// Relay agent IPv6 link address to use in DHCP6 requests.
	Dhcp6RaLinkaddr pulumi.StringPtrInput
	// Relay agent gateway IP address to use in the giaddr field of DHCP requests.
	DhcpRaGiaddr pulumi.StringPtrInput
	// DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
	Dhgrp pulumi.StringPtrInput
	// Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`.
	DigitalSignatureAuth pulumi.StringPtrInput
	// Distance for routes added by IKE (1 - 255).
	Distance pulumi.IntPtrInput
	// DNS server mode. Valid values: `manual`, `auto`.
	DnsMode pulumi.StringPtrInput
	// Instruct unity clients about the default DNS domain.
	Domain pulumi.StringPtrInput
	// Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`.
	Dpd pulumi.StringPtrInput
	// Number of DPD retry attempts.
	DpdRetrycount pulumi.IntPtrInput
	// DPD retry interval.
	DpdRetryinterval pulumi.StringPtrInput
	// Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
	DynamicSortSubtable pulumi.StringPtrInput
	// Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`.
	Eap pulumi.StringPtrInput
	// Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`.
	EapCertAuth pulumi.StringPtrInput
	// Peer group excluded from EAP authentication.
	EapExcludePeergrp pulumi.StringPtrInput
	// IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`.
	EapIdentity pulumi.StringPtrInput
	// Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`.
	EmsSnCheck pulumi.StringPtrInput
	// Local IPv4 address of GRE/VXLAN tunnel.
	EncapLocalGw4 pulumi.StringPtrInput
	// Local IPv6 address of GRE/VXLAN tunnel.
	EncapLocalGw6 pulumi.StringPtrInput
	// Remote IPv4 address of GRE/VXLAN tunnel.
	EncapRemoteGw4 pulumi.StringPtrInput
	// Remote IPv6 address of GRE/VXLAN tunnel.
	EncapRemoteGw6 pulumi.StringPtrInput
	// Enable/disable GRE/VXLAN encapsulation.
	Encapsulation pulumi.StringPtrInput
	// Source for GRE/VXLAN tunnel address. Valid values: `ike`, `ipv4`, `ipv6`.
	EncapsulationAddress pulumi.StringPtrInput
	// Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`.
	EnforceUniqueId pulumi.StringPtrInput
	// Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`.
	Esn pulumi.StringPtrInput
	// Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`.
	ExchangeFgtDeviceId pulumi.StringPtrInput
	// Enable/disable exchange of IPsec interface IP address. Valid values: `enable`, `disable`.
	ExchangeInterfaceIp pulumi.StringPtrInput
	// IPv4 address to exchange with peers.
	ExchangeIpAddr4 pulumi.StringPtrInput
	// IPv6 address to exchange with peers
	ExchangeIpAddr6 pulumi.StringPtrInput
	// Timeout in seconds before falling back IKE/IPsec traffic to tcp.
	FallbackTcpThreshold pulumi.IntPtrInput
	// Number of base Forward Error Correction packets (1 - 100).
	FecBase pulumi.IntPtrInput
	// ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor).
	FecCodec pulumi.IntPtrInput
	// Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`.
	FecCodecString pulumi.StringPtrInput
	// Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`.
	FecEgress pulumi.StringPtrInput
	// SD-WAN health check.
	FecHealthCheck pulumi.StringPtrInput
	// Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`.
	FecIngress pulumi.StringPtrInput
	// Forward Error Correction (FEC) mapping profile.
	FecMappingProfile pulumi.StringPtrInput
	// Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000).
	FecReceiveTimeout pulumi.IntPtrInput
	// Number of redundant Forward Error Correction packets (1 - 100).
	FecRedundant pulumi.IntPtrInput
	// Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000).
	FecSendTimeout pulumi.IntPtrInput
	// Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`.
	FgspSync pulumi.StringPtrInput
	// Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`.
	ForticlientEnforcement pulumi.StringPtrInput
	// Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`.
	FortinetEsp pulumi.StringPtrInput
	// Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`.
	Fragmentation pulumi.StringPtrInput
	// IKE fragmentation MTU (500 - 16000).
	FragmentationMtu pulumi.IntPtrInput
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrInput
	// Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`.
	GroupAuthentication pulumi.StringPtrInput
	// Password for IKEv2 IDi group authentication.  (ASCII string or hexadecimal indicated by a leading 0x.)
	GroupAuthenticationSecret pulumi.StringPtrInput
	// Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`.
	HaSyncEspSeqno pulumi.StringPtrInput
	// Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`.
	IdleTimeout pulumi.StringPtrInput
	// IPsec tunnel idle timeout in minutes (5 - 43200).
	IdleTimeoutinterval pulumi.IntPtrInput
	// IKE protocol version. Valid values: `1`, `2`.
	IkeVersion pulumi.StringPtrInput
	// Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`.
	InboundDscpCopy pulumi.StringPtrInput
	// Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`.
	IncludeLocalLan pulumi.StringPtrInput
	// Local physical, aggregate, or VLAN outgoing interface.
	Interface pulumi.StringInput
	// One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below.
	InternalDomainLists Phase1interfaceInternalDomainListArrayInput
	// IP address reuse delay interval in seconds (0 - 28800).
	IpDelayInterval pulumi.IntPtrInput
	// Determine whether IP packets are fragmented before or after IPsec encapsulation. Valid values: `pre-encapsulation`, `post-encapsulation`.
	IpFragmentation pulumi.StringPtrInput
	// IP version to use for VPN interface. Valid values: `4`, `6`.
	IpVersion pulumi.StringPtrInput
	// IPv4 DNS server 1.
	Ipv4DnsServer1 pulumi.StringPtrInput
	// IPv4 DNS server 2.
	Ipv4DnsServer2 pulumi.StringPtrInput
	// IPv4 DNS server 3.
	Ipv4DnsServer3 pulumi.StringPtrInput
	// End of IPv4 range.
	Ipv4EndIp pulumi.StringPtrInput
	// Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below.
	Ipv4ExcludeRanges Phase1interfaceIpv4ExcludeRangeArrayInput
	// IPv4 address name.
	Ipv4Name pulumi.StringPtrInput
	// IPv4 Netmask.
	Ipv4Netmask pulumi.StringPtrInput
	// IPv4 subnets that should not be sent over the IPsec tunnel.
	Ipv4SplitExclude pulumi.StringPtrInput
	// IPv4 split-include subnets.
	Ipv4SplitInclude pulumi.StringPtrInput
	// Start of IPv4 range.
	Ipv4StartIp pulumi.StringPtrInput
	// WINS server 1.
	Ipv4WinsServer1 pulumi.StringPtrInput
	// WINS server 2.
	Ipv4WinsServer2 pulumi.StringPtrInput
	// IPv6 DNS server 1.
	Ipv6DnsServer1 pulumi.StringPtrInput
	// IPv6 DNS server 2.
	Ipv6DnsServer2 pulumi.StringPtrInput
	// IPv6 DNS server 3.
	Ipv6DnsServer3 pulumi.StringPtrInput
	// End of IPv6 range.
	Ipv6EndIp pulumi.StringPtrInput
	// Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below.
	Ipv6ExcludeRanges Phase1interfaceIpv6ExcludeRangeArrayInput
	// IPv6 address name.
	Ipv6Name pulumi.StringPtrInput
	// IPv6 prefix.
	Ipv6Prefix pulumi.IntPtrInput
	// IPv6 subnets that should not be sent over the IPsec tunnel.
	Ipv6SplitExclude pulumi.StringPtrInput
	// IPv6 split-include subnets.
	Ipv6SplitInclude pulumi.StringPtrInput
	// Start of IPv6 range.
	Ipv6StartIp pulumi.StringPtrInput
	// NAT-T keep alive interval.
	Keepalive pulumi.IntPtrInput
	// Time to wait in seconds before phase 1 encryption key expires.
	Keylife pulumi.IntPtrInput
	// Key Management Services server.
	Kms pulumi.StringPtrInput
	// VPN tunnel underlay link cost.
	LinkCost pulumi.IntPtrInput
	// IPv4 address of the local gateway's external interface.
	LocalGw pulumi.StringPtrInput
	// IPv6 address of the local gateway's external interface.
	LocalGw6 pulumi.StringPtrInput
	// Local ID.
	Localid pulumi.StringPtrInput
	// Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`.
	LocalidType pulumi.StringPtrInput
	// Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`.
	LoopbackAsymroute pulumi.StringPtrInput
	// Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`.
	MeshSelectorType pulumi.StringPtrInput
	// The ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`.
	Mode pulumi.StringPtrInput
	// Enable/disable configuration method. Valid values: `disable`, `enable`.
	ModeCfg pulumi.StringPtrInput
	// Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`.
	ModeCfgAllowClientSelector pulumi.StringPtrInput
	// IPsec interface as backup for primary interface.
	Monitor pulumi.StringPtrInput
	// Time to wait in seconds before recovery once primary re-establishes.
	MonitorHoldDownDelay pulumi.IntPtrInput
	// Time of day at which to fail back to primary after it re-establishes.
	MonitorHoldDownTime pulumi.StringPtrInput
	// Recovery time method when primary interface re-establishes. Valid values: `immediate`, `delay`, `time`.
	MonitorHoldDownType pulumi.StringPtrInput
	// Day of the week to recover once primary re-establishes. Valid values: `everyday`, `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`.
	MonitorHoldDownWeekday pulumi.StringPtrInput
	// Minimum number of links to become degraded before activating this interface.  Zero (0) means all links must be down before activating this interface.
	MonitorMin pulumi.IntPtrInput
	// IPsec remote gateway name.
	Name pulumi.StringPtrInput
	// Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`.
	Nattraversal pulumi.StringPtrInput
	// IKE SA negotiation timeout in seconds (1 - 300).
	NegotiateTimeout pulumi.IntPtrInput
	// Enable/disable kernel device creation. Valid values: `enable`, `disable`.
	NetDevice pulumi.StringPtrInput
	// VPN gateway network ID.
	NetworkId pulumi.IntPtrInput
	// Enable/disable network overlays. Valid values: `disable`, `enable`.
	NetworkOverlay pulumi.StringPtrInput
	// Enable/disable offloading NPU. Valid values: `enable`, `disable`.
	NpuOffload pulumi.StringPtrInput
	// Enable/disable packet distribution (RPS) on the IPsec interface. Valid values: `enable`, `disable`.
	PacketRedistribution pulumi.StringPtrInput
	// Enable/disable IPsec passive mode for static tunnels. Valid values: `enable`, `disable`.
	PassiveMode pulumi.StringPtrInput
	// Accept this peer certificate.
	Peer pulumi.StringPtrInput
	// Accept this peer certificate group.
	Peergrp pulumi.StringPtrInput
	// Accept this peer identity.
	Peerid pulumi.StringPtrInput
	// Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`.
	Peertype pulumi.StringPtrInput
	// Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`.
	Ppk pulumi.StringPtrInput
	// IKEv2 Postquantum Preshared Key Identity.
	PpkIdentity pulumi.StringPtrInput
	// IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x).
	PpkSecret pulumi.StringPtrInput
	// Priority for routes added by IKE (0 - 4294967295).
	Priority pulumi.IntPtrInput
	// Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
	Proposal pulumi.StringInput
	// Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
	Psksecret pulumi.StringPtrInput
	// Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
	PsksecretRemote pulumi.StringPtrInput
	// Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`.
	Qkd pulumi.StringPtrInput
	// Quantum Key Distribution (QKD) server profile.
	QkdProfile pulumi.StringPtrInput
	// Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`.
	Reauth pulumi.StringPtrInput
	// Enable/disable phase1 rekey. Valid values: `enable`, `disable`.
	Rekey pulumi.StringPtrInput
	// IPv4 address of the remote gateway's external interface.
	RemoteGw pulumi.StringPtrInput
	// IPv6 address of the remote gateway's external interface.
	RemoteGw6 pulumi.StringPtrInput
	// Domain name of remote gateway (eg. name.DDNS.com).
	RemotegwDdns pulumi.StringPtrInput
	// Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`.
	RsaSignatureFormat pulumi.StringPtrInput
	// Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`.
	RsaSignatureHashOverride pulumi.StringPtrInput
	// Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`.
	SavePassword pulumi.StringPtrInput
	// Enable/disable sending certificate chain. Valid values: `enable`, `disable`.
	SendCertChain pulumi.StringPtrInput
	// Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`.
	SignatureHashAlg pulumi.StringPtrInput
	// Split-include services.
	SplitIncludeService pulumi.StringPtrInput
	// Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`.
	SuiteB pulumi.StringPtrInput
	// Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`.
	Transport pulumi.StringPtrInput
	// Tunnel search method for when the interface is shared. Valid values: `selectors`, `nexthop`.
	TunnelSearch pulumi.StringPtrInput
	// Remote gateway type. Valid values: `static`, `dynamic`, `ddns`.
	Type pulumi.StringPtrInput
	// Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`.
	UnitySupport pulumi.StringPtrInput
	// User group name for dialup peers.
	Usrgrp pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
	// VNI of VXLAN tunnel.
	Vni pulumi.IntPtrInput
	// GUI VPN Wizard Type.
	WizardType pulumi.StringPtrInput
	// XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`.
	Xauthtype pulumi.StringPtrInput
}

The set of arguments for constructing a Phase1interface resource.

func (Phase1interfaceArgs) ElementType 

func (Phase1interfaceArgs) ElementType() reflect.Type

type Phase1interfaceArray 

type Phase1interfaceArray []Phase1interfaceInput

func (Phase1interfaceArray) ElementType 

func (Phase1interfaceArray) ElementType() reflect.Type

func (Phase1interfaceArray) ToPhase1interfaceArrayOutput 

func (i Phase1interfaceArray) ToPhase1interfaceArrayOutput() Phase1interfaceArrayOutput

func (Phase1interfaceArray) ToPhase1interfaceArrayOutputWithContext 

func (i Phase1interfaceArray) ToPhase1interfaceArrayOutputWithContext(ctx context.Context) Phase1interfaceArrayOutput

type Phase1interfaceArrayInput 

type Phase1interfaceArrayInput interface {
	pulumi.Input

	ToPhase1interfaceArrayOutput() Phase1interfaceArrayOutput
	ToPhase1interfaceArrayOutputWithContext(context.Context) Phase1interfaceArrayOutput
}

Phase1interfaceArrayInput is an input type that accepts Phase1interfaceArray and Phase1interfaceArrayOutput values. You can construct a concrete instance of `Phase1interfaceArrayInput` via: 

Phase1interfaceArray{ Phase1interfaceArgs{...} }

type Phase1interfaceArrayOutput 

type Phase1interfaceArrayOutput struct{ *pulumi.OutputState }

func (Phase1interfaceArrayOutput) ElementType 

func (Phase1interfaceArrayOutput) ElementType() reflect.Type

func (Phase1interfaceArrayOutput) Index 

func (o Phase1interfaceArrayOutput) Index(i pulumi.IntInput) Phase1interfaceOutput

func (Phase1interfaceArrayOutput) ToPhase1interfaceArrayOutput 

func (o Phase1interfaceArrayOutput) ToPhase1interfaceArrayOutput() Phase1interfaceArrayOutput

func (Phase1interfaceArrayOutput) ToPhase1interfaceArrayOutputWithContext 

func (o Phase1interfaceArrayOutput) ToPhase1interfaceArrayOutputWithContext(ctx context.Context) Phase1interfaceArrayOutput

type Phase1interfaceBackupGateway 

type Phase1interfaceBackupGateway struct {
	// Address of backup gateway.
	Address *string `pulumi:"address"`
}

type Phase1interfaceBackupGatewayArgs 

type Phase1interfaceBackupGatewayArgs struct {
	// Address of backup gateway.
	Address pulumi.StringPtrInput `pulumi:"address"`
}

func (Phase1interfaceBackupGatewayArgs) ElementType 

func (Phase1interfaceBackupGatewayArgs) ElementType() reflect.Type

func (Phase1interfaceBackupGatewayArgs) ToPhase1interfaceBackupGatewayOutput 

func (i Phase1interfaceBackupGatewayArgs) ToPhase1interfaceBackupGatewayOutput() Phase1interfaceBackupGatewayOutput

func (Phase1interfaceBackupGatewayArgs) ToPhase1interfaceBackupGatewayOutputWithContext 

func (i Phase1interfaceBackupGatewayArgs) ToPhase1interfaceBackupGatewayOutputWithContext(ctx context.Context) Phase1interfaceBackupGatewayOutput

type Phase1interfaceBackupGatewayArray 

type Phase1interfaceBackupGatewayArray []Phase1interfaceBackupGatewayInput

func (Phase1interfaceBackupGatewayArray) ElementType 

func (Phase1interfaceBackupGatewayArray) ElementType() reflect.Type

func (Phase1interfaceBackupGatewayArray) ToPhase1interfaceBackupGatewayArrayOutput 

func (i Phase1interfaceBackupGatewayArray) ToPhase1interfaceBackupGatewayArrayOutput() Phase1interfaceBackupGatewayArrayOutput

func (Phase1interfaceBackupGatewayArray) ToPhase1interfaceBackupGatewayArrayOutputWithContext 

func (i Phase1interfaceBackupGatewayArray) ToPhase1interfaceBackupGatewayArrayOutputWithContext(ctx context.Context) Phase1interfaceBackupGatewayArrayOutput

type Phase1interfaceBackupGatewayArrayInput 

type Phase1interfaceBackupGatewayArrayInput interface {
	pulumi.Input

	ToPhase1interfaceBackupGatewayArrayOutput() Phase1interfaceBackupGatewayArrayOutput
	ToPhase1interfaceBackupGatewayArrayOutputWithContext(context.Context) Phase1interfaceBackupGatewayArrayOutput
}

Phase1interfaceBackupGatewayArrayInput is an input type that accepts Phase1interfaceBackupGatewayArray and Phase1interfaceBackupGatewayArrayOutput values. You can construct a concrete instance of `Phase1interfaceBackupGatewayArrayInput` via: 

Phase1interfaceBackupGatewayArray{ Phase1interfaceBackupGatewayArgs{...} }

type Phase1interfaceBackupGatewayArrayOutput 

type Phase1interfaceBackupGatewayArrayOutput struct{ *pulumi.OutputState }

func (Phase1interfaceBackupGatewayArrayOutput) ElementType 

func (Phase1interfaceBackupGatewayArrayOutput) ElementType() reflect.Type

func (Phase1interfaceBackupGatewayArrayOutput) Index 

func (o Phase1interfaceBackupGatewayArrayOutput) Index(i pulumi.IntInput) Phase1interfaceBackupGatewayOutput

func (Phase1interfaceBackupGatewayArrayOutput) ToPhase1interfaceBackupGatewayArrayOutput 

func (o Phase1interfaceBackupGatewayArrayOutput) ToPhase1interfaceBackupGatewayArrayOutput() Phase1interfaceBackupGatewayArrayOutput

func (Phase1interfaceBackupGatewayArrayOutput) ToPhase1interfaceBackupGatewayArrayOutputWithContext 

func (o Phase1interfaceBackupGatewayArrayOutput) ToPhase1interfaceBackupGatewayArrayOutputWithContext(ctx context.Context) Phase1interfaceBackupGatewayArrayOutput

type Phase1interfaceBackupGatewayInput 

type Phase1interfaceBackupGatewayInput interface {
	pulumi.Input

	ToPhase1interfaceBackupGatewayOutput() Phase1interfaceBackupGatewayOutput
	ToPhase1interfaceBackupGatewayOutputWithContext(context.Context) Phase1interfaceBackupGatewayOutput
}

Phase1interfaceBackupGatewayInput is an input type that accepts Phase1interfaceBackupGatewayArgs and Phase1interfaceBackupGatewayOutput values. You can construct a concrete instance of `Phase1interfaceBackupGatewayInput` via: 

Phase1interfaceBackupGatewayArgs{...}

type Phase1interfaceBackupGatewayOutput 

type Phase1interfaceBackupGatewayOutput struct{ *pulumi.OutputState }

func (Phase1interfaceBackupGatewayOutput) Address 

func (o Phase1interfaceBackupGatewayOutput) Address() pulumi.StringPtrOutput

Address of backup gateway.

func (Phase1interfaceBackupGatewayOutput) ElementType 

func (Phase1interfaceBackupGatewayOutput) ElementType() reflect.Type

func (Phase1interfaceBackupGatewayOutput) ToPhase1interfaceBackupGatewayOutput 

func (o Phase1interfaceBackupGatewayOutput) ToPhase1interfaceBackupGatewayOutput() Phase1interfaceBackupGatewayOutput

func (Phase1interfaceBackupGatewayOutput) ToPhase1interfaceBackupGatewayOutputWithContext 

func (o Phase1interfaceBackupGatewayOutput) ToPhase1interfaceBackupGatewayOutputWithContext(ctx context.Context) Phase1interfaceBackupGatewayOutput

type Phase1interfaceCertificate 

type Phase1interfaceCertificate struct {
	// Certificate name.
	Name *string `pulumi:"name"`
}

type Phase1interfaceCertificateArgs 

type Phase1interfaceCertificateArgs struct {
	// Certificate name.
	Name pulumi.StringPtrInput `pulumi:"name"`
}

func (Phase1interfaceCertificateArgs) ElementType 

func (Phase1interfaceCertificateArgs) ElementType() reflect.Type

func (Phase1interfaceCertificateArgs) ToPhase1interfaceCertificateOutput 

func (i Phase1interfaceCertificateArgs) ToPhase1interfaceCertificateOutput() Phase1interfaceCertificateOutput

func (Phase1interfaceCertificateArgs) ToPhase1interfaceCertificateOutputWithContext 

func (i Phase1interfaceCertificateArgs) ToPhase1interfaceCertificateOutputWithContext(ctx context.Context) Phase1interfaceCertificateOutput

type Phase1interfaceCertificateArray 

type Phase1interfaceCertificateArray []Phase1interfaceCertificateInput

func (Phase1interfaceCertificateArray) ElementType 

func (Phase1interfaceCertificateArray) ElementType() reflect.Type

func (Phase1interfaceCertificateArray) ToPhase1interfaceCertificateArrayOutput 

func (i Phase1interfaceCertificateArray) ToPhase1interfaceCertificateArrayOutput() Phase1interfaceCertificateArrayOutput

func (Phase1interfaceCertificateArray) ToPhase1interfaceCertificateArrayOutputWithContext 

func (i Phase1interfaceCertificateArray) ToPhase1interfaceCertificateArrayOutputWithContext(ctx context.Context) Phase1interfaceCertificateArrayOutput

type Phase1interfaceCertificateArrayInput 

type Phase1interfaceCertificateArrayInput interface {
	pulumi.Input

	ToPhase1interfaceCertificateArrayOutput() Phase1interfaceCertificateArrayOutput
	ToPhase1interfaceCertificateArrayOutputWithContext(context.Context) Phase1interfaceCertificateArrayOutput
}

Phase1interfaceCertificateArrayInput is an input type that accepts Phase1interfaceCertificateArray and Phase1interfaceCertificateArrayOutput values. You can construct a concrete instance of `Phase1interfaceCertificateArrayInput` via: 

Phase1interfaceCertificateArray{ Phase1interfaceCertificateArgs{...} }

type Phase1interfaceCertificateArrayOutput 

type Phase1interfaceCertificateArrayOutput struct{ *pulumi.OutputState }

func (Phase1interfaceCertificateArrayOutput) ElementType 

func (Phase1interfaceCertificateArrayOutput) ElementType() reflect.Type

func (Phase1interfaceCertificateArrayOutput) Index 

func (o Phase1interfaceCertificateArrayOutput) Index(i pulumi.IntInput) Phase1interfaceCertificateOutput

func (Phase1interfaceCertificateArrayOutput) ToPhase1interfaceCertificateArrayOutput 

func (o Phase1interfaceCertificateArrayOutput) ToPhase1interfaceCertificateArrayOutput() Phase1interfaceCertificateArrayOutput

func (Phase1interfaceCertificateArrayOutput) ToPhase1interfaceCertificateArrayOutputWithContext 

func (o Phase1interfaceCertificateArrayOutput) ToPhase1interfaceCertificateArrayOutputWithContext(ctx context.Context) Phase1interfaceCertificateArrayOutput

type Phase1interfaceCertificateInput 

type Phase1interfaceCertificateInput interface {
	pulumi.Input

	ToPhase1interfaceCertificateOutput() Phase1interfaceCertificateOutput
	ToPhase1interfaceCertificateOutputWithContext(context.Context) Phase1interfaceCertificateOutput
}

Phase1interfaceCertificateInput is an input type that accepts Phase1interfaceCertificateArgs and Phase1interfaceCertificateOutput values. You can construct a concrete instance of `Phase1interfaceCertificateInput` via: 

Phase1interfaceCertificateArgs{...}

type Phase1interfaceCertificateOutput 

type Phase1interfaceCertificateOutput struct{ *pulumi.OutputState }

func (Phase1interfaceCertificateOutput) ElementType 

func (Phase1interfaceCertificateOutput) ElementType() reflect.Type

func (Phase1interfaceCertificateOutput) Name 

func (o Phase1interfaceCertificateOutput) Name() pulumi.StringPtrOutput

Certificate name.

func (Phase1interfaceCertificateOutput) ToPhase1interfaceCertificateOutput 

func (o Phase1interfaceCertificateOutput) ToPhase1interfaceCertificateOutput() Phase1interfaceCertificateOutput

func (Phase1interfaceCertificateOutput) ToPhase1interfaceCertificateOutputWithContext 

func (o Phase1interfaceCertificateOutput) ToPhase1interfaceCertificateOutputWithContext(ctx context.Context) Phase1interfaceCertificateOutput

type Phase1interfaceInput 

type Phase1interfaceInput interface {
	pulumi.Input

	ToPhase1interfaceOutput() Phase1interfaceOutput
	ToPhase1interfaceOutputWithContext(ctx context.Context) Phase1interfaceOutput
}

type Phase1interfaceInternalDomainList 

type Phase1interfaceInternalDomainList struct {
	// Domain name.
	//
	// The `ipv4ExcludeRange` block supports:
	DomainName *string `pulumi:"domainName"`
}

type Phase1interfaceInternalDomainListArgs 

type Phase1interfaceInternalDomainListArgs struct {
	// Domain name.
	//
	// The `ipv4ExcludeRange` block supports:
	DomainName pulumi.StringPtrInput `pulumi:"domainName"`
}

func (Phase1interfaceInternalDomainListArgs) ElementType 

func (Phase1interfaceInternalDomainListArgs) ElementType() reflect.Type

func (Phase1interfaceInternalDomainListArgs) ToPhase1interfaceInternalDomainListOutput 

func (i Phase1interfaceInternalDomainListArgs) ToPhase1interfaceInternalDomainListOutput() Phase1interfaceInternalDomainListOutput

func (Phase1interfaceInternalDomainListArgs) ToPhase1interfaceInternalDomainListOutputWithContext 

func (i Phase1interfaceInternalDomainListArgs) ToPhase1interfaceInternalDomainListOutputWithContext(ctx context.Context) Phase1interfaceInternalDomainListOutput

type Phase1interfaceInternalDomainListArray 

type Phase1interfaceInternalDomainListArray []Phase1interfaceInternalDomainListInput

func (Phase1interfaceInternalDomainListArray) ElementType 

func (Phase1interfaceInternalDomainListArray) ElementType() reflect.Type

func (Phase1interfaceInternalDomainListArray) ToPhase1interfaceInternalDomainListArrayOutput 

func (i Phase1interfaceInternalDomainListArray) ToPhase1interfaceInternalDomainListArrayOutput() Phase1interfaceInternalDomainListArrayOutput

func (Phase1interfaceInternalDomainListArray) ToPhase1interfaceInternalDomainListArrayOutputWithContext 

func (i Phase1interfaceInternalDomainListArray) ToPhase1interfaceInternalDomainListArrayOutputWithContext(ctx context.Context) Phase1interfaceInternalDomainListArrayOutput

type Phase1interfaceInternalDomainListArrayInput 

type Phase1interfaceInternalDomainListArrayInput interface {
	pulumi.Input

	ToPhase1interfaceInternalDomainListArrayOutput() Phase1interfaceInternalDomainListArrayOutput
	ToPhase1interfaceInternalDomainListArrayOutputWithContext(context.Context) Phase1interfaceInternalDomainListArrayOutput
}

Phase1interfaceInternalDomainListArrayInput is an input type that accepts Phase1interfaceInternalDomainListArray and Phase1interfaceInternalDomainListArrayOutput values. You can construct a concrete instance of `Phase1interfaceInternalDomainListArrayInput` via: 

Phase1interfaceInternalDomainListArray{ Phase1interfaceInternalDomainListArgs{...} }

type Phase1interfaceInternalDomainListArrayOutput 

type Phase1interfaceInternalDomainListArrayOutput struct{ *pulumi.OutputState }

func (Phase1interfaceInternalDomainListArrayOutput) ElementType 

func (Phase1interfaceInternalDomainListArrayOutput) ElementType() reflect.Type

func (Phase1interfaceInternalDomainListArrayOutput) Index 

func (o Phase1interfaceInternalDomainListArrayOutput) Index(i pulumi.IntInput) Phase1interfaceInternalDomainListOutput

func (Phase1interfaceInternalDomainListArrayOutput) ToPhase1interfaceInternalDomainListArrayOutput 

func (o Phase1interfaceInternalDomainListArrayOutput) ToPhase1interfaceInternalDomainListArrayOutput() Phase1interfaceInternalDomainListArrayOutput

func (Phase1interfaceInternalDomainListArrayOutput) ToPhase1interfaceInternalDomainListArrayOutputWithContext 

func (o Phase1interfaceInternalDomainListArrayOutput) ToPhase1interfaceInternalDomainListArrayOutputWithContext(ctx context.Context) Phase1interfaceInternalDomainListArrayOutput

type Phase1interfaceInternalDomainListInput 

type Phase1interfaceInternalDomainListInput interface {
	pulumi.Input

	ToPhase1interfaceInternalDomainListOutput() Phase1interfaceInternalDomainListOutput
	ToPhase1interfaceInternalDomainListOutputWithContext(context.Context) Phase1interfaceInternalDomainListOutput
}

Phase1interfaceInternalDomainListInput is an input type that accepts Phase1interfaceInternalDomainListArgs and Phase1interfaceInternalDomainListOutput values. You can construct a concrete instance of `Phase1interfaceInternalDomainListInput` via: 

Phase1interfaceInternalDomainListArgs{...}

type Phase1interfaceInternalDomainListOutput 

type Phase1interfaceInternalDomainListOutput struct{ *pulumi.OutputState }

func (Phase1interfaceInternalDomainListOutput) DomainName 

func (o Phase1interfaceInternalDomainListOutput) DomainName() pulumi.StringPtrOutput

Domain name.

The `ipv4ExcludeRange` block supports:

func (Phase1interfaceInternalDomainListOutput) ElementType 

func (Phase1interfaceInternalDomainListOutput) ElementType() reflect.Type

func (Phase1interfaceInternalDomainListOutput) ToPhase1interfaceInternalDomainListOutput 

func (o Phase1interfaceInternalDomainListOutput) ToPhase1interfaceInternalDomainListOutput() Phase1interfaceInternalDomainListOutput

func (Phase1interfaceInternalDomainListOutput) ToPhase1interfaceInternalDomainListOutputWithContext 

func (o Phase1interfaceInternalDomainListOutput) ToPhase1interfaceInternalDomainListOutputWithContext(ctx context.Context) Phase1interfaceInternalDomainListOutput

type Phase1interfaceIpv4ExcludeRange 

type Phase1interfaceIpv4ExcludeRange struct {
	// End of IPv6 exclusive range.
	EndIp *string `pulumi:"endIp"`
	// ID.
	Id *int `pulumi:"id"`
	// Start of IPv6 exclusive range.
	StartIp *string `pulumi:"startIp"`
}

type Phase1interfaceIpv4ExcludeRangeArgs 

type Phase1interfaceIpv4ExcludeRangeArgs struct {
	// End of IPv6 exclusive range.
	EndIp pulumi.StringPtrInput `pulumi:"endIp"`
	// ID.
	Id pulumi.IntPtrInput `pulumi:"id"`
	// Start of IPv6 exclusive range.
	StartIp pulumi.StringPtrInput `pulumi:"startIp"`
}

func (Phase1interfaceIpv4ExcludeRangeArgs) ElementType 

func (Phase1interfaceIpv4ExcludeRangeArgs) ElementType() reflect.Type

func (Phase1interfaceIpv4ExcludeRangeArgs) ToPhase1interfaceIpv4ExcludeRangeOutput 

func (i Phase1interfaceIpv4ExcludeRangeArgs) ToPhase1interfaceIpv4ExcludeRangeOutput() Phase1interfaceIpv4ExcludeRangeOutput

func (Phase1interfaceIpv4ExcludeRangeArgs) ToPhase1interfaceIpv4ExcludeRangeOutputWithContext 

func (i Phase1interfaceIpv4ExcludeRangeArgs) ToPhase1interfaceIpv4ExcludeRangeOutputWithContext(ctx context.Context) Phase1interfaceIpv4ExcludeRangeOutput

type Phase1interfaceIpv4ExcludeRangeArray 

type Phase1interfaceIpv4ExcludeRangeArray []Phase1interfaceIpv4ExcludeRangeInput

func (Phase1interfaceIpv4ExcludeRangeArray) ElementType 

func (Phase1interfaceIpv4ExcludeRangeArray) ElementType() reflect.Type

func (Phase1interfaceIpv4ExcludeRangeArray) ToPhase1interfaceIpv4ExcludeRangeArrayOutput 

func (i Phase1interfaceIpv4ExcludeRangeArray) ToPhase1interfaceIpv4ExcludeRangeArrayOutput() Phase1interfaceIpv4ExcludeRangeArrayOutput

func (Phase1interfaceIpv4ExcludeRangeArray) ToPhase1interfaceIpv4ExcludeRangeArrayOutputWithContext 

func (i Phase1interfaceIpv4ExcludeRangeArray) ToPhase1interfaceIpv4ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1interfaceIpv4ExcludeRangeArrayOutput

type Phase1interfaceIpv4ExcludeRangeArrayInput 

type Phase1interfaceIpv4ExcludeRangeArrayInput interface {
	pulumi.Input

	ToPhase1interfaceIpv4ExcludeRangeArrayOutput() Phase1interfaceIpv4ExcludeRangeArrayOutput
	ToPhase1interfaceIpv4ExcludeRangeArrayOutputWithContext(context.Context) Phase1interfaceIpv4ExcludeRangeArrayOutput
}

Phase1interfaceIpv4ExcludeRangeArrayInput is an input type that accepts Phase1interfaceIpv4ExcludeRangeArray and Phase1interfaceIpv4ExcludeRangeArrayOutput values. You can construct a concrete instance of `Phase1interfaceIpv4ExcludeRangeArrayInput` via: 

Phase1interfaceIpv4ExcludeRangeArray{ Phase1interfaceIpv4ExcludeRangeArgs{...} }

type Phase1interfaceIpv4ExcludeRangeArrayOutput 

type Phase1interfaceIpv4ExcludeRangeArrayOutput struct{ *pulumi.OutputState }

func (Phase1interfaceIpv4ExcludeRangeArrayOutput) ElementType 

func (Phase1interfaceIpv4ExcludeRangeArrayOutput) ElementType() reflect.Type

func (Phase1interfaceIpv4ExcludeRangeArrayOutput) Index 

func (o Phase1interfaceIpv4ExcludeRangeArrayOutput) Index(i pulumi.IntInput) Phase1interfaceIpv4ExcludeRangeOutput

func (Phase1interfaceIpv4ExcludeRangeArrayOutput) ToPhase1interfaceIpv4ExcludeRangeArrayOutput 

func (o Phase1interfaceIpv4ExcludeRangeArrayOutput) ToPhase1interfaceIpv4ExcludeRangeArrayOutput() Phase1interfaceIpv4ExcludeRangeArrayOutput

func (Phase1interfaceIpv4ExcludeRangeArrayOutput) ToPhase1interfaceIpv4ExcludeRangeArrayOutputWithContext 

func (o Phase1interfaceIpv4ExcludeRangeArrayOutput) ToPhase1interfaceIpv4ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1interfaceIpv4ExcludeRangeArrayOutput

type Phase1interfaceIpv4ExcludeRangeInput 

type Phase1interfaceIpv4ExcludeRangeInput interface {
	pulumi.Input

	ToPhase1interfaceIpv4ExcludeRangeOutput() Phase1interfaceIpv4ExcludeRangeOutput
	ToPhase1interfaceIpv4ExcludeRangeOutputWithContext(context.Context) Phase1interfaceIpv4ExcludeRangeOutput
}

Phase1interfaceIpv4ExcludeRangeInput is an input type that accepts Phase1interfaceIpv4ExcludeRangeArgs and Phase1interfaceIpv4ExcludeRangeOutput values. You can construct a concrete instance of `Phase1interfaceIpv4ExcludeRangeInput` via: 

Phase1interfaceIpv4ExcludeRangeArgs{...}

type Phase1interfaceIpv4ExcludeRangeOutput 

type Phase1interfaceIpv4ExcludeRangeOutput struct{ *pulumi.OutputState }

func (Phase1interfaceIpv4ExcludeRangeOutput) ElementType 

func (Phase1interfaceIpv4ExcludeRangeOutput) ElementType() reflect.Type

func (Phase1interfaceIpv4ExcludeRangeOutput) EndIp 

func (o Phase1interfaceIpv4ExcludeRangeOutput) EndIp() pulumi.StringPtrOutput

End of IPv6 exclusive range.

func (Phase1interfaceIpv4ExcludeRangeOutput) Id 

func (o Phase1interfaceIpv4ExcludeRangeOutput) Id() pulumi.IntPtrOutput

ID.

func (Phase1interfaceIpv4ExcludeRangeOutput) StartIp 

func (o Phase1interfaceIpv4ExcludeRangeOutput) StartIp() pulumi.StringPtrOutput

Start of IPv6 exclusive range.

func (Phase1interfaceIpv4ExcludeRangeOutput) ToPhase1interfaceIpv4ExcludeRangeOutput 

func (o Phase1interfaceIpv4ExcludeRangeOutput) ToPhase1interfaceIpv4ExcludeRangeOutput() Phase1interfaceIpv4ExcludeRangeOutput

func (Phase1interfaceIpv4ExcludeRangeOutput) ToPhase1interfaceIpv4ExcludeRangeOutputWithContext 

func (o Phase1interfaceIpv4ExcludeRangeOutput) ToPhase1interfaceIpv4ExcludeRangeOutputWithContext(ctx context.Context) Phase1interfaceIpv4ExcludeRangeOutput

type Phase1interfaceIpv6ExcludeRange 

type Phase1interfaceIpv6ExcludeRange struct {
	// End of IPv6 exclusive range.
	EndIp *string `pulumi:"endIp"`
	// ID.
	Id *int `pulumi:"id"`
	// Start of IPv6 exclusive range.
	StartIp *string `pulumi:"startIp"`
}

type Phase1interfaceIpv6ExcludeRangeArgs 

type Phase1interfaceIpv6ExcludeRangeArgs struct {
	// End of IPv6 exclusive range.
	EndIp pulumi.StringPtrInput `pulumi:"endIp"`
	// ID.
	Id pulumi.IntPtrInput `pulumi:"id"`
	// Start of IPv6 exclusive range.
	StartIp pulumi.StringPtrInput `pulumi:"startIp"`
}

func (Phase1interfaceIpv6ExcludeRangeArgs) ElementType 

func (Phase1interfaceIpv6ExcludeRangeArgs) ElementType() reflect.Type

func (Phase1interfaceIpv6ExcludeRangeArgs) ToPhase1interfaceIpv6ExcludeRangeOutput 

func (i Phase1interfaceIpv6ExcludeRangeArgs) ToPhase1interfaceIpv6ExcludeRangeOutput() Phase1interfaceIpv6ExcludeRangeOutput

func (Phase1interfaceIpv6ExcludeRangeArgs) ToPhase1interfaceIpv6ExcludeRangeOutputWithContext 

func (i Phase1interfaceIpv6ExcludeRangeArgs) ToPhase1interfaceIpv6ExcludeRangeOutputWithContext(ctx context.Context) Phase1interfaceIpv6ExcludeRangeOutput

type Phase1interfaceIpv6ExcludeRangeArray 

type Phase1interfaceIpv6ExcludeRangeArray []Phase1interfaceIpv6ExcludeRangeInput

func (Phase1interfaceIpv6ExcludeRangeArray) ElementType 

func (Phase1interfaceIpv6ExcludeRangeArray) ElementType() reflect.Type

func (Phase1interfaceIpv6ExcludeRangeArray) ToPhase1interfaceIpv6ExcludeRangeArrayOutput 

func (i Phase1interfaceIpv6ExcludeRangeArray) ToPhase1interfaceIpv6ExcludeRangeArrayOutput() Phase1interfaceIpv6ExcludeRangeArrayOutput

func (Phase1interfaceIpv6ExcludeRangeArray) ToPhase1interfaceIpv6ExcludeRangeArrayOutputWithContext 

func (i Phase1interfaceIpv6ExcludeRangeArray) ToPhase1interfaceIpv6ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1interfaceIpv6ExcludeRangeArrayOutput

type Phase1interfaceIpv6ExcludeRangeArrayInput 

type Phase1interfaceIpv6ExcludeRangeArrayInput interface {
	pulumi.Input

	ToPhase1interfaceIpv6ExcludeRangeArrayOutput() Phase1interfaceIpv6ExcludeRangeArrayOutput
	ToPhase1interfaceIpv6ExcludeRangeArrayOutputWithContext(context.Context) Phase1interfaceIpv6ExcludeRangeArrayOutput
}

Phase1interfaceIpv6ExcludeRangeArrayInput is an input type that accepts Phase1interfaceIpv6ExcludeRangeArray and Phase1interfaceIpv6ExcludeRangeArrayOutput values. You can construct a concrete instance of `Phase1interfaceIpv6ExcludeRangeArrayInput` via: 

Phase1interfaceIpv6ExcludeRangeArray{ Phase1interfaceIpv6ExcludeRangeArgs{...} }

type Phase1interfaceIpv6ExcludeRangeArrayOutput 

type Phase1interfaceIpv6ExcludeRangeArrayOutput struct{ *pulumi.OutputState }

func (Phase1interfaceIpv6ExcludeRangeArrayOutput) ElementType 

func (Phase1interfaceIpv6ExcludeRangeArrayOutput) ElementType() reflect.Type

func (Phase1interfaceIpv6ExcludeRangeArrayOutput) Index 

func (o Phase1interfaceIpv6ExcludeRangeArrayOutput) Index(i pulumi.IntInput) Phase1interfaceIpv6ExcludeRangeOutput

func (Phase1interfaceIpv6ExcludeRangeArrayOutput) ToPhase1interfaceIpv6ExcludeRangeArrayOutput 

func (o Phase1interfaceIpv6ExcludeRangeArrayOutput) ToPhase1interfaceIpv6ExcludeRangeArrayOutput() Phase1interfaceIpv6ExcludeRangeArrayOutput

func (Phase1interfaceIpv6ExcludeRangeArrayOutput) ToPhase1interfaceIpv6ExcludeRangeArrayOutputWithContext 

func (o Phase1interfaceIpv6ExcludeRangeArrayOutput) ToPhase1interfaceIpv6ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1interfaceIpv6ExcludeRangeArrayOutput

type Phase1interfaceIpv6ExcludeRangeInput 

type Phase1interfaceIpv6ExcludeRangeInput interface {
	pulumi.Input

	ToPhase1interfaceIpv6ExcludeRangeOutput() Phase1interfaceIpv6ExcludeRangeOutput
	ToPhase1interfaceIpv6ExcludeRangeOutputWithContext(context.Context) Phase1interfaceIpv6ExcludeRangeOutput
}

Phase1interfaceIpv6ExcludeRangeInput is an input type that accepts Phase1interfaceIpv6ExcludeRangeArgs and Phase1interfaceIpv6ExcludeRangeOutput values. You can construct a concrete instance of `Phase1interfaceIpv6ExcludeRangeInput` via: 

Phase1interfaceIpv6ExcludeRangeArgs{...}

type Phase1interfaceIpv6ExcludeRangeOutput 

type Phase1interfaceIpv6ExcludeRangeOutput struct{ *pulumi.OutputState }

func (Phase1interfaceIpv6ExcludeRangeOutput) ElementType 

func (Phase1interfaceIpv6ExcludeRangeOutput) ElementType() reflect.Type

func (Phase1interfaceIpv6ExcludeRangeOutput) EndIp 

func (o Phase1interfaceIpv6ExcludeRangeOutput) EndIp() pulumi.StringPtrOutput

End of IPv6 exclusive range.

func (Phase1interfaceIpv6ExcludeRangeOutput) Id 

func (o Phase1interfaceIpv6ExcludeRangeOutput) Id() pulumi.IntPtrOutput

ID.

func (Phase1interfaceIpv6ExcludeRangeOutput) StartIp 

func (o Phase1interfaceIpv6ExcludeRangeOutput) StartIp() pulumi.StringPtrOutput

Start of IPv6 exclusive range.

func (Phase1interfaceIpv6ExcludeRangeOutput) ToPhase1interfaceIpv6ExcludeRangeOutput 

func (o Phase1interfaceIpv6ExcludeRangeOutput) ToPhase1interfaceIpv6ExcludeRangeOutput() Phase1interfaceIpv6ExcludeRangeOutput

func (Phase1interfaceIpv6ExcludeRangeOutput) ToPhase1interfaceIpv6ExcludeRangeOutputWithContext 

func (o Phase1interfaceIpv6ExcludeRangeOutput) ToPhase1interfaceIpv6ExcludeRangeOutputWithContext(ctx context.Context) Phase1interfaceIpv6ExcludeRangeOutput

type Phase1interfaceMap 

type Phase1interfaceMap map[string]Phase1interfaceInput

func (Phase1interfaceMap) ElementType 

func (Phase1interfaceMap) ElementType() reflect.Type

func (Phase1interfaceMap) ToPhase1interfaceMapOutput 

func (i Phase1interfaceMap) ToPhase1interfaceMapOutput() Phase1interfaceMapOutput

func (Phase1interfaceMap) ToPhase1interfaceMapOutputWithContext 

func (i Phase1interfaceMap) ToPhase1interfaceMapOutputWithContext(ctx context.Context) Phase1interfaceMapOutput

type Phase1interfaceMapInput 

type Phase1interfaceMapInput interface {
	pulumi.Input

	ToPhase1interfaceMapOutput() Phase1interfaceMapOutput
	ToPhase1interfaceMapOutputWithContext(context.Context) Phase1interfaceMapOutput
}

Phase1interfaceMapInput is an input type that accepts Phase1interfaceMap and Phase1interfaceMapOutput values. You can construct a concrete instance of `Phase1interfaceMapInput` via: 

Phase1interfaceMap{ "key": Phase1interfaceArgs{...} }

type Phase1interfaceMapOutput 

type Phase1interfaceMapOutput struct{ *pulumi.OutputState }

func (Phase1interfaceMapOutput) ElementType 

func (Phase1interfaceMapOutput) ElementType() reflect.Type

func (Phase1interfaceMapOutput) MapIndex 

func (o Phase1interfaceMapOutput) MapIndex(k pulumi.StringInput) Phase1interfaceOutput

func (Phase1interfaceMapOutput) ToPhase1interfaceMapOutput 

func (o Phase1interfaceMapOutput) ToPhase1interfaceMapOutput() Phase1interfaceMapOutput

func (Phase1interfaceMapOutput) ToPhase1interfaceMapOutputWithContext 

func (o Phase1interfaceMapOutput) ToPhase1interfaceMapOutputWithContext(ctx context.Context) Phase1interfaceMapOutput

type Phase1interfaceOutput 

type Phase1interfaceOutput struct{ *pulumi.OutputState }

func (Phase1interfaceOutput) AcctVerify 

func (o Phase1interfaceOutput) AcctVerify() pulumi.StringOutput

Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) AddGwRoute 

func (o Phase1interfaceOutput) AddGwRoute() pulumi.StringOutput

Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) AddRoute 

func (o Phase1interfaceOutput) AddRoute() pulumi.StringOutput

Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`.

func (Phase1interfaceOutput) AggregateMember 

func (o Phase1interfaceOutput) AggregateMember() pulumi.StringOutput

Enable/disable use as an aggregate member. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) AggregateWeight 

func (o Phase1interfaceOutput) AggregateWeight() pulumi.IntOutput

Link weight for aggregate.

func (Phase1interfaceOutput) AssignIp 

func (o Phase1interfaceOutput) AssignIp() pulumi.StringOutput

Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`.

func (Phase1interfaceOutput) AssignIpFrom 

func (o Phase1interfaceOutput) AssignIpFrom() pulumi.StringOutput

Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`.

func (Phase1interfaceOutput) Authmethod 

func (o Phase1interfaceOutput) Authmethod() pulumi.StringOutput

Authentication method. Valid values: `psk`, `signature`.

func (Phase1interfaceOutput) AuthmethodRemote 

func (o Phase1interfaceOutput) AuthmethodRemote() pulumi.StringOutput

Authentication method (remote side). Valid values: `psk`, `signature`.

func (Phase1interfaceOutput) Authpasswd 

func (o Phase1interfaceOutput) Authpasswd() pulumi.StringPtrOutput

XAuth password (max 35 characters).

func (Phase1interfaceOutput) Authusr 

func (o Phase1interfaceOutput) Authusr() pulumi.StringOutput

XAuth user name.

func (Phase1interfaceOutput) Authusrgrp 

func (o Phase1interfaceOutput) Authusrgrp() pulumi.StringOutput

Authentication user group.

func (Phase1interfaceOutput) AutoDiscoveryCrossover 

func (o Phase1interfaceOutput) AutoDiscoveryCrossover() pulumi.StringOutput

Allow/block set-up of short-cut tunnels between different network IDs. Valid values: `allow`, `block`.

func (Phase1interfaceOutput) AutoDiscoveryForwarder 

func (o Phase1interfaceOutput) AutoDiscoveryForwarder() pulumi.StringOutput

Enable/disable forwarding auto-discovery short-cut messages. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) AutoDiscoveryOfferInterval 

func (o Phase1interfaceOutput) AutoDiscoveryOfferInterval() pulumi.IntOutput

Interval between shortcut offer messages in seconds (1 - 300, default = 5).

func (Phase1interfaceOutput) AutoDiscoveryPsk 

func (o Phase1interfaceOutput) AutoDiscoveryPsk() pulumi.StringOutput

Enable/disable use of pre-shared secrets for authentication of auto-discovery tunnels. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) AutoDiscoveryReceiver 

func (o Phase1interfaceOutput) AutoDiscoveryReceiver() pulumi.StringOutput

Enable/disable accepting auto-discovery short-cut messages. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) AutoDiscoverySender 

func (o Phase1interfaceOutput) AutoDiscoverySender() pulumi.StringOutput

Enable/disable sending auto-discovery short-cut messages. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) AutoDiscoveryShortcuts 

func (o Phase1interfaceOutput) AutoDiscoveryShortcuts() pulumi.StringOutput

Control deletion of child short-cut tunnels when the parent tunnel goes down. Valid values: `independent`, `dependent`.

func (Phase1interfaceOutput) AutoNegotiate 

func (o Phase1interfaceOutput) AutoNegotiate() pulumi.StringOutput

Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) AzureAdAutoconnect 

func (o Phase1interfaceOutput) AzureAdAutoconnect() pulumi.StringOutput

Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) BackupGateways 

func (o Phase1interfaceOutput) BackupGateways() Phase1interfaceBackupGatewayArrayOutput

Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below.

func (Phase1interfaceOutput) Banner 

func (o Phase1interfaceOutput) Banner() pulumi.StringPtrOutput

Message that unity client should display after connecting.

func (Phase1interfaceOutput) CertIdValidation 

func (o Phase1interfaceOutput) CertIdValidation() pulumi.StringOutput

Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) CertTrustStore 

func (o Phase1interfaceOutput) CertTrustStore() pulumi.StringOutput

CA certificate trust store. Valid values: `local`, `ems`.

func (Phase1interfaceOutput) Certificates 

func (o Phase1interfaceOutput) Certificates() Phase1interfaceCertificateArrayOutput

The names of up to 4 signed personal certificates. The structure of `certificate` block is documented below.

func (Phase1interfaceOutput) ChildlessIke 

func (o Phase1interfaceOutput) ChildlessIke() pulumi.StringOutput

Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) ClientAutoNegotiate 

func (o Phase1interfaceOutput) ClientAutoNegotiate() pulumi.StringOutput

Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`.

func (Phase1interfaceOutput) ClientKeepAlive 

func (o Phase1interfaceOutput) ClientKeepAlive() pulumi.StringOutput

Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`.

func (Phase1interfaceOutput) Comments 

func (o Phase1interfaceOutput) Comments() pulumi.StringPtrOutput

Comment.

func (Phase1interfaceOutput) DefaultGw 

func (o Phase1interfaceOutput) DefaultGw() pulumi.StringOutput

IPv4 address of default route gateway to use for traffic exiting the interface.

func (Phase1interfaceOutput) DefaultGwPriority 

func (o Phase1interfaceOutput) DefaultGwPriority() pulumi.IntOutput

Priority for default gateway route. A higher priority number signifies a less preferred route.

func (Phase1interfaceOutput) DevId 

func (o Phase1interfaceOutput) DevId() pulumi.StringOutput

Device ID carried by the device ID notification.

func (Phase1interfaceOutput) DevIdNotification 

func (o Phase1interfaceOutput) DevIdNotification() pulumi.StringOutput

Enable/disable device ID notification. Valid values: `disable`, `enable`.

func (Phase1interfaceOutput) Dhcp6RaLinkaddr 

func (o Phase1interfaceOutput) Dhcp6RaLinkaddr() pulumi.StringOutput

Relay agent IPv6 link address to use in DHCP6 requests.

func (Phase1interfaceOutput) DhcpRaGiaddr 

func (o Phase1interfaceOutput) DhcpRaGiaddr() pulumi.StringOutput

Relay agent gateway IP address to use in the giaddr field of DHCP requests.

func (Phase1interfaceOutput) Dhgrp 

func (o Phase1interfaceOutput) Dhgrp() pulumi.StringOutput

DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.

func (Phase1interfaceOutput) DigitalSignatureAuth 

func (o Phase1interfaceOutput) DigitalSignatureAuth() pulumi.StringOutput

Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) Distance 

func (o Phase1interfaceOutput) Distance() pulumi.IntOutput

Distance for routes added by IKE (1 - 255).

func (Phase1interfaceOutput) DnsMode 

func (o Phase1interfaceOutput) DnsMode() pulumi.StringOutput

DNS server mode. Valid values: `manual`, `auto`.

func (Phase1interfaceOutput) Domain 

func (o Phase1interfaceOutput) Domain() pulumi.StringOutput

Instruct unity clients about the default DNS domain.

func (Phase1interfaceOutput) Dpd 

func (o Phase1interfaceOutput) Dpd() pulumi.StringOutput

Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`.

func (Phase1interfaceOutput) DpdRetrycount 

func (o Phase1interfaceOutput) DpdRetrycount() pulumi.IntOutput

Number of DPD retry attempts.

func (Phase1interfaceOutput) DpdRetryinterval 

func (o Phase1interfaceOutput) DpdRetryinterval() pulumi.StringOutput

DPD retry interval.

func (Phase1interfaceOutput) DynamicSortSubtable 

func (o Phase1interfaceOutput) DynamicSortSubtable() pulumi.StringPtrOutput

Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].

func (Phase1interfaceOutput) Eap 

func (o Phase1interfaceOutput) Eap() pulumi.StringOutput

Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) EapCertAuth 

func (o Phase1interfaceOutput) EapCertAuth() pulumi.StringOutput

Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) EapExcludePeergrp 

func (o Phase1interfaceOutput) EapExcludePeergrp() pulumi.StringOutput

Peer group excluded from EAP authentication.

func (Phase1interfaceOutput) EapIdentity 

func (o Phase1interfaceOutput) EapIdentity() pulumi.StringOutput

IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`.

func (Phase1interfaceOutput) ElementType 

func (Phase1interfaceOutput) ElementType() reflect.Type

func (Phase1interfaceOutput) EmsSnCheck 

func (o Phase1interfaceOutput) EmsSnCheck() pulumi.StringOutput

Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) EncapLocalGw4 

func (o Phase1interfaceOutput) EncapLocalGw4() pulumi.StringOutput

Local IPv4 address of GRE/VXLAN tunnel.

func (Phase1interfaceOutput) EncapLocalGw6 

func (o Phase1interfaceOutput) EncapLocalGw6() pulumi.StringOutput

Local IPv6 address of GRE/VXLAN tunnel.

func (Phase1interfaceOutput) EncapRemoteGw4 

func (o Phase1interfaceOutput) EncapRemoteGw4() pulumi.StringOutput

Remote IPv4 address of GRE/VXLAN tunnel.

func (Phase1interfaceOutput) EncapRemoteGw6 

func (o Phase1interfaceOutput) EncapRemoteGw6() pulumi.StringOutput

Remote IPv6 address of GRE/VXLAN tunnel.

func (Phase1interfaceOutput) Encapsulation 

func (o Phase1interfaceOutput) Encapsulation() pulumi.StringOutput

Enable/disable GRE/VXLAN encapsulation.

func (Phase1interfaceOutput) EncapsulationAddress 

func (o Phase1interfaceOutput) EncapsulationAddress() pulumi.StringOutput

Source for GRE/VXLAN tunnel address. Valid values: `ike`, `ipv4`, `ipv6`.

func (Phase1interfaceOutput) EnforceUniqueId 

func (o Phase1interfaceOutput) EnforceUniqueId() pulumi.StringOutput

Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`.

func (Phase1interfaceOutput) Esn 

func (o Phase1interfaceOutput) Esn() pulumi.StringOutput

Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`.

func (Phase1interfaceOutput) ExchangeFgtDeviceId 

func (o Phase1interfaceOutput) ExchangeFgtDeviceId() pulumi.StringOutput

Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) ExchangeInterfaceIp 

func (o Phase1interfaceOutput) ExchangeInterfaceIp() pulumi.StringOutput

Enable/disable exchange of IPsec interface IP address. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) ExchangeIpAddr4 

func (o Phase1interfaceOutput) ExchangeIpAddr4() pulumi.StringOutput

IPv4 address to exchange with peers.

func (Phase1interfaceOutput) ExchangeIpAddr6 

func (o Phase1interfaceOutput) ExchangeIpAddr6() pulumi.StringOutput

IPv6 address to exchange with peers

func (Phase1interfaceOutput) FallbackTcpThreshold 

func (o Phase1interfaceOutput) FallbackTcpThreshold() pulumi.IntOutput

Timeout in seconds before falling back IKE/IPsec traffic to tcp.

func (Phase1interfaceOutput) FecBase 

func (o Phase1interfaceOutput) FecBase() pulumi.IntOutput

Number of base Forward Error Correction packets (1 - 100).

func (Phase1interfaceOutput) FecCodec 

func (o Phase1interfaceOutput) FecCodec() pulumi.IntOutput

ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor).

func (Phase1interfaceOutput) FecCodecString 

func (o Phase1interfaceOutput) FecCodecString() pulumi.StringOutput

Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`.

func (Phase1interfaceOutput) FecEgress 

func (o Phase1interfaceOutput) FecEgress() pulumi.StringOutput

Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) FecHealthCheck 

func (o Phase1interfaceOutput) FecHealthCheck() pulumi.StringOutput

SD-WAN health check.

func (Phase1interfaceOutput) FecIngress 

func (o Phase1interfaceOutput) FecIngress() pulumi.StringOutput

Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) FecMappingProfile 

func (o Phase1interfaceOutput) FecMappingProfile() pulumi.StringOutput

Forward Error Correction (FEC) mapping profile.

func (Phase1interfaceOutput) FecReceiveTimeout 

func (o Phase1interfaceOutput) FecReceiveTimeout() pulumi.IntOutput

Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000).

func (Phase1interfaceOutput) FecRedundant 

func (o Phase1interfaceOutput) FecRedundant() pulumi.IntOutput

Number of redundant Forward Error Correction packets (1 - 100).

func (Phase1interfaceOutput) FecSendTimeout 

func (o Phase1interfaceOutput) FecSendTimeout() pulumi.IntOutput

Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000).

func (Phase1interfaceOutput) FgspSync 

func (o Phase1interfaceOutput) FgspSync() pulumi.StringOutput

Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) ForticlientEnforcement 

func (o Phase1interfaceOutput) ForticlientEnforcement() pulumi.StringOutput

Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) FortinetEsp 

func (o Phase1interfaceOutput) FortinetEsp() pulumi.StringOutput

Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) Fragmentation 

func (o Phase1interfaceOutput) Fragmentation() pulumi.StringOutput

Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) FragmentationMtu 

func (o Phase1interfaceOutput) FragmentationMtu() pulumi.IntOutput

IKE fragmentation MTU (500 - 16000).

func (Phase1interfaceOutput) GetAllTables 

func (o Phase1interfaceOutput) GetAllTables() pulumi.StringPtrOutput

Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.

func (Phase1interfaceOutput) GroupAuthentication 

func (o Phase1interfaceOutput) GroupAuthentication() pulumi.StringOutput

Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) GroupAuthenticationSecret 

func (o Phase1interfaceOutput) GroupAuthenticationSecret() pulumi.StringPtrOutput

Password for IKEv2 IDi group authentication. (ASCII string or hexadecimal indicated by a leading 0x.)

func (Phase1interfaceOutput) HaSyncEspSeqno 

func (o Phase1interfaceOutput) HaSyncEspSeqno() pulumi.StringOutput

Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) IdleTimeout 

func (o Phase1interfaceOutput) IdleTimeout() pulumi.StringOutput

Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) IdleTimeoutinterval 

func (o Phase1interfaceOutput) IdleTimeoutinterval() pulumi.IntOutput

IPsec tunnel idle timeout in minutes (5 - 43200).

func (Phase1interfaceOutput) IkeVersion 

func (o Phase1interfaceOutput) IkeVersion() pulumi.StringOutput

IKE protocol version. Valid values: `1`, `2`.

func (Phase1interfaceOutput) InboundDscpCopy 

func (o Phase1interfaceOutput) InboundDscpCopy() pulumi.StringOutput

Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) IncludeLocalLan 

func (o Phase1interfaceOutput) IncludeLocalLan() pulumi.StringOutput

Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`.

func (Phase1interfaceOutput) Interface 

func (o Phase1interfaceOutput) Interface() pulumi.StringOutput

Local physical, aggregate, or VLAN outgoing interface.

func (Phase1interfaceOutput) InternalDomainLists 

func (o Phase1interfaceOutput) InternalDomainLists() Phase1interfaceInternalDomainListArrayOutput

One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below.

func (Phase1interfaceOutput) IpDelayInterval 

func (o Phase1interfaceOutput) IpDelayInterval() pulumi.IntOutput

IP address reuse delay interval in seconds (0 - 28800).

func (Phase1interfaceOutput) IpFragmentation 

func (o Phase1interfaceOutput) IpFragmentation() pulumi.StringOutput

Determine whether IP packets are fragmented before or after IPsec encapsulation. Valid values: `pre-encapsulation`, `post-encapsulation`.

func (Phase1interfaceOutput) IpVersion 

func (o Phase1interfaceOutput) IpVersion() pulumi.StringOutput

IP version to use for VPN interface. Valid values: `4`, `6`.

func (Phase1interfaceOutput) Ipv4DnsServer1 

func (o Phase1interfaceOutput) Ipv4DnsServer1() pulumi.StringOutput

IPv4 DNS server 1.

func (Phase1interfaceOutput) Ipv4DnsServer2 

func (o Phase1interfaceOutput) Ipv4DnsServer2() pulumi.StringOutput

IPv4 DNS server 2.

func (Phase1interfaceOutput) Ipv4DnsServer3 

func (o Phase1interfaceOutput) Ipv4DnsServer3() pulumi.StringOutput

IPv4 DNS server 3.

func (Phase1interfaceOutput) Ipv4EndIp 

func (o Phase1interfaceOutput) Ipv4EndIp() pulumi.StringOutput

End of IPv4 range.

func (Phase1interfaceOutput) Ipv4ExcludeRanges 

func (o Phase1interfaceOutput) Ipv4ExcludeRanges() Phase1interfaceIpv4ExcludeRangeArrayOutput

Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below.

func (Phase1interfaceOutput) Ipv4Name 

func (o Phase1interfaceOutput) Ipv4Name() pulumi.StringOutput

IPv4 address name.

func (Phase1interfaceOutput) Ipv4Netmask 

func (o Phase1interfaceOutput) Ipv4Netmask() pulumi.StringOutput

IPv4 Netmask.

func (Phase1interfaceOutput) Ipv4SplitExclude 

func (o Phase1interfaceOutput) Ipv4SplitExclude() pulumi.StringOutput

IPv4 subnets that should not be sent over the IPsec tunnel.

func (Phase1interfaceOutput) Ipv4SplitInclude 

func (o Phase1interfaceOutput) Ipv4SplitInclude() pulumi.StringOutput

IPv4 split-include subnets.

func (Phase1interfaceOutput) Ipv4StartIp 

func (o Phase1interfaceOutput) Ipv4StartIp() pulumi.StringOutput

Start of IPv4 range.

func (Phase1interfaceOutput) Ipv4WinsServer1 

func (o Phase1interfaceOutput) Ipv4WinsServer1() pulumi.StringOutput

WINS server 1.

func (Phase1interfaceOutput) Ipv4WinsServer2 

func (o Phase1interfaceOutput) Ipv4WinsServer2() pulumi.StringOutput

WINS server 2.

func (Phase1interfaceOutput) Ipv6DnsServer1 

func (o Phase1interfaceOutput) Ipv6DnsServer1() pulumi.StringOutput

IPv6 DNS server 1.

func (Phase1interfaceOutput) Ipv6DnsServer2 

func (o Phase1interfaceOutput) Ipv6DnsServer2() pulumi.StringOutput

IPv6 DNS server 2.

func (Phase1interfaceOutput) Ipv6DnsServer3 

func (o Phase1interfaceOutput) Ipv6DnsServer3() pulumi.StringOutput

IPv6 DNS server 3.

func (Phase1interfaceOutput) Ipv6EndIp 

func (o Phase1interfaceOutput) Ipv6EndIp() pulumi.StringOutput

End of IPv6 range.

func (Phase1interfaceOutput) Ipv6ExcludeRanges 

func (o Phase1interfaceOutput) Ipv6ExcludeRanges() Phase1interfaceIpv6ExcludeRangeArrayOutput

Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below.

func (Phase1interfaceOutput) Ipv6Name 

func (o Phase1interfaceOutput) Ipv6Name() pulumi.StringOutput

IPv6 address name.

func (Phase1interfaceOutput) Ipv6Prefix 

func (o Phase1interfaceOutput) Ipv6Prefix() pulumi.IntOutput

IPv6 prefix.

func (Phase1interfaceOutput) Ipv6SplitExclude 

func (o Phase1interfaceOutput) Ipv6SplitExclude() pulumi.StringOutput

IPv6 subnets that should not be sent over the IPsec tunnel.

func (Phase1interfaceOutput) Ipv6SplitInclude 

func (o Phase1interfaceOutput) Ipv6SplitInclude() pulumi.StringOutput

IPv6 split-include subnets.

func (Phase1interfaceOutput) Ipv6StartIp 

func (o Phase1interfaceOutput) Ipv6StartIp() pulumi.StringOutput

Start of IPv6 range.

func (Phase1interfaceOutput) Keepalive 

func (o Phase1interfaceOutput) Keepalive() pulumi.IntOutput

NAT-T keep alive interval.

func (Phase1interfaceOutput) Keylife 

func (o Phase1interfaceOutput) Keylife() pulumi.IntOutput

Time to wait in seconds before phase 1 encryption key expires.

func (Phase1interfaceOutput) Kms 

func (o Phase1interfaceOutput) Kms() pulumi.StringOutput

Key Management Services server.

func (Phase1interfaceOutput) LinkCost 

func (o Phase1interfaceOutput) LinkCost() pulumi.IntOutput

VPN tunnel underlay link cost.

func (Phase1interfaceOutput) LocalGw 

func (o Phase1interfaceOutput) LocalGw() pulumi.StringOutput

IPv4 address of the local gateway's external interface.

func (Phase1interfaceOutput) LocalGw6 

func (o Phase1interfaceOutput) LocalGw6() pulumi.StringOutput

IPv6 address of the local gateway's external interface.

func (Phase1interfaceOutput) Localid 

func (o Phase1interfaceOutput) Localid() pulumi.StringOutput

Local ID.

func (Phase1interfaceOutput) LocalidType 

func (o Phase1interfaceOutput) LocalidType() pulumi.StringOutput

Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`.

func (Phase1interfaceOutput) LoopbackAsymroute 

func (o Phase1interfaceOutput) LoopbackAsymroute() pulumi.StringOutput

Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) MeshSelectorType 

func (o Phase1interfaceOutput) MeshSelectorType() pulumi.StringOutput

Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`.

func (Phase1interfaceOutput) Mode 

func (o Phase1interfaceOutput) Mode() pulumi.StringOutput

The ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`.

func (Phase1interfaceOutput) ModeCfg 

func (o Phase1interfaceOutput) ModeCfg() pulumi.StringOutput

Enable/disable configuration method. Valid values: `disable`, `enable`.

func (Phase1interfaceOutput) ModeCfgAllowClientSelector 

func (o Phase1interfaceOutput) ModeCfgAllowClientSelector() pulumi.StringOutput

Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`.

func (Phase1interfaceOutput) Monitor 

func (o Phase1interfaceOutput) Monitor() pulumi.StringOutput

IPsec interface as backup for primary interface.

func (Phase1interfaceOutput) MonitorHoldDownDelay 

func (o Phase1interfaceOutput) MonitorHoldDownDelay() pulumi.IntOutput

Time to wait in seconds before recovery once primary re-establishes.

func (Phase1interfaceOutput) MonitorHoldDownTime 

func (o Phase1interfaceOutput) MonitorHoldDownTime() pulumi.StringOutput

Time of day at which to fail back to primary after it re-establishes.

func (Phase1interfaceOutput) MonitorHoldDownType 

func (o Phase1interfaceOutput) MonitorHoldDownType() pulumi.StringOutput

Recovery time method when primary interface re-establishes. Valid values: `immediate`, `delay`, `time`.

func (Phase1interfaceOutput) MonitorHoldDownWeekday 

func (o Phase1interfaceOutput) MonitorHoldDownWeekday() pulumi.StringOutput

Day of the week to recover once primary re-establishes. Valid values: `everyday`, `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`.

func (Phase1interfaceOutput) MonitorMin 

func (o Phase1interfaceOutput) MonitorMin() pulumi.IntOutput

Minimum number of links to become degraded before activating this interface. Zero (0) means all links must be down before activating this interface.

func (Phase1interfaceOutput) Name 

func (o Phase1interfaceOutput) Name() pulumi.StringOutput

IPsec remote gateway name.

func (Phase1interfaceOutput) Nattraversal 

func (o Phase1interfaceOutput) Nattraversal() pulumi.StringOutput

Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`.

func (Phase1interfaceOutput) NegotiateTimeout 

func (o Phase1interfaceOutput) NegotiateTimeout() pulumi.IntOutput

IKE SA negotiation timeout in seconds (1 - 300).

func (Phase1interfaceOutput) NetDevice 

func (o Phase1interfaceOutput) NetDevice() pulumi.StringOutput

Enable/disable kernel device creation. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) NetworkId 

func (o Phase1interfaceOutput) NetworkId() pulumi.IntOutput

VPN gateway network ID.

func (Phase1interfaceOutput) NetworkOverlay 

func (o Phase1interfaceOutput) NetworkOverlay() pulumi.StringOutput

Enable/disable network overlays. Valid values: `disable`, `enable`.

func (Phase1interfaceOutput) NpuOffload 

func (o Phase1interfaceOutput) NpuOffload() pulumi.StringOutput

Enable/disable offloading NPU. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) PacketRedistribution 

func (o Phase1interfaceOutput) PacketRedistribution() pulumi.StringOutput

Enable/disable packet distribution (RPS) on the IPsec interface. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) PassiveMode 

func (o Phase1interfaceOutput) PassiveMode() pulumi.StringOutput

Enable/disable IPsec passive mode for static tunnels. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) Peer 

func (o Phase1interfaceOutput) Peer() pulumi.StringOutput

Accept this peer certificate.

func (Phase1interfaceOutput) Peergrp 

func (o Phase1interfaceOutput) Peergrp() pulumi.StringOutput

Accept this peer certificate group.

func (Phase1interfaceOutput) Peerid 

func (o Phase1interfaceOutput) Peerid() pulumi.StringOutput

Accept this peer identity.

func (Phase1interfaceOutput) Peertype 

func (o Phase1interfaceOutput) Peertype() pulumi.StringOutput

Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`.

func (Phase1interfaceOutput) Ppk 

func (o Phase1interfaceOutput) Ppk() pulumi.StringOutput

Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`.

func (Phase1interfaceOutput) PpkIdentity 

func (o Phase1interfaceOutput) PpkIdentity() pulumi.StringOutput

IKEv2 Postquantum Preshared Key Identity.

func (Phase1interfaceOutput) PpkSecret 

func (o Phase1interfaceOutput) PpkSecret() pulumi.StringPtrOutput

IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x).

func (Phase1interfaceOutput) Priority 

func (o Phase1interfaceOutput) Priority() pulumi.IntOutput

Priority for routes added by IKE (0 - 4294967295).

func (Phase1interfaceOutput) Proposal 

func (o Phase1interfaceOutput) Proposal() pulumi.StringOutput

Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.

func (Phase1interfaceOutput) Psksecret 

func (o Phase1interfaceOutput) Psksecret() pulumi.StringPtrOutput

Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).

func (Phase1interfaceOutput) PsksecretRemote 

func (o Phase1interfaceOutput) PsksecretRemote() pulumi.StringPtrOutput

Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).

func (Phase1interfaceOutput) Qkd 

func (o Phase1interfaceOutput) Qkd() pulumi.StringOutput

Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`.

func (Phase1interfaceOutput) QkdProfile 

func (o Phase1interfaceOutput) QkdProfile() pulumi.StringOutput

Quantum Key Distribution (QKD) server profile.

func (Phase1interfaceOutput) Reauth 

func (o Phase1interfaceOutput) Reauth() pulumi.StringOutput

Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`.

func (Phase1interfaceOutput) Rekey 

func (o Phase1interfaceOutput) Rekey() pulumi.StringOutput

Enable/disable phase1 rekey. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) RemoteGw 

func (o Phase1interfaceOutput) RemoteGw() pulumi.StringOutput

IPv4 address of the remote gateway's external interface.

func (Phase1interfaceOutput) RemoteGw6 

func (o Phase1interfaceOutput) RemoteGw6() pulumi.StringOutput

IPv6 address of the remote gateway's external interface.

func (Phase1interfaceOutput) RemotegwDdns 

func (o Phase1interfaceOutput) RemotegwDdns() pulumi.StringOutput

Domain name of remote gateway (eg. name.DDNS.com).

func (Phase1interfaceOutput) RsaSignatureFormat 

func (o Phase1interfaceOutput) RsaSignatureFormat() pulumi.StringOutput

Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`.

func (Phase1interfaceOutput) RsaSignatureHashOverride 

func (o Phase1interfaceOutput) RsaSignatureHashOverride() pulumi.StringOutput

Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) SavePassword 

func (o Phase1interfaceOutput) SavePassword() pulumi.StringOutput

Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`.

func (Phase1interfaceOutput) SendCertChain 

func (o Phase1interfaceOutput) SendCertChain() pulumi.StringOutput

Enable/disable sending certificate chain. Valid values: `enable`, `disable`.

func (Phase1interfaceOutput) SignatureHashAlg 

func (o Phase1interfaceOutput) SignatureHashAlg() pulumi.StringOutput

Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`.

func (Phase1interfaceOutput) SplitIncludeService 

func (o Phase1interfaceOutput) SplitIncludeService() pulumi.StringOutput

Split-include services.

func (Phase1interfaceOutput) SuiteB 

func (o Phase1interfaceOutput) SuiteB() pulumi.StringOutput

Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`.

func (Phase1interfaceOutput) ToPhase1interfaceOutput 

func (o Phase1interfaceOutput) ToPhase1interfaceOutput() Phase1interfaceOutput

func (Phase1interfaceOutput) ToPhase1interfaceOutputWithContext 

func (o Phase1interfaceOutput) ToPhase1interfaceOutputWithContext(ctx context.Context) Phase1interfaceOutput

func (Phase1interfaceOutput) Transport 

func (o Phase1interfaceOutput) Transport() pulumi.StringOutput

Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`.

func (Phase1interfaceOutput) TunnelSearch 

func (o Phase1interfaceOutput) TunnelSearch() pulumi.StringOutput

Tunnel search method for when the interface is shared. Valid values: `selectors`, `nexthop`.

func (Phase1interfaceOutput) Type 

func (o Phase1interfaceOutput) Type() pulumi.StringOutput

Remote gateway type. Valid values: `static`, `dynamic`, `ddns`.

func (Phase1interfaceOutput) UnitySupport 

func (o Phase1interfaceOutput) UnitySupport() pulumi.StringOutput

Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`.

func (Phase1interfaceOutput) Usrgrp 

func (o Phase1interfaceOutput) Usrgrp() pulumi.StringOutput

User group name for dialup peers.

func (Phase1interfaceOutput) Vdomparam 

func (o Phase1interfaceOutput) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

func (Phase1interfaceOutput) Vni 

func (o Phase1interfaceOutput) Vni() pulumi.IntOutput

VNI of VXLAN tunnel.

func (Phase1interfaceOutput) WizardType 

func (o Phase1interfaceOutput) WizardType() pulumi.StringOutput

GUI VPN Wizard Type.

func (Phase1interfaceOutput) Xauthtype 

func (o Phase1interfaceOutput) Xauthtype() pulumi.StringOutput

XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`.

type Phase1interfaceState 

type Phase1interfaceState struct {
	// Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`.
	AcctVerify pulumi.StringPtrInput
	// Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`.
	AddGwRoute pulumi.StringPtrInput
	// Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`.
	AddRoute pulumi.StringPtrInput
	// Enable/disable use as an aggregate member. Valid values: `enable`, `disable`.
	AggregateMember pulumi.StringPtrInput
	// Link weight for aggregate.
	AggregateWeight pulumi.IntPtrInput
	// Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`.
	AssignIp pulumi.StringPtrInput
	// Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`.
	AssignIpFrom pulumi.StringPtrInput
	// Authentication method. Valid values: `psk`, `signature`.
	Authmethod pulumi.StringPtrInput
	// Authentication method (remote side). Valid values: `psk`, `signature`.
	AuthmethodRemote pulumi.StringPtrInput
	// XAuth password (max 35 characters).
	Authpasswd pulumi.StringPtrInput
	// XAuth user name.
	Authusr pulumi.StringPtrInput
	// Authentication user group.
	Authusrgrp pulumi.StringPtrInput
	// Allow/block set-up of short-cut tunnels between different network IDs. Valid values: `allow`, `block`.
	AutoDiscoveryCrossover pulumi.StringPtrInput
	// Enable/disable forwarding auto-discovery short-cut messages. Valid values: `enable`, `disable`.
	AutoDiscoveryForwarder pulumi.StringPtrInput
	// Interval between shortcut offer messages in seconds (1 - 300, default = 5).
	AutoDiscoveryOfferInterval pulumi.IntPtrInput
	// Enable/disable use of pre-shared secrets for authentication of auto-discovery tunnels. Valid values: `enable`, `disable`.
	AutoDiscoveryPsk pulumi.StringPtrInput
	// Enable/disable accepting auto-discovery short-cut messages. Valid values: `enable`, `disable`.
	AutoDiscoveryReceiver pulumi.StringPtrInput
	// Enable/disable sending auto-discovery short-cut messages. Valid values: `enable`, `disable`.
	AutoDiscoverySender pulumi.StringPtrInput
	// Control deletion of child short-cut tunnels when the parent tunnel goes down. Valid values: `independent`, `dependent`.
	AutoDiscoveryShortcuts pulumi.StringPtrInput
	// Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`.
	AutoNegotiate pulumi.StringPtrInput
	// Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`.
	AzureAdAutoconnect pulumi.StringPtrInput
	// Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below.
	BackupGateways Phase1interfaceBackupGatewayArrayInput
	// Message that unity client should display after connecting.
	Banner pulumi.StringPtrInput
	// Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`.
	CertIdValidation pulumi.StringPtrInput
	// CA certificate trust store. Valid values: `local`, `ems`.
	CertTrustStore pulumi.StringPtrInput
	// The names of up to 4 signed personal certificates. The structure of `certificate` block is documented below.
	Certificates Phase1interfaceCertificateArrayInput
	// Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`.
	ChildlessIke pulumi.StringPtrInput
	// Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`.
	ClientAutoNegotiate pulumi.StringPtrInput
	// Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`.
	ClientKeepAlive pulumi.StringPtrInput
	// Comment.
	Comments pulumi.StringPtrInput
	// IPv4 address of default route gateway to use for traffic exiting the interface.
	DefaultGw pulumi.StringPtrInput
	// Priority for default gateway route. A higher priority number signifies a less preferred route.
	DefaultGwPriority pulumi.IntPtrInput
	// Device ID carried by the device ID notification.
	DevId pulumi.StringPtrInput
	// Enable/disable device ID notification. Valid values: `disable`, `enable`.
	DevIdNotification pulumi.StringPtrInput
	// Relay agent IPv6 link address to use in DHCP6 requests.
	Dhcp6RaLinkaddr pulumi.StringPtrInput
	// Relay agent gateway IP address to use in the giaddr field of DHCP requests.
	DhcpRaGiaddr pulumi.StringPtrInput
	// DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
	Dhgrp pulumi.StringPtrInput
	// Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`.
	DigitalSignatureAuth pulumi.StringPtrInput
	// Distance for routes added by IKE (1 - 255).
	Distance pulumi.IntPtrInput
	// DNS server mode. Valid values: `manual`, `auto`.
	DnsMode pulumi.StringPtrInput
	// Instruct unity clients about the default DNS domain.
	Domain pulumi.StringPtrInput
	// Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`.
	Dpd pulumi.StringPtrInput
	// Number of DPD retry attempts.
	DpdRetrycount pulumi.IntPtrInput
	// DPD retry interval.
	DpdRetryinterval pulumi.StringPtrInput
	// Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
	DynamicSortSubtable pulumi.StringPtrInput
	// Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`.
	Eap pulumi.StringPtrInput
	// Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`.
	EapCertAuth pulumi.StringPtrInput
	// Peer group excluded from EAP authentication.
	EapExcludePeergrp pulumi.StringPtrInput
	// IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`.
	EapIdentity pulumi.StringPtrInput
	// Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`.
	EmsSnCheck pulumi.StringPtrInput
	// Local IPv4 address of GRE/VXLAN tunnel.
	EncapLocalGw4 pulumi.StringPtrInput
	// Local IPv6 address of GRE/VXLAN tunnel.
	EncapLocalGw6 pulumi.StringPtrInput
	// Remote IPv4 address of GRE/VXLAN tunnel.
	EncapRemoteGw4 pulumi.StringPtrInput
	// Remote IPv6 address of GRE/VXLAN tunnel.
	EncapRemoteGw6 pulumi.StringPtrInput
	// Enable/disable GRE/VXLAN encapsulation.
	Encapsulation pulumi.StringPtrInput
	// Source for GRE/VXLAN tunnel address. Valid values: `ike`, `ipv4`, `ipv6`.
	EncapsulationAddress pulumi.StringPtrInput
	// Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`.
	EnforceUniqueId pulumi.StringPtrInput
	// Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`.
	Esn pulumi.StringPtrInput
	// Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`.
	ExchangeFgtDeviceId pulumi.StringPtrInput
	// Enable/disable exchange of IPsec interface IP address. Valid values: `enable`, `disable`.
	ExchangeInterfaceIp pulumi.StringPtrInput
	// IPv4 address to exchange with peers.
	ExchangeIpAddr4 pulumi.StringPtrInput
	// IPv6 address to exchange with peers
	ExchangeIpAddr6 pulumi.StringPtrInput
	// Timeout in seconds before falling back IKE/IPsec traffic to tcp.
	FallbackTcpThreshold pulumi.IntPtrInput
	// Number of base Forward Error Correction packets (1 - 100).
	FecBase pulumi.IntPtrInput
	// ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor).
	FecCodec pulumi.IntPtrInput
	// Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`.
	FecCodecString pulumi.StringPtrInput
	// Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`.
	FecEgress pulumi.StringPtrInput
	// SD-WAN health check.
	FecHealthCheck pulumi.StringPtrInput
	// Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`.
	FecIngress pulumi.StringPtrInput
	// Forward Error Correction (FEC) mapping profile.
	FecMappingProfile pulumi.StringPtrInput
	// Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000).
	FecReceiveTimeout pulumi.IntPtrInput
	// Number of redundant Forward Error Correction packets (1 - 100).
	FecRedundant pulumi.IntPtrInput
	// Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000).
	FecSendTimeout pulumi.IntPtrInput
	// Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`.
	FgspSync pulumi.StringPtrInput
	// Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`.
	ForticlientEnforcement pulumi.StringPtrInput
	// Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`.
	FortinetEsp pulumi.StringPtrInput
	// Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`.
	Fragmentation pulumi.StringPtrInput
	// IKE fragmentation MTU (500 - 16000).
	FragmentationMtu pulumi.IntPtrInput
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrInput
	// Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`.
	GroupAuthentication pulumi.StringPtrInput
	// Password for IKEv2 IDi group authentication.  (ASCII string or hexadecimal indicated by a leading 0x.)
	GroupAuthenticationSecret pulumi.StringPtrInput
	// Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`.
	HaSyncEspSeqno pulumi.StringPtrInput
	// Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`.
	IdleTimeout pulumi.StringPtrInput
	// IPsec tunnel idle timeout in minutes (5 - 43200).
	IdleTimeoutinterval pulumi.IntPtrInput
	// IKE protocol version. Valid values: `1`, `2`.
	IkeVersion pulumi.StringPtrInput
	// Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`.
	InboundDscpCopy pulumi.StringPtrInput
	// Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`.
	IncludeLocalLan pulumi.StringPtrInput
	// Local physical, aggregate, or VLAN outgoing interface.
	Interface pulumi.StringPtrInput
	// One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below.
	InternalDomainLists Phase1interfaceInternalDomainListArrayInput
	// IP address reuse delay interval in seconds (0 - 28800).
	IpDelayInterval pulumi.IntPtrInput
	// Determine whether IP packets are fragmented before or after IPsec encapsulation. Valid values: `pre-encapsulation`, `post-encapsulation`.
	IpFragmentation pulumi.StringPtrInput
	// IP version to use for VPN interface. Valid values: `4`, `6`.
	IpVersion pulumi.StringPtrInput
	// IPv4 DNS server 1.
	Ipv4DnsServer1 pulumi.StringPtrInput
	// IPv4 DNS server 2.
	Ipv4DnsServer2 pulumi.StringPtrInput
	// IPv4 DNS server 3.
	Ipv4DnsServer3 pulumi.StringPtrInput
	// End of IPv4 range.
	Ipv4EndIp pulumi.StringPtrInput
	// Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below.
	Ipv4ExcludeRanges Phase1interfaceIpv4ExcludeRangeArrayInput
	// IPv4 address name.
	Ipv4Name pulumi.StringPtrInput
	// IPv4 Netmask.
	Ipv4Netmask pulumi.StringPtrInput
	// IPv4 subnets that should not be sent over the IPsec tunnel.
	Ipv4SplitExclude pulumi.StringPtrInput
	// IPv4 split-include subnets.
	Ipv4SplitInclude pulumi.StringPtrInput
	// Start of IPv4 range.
	Ipv4StartIp pulumi.StringPtrInput
	// WINS server 1.
	Ipv4WinsServer1 pulumi.StringPtrInput
	// WINS server 2.
	Ipv4WinsServer2 pulumi.StringPtrInput
	// IPv6 DNS server 1.
	Ipv6DnsServer1 pulumi.StringPtrInput
	// IPv6 DNS server 2.
	Ipv6DnsServer2 pulumi.StringPtrInput
	// IPv6 DNS server 3.
	Ipv6DnsServer3 pulumi.StringPtrInput
	// End of IPv6 range.
	Ipv6EndIp pulumi.StringPtrInput
	// Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below.
	Ipv6ExcludeRanges Phase1interfaceIpv6ExcludeRangeArrayInput
	// IPv6 address name.
	Ipv6Name pulumi.StringPtrInput
	// IPv6 prefix.
	Ipv6Prefix pulumi.IntPtrInput
	// IPv6 subnets that should not be sent over the IPsec tunnel.
	Ipv6SplitExclude pulumi.StringPtrInput
	// IPv6 split-include subnets.
	Ipv6SplitInclude pulumi.StringPtrInput
	// Start of IPv6 range.
	Ipv6StartIp pulumi.StringPtrInput
	// NAT-T keep alive interval.
	Keepalive pulumi.IntPtrInput
	// Time to wait in seconds before phase 1 encryption key expires.
	Keylife pulumi.IntPtrInput
	// Key Management Services server.
	Kms pulumi.StringPtrInput
	// VPN tunnel underlay link cost.
	LinkCost pulumi.IntPtrInput
	// IPv4 address of the local gateway's external interface.
	LocalGw pulumi.StringPtrInput
	// IPv6 address of the local gateway's external interface.
	LocalGw6 pulumi.StringPtrInput
	// Local ID.
	Localid pulumi.StringPtrInput
	// Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`.
	LocalidType pulumi.StringPtrInput
	// Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`.
	LoopbackAsymroute pulumi.StringPtrInput
	// Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`.
	MeshSelectorType pulumi.StringPtrInput
	// The ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`.
	Mode pulumi.StringPtrInput
	// Enable/disable configuration method. Valid values: `disable`, `enable`.
	ModeCfg pulumi.StringPtrInput
	// Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`.
	ModeCfgAllowClientSelector pulumi.StringPtrInput
	// IPsec interface as backup for primary interface.
	Monitor pulumi.StringPtrInput
	// Time to wait in seconds before recovery once primary re-establishes.
	MonitorHoldDownDelay pulumi.IntPtrInput
	// Time of day at which to fail back to primary after it re-establishes.
	MonitorHoldDownTime pulumi.StringPtrInput
	// Recovery time method when primary interface re-establishes. Valid values: `immediate`, `delay`, `time`.
	MonitorHoldDownType pulumi.StringPtrInput
	// Day of the week to recover once primary re-establishes. Valid values: `everyday`, `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`.
	MonitorHoldDownWeekday pulumi.StringPtrInput
	// Minimum number of links to become degraded before activating this interface.  Zero (0) means all links must be down before activating this interface.
	MonitorMin pulumi.IntPtrInput
	// IPsec remote gateway name.
	Name pulumi.StringPtrInput
	// Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`.
	Nattraversal pulumi.StringPtrInput
	// IKE SA negotiation timeout in seconds (1 - 300).
	NegotiateTimeout pulumi.IntPtrInput
	// Enable/disable kernel device creation. Valid values: `enable`, `disable`.
	NetDevice pulumi.StringPtrInput
	// VPN gateway network ID.
	NetworkId pulumi.IntPtrInput
	// Enable/disable network overlays. Valid values: `disable`, `enable`.
	NetworkOverlay pulumi.StringPtrInput
	// Enable/disable offloading NPU. Valid values: `enable`, `disable`.
	NpuOffload pulumi.StringPtrInput
	// Enable/disable packet distribution (RPS) on the IPsec interface. Valid values: `enable`, `disable`.
	PacketRedistribution pulumi.StringPtrInput
	// Enable/disable IPsec passive mode for static tunnels. Valid values: `enable`, `disable`.
	PassiveMode pulumi.StringPtrInput
	// Accept this peer certificate.
	Peer pulumi.StringPtrInput
	// Accept this peer certificate group.
	Peergrp pulumi.StringPtrInput
	// Accept this peer identity.
	Peerid pulumi.StringPtrInput
	// Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`.
	Peertype pulumi.StringPtrInput
	// Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`.
	Ppk pulumi.StringPtrInput
	// IKEv2 Postquantum Preshared Key Identity.
	PpkIdentity pulumi.StringPtrInput
	// IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x).
	PpkSecret pulumi.StringPtrInput
	// Priority for routes added by IKE (0 - 4294967295).
	Priority pulumi.IntPtrInput
	// Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
	Proposal pulumi.StringPtrInput
	// Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
	Psksecret pulumi.StringPtrInput
	// Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
	PsksecretRemote pulumi.StringPtrInput
	// Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`.
	Qkd pulumi.StringPtrInput
	// Quantum Key Distribution (QKD) server profile.
	QkdProfile pulumi.StringPtrInput
	// Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`.
	Reauth pulumi.StringPtrInput
	// Enable/disable phase1 rekey. Valid values: `enable`, `disable`.
	Rekey pulumi.StringPtrInput
	// IPv4 address of the remote gateway's external interface.
	RemoteGw pulumi.StringPtrInput
	// IPv6 address of the remote gateway's external interface.
	RemoteGw6 pulumi.StringPtrInput
	// Domain name of remote gateway (eg. name.DDNS.com).
	RemotegwDdns pulumi.StringPtrInput
	// Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`.
	RsaSignatureFormat pulumi.StringPtrInput
	// Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`.
	RsaSignatureHashOverride pulumi.StringPtrInput
	// Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`.
	SavePassword pulumi.StringPtrInput
	// Enable/disable sending certificate chain. Valid values: `enable`, `disable`.
	SendCertChain pulumi.StringPtrInput
	// Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`.
	SignatureHashAlg pulumi.StringPtrInput
	// Split-include services.
	SplitIncludeService pulumi.StringPtrInput
	// Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`.
	SuiteB pulumi.StringPtrInput
	// Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`.
	Transport pulumi.StringPtrInput
	// Tunnel search method for when the interface is shared. Valid values: `selectors`, `nexthop`.
	TunnelSearch pulumi.StringPtrInput
	// Remote gateway type. Valid values: `static`, `dynamic`, `ddns`.
	Type pulumi.StringPtrInput
	// Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`.
	UnitySupport pulumi.StringPtrInput
	// User group name for dialup peers.
	Usrgrp pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
	// VNI of VXLAN tunnel.
	Vni pulumi.IntPtrInput
	// GUI VPN Wizard Type.
	WizardType pulumi.StringPtrInput
	// XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`.
	Xauthtype pulumi.StringPtrInput
}

func (Phase1interfaceState) ElementType 

func (Phase1interfaceState) ElementType() reflect.Type

type Phase2 

type Phase2 struct {
	pulumi.CustomResourceState

	// Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`.
	AddRoute pulumi.StringOutput `pulumi:"addRoute"`
	// Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`.
	AutoNegotiate pulumi.StringOutput `pulumi:"autoNegotiate"`
	// Comment.
	Comments pulumi.StringPtrOutput `pulumi:"comments"`
	// Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`.
	DhcpIpsec pulumi.StringOutput `pulumi:"dhcpIpsec"`
	// Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
	Dhgrp pulumi.StringOutput `pulumi:"dhgrp"`
	// Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`.
	Diffserv pulumi.StringOutput `pulumi:"diffserv"`
	// DSCP value to be applied to the IPsec tunnel outer IP header.
	Diffservcode pulumi.StringOutput `pulumi:"diffservcode"`
	// Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`.
	DstAddrType pulumi.StringOutput `pulumi:"dstAddrType"`
	// Remote proxy ID IPv4 end.
	DstEndIp pulumi.StringOutput `pulumi:"dstEndIp"`
	// Remote proxy ID IPv6 end.
	DstEndIp6 pulumi.StringOutput `pulumi:"dstEndIp6"`
	// Remote proxy ID name.
	DstName pulumi.StringOutput `pulumi:"dstName"`
	// Remote proxy ID name.
	DstName6 pulumi.StringOutput `pulumi:"dstName6"`
	// Quick mode destination port (1 - 65535 or 0 for all).
	DstPort pulumi.IntOutput `pulumi:"dstPort"`
	// Remote proxy ID IPv4 start.
	DstStartIp pulumi.StringOutput `pulumi:"dstStartIp"`
	// Remote proxy ID IPv6 start.
	DstStartIp6 pulumi.StringOutput `pulumi:"dstStartIp6"`
	// Remote proxy ID IPv4 subnet.
	DstSubnet pulumi.StringOutput `pulumi:"dstSubnet"`
	// Remote proxy ID IPv6 subnet.
	DstSubnet6 pulumi.StringOutput `pulumi:"dstSubnet6"`
	// ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`.
	Encapsulation pulumi.StringOutput `pulumi:"encapsulation"`
	// Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`.
	InboundDscpCopy pulumi.StringOutput `pulumi:"inboundDscpCopy"`
	// Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`.
	InitiatorTsNarrow pulumi.StringOutput `pulumi:"initiatorTsNarrow"`
	// Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`.
	Ipv4Df pulumi.StringOutput `pulumi:"ipv4Df"`
	// Enable/disable keep alive. Valid values: `enable`, `disable`.
	Keepalive pulumi.StringOutput `pulumi:"keepalive"`
	// Keylife type. Valid values: `seconds`, `kbs`, `both`.
	KeylifeType pulumi.StringOutput `pulumi:"keylifeType"`
	// Phase2 key life in number of bytes of traffic (5120 - 4294967295).
	Keylifekbs pulumi.IntOutput `pulumi:"keylifekbs"`
	// Phase2 key life in time in seconds (120 - 172800).
	Keylifeseconds pulumi.IntOutput `pulumi:"keylifeseconds"`
	// Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`.
	L2tp pulumi.StringOutput `pulumi:"l2tp"`
	// IPsec tunnel name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Enable/disable PFS feature. Valid values: `enable`, `disable`.
	Pfs pulumi.StringOutput `pulumi:"pfs"`
	// Phase 1 determines the options required for phase 2.
	Phase1name pulumi.StringOutput `pulumi:"phase1name"`
	// Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
	Proposal pulumi.StringOutput `pulumi:"proposal"`
	// Quick mode protocol selector (1 - 255 or 0 for all).
	Protocol pulumi.IntOutput `pulumi:"protocol"`
	// Enable/disable replay detection. Valid values: `enable`, `disable`.
	Replay pulumi.StringOutput `pulumi:"replay"`
	// Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`.
	RouteOverlap pulumi.StringOutput `pulumi:"routeOverlap"`
	// Match type to use when comparing selectors. Valid values: `exact`, `subset`, `auto`.
	SelectorMatch pulumi.StringOutput `pulumi:"selectorMatch"`
	// Enable/disable single source IP restriction. Valid values: `enable`, `disable`.
	SingleSource pulumi.StringOutput `pulumi:"singleSource"`
	// Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`.
	SrcAddrType pulumi.StringOutput `pulumi:"srcAddrType"`
	// Local proxy ID end.
	SrcEndIp pulumi.StringOutput `pulumi:"srcEndIp"`
	// Local proxy ID IPv6 end.
	SrcEndIp6 pulumi.StringOutput `pulumi:"srcEndIp6"`
	// Local proxy ID name.
	SrcName pulumi.StringOutput `pulumi:"srcName"`
	// Local proxy ID name.
	SrcName6 pulumi.StringOutput `pulumi:"srcName6"`
	// Quick mode source port (1 - 65535 or 0 for all).
	SrcPort pulumi.IntOutput `pulumi:"srcPort"`
	// Local proxy ID start.
	SrcStartIp pulumi.StringOutput `pulumi:"srcStartIp"`
	// Local proxy ID IPv6 start.
	SrcStartIp6 pulumi.StringOutput `pulumi:"srcStartIp6"`
	// Local proxy ID subnet.
	SrcSubnet pulumi.StringOutput `pulumi:"srcSubnet"`
	// Local proxy ID IPv6 subnet.
	SrcSubnet6 pulumi.StringOutput `pulumi:"srcSubnet6"`
	// Enable to use the FortiGate public IP as the source selector when outbound NAT is used. Valid values: `enable`, `disable`.
	UseNatip pulumi.StringOutput `pulumi:"useNatip"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
}

Configure VPN autokey tunnel.

## Example Usage

<!--Start PulumiCodeChooser --> ```go package main

import ( 

"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		trnamex2, err := vpn.NewPhase1(ctx, "trnamex2", &vpn.Phase1Args{
			AcctVerify:             pulumi.String("disable"),
			AddGwRoute:             pulumi.String("disable"),
			AddRoute:               pulumi.String("disable"),
			AssignIp:               pulumi.String("enable"),
			AssignIpFrom:           pulumi.String("range"),
			Authmethod:             pulumi.String("psk"),
			AutoNegotiate:          pulumi.String("enable"),
			CertIdValidation:       pulumi.String("enable"),
			ChildlessIke:           pulumi.String("disable"),
			ClientAutoNegotiate:    pulumi.String("disable"),
			ClientKeepAlive:        pulumi.String("disable"),
			Dhgrp:                  pulumi.String("14 5"),
			DigitalSignatureAuth:   pulumi.String("disable"),
			Distance:               pulumi.Int(15),
			DnsMode:                pulumi.String("manual"),
			Dpd:                    pulumi.String("on-demand"),
			DpdRetrycount:          pulumi.Int(3),
			DpdRetryinterval:       pulumi.String("20"),
			Eap:                    pulumi.String("disable"),
			EapIdentity:            pulumi.String("use-id-payload"),
			EnforceUniqueId:        pulumi.String("disable"),
			ForticlientEnforcement: pulumi.String("disable"),
			Fragmentation:          pulumi.String("enable"),
			FragmentationMtu:       pulumi.Int(1200),
			GroupAuthentication:    pulumi.String("disable"),
			HaSyncEspSeqno:         pulumi.String("enable"),
			IdleTimeout:            pulumi.String("disable"),
			IdleTimeoutinterval:    pulumi.Int(15),
			IkeVersion:             pulumi.String("1"),
			IncludeLocalLan:        pulumi.String("disable"),
			Interface:              pulumi.String("port4"),
			Ipv4DnsServer1:         pulumi.String("0.0.0.0"),
			Ipv4DnsServer2:         pulumi.String("0.0.0.0"),
			Ipv4DnsServer3:         pulumi.String("0.0.0.0"),
			Ipv4EndIp:              pulumi.String("0.0.0.0"),
			Ipv4Netmask:            pulumi.String("255.255.255.255"),
			Ipv4StartIp:            pulumi.String("0.0.0.0"),
			Ipv4WinsServer1:        pulumi.String("0.0.0.0"),
			Ipv4WinsServer2:        pulumi.String("0.0.0.0"),
			Ipv6DnsServer1:         pulumi.String("::"),
			Ipv6DnsServer2:         pulumi.String("::"),
			Ipv6DnsServer3:         pulumi.String("::"),
			Ipv6EndIp:              pulumi.String("::"),
			Ipv6Prefix:             pulumi.Int(128),
			Ipv6StartIp:            pulumi.String("::"),
			Keepalive:              pulumi.Int(10),
			Keylife:                pulumi.Int(86400),
			LocalGw:                pulumi.String("0.0.0.0"),
			LocalidType:            pulumi.String("auto"),
			MeshSelectorType:       pulumi.String("disable"),
			Mode:                   pulumi.String("main"),
			ModeCfg:                pulumi.String("disable"),
			Nattraversal:           pulumi.String("enable"),
			NegotiateTimeout:       pulumi.Int(30),
			Peertype:               pulumi.String("any"),
			Ppk:                    pulumi.String("disable"),
			Priority:               pulumi.Int(0),
			Proposal:               pulumi.String("aes128-sha256 aes256-sha256 aes128-sha1 aes256-sha1"),
			Psksecret:              pulumi.String("dewcEde2112"),
			Reauth:                 pulumi.String("disable"),
			Rekey:                  pulumi.String("enable"),
			RemoteGw:               pulumi.String("2.1.1.1"),
			RsaSignatureFormat:     pulumi.String("pkcs1"),
			SavePassword:           pulumi.String("disable"),
			SendCertChain:          pulumi.String("enable"),
			SignatureHashAlg:       pulumi.String("sha2-512 sha2-384 sha2-256 sha1"),
			SuiteB:                 pulumi.String("disable"),
			Type:                   pulumi.String("static"),
			UnitySupport:           pulumi.String("enable"),
			WizardType:             pulumi.String("custom"),
			Xauthtype:              pulumi.String("disable"),
		})
		if err != nil {
			return err
		}
		_, err = vpn.NewPhase2(ctx, "trname", &vpn.Phase2Args{
			AddRoute:       pulumi.String("phase1"),
			AutoNegotiate:  pulumi.String("disable"),
			DhcpIpsec:      pulumi.String("disable"),
			Dhgrp:          pulumi.String("14 5"),
			DstAddrType:    pulumi.String("subnet"),
			DstEndIp:       pulumi.String("0.0.0.0"),
			DstEndIp6:      pulumi.String("::"),
			DstPort:        pulumi.Int(0),
			DstStartIp:     pulumi.String("0.0.0.0"),
			DstStartIp6:    pulumi.String("::"),
			DstSubnet:      pulumi.String("0.0.0.0 0.0.0.0"),
			DstSubnet6:     pulumi.String("::/0"),
			Encapsulation:  pulumi.String("tunnel-mode"),
			Keepalive:      pulumi.String("disable"),
			KeylifeType:    pulumi.String("seconds"),
			Keylifekbs:     pulumi.Int(5120),
			Keylifeseconds: pulumi.Int(43200),
			L2tp:           pulumi.String("disable"),
			Pfs:            pulumi.String("enable"),
			Phase1name:     trnamex2.Name,
			Proposal:       pulumi.String("null-md5 null-sha1 null-sha256"),
			Protocol:       pulumi.Int(0),
			Replay:         pulumi.String("enable"),
			RouteOverlap:   pulumi.String("use-new"),
			SelectorMatch:  pulumi.String("auto"),
			SingleSource:   pulumi.String("disable"),
			SrcAddrType:    pulumi.String("subnet"),
			SrcEndIp:       pulumi.String("0.0.0.0"),
			SrcEndIp6:      pulumi.String("::"),
			SrcPort:        pulumi.Int(0),
			SrcStartIp:     pulumi.String("0.0.0.0"),
			SrcStartIp6:    pulumi.String("::"),
			SrcSubnet:      pulumi.String("0.0.0.0 0.0.0.0"),
			SrcSubnet6:     pulumi.String("::/0"),
			UseNatip:       pulumi.String("disable"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` <!--End PulumiCodeChooser -->

## Import

VpnIpsec Phase2 can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/ipsec/phase2:Phase2 labelname {{name}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/ipsec/phase2:Phase2 labelname {{name}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetPhase2 

func GetPhase2(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *Phase2State, opts ...pulumi.ResourceOption) (*Phase2, error)

GetPhase2 gets an existing Phase2 resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPhase2 

func NewPhase2(ctx *pulumi.Context,
	name string, args *Phase2Args, opts ...pulumi.ResourceOption) (*Phase2, error)

NewPhase2 registers a new resource with the given unique name, arguments, and options.

func (*Phase2) ElementType 

func (*Phase2) ElementType() reflect.Type

func (*Phase2) ToPhase2Output 

func (i *Phase2) ToPhase2Output() Phase2Output

func (*Phase2) ToPhase2OutputWithContext 

func (i *Phase2) ToPhase2OutputWithContext(ctx context.Context) Phase2Output

type Phase2Args 

type Phase2Args struct {
	// Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`.
	AddRoute pulumi.StringPtrInput
	// Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`.
	AutoNegotiate pulumi.StringPtrInput
	// Comment.
	Comments pulumi.StringPtrInput
	// Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`.
	DhcpIpsec pulumi.StringPtrInput
	// Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
	Dhgrp pulumi.StringPtrInput
	// Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`.
	Diffserv pulumi.StringPtrInput
	// DSCP value to be applied to the IPsec tunnel outer IP header.
	Diffservcode pulumi.StringPtrInput
	// Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`.
	DstAddrType pulumi.StringPtrInput
	// Remote proxy ID IPv4 end.
	DstEndIp pulumi.StringPtrInput
	// Remote proxy ID IPv6 end.
	DstEndIp6 pulumi.StringPtrInput
	// Remote proxy ID name.
	DstName pulumi.StringPtrInput
	// Remote proxy ID name.
	DstName6 pulumi.StringPtrInput
	// Quick mode destination port (1 - 65535 or 0 for all).
	DstPort pulumi.IntPtrInput
	// Remote proxy ID IPv4 start.
	DstStartIp pulumi.StringPtrInput
	// Remote proxy ID IPv6 start.
	DstStartIp6 pulumi.StringPtrInput
	// Remote proxy ID IPv4 subnet.
	DstSubnet pulumi.StringPtrInput
	// Remote proxy ID IPv6 subnet.
	DstSubnet6 pulumi.StringPtrInput
	// ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`.
	Encapsulation pulumi.StringPtrInput
	// Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`.
	InboundDscpCopy pulumi.StringPtrInput
	// Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`.
	InitiatorTsNarrow pulumi.StringPtrInput
	// Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`.
	Ipv4Df pulumi.StringPtrInput
	// Enable/disable keep alive. Valid values: `enable`, `disable`.
	Keepalive pulumi.StringPtrInput
	// Keylife type. Valid values: `seconds`, `kbs`, `both`.
	KeylifeType pulumi.StringPtrInput
	// Phase2 key life in number of bytes of traffic (5120 - 4294967295).
	Keylifekbs pulumi.IntPtrInput
	// Phase2 key life in time in seconds (120 - 172800).
	Keylifeseconds pulumi.IntPtrInput
	// Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`.
	L2tp pulumi.StringPtrInput
	// IPsec tunnel name.
	Name pulumi.StringPtrInput
	// Enable/disable PFS feature. Valid values: `enable`, `disable`.
	Pfs pulumi.StringPtrInput
	// Phase 1 determines the options required for phase 2.
	Phase1name pulumi.StringInput
	// Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
	Proposal pulumi.StringInput
	// Quick mode protocol selector (1 - 255 or 0 for all).
	Protocol pulumi.IntPtrInput
	// Enable/disable replay detection. Valid values: `enable`, `disable`.
	Replay pulumi.StringPtrInput
	// Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`.
	RouteOverlap pulumi.StringPtrInput
	// Match type to use when comparing selectors. Valid values: `exact`, `subset`, `auto`.
	SelectorMatch pulumi.StringPtrInput
	// Enable/disable single source IP restriction. Valid values: `enable`, `disable`.
	SingleSource pulumi.StringPtrInput
	// Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`.
	SrcAddrType pulumi.StringPtrInput
	// Local proxy ID end.
	SrcEndIp pulumi.StringPtrInput
	// Local proxy ID IPv6 end.
	SrcEndIp6 pulumi.StringPtrInput
	// Local proxy ID name.
	SrcName pulumi.StringPtrInput
	// Local proxy ID name.
	SrcName6 pulumi.StringPtrInput
	// Quick mode source port (1 - 65535 or 0 for all).
	SrcPort pulumi.IntPtrInput
	// Local proxy ID start.
	SrcStartIp pulumi.StringPtrInput
	// Local proxy ID IPv6 start.
	SrcStartIp6 pulumi.StringPtrInput
	// Local proxy ID subnet.
	SrcSubnet pulumi.StringPtrInput
	// Local proxy ID IPv6 subnet.
	SrcSubnet6 pulumi.StringPtrInput
	// Enable to use the FortiGate public IP as the source selector when outbound NAT is used. Valid values: `enable`, `disable`.
	UseNatip pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

The set of arguments for constructing a Phase2 resource.

func (Phase2Args) ElementType 

func (Phase2Args) ElementType() reflect.Type

type Phase2Array 

type Phase2Array []Phase2Input

func (Phase2Array) ElementType 

func (Phase2Array) ElementType() reflect.Type

func (Phase2Array) ToPhase2ArrayOutput 

func (i Phase2Array) ToPhase2ArrayOutput() Phase2ArrayOutput

func (Phase2Array) ToPhase2ArrayOutputWithContext 

func (i Phase2Array) ToPhase2ArrayOutputWithContext(ctx context.Context) Phase2ArrayOutput

type Phase2ArrayInput 

type Phase2ArrayInput interface {
	pulumi.Input

	ToPhase2ArrayOutput() Phase2ArrayOutput
	ToPhase2ArrayOutputWithContext(context.Context) Phase2ArrayOutput
}

Phase2ArrayInput is an input type that accepts Phase2Array and Phase2ArrayOutput values. You can construct a concrete instance of `Phase2ArrayInput` via: 

Phase2Array{ Phase2Args{...} }

type Phase2ArrayOutput 

type Phase2ArrayOutput struct{ *pulumi.OutputState }

func (Phase2ArrayOutput) ElementType 

func (Phase2ArrayOutput) ElementType() reflect.Type

func (Phase2ArrayOutput) Index 

func (o Phase2ArrayOutput) Index(i pulumi.IntInput) Phase2Output

func (Phase2ArrayOutput) ToPhase2ArrayOutput 

func (o Phase2ArrayOutput) ToPhase2ArrayOutput() Phase2ArrayOutput

func (Phase2ArrayOutput) ToPhase2ArrayOutputWithContext 

func (o Phase2ArrayOutput) ToPhase2ArrayOutputWithContext(ctx context.Context) Phase2ArrayOutput

type Phase2Input 

type Phase2Input interface {
	pulumi.Input

	ToPhase2Output() Phase2Output
	ToPhase2OutputWithContext(ctx context.Context) Phase2Output
}

type Phase2Map 

type Phase2Map map[string]Phase2Input

func (Phase2Map) ElementType 

func (Phase2Map) ElementType() reflect.Type

func (Phase2Map) ToPhase2MapOutput 

func (i Phase2Map) ToPhase2MapOutput() Phase2MapOutput

func (Phase2Map) ToPhase2MapOutputWithContext 

func (i Phase2Map) ToPhase2MapOutputWithContext(ctx context.Context) Phase2MapOutput

type Phase2MapInput 

type Phase2MapInput interface {
	pulumi.Input

	ToPhase2MapOutput() Phase2MapOutput
	ToPhase2MapOutputWithContext(context.Context) Phase2MapOutput
}

Phase2MapInput is an input type that accepts Phase2Map and Phase2MapOutput values. You can construct a concrete instance of `Phase2MapInput` via: 

Phase2Map{ "key": Phase2Args{...} }

type Phase2MapOutput 

type Phase2MapOutput struct{ *pulumi.OutputState }

func (Phase2MapOutput) ElementType 

func (Phase2MapOutput) ElementType() reflect.Type

func (Phase2MapOutput) MapIndex 

func (o Phase2MapOutput) MapIndex(k pulumi.StringInput) Phase2Output

func (Phase2MapOutput) ToPhase2MapOutput 

func (o Phase2MapOutput) ToPhase2MapOutput() Phase2MapOutput

func (Phase2MapOutput) ToPhase2MapOutputWithContext 

func (o Phase2MapOutput) ToPhase2MapOutputWithContext(ctx context.Context) Phase2MapOutput

type Phase2Output 

type Phase2Output struct{ *pulumi.OutputState }

func (Phase2Output) AddRoute 

func (o Phase2Output) AddRoute() pulumi.StringOutput

Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`.

func (Phase2Output) AutoNegotiate 

func (o Phase2Output) AutoNegotiate() pulumi.StringOutput

Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`.

func (Phase2Output) Comments 

func (o Phase2Output) Comments() pulumi.StringPtrOutput

Comment.

func (Phase2Output) DhcpIpsec 

func (o Phase2Output) DhcpIpsec() pulumi.StringOutput

Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`.

func (Phase2Output) Dhgrp 

func (o Phase2Output) Dhgrp() pulumi.StringOutput

Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.

func (Phase2Output) Diffserv 

func (o Phase2Output) Diffserv() pulumi.StringOutput

Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`.

func (Phase2Output) Diffservcode 

func (o Phase2Output) Diffservcode() pulumi.StringOutput

DSCP value to be applied to the IPsec tunnel outer IP header.

func (Phase2Output) DstAddrType 

func (o Phase2Output) DstAddrType() pulumi.StringOutput

Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`.

func (Phase2Output) DstEndIp 

func (o Phase2Output) DstEndIp() pulumi.StringOutput

Remote proxy ID IPv4 end.

func (Phase2Output) DstEndIp6 

func (o Phase2Output) DstEndIp6() pulumi.StringOutput

Remote proxy ID IPv6 end.

func (Phase2Output) DstName 

func (o Phase2Output) DstName() pulumi.StringOutput

Remote proxy ID name.

func (Phase2Output) DstName6 

func (o Phase2Output) DstName6() pulumi.StringOutput

Remote proxy ID name.

func (Phase2Output) DstPort 

func (o Phase2Output) DstPort() pulumi.IntOutput

Quick mode destination port (1 - 65535 or 0 for all).

func (Phase2Output) DstStartIp 

func (o Phase2Output) DstStartIp() pulumi.StringOutput

Remote proxy ID IPv4 start.

func (Phase2Output) DstStartIp6 

func (o Phase2Output) DstStartIp6() pulumi.StringOutput

Remote proxy ID IPv6 start.

func (Phase2Output) DstSubnet 

func (o Phase2Output) DstSubnet() pulumi.StringOutput

Remote proxy ID IPv4 subnet.

func (Phase2Output) DstSubnet6 

func (o Phase2Output) DstSubnet6() pulumi.StringOutput

Remote proxy ID IPv6 subnet.

func (Phase2Output) ElementType 

func (Phase2Output) ElementType() reflect.Type

func (Phase2Output) Encapsulation 

func (o Phase2Output) Encapsulation() pulumi.StringOutput

ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`.

func (Phase2Output) InboundDscpCopy 

func (o Phase2Output) InboundDscpCopy() pulumi.StringOutput

Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`.

func (Phase2Output) InitiatorTsNarrow 

func (o Phase2Output) InitiatorTsNarrow() pulumi.StringOutput

Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`.

func (Phase2Output) Ipv4Df 

func (o Phase2Output) Ipv4Df() pulumi.StringOutput

Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`.

func (Phase2Output) Keepalive 

func (o Phase2Output) Keepalive() pulumi.StringOutput

Enable/disable keep alive. Valid values: `enable`, `disable`.

func (Phase2Output) KeylifeType 

func (o Phase2Output) KeylifeType() pulumi.StringOutput

Keylife type. Valid values: `seconds`, `kbs`, `both`.

func (Phase2Output) Keylifekbs 

func (o Phase2Output) Keylifekbs() pulumi.IntOutput

Phase2 key life in number of bytes of traffic (5120 - 4294967295).

func (Phase2Output) Keylifeseconds 

func (o Phase2Output) Keylifeseconds() pulumi.IntOutput

Phase2 key life in time in seconds (120 - 172800).

func (Phase2Output) L2tp 

func (o Phase2Output) L2tp() pulumi.StringOutput

Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`.

func (Phase2Output) Name 

func (o Phase2Output) Name() pulumi.StringOutput

IPsec tunnel name.

func (Phase2Output) Pfs 

func (o Phase2Output) Pfs() pulumi.StringOutput

Enable/disable PFS feature. Valid values: `enable`, `disable`.

func (Phase2Output) Phase1name 

func (o Phase2Output) Phase1name() pulumi.StringOutput

Phase 1 determines the options required for phase 2.

func (Phase2Output) Proposal 

func (o Phase2Output) Proposal() pulumi.StringOutput

Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.

func (Phase2Output) Protocol 

func (o Phase2Output) Protocol() pulumi.IntOutput

Quick mode protocol selector (1 - 255 or 0 for all).

func (Phase2Output) Replay 

func (o Phase2Output) Replay() pulumi.StringOutput

Enable/disable replay detection. Valid values: `enable`, `disable`.

func (Phase2Output) RouteOverlap 

func (o Phase2Output) RouteOverlap() pulumi.StringOutput

Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`.

func (Phase2Output) SelectorMatch 

func (o Phase2Output) SelectorMatch() pulumi.StringOutput

Match type to use when comparing selectors. Valid values: `exact`, `subset`, `auto`.

func (Phase2Output) SingleSource 

func (o Phase2Output) SingleSource() pulumi.StringOutput

Enable/disable single source IP restriction. Valid values: `enable`, `disable`.

func (Phase2Output) SrcAddrType 

func (o Phase2Output) SrcAddrType() pulumi.StringOutput

Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`.

func (Phase2Output) SrcEndIp 

func (o Phase2Output) SrcEndIp() pulumi.StringOutput

Local proxy ID end.

func (Phase2Output) SrcEndIp6 

func (o Phase2Output) SrcEndIp6() pulumi.StringOutput

Local proxy ID IPv6 end.

func (Phase2Output) SrcName 

func (o Phase2Output) SrcName() pulumi.StringOutput

Local proxy ID name.

func (Phase2Output) SrcName6 

func (o Phase2Output) SrcName6() pulumi.StringOutput

Local proxy ID name.

func (Phase2Output) SrcPort 

func (o Phase2Output) SrcPort() pulumi.IntOutput

Quick mode source port (1 - 65535 or 0 for all).

func (Phase2Output) SrcStartIp 

func (o Phase2Output) SrcStartIp() pulumi.StringOutput

Local proxy ID start.

func (Phase2Output) SrcStartIp6 

func (o Phase2Output) SrcStartIp6() pulumi.StringOutput

Local proxy ID IPv6 start.

func (Phase2Output) SrcSubnet 

func (o Phase2Output) SrcSubnet() pulumi.StringOutput

Local proxy ID subnet.

func (Phase2Output) SrcSubnet6 

func (o Phase2Output) SrcSubnet6() pulumi.StringOutput

Local proxy ID IPv6 subnet.

func (Phase2Output) ToPhase2Output 

func (o Phase2Output) ToPhase2Output() Phase2Output

func (Phase2Output) ToPhase2OutputWithContext 

func (o Phase2Output) ToPhase2OutputWithContext(ctx context.Context) Phase2Output

func (Phase2Output) UseNatip 

func (o Phase2Output) UseNatip() pulumi.StringOutput

Enable to use the FortiGate public IP as the source selector when outbound NAT is used. Valid values: `enable`, `disable`.

func (Phase2Output) Vdomparam 

func (o Phase2Output) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

type Phase2State 

type Phase2State struct {
	// Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`.
	AddRoute pulumi.StringPtrInput
	// Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`.
	AutoNegotiate pulumi.StringPtrInput
	// Comment.
	Comments pulumi.StringPtrInput
	// Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`.
	DhcpIpsec pulumi.StringPtrInput
	// Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
	Dhgrp pulumi.StringPtrInput
	// Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`.
	Diffserv pulumi.StringPtrInput
	// DSCP value to be applied to the IPsec tunnel outer IP header.
	Diffservcode pulumi.StringPtrInput
	// Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`.
	DstAddrType pulumi.StringPtrInput
	// Remote proxy ID IPv4 end.
	DstEndIp pulumi.StringPtrInput
	// Remote proxy ID IPv6 end.
	DstEndIp6 pulumi.StringPtrInput
	// Remote proxy ID name.
	DstName pulumi.StringPtrInput
	// Remote proxy ID name.
	DstName6 pulumi.StringPtrInput
	// Quick mode destination port (1 - 65535 or 0 for all).
	DstPort pulumi.IntPtrInput
	// Remote proxy ID IPv4 start.
	DstStartIp pulumi.StringPtrInput
	// Remote proxy ID IPv6 start.
	DstStartIp6 pulumi.StringPtrInput
	// Remote proxy ID IPv4 subnet.
	DstSubnet pulumi.StringPtrInput
	// Remote proxy ID IPv6 subnet.
	DstSubnet6 pulumi.StringPtrInput
	// ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`.
	Encapsulation pulumi.StringPtrInput
	// Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`.
	InboundDscpCopy pulumi.StringPtrInput
	// Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`.
	InitiatorTsNarrow pulumi.StringPtrInput
	// Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`.
	Ipv4Df pulumi.StringPtrInput
	// Enable/disable keep alive. Valid values: `enable`, `disable`.
	Keepalive pulumi.StringPtrInput
	// Keylife type. Valid values: `seconds`, `kbs`, `both`.
	KeylifeType pulumi.StringPtrInput
	// Phase2 key life in number of bytes of traffic (5120 - 4294967295).
	Keylifekbs pulumi.IntPtrInput
	// Phase2 key life in time in seconds (120 - 172800).
	Keylifeseconds pulumi.IntPtrInput
	// Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`.
	L2tp pulumi.StringPtrInput
	// IPsec tunnel name.
	Name pulumi.StringPtrInput
	// Enable/disable PFS feature. Valid values: `enable`, `disable`.
	Pfs pulumi.StringPtrInput
	// Phase 1 determines the options required for phase 2.
	Phase1name pulumi.StringPtrInput
	// Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
	Proposal pulumi.StringPtrInput
	// Quick mode protocol selector (1 - 255 or 0 for all).
	Protocol pulumi.IntPtrInput
	// Enable/disable replay detection. Valid values: `enable`, `disable`.
	Replay pulumi.StringPtrInput
	// Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`.
	RouteOverlap pulumi.StringPtrInput
	// Match type to use when comparing selectors. Valid values: `exact`, `subset`, `auto`.
	SelectorMatch pulumi.StringPtrInput
	// Enable/disable single source IP restriction. Valid values: `enable`, `disable`.
	SingleSource pulumi.StringPtrInput
	// Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`.
	SrcAddrType pulumi.StringPtrInput
	// Local proxy ID end.
	SrcEndIp pulumi.StringPtrInput
	// Local proxy ID IPv6 end.
	SrcEndIp6 pulumi.StringPtrInput
	// Local proxy ID name.
	SrcName pulumi.StringPtrInput
	// Local proxy ID name.
	SrcName6 pulumi.StringPtrInput
	// Quick mode source port (1 - 65535 or 0 for all).
	SrcPort pulumi.IntPtrInput
	// Local proxy ID start.
	SrcStartIp pulumi.StringPtrInput
	// Local proxy ID IPv6 start.
	SrcStartIp6 pulumi.StringPtrInput
	// Local proxy ID subnet.
	SrcSubnet pulumi.StringPtrInput
	// Local proxy ID IPv6 subnet.
	SrcSubnet6 pulumi.StringPtrInput
	// Enable to use the FortiGate public IP as the source selector when outbound NAT is used. Valid values: `enable`, `disable`.
	UseNatip pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

func (Phase2State) ElementType 

func (Phase2State) ElementType() reflect.Type

type Phase2interface 

type Phase2interface struct {
	pulumi.CustomResourceState

	// Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`.
	AddRoute pulumi.StringOutput `pulumi:"addRoute"`
	// Enable/disable forwarding short-cut messages. Valid values: `phase1`, `enable`, `disable`.
	AutoDiscoveryForwarder pulumi.StringOutput `pulumi:"autoDiscoveryForwarder"`
	// Enable/disable sending short-cut messages. Valid values: `phase1`, `enable`, `disable`.
	AutoDiscoverySender pulumi.StringOutput `pulumi:"autoDiscoverySender"`
	// Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`.
	AutoNegotiate pulumi.StringOutput `pulumi:"autoNegotiate"`
	// Comment.
	Comments pulumi.StringPtrOutput `pulumi:"comments"`
	// Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`.
	DhcpIpsec pulumi.StringOutput `pulumi:"dhcpIpsec"`
	// Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
	Dhgrp pulumi.StringOutput `pulumi:"dhgrp"`
	// Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`.
	Diffserv pulumi.StringOutput `pulumi:"diffserv"`
	// DSCP value to be applied to the IPsec tunnel outer IP header.
	Diffservcode pulumi.StringOutput `pulumi:"diffservcode"`
	// Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`.
	DstAddrType pulumi.StringOutput `pulumi:"dstAddrType"`
	// Remote proxy ID IPv4 end.
	DstEndIp pulumi.StringOutput `pulumi:"dstEndIp"`
	// Remote proxy ID IPv6 end.
	DstEndIp6 pulumi.StringOutput `pulumi:"dstEndIp6"`
	// Remote proxy ID name.
	DstName pulumi.StringOutput `pulumi:"dstName"`
	// Remote proxy ID name.
	DstName6 pulumi.StringOutput `pulumi:"dstName6"`
	// Quick mode destination port (1 - 65535 or 0 for all).
	DstPort pulumi.IntOutput `pulumi:"dstPort"`
	// Remote proxy ID IPv4 start.
	DstStartIp pulumi.StringOutput `pulumi:"dstStartIp"`
	// Remote proxy ID IPv6 start.
	DstStartIp6 pulumi.StringOutput `pulumi:"dstStartIp6"`
	// Remote proxy ID IPv4 subnet.
	DstSubnet pulumi.StringOutput `pulumi:"dstSubnet"`
	// Remote proxy ID IPv6 subnet.
	DstSubnet6 pulumi.StringOutput `pulumi:"dstSubnet6"`
	// ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`.
	Encapsulation pulumi.StringOutput `pulumi:"encapsulation"`
	// Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`.
	InboundDscpCopy pulumi.StringOutput `pulumi:"inboundDscpCopy"`
	// Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`.
	InitiatorTsNarrow pulumi.StringOutput `pulumi:"initiatorTsNarrow"`
	// Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`.
	Ipv4Df pulumi.StringOutput `pulumi:"ipv4Df"`
	// Enable/disable keep alive. Valid values: `enable`, `disable`.
	Keepalive pulumi.StringOutput `pulumi:"keepalive"`
	// Keylife type. Valid values: `seconds`, `kbs`, `both`.
	KeylifeType pulumi.StringOutput `pulumi:"keylifeType"`
	// Phase2 key life in number of bytes of traffic (5120 - 4294967295).
	Keylifekbs pulumi.IntOutput `pulumi:"keylifekbs"`
	// Phase2 key life in time in seconds (120 - 172800).
	Keylifeseconds pulumi.IntOutput `pulumi:"keylifeseconds"`
	// Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`.
	L2tp pulumi.StringOutput `pulumi:"l2tp"`
	// IPsec tunnel name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Enable/disable PFS feature. Valid values: `enable`, `disable`.
	Pfs pulumi.StringOutput `pulumi:"pfs"`
	// Phase 1 determines the options required for phase 2.
	Phase1name pulumi.StringOutput `pulumi:"phase1name"`
	// Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
	Proposal pulumi.StringOutput `pulumi:"proposal"`
	// Quick mode protocol selector (1 - 255 or 0 for all).
	Protocol pulumi.IntOutput `pulumi:"protocol"`
	// Enable/disable replay detection. Valid values: `enable`, `disable`.
	Replay pulumi.StringOutput `pulumi:"replay"`
	// Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`.
	RouteOverlap pulumi.StringOutput `pulumi:"routeOverlap"`
	// Enable/disable single source IP restriction. Valid values: `enable`, `disable`.
	SingleSource pulumi.StringOutput `pulumi:"singleSource"`
	// Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`.
	SrcAddrType pulumi.StringOutput `pulumi:"srcAddrType"`
	// Local proxy ID end.
	SrcEndIp pulumi.StringOutput `pulumi:"srcEndIp"`
	// Local proxy ID IPv6 end.
	SrcEndIp6 pulumi.StringOutput `pulumi:"srcEndIp6"`
	// Local proxy ID name.
	SrcName pulumi.StringOutput `pulumi:"srcName"`
	// Local proxy ID name.
	SrcName6 pulumi.StringOutput `pulumi:"srcName6"`
	// Quick mode source port (1 - 65535 or 0 for all).
	SrcPort pulumi.IntOutput `pulumi:"srcPort"`
	// Local proxy ID start.
	SrcStartIp pulumi.StringOutput `pulumi:"srcStartIp"`
	// Local proxy ID IPv6 start.
	SrcStartIp6 pulumi.StringOutput `pulumi:"srcStartIp6"`
	// Local proxy ID subnet.
	SrcSubnet pulumi.StringOutput `pulumi:"srcSubnet"`
	// Local proxy ID IPv6 subnet.
	SrcSubnet6 pulumi.StringOutput `pulumi:"srcSubnet6"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
}

Configure VPN autokey tunnel.

## Example Usage

<!--Start PulumiCodeChooser --> ```go package main

import ( 

"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		trname3, err := vpn.NewPhase1interface(ctx, "trname3", &vpn.Phase1interfaceArgs{
			AcctVerify:             pulumi.String("disable"),
			AddGwRoute:             pulumi.String("disable"),
			AddRoute:               pulumi.String("enable"),
			AssignIp:               pulumi.String("enable"),
			AssignIpFrom:           pulumi.String("range"),
			Authmethod:             pulumi.String("psk"),
			AutoDiscoveryForwarder: pulumi.String("disable"),
			AutoDiscoveryPsk:       pulumi.String("disable"),
			AutoDiscoveryReceiver:  pulumi.String("disable"),
			AutoDiscoverySender:    pulumi.String("disable"),
			AutoNegotiate:          pulumi.String("enable"),
			CertIdValidation:       pulumi.String("enable"),
			ChildlessIke:           pulumi.String("disable"),
			ClientAutoNegotiate:    pulumi.String("disable"),
			ClientKeepAlive:        pulumi.String("disable"),
			DefaultGw:              pulumi.String("0.0.0.0"),
			DefaultGwPriority:      pulumi.Int(0),
			Dhgrp:                  pulumi.String("14 5"),
			DigitalSignatureAuth:   pulumi.String("disable"),
			Distance:               pulumi.Int(15),
			DnsMode:                pulumi.String("manual"),
			Dpd:                    pulumi.String("on-demand"),
			DpdRetrycount:          pulumi.Int(3),
			DpdRetryinterval:       pulumi.String("20"),
			Eap:                    pulumi.String("disable"),
			EapIdentity:            pulumi.String("use-id-payload"),
			EncapLocalGw4:          pulumi.String("0.0.0.0"),
			EncapLocalGw6:          pulumi.String("::"),
			EncapRemoteGw4:         pulumi.String("0.0.0.0"),
			EncapRemoteGw6:         pulumi.String("::"),
			Encapsulation:          pulumi.String("none"),
			EncapsulationAddress:   pulumi.String("ike"),
			EnforceUniqueId:        pulumi.String("disable"),
			ExchangeInterfaceIp:    pulumi.String("disable"),
			ExchangeIpAddr4:        pulumi.String("0.0.0.0"),
			ExchangeIpAddr6:        pulumi.String("::"),
			ForticlientEnforcement: pulumi.String("disable"),
			Fragmentation:          pulumi.String("enable"),
			FragmentationMtu:       pulumi.Int(1200),
			GroupAuthentication:    pulumi.String("disable"),
			HaSyncEspSeqno:         pulumi.String("enable"),
			IdleTimeout:            pulumi.String("disable"),
			IdleTimeoutinterval:    pulumi.Int(15),
			IkeVersion:             pulumi.String("1"),
			IncludeLocalLan:        pulumi.String("disable"),
			Interface:              pulumi.String("port3"),
			IpVersion:              pulumi.String("4"),
			Ipv4DnsServer1:         pulumi.String("0.0.0.0"),
			Ipv4DnsServer2:         pulumi.String("0.0.0.0"),
			Ipv4DnsServer3:         pulumi.String("0.0.0.0"),
			Ipv4EndIp:              pulumi.String("0.0.0.0"),
			Ipv4Netmask:            pulumi.String("255.255.255.255"),
			Ipv4StartIp:            pulumi.String("0.0.0.0"),
			Ipv4WinsServer1:        pulumi.String("0.0.0.0"),
			Ipv4WinsServer2:        pulumi.String("0.0.0.0"),
			Ipv6DnsServer1:         pulumi.String("::"),
			Ipv6DnsServer2:         pulumi.String("::"),
			Ipv6DnsServer3:         pulumi.String("::"),
			Ipv6EndIp:              pulumi.String("::"),
			Ipv6Prefix:             pulumi.Int(128),
			Ipv6StartIp:            pulumi.String("::"),
			Keepalive:              pulumi.Int(10),
			Keylife:                pulumi.Int(86400),
			LocalGw:                pulumi.String("0.0.0.0"),
			LocalGw6:               pulumi.String("::"),
			LocalidType:            pulumi.String("auto"),
			MeshSelectorType:       pulumi.String("disable"),
			Mode:                   pulumi.String("main"),
			ModeCfg:                pulumi.String("disable"),
			MonitorHoldDownDelay:   pulumi.Int(0),
			MonitorHoldDownTime:    pulumi.String("00:00"),
			MonitorHoldDownType:    pulumi.String("immediate"),
			MonitorHoldDownWeekday: pulumi.String("sunday"),
			Nattraversal:           pulumi.String("enable"),
			NegotiateTimeout:       pulumi.Int(30),
			NetDevice:              pulumi.String("disable"),
			PassiveMode:            pulumi.String("disable"),
			Peertype:               pulumi.String("any"),
			Ppk:                    pulumi.String("disable"),
			Priority:               pulumi.Int(0),
			Proposal:               pulumi.String("aes128-sha256 aes256-sha256 aes128-sha1 aes256-sha1"),
			Psksecret:              pulumi.String("eweeeeeeeecee"),
			Reauth:                 pulumi.String("disable"),
			Rekey:                  pulumi.String("enable"),
			RemoteGw:               pulumi.String("2.22.2.2"),
			RemoteGw6:              pulumi.String("::"),
			RsaSignatureFormat:     pulumi.String("pkcs1"),
			SavePassword:           pulumi.String("disable"),
			SendCertChain:          pulumi.String("enable"),
			SignatureHashAlg:       pulumi.String("sha2-512 sha2-384 sha2-256 sha1"),
			SuiteB:                 pulumi.String("disable"),
			TunnelSearch:           pulumi.String("selectors"),
			Type:                   pulumi.String("static"),
			UnitySupport:           pulumi.String("enable"),
			WizardType:             pulumi.String("custom"),
			Xauthtype:              pulumi.String("disable"),
		})
		if err != nil {
			return err
		}
		_, err = vpn.NewPhase2interface(ctx, "trname2", &vpn.Phase2interfaceArgs{
			AddRoute:               pulumi.String("phase1"),
			AutoDiscoveryForwarder: pulumi.String("phase1"),
			AutoDiscoverySender:    pulumi.String("phase1"),
			AutoNegotiate:          pulumi.String("disable"),
			DhcpIpsec:              pulumi.String("disable"),
			Dhgrp:                  pulumi.String("14 5"),
			DstAddrType:            pulumi.String("subnet"),
			DstEndIp6:              pulumi.String("::"),
			DstPort:                pulumi.Int(0),
			DstSubnet:              pulumi.String("0.0.0.0 0.0.0.0"),
			Encapsulation:          pulumi.String("tunnel-mode"),
			Keepalive:              pulumi.String("disable"),
			KeylifeType:            pulumi.String("seconds"),
			Keylifekbs:             pulumi.Int(5120),
			Keylifeseconds:         pulumi.Int(43200),
			L2tp:                   pulumi.String("disable"),
			Pfs:                    pulumi.String("enable"),
			Phase1name:             trname3.Name,
			Proposal:               pulumi.String("aes128-sha1 aes256-sha1 aes128-sha256 aes256-sha256 aes128gcm aes256gcm chacha20poly1305"),
			Protocol:               pulumi.Int(0),
			Replay:                 pulumi.String("enable"),
			RouteOverlap:           pulumi.String("use-new"),
			SingleSource:           pulumi.String("disable"),
			SrcAddrType:            pulumi.String("subnet"),
			SrcEndIp6:              pulumi.String("::"),
			SrcPort:                pulumi.Int(0),
			SrcSubnet:              pulumi.String("0.0.0.0 0.0.0.0"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` <!--End PulumiCodeChooser -->

## Import

VpnIpsec Phase2Interface can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/ipsec/phase2interface:Phase2interface labelname {{name}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/ipsec/phase2interface:Phase2interface labelname {{name}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetPhase2interface 

func GetPhase2interface(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *Phase2interfaceState, opts ...pulumi.ResourceOption) (*Phase2interface, error)

GetPhase2interface gets an existing Phase2interface resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPhase2interface 

func NewPhase2interface(ctx *pulumi.Context,
	name string, args *Phase2interfaceArgs, opts ...pulumi.ResourceOption) (*Phase2interface, error)

NewPhase2interface registers a new resource with the given unique name, arguments, and options.

func (*Phase2interface) ElementType 

func (*Phase2interface) ElementType() reflect.Type

func (*Phase2interface) ToPhase2interfaceOutput 

func (i *Phase2interface) ToPhase2interfaceOutput() Phase2interfaceOutput

func (*Phase2interface) ToPhase2interfaceOutputWithContext 

func (i *Phase2interface) ToPhase2interfaceOutputWithContext(ctx context.Context) Phase2interfaceOutput

type Phase2interfaceArgs 

type Phase2interfaceArgs struct {
	// Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`.
	AddRoute pulumi.StringPtrInput
	// Enable/disable forwarding short-cut messages. Valid values: `phase1`, `enable`, `disable`.
	AutoDiscoveryForwarder pulumi.StringPtrInput
	// Enable/disable sending short-cut messages. Valid values: `phase1`, `enable`, `disable`.
	AutoDiscoverySender pulumi.StringPtrInput
	// Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`.
	AutoNegotiate pulumi.StringPtrInput
	// Comment.
	Comments pulumi.StringPtrInput
	// Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`.
	DhcpIpsec pulumi.StringPtrInput
	// Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
	Dhgrp pulumi.StringPtrInput
	// Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`.
	Diffserv pulumi.StringPtrInput
	// DSCP value to be applied to the IPsec tunnel outer IP header.
	Diffservcode pulumi.StringPtrInput
	// Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`.
	DstAddrType pulumi.StringPtrInput
	// Remote proxy ID IPv4 end.
	DstEndIp pulumi.StringPtrInput
	// Remote proxy ID IPv6 end.
	DstEndIp6 pulumi.StringPtrInput
	// Remote proxy ID name.
	DstName pulumi.StringPtrInput
	// Remote proxy ID name.
	DstName6 pulumi.StringPtrInput
	// Quick mode destination port (1 - 65535 or 0 for all).
	DstPort pulumi.IntPtrInput
	// Remote proxy ID IPv4 start.
	DstStartIp pulumi.StringPtrInput
	// Remote proxy ID IPv6 start.
	DstStartIp6 pulumi.StringPtrInput
	// Remote proxy ID IPv4 subnet.
	DstSubnet pulumi.StringPtrInput
	// Remote proxy ID IPv6 subnet.
	DstSubnet6 pulumi.StringPtrInput
	// ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`.
	Encapsulation pulumi.StringPtrInput
	// Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`.
	InboundDscpCopy pulumi.StringPtrInput
	// Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`.
	InitiatorTsNarrow pulumi.StringPtrInput
	// Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`.
	Ipv4Df pulumi.StringPtrInput
	// Enable/disable keep alive. Valid values: `enable`, `disable`.
	Keepalive pulumi.StringPtrInput
	// Keylife type. Valid values: `seconds`, `kbs`, `both`.
	KeylifeType pulumi.StringPtrInput
	// Phase2 key life in number of bytes of traffic (5120 - 4294967295).
	Keylifekbs pulumi.IntPtrInput
	// Phase2 key life in time in seconds (120 - 172800).
	Keylifeseconds pulumi.IntPtrInput
	// Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`.
	L2tp pulumi.StringPtrInput
	// IPsec tunnel name.
	Name pulumi.StringPtrInput
	// Enable/disable PFS feature. Valid values: `enable`, `disable`.
	Pfs pulumi.StringPtrInput
	// Phase 1 determines the options required for phase 2.
	Phase1name pulumi.StringInput
	// Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
	Proposal pulumi.StringInput
	// Quick mode protocol selector (1 - 255 or 0 for all).
	Protocol pulumi.IntPtrInput
	// Enable/disable replay detection. Valid values: `enable`, `disable`.
	Replay pulumi.StringPtrInput
	// Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`.
	RouteOverlap pulumi.StringPtrInput
	// Enable/disable single source IP restriction. Valid values: `enable`, `disable`.
	SingleSource pulumi.StringPtrInput
	// Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`.
	SrcAddrType pulumi.StringPtrInput
	// Local proxy ID end.
	SrcEndIp pulumi.StringPtrInput
	// Local proxy ID IPv6 end.
	SrcEndIp6 pulumi.StringPtrInput
	// Local proxy ID name.
	SrcName pulumi.StringPtrInput
	// Local proxy ID name.
	SrcName6 pulumi.StringPtrInput
	// Quick mode source port (1 - 65535 or 0 for all).
	SrcPort pulumi.IntPtrInput
	// Local proxy ID start.
	SrcStartIp pulumi.StringPtrInput
	// Local proxy ID IPv6 start.
	SrcStartIp6 pulumi.StringPtrInput
	// Local proxy ID subnet.
	SrcSubnet pulumi.StringPtrInput
	// Local proxy ID IPv6 subnet.
	SrcSubnet6 pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

The set of arguments for constructing a Phase2interface resource.

func (Phase2interfaceArgs) ElementType 

func (Phase2interfaceArgs) ElementType() reflect.Type

type Phase2interfaceArray 

type Phase2interfaceArray []Phase2interfaceInput

func (Phase2interfaceArray) ElementType 

func (Phase2interfaceArray) ElementType() reflect.Type

func (Phase2interfaceArray) ToPhase2interfaceArrayOutput 

func (i Phase2interfaceArray) ToPhase2interfaceArrayOutput() Phase2interfaceArrayOutput

func (Phase2interfaceArray) ToPhase2interfaceArrayOutputWithContext 

func (i Phase2interfaceArray) ToPhase2interfaceArrayOutputWithContext(ctx context.Context) Phase2interfaceArrayOutput

type Phase2interfaceArrayInput 

type Phase2interfaceArrayInput interface {
	pulumi.Input

	ToPhase2interfaceArrayOutput() Phase2interfaceArrayOutput
	ToPhase2interfaceArrayOutputWithContext(context.Context) Phase2interfaceArrayOutput
}

Phase2interfaceArrayInput is an input type that accepts Phase2interfaceArray and Phase2interfaceArrayOutput values. You can construct a concrete instance of `Phase2interfaceArrayInput` via: 

Phase2interfaceArray{ Phase2interfaceArgs{...} }

type Phase2interfaceArrayOutput 

type Phase2interfaceArrayOutput struct{ *pulumi.OutputState }

func (Phase2interfaceArrayOutput) ElementType 

func (Phase2interfaceArrayOutput) ElementType() reflect.Type

func (Phase2interfaceArrayOutput) Index 

func (o Phase2interfaceArrayOutput) Index(i pulumi.IntInput) Phase2interfaceOutput

func (Phase2interfaceArrayOutput) ToPhase2interfaceArrayOutput 

func (o Phase2interfaceArrayOutput) ToPhase2interfaceArrayOutput() Phase2interfaceArrayOutput

func (Phase2interfaceArrayOutput) ToPhase2interfaceArrayOutputWithContext 

func (o Phase2interfaceArrayOutput) ToPhase2interfaceArrayOutputWithContext(ctx context.Context) Phase2interfaceArrayOutput

type Phase2interfaceInput 

type Phase2interfaceInput interface {
	pulumi.Input

	ToPhase2interfaceOutput() Phase2interfaceOutput
	ToPhase2interfaceOutputWithContext(ctx context.Context) Phase2interfaceOutput
}

type Phase2interfaceMap 

type Phase2interfaceMap map[string]Phase2interfaceInput

func (Phase2interfaceMap) ElementType 

func (Phase2interfaceMap) ElementType() reflect.Type

func (Phase2interfaceMap) ToPhase2interfaceMapOutput 

func (i Phase2interfaceMap) ToPhase2interfaceMapOutput() Phase2interfaceMapOutput

func (Phase2interfaceMap) ToPhase2interfaceMapOutputWithContext 

func (i Phase2interfaceMap) ToPhase2interfaceMapOutputWithContext(ctx context.Context) Phase2interfaceMapOutput

type Phase2interfaceMapInput 

type Phase2interfaceMapInput interface {
	pulumi.Input

	ToPhase2interfaceMapOutput() Phase2interfaceMapOutput
	ToPhase2interfaceMapOutputWithContext(context.Context) Phase2interfaceMapOutput
}

Phase2interfaceMapInput is an input type that accepts Phase2interfaceMap and Phase2interfaceMapOutput values. You can construct a concrete instance of `Phase2interfaceMapInput` via: 

Phase2interfaceMap{ "key": Phase2interfaceArgs{...} }

type Phase2interfaceMapOutput 

type Phase2interfaceMapOutput struct{ *pulumi.OutputState }

func (Phase2interfaceMapOutput) ElementType 

func (Phase2interfaceMapOutput) ElementType() reflect.Type

func (Phase2interfaceMapOutput) MapIndex 

func (o Phase2interfaceMapOutput) MapIndex(k pulumi.StringInput) Phase2interfaceOutput

func (Phase2interfaceMapOutput) ToPhase2interfaceMapOutput 

func (o Phase2interfaceMapOutput) ToPhase2interfaceMapOutput() Phase2interfaceMapOutput

func (Phase2interfaceMapOutput) ToPhase2interfaceMapOutputWithContext 

func (o Phase2interfaceMapOutput) ToPhase2interfaceMapOutputWithContext(ctx context.Context) Phase2interfaceMapOutput

type Phase2interfaceOutput 

type Phase2interfaceOutput struct{ *pulumi.OutputState }

func (Phase2interfaceOutput) AddRoute 

func (o Phase2interfaceOutput) AddRoute() pulumi.StringOutput

Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`.

func (Phase2interfaceOutput) AutoDiscoveryForwarder 

func (o Phase2interfaceOutput) AutoDiscoveryForwarder() pulumi.StringOutput

Enable/disable forwarding short-cut messages. Valid values: `phase1`, `enable`, `disable`.

func (Phase2interfaceOutput) AutoDiscoverySender 

func (o Phase2interfaceOutput) AutoDiscoverySender() pulumi.StringOutput

Enable/disable sending short-cut messages. Valid values: `phase1`, `enable`, `disable`.

func (Phase2interfaceOutput) AutoNegotiate 

func (o Phase2interfaceOutput) AutoNegotiate() pulumi.StringOutput

Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`.

func (Phase2interfaceOutput) Comments 

func (o Phase2interfaceOutput) Comments() pulumi.StringPtrOutput

Comment.

func (Phase2interfaceOutput) DhcpIpsec 

func (o Phase2interfaceOutput) DhcpIpsec() pulumi.StringOutput

Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`.

func (Phase2interfaceOutput) Dhgrp 

func (o Phase2interfaceOutput) Dhgrp() pulumi.StringOutput

Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.

func (Phase2interfaceOutput) Diffserv 

func (o Phase2interfaceOutput) Diffserv() pulumi.StringOutput

Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`.

func (Phase2interfaceOutput) Diffservcode 

func (o Phase2interfaceOutput) Diffservcode() pulumi.StringOutput

DSCP value to be applied to the IPsec tunnel outer IP header.

func (Phase2interfaceOutput) DstAddrType 

func (o Phase2interfaceOutput) DstAddrType() pulumi.StringOutput

Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`.

func (Phase2interfaceOutput) DstEndIp 

func (o Phase2interfaceOutput) DstEndIp() pulumi.StringOutput

Remote proxy ID IPv4 end.

func (Phase2interfaceOutput) DstEndIp6 

func (o Phase2interfaceOutput) DstEndIp6() pulumi.StringOutput

Remote proxy ID IPv6 end.

func (Phase2interfaceOutput) DstName 

func (o Phase2interfaceOutput) DstName() pulumi.StringOutput

Remote proxy ID name.

func (Phase2interfaceOutput) DstName6 

func (o Phase2interfaceOutput) DstName6() pulumi.StringOutput

Remote proxy ID name.

func (Phase2interfaceOutput) DstPort 

func (o Phase2interfaceOutput) DstPort() pulumi.IntOutput

Quick mode destination port (1 - 65535 or 0 for all).

func (Phase2interfaceOutput) DstStartIp 

func (o Phase2interfaceOutput) DstStartIp() pulumi.StringOutput

Remote proxy ID IPv4 start.

func (Phase2interfaceOutput) DstStartIp6 

func (o Phase2interfaceOutput) DstStartIp6() pulumi.StringOutput

Remote proxy ID IPv6 start.

func (Phase2interfaceOutput) DstSubnet 

func (o Phase2interfaceOutput) DstSubnet() pulumi.StringOutput

Remote proxy ID IPv4 subnet.

func (Phase2interfaceOutput) DstSubnet6 

func (o Phase2interfaceOutput) DstSubnet6() pulumi.StringOutput

Remote proxy ID IPv6 subnet.

func (Phase2interfaceOutput) ElementType 

func (Phase2interfaceOutput) ElementType() reflect.Type

func (Phase2interfaceOutput) Encapsulation 

func (o Phase2interfaceOutput) Encapsulation() pulumi.StringOutput

ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`.

func (Phase2interfaceOutput) InboundDscpCopy 

func (o Phase2interfaceOutput) InboundDscpCopy() pulumi.StringOutput

Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`.

func (Phase2interfaceOutput) InitiatorTsNarrow 

func (o Phase2interfaceOutput) InitiatorTsNarrow() pulumi.StringOutput

Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`.

func (Phase2interfaceOutput) Ipv4Df 

func (o Phase2interfaceOutput) Ipv4Df() pulumi.StringOutput

Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`.

func (Phase2interfaceOutput) Keepalive 

func (o Phase2interfaceOutput) Keepalive() pulumi.StringOutput

Enable/disable keep alive. Valid values: `enable`, `disable`.

func (Phase2interfaceOutput) KeylifeType 

func (o Phase2interfaceOutput) KeylifeType() pulumi.StringOutput

Keylife type. Valid values: `seconds`, `kbs`, `both`.

func (Phase2interfaceOutput) Keylifekbs 

func (o Phase2interfaceOutput) Keylifekbs() pulumi.IntOutput

Phase2 key life in number of bytes of traffic (5120 - 4294967295).

func (Phase2interfaceOutput) Keylifeseconds 

func (o Phase2interfaceOutput) Keylifeseconds() pulumi.IntOutput

Phase2 key life in time in seconds (120 - 172800).

func (Phase2interfaceOutput) L2tp 

func (o Phase2interfaceOutput) L2tp() pulumi.StringOutput

Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`.

func (Phase2interfaceOutput) Name 

func (o Phase2interfaceOutput) Name() pulumi.StringOutput

IPsec tunnel name.

func (Phase2interfaceOutput) Pfs 

func (o Phase2interfaceOutput) Pfs() pulumi.StringOutput

Enable/disable PFS feature. Valid values: `enable`, `disable`.

func (Phase2interfaceOutput) Phase1name 

func (o Phase2interfaceOutput) Phase1name() pulumi.StringOutput

Phase 1 determines the options required for phase 2.

func (Phase2interfaceOutput) Proposal 

func (o Phase2interfaceOutput) Proposal() pulumi.StringOutput

Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.

func (Phase2interfaceOutput) Protocol 

func (o Phase2interfaceOutput) Protocol() pulumi.IntOutput

Quick mode protocol selector (1 - 255 or 0 for all).

func (Phase2interfaceOutput) Replay 

func (o Phase2interfaceOutput) Replay() pulumi.StringOutput

Enable/disable replay detection. Valid values: `enable`, `disable`.

func (Phase2interfaceOutput) RouteOverlap 

func (o Phase2interfaceOutput) RouteOverlap() pulumi.StringOutput

Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`.

func (Phase2interfaceOutput) SingleSource 

func (o Phase2interfaceOutput) SingleSource() pulumi.StringOutput

Enable/disable single source IP restriction. Valid values: `enable`, `disable`.

func (Phase2interfaceOutput) SrcAddrType 

func (o Phase2interfaceOutput) SrcAddrType() pulumi.StringOutput

Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`.

func (Phase2interfaceOutput) SrcEndIp 

func (o Phase2interfaceOutput) SrcEndIp() pulumi.StringOutput

Local proxy ID end.

func (Phase2interfaceOutput) SrcEndIp6 

func (o Phase2interfaceOutput) SrcEndIp6() pulumi.StringOutput

Local proxy ID IPv6 end.

func (Phase2interfaceOutput) SrcName 

func (o Phase2interfaceOutput) SrcName() pulumi.StringOutput

Local proxy ID name.

func (Phase2interfaceOutput) SrcName6 

func (o Phase2interfaceOutput) SrcName6() pulumi.StringOutput

Local proxy ID name.

func (Phase2interfaceOutput) SrcPort 

func (o Phase2interfaceOutput) SrcPort() pulumi.IntOutput

Quick mode source port (1 - 65535 or 0 for all).

func (Phase2interfaceOutput) SrcStartIp 

func (o Phase2interfaceOutput) SrcStartIp() pulumi.StringOutput

Local proxy ID start.

func (Phase2interfaceOutput) SrcStartIp6 

func (o Phase2interfaceOutput) SrcStartIp6() pulumi.StringOutput

Local proxy ID IPv6 start.

func (Phase2interfaceOutput) SrcSubnet 

func (o Phase2interfaceOutput) SrcSubnet() pulumi.StringOutput

Local proxy ID subnet.

func (Phase2interfaceOutput) SrcSubnet6 

func (o Phase2interfaceOutput) SrcSubnet6() pulumi.StringOutput

Local proxy ID IPv6 subnet.

func (Phase2interfaceOutput) ToPhase2interfaceOutput 

func (o Phase2interfaceOutput) ToPhase2interfaceOutput() Phase2interfaceOutput

func (Phase2interfaceOutput) ToPhase2interfaceOutputWithContext 

func (o Phase2interfaceOutput) ToPhase2interfaceOutputWithContext(ctx context.Context) Phase2interfaceOutput

func (Phase2interfaceOutput) Vdomparam 

func (o Phase2interfaceOutput) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

type Phase2interfaceState 

type Phase2interfaceState struct {
	// Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`.
	AddRoute pulumi.StringPtrInput
	// Enable/disable forwarding short-cut messages. Valid values: `phase1`, `enable`, `disable`.
	AutoDiscoveryForwarder pulumi.StringPtrInput
	// Enable/disable sending short-cut messages. Valid values: `phase1`, `enable`, `disable`.
	AutoDiscoverySender pulumi.StringPtrInput
	// Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`.
	AutoNegotiate pulumi.StringPtrInput
	// Comment.
	Comments pulumi.StringPtrInput
	// Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`.
	DhcpIpsec pulumi.StringPtrInput
	// Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
	Dhgrp pulumi.StringPtrInput
	// Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`.
	Diffserv pulumi.StringPtrInput
	// DSCP value to be applied to the IPsec tunnel outer IP header.
	Diffservcode pulumi.StringPtrInput
	// Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`.
	DstAddrType pulumi.StringPtrInput
	// Remote proxy ID IPv4 end.
	DstEndIp pulumi.StringPtrInput
	// Remote proxy ID IPv6 end.
	DstEndIp6 pulumi.StringPtrInput
	// Remote proxy ID name.
	DstName pulumi.StringPtrInput
	// Remote proxy ID name.
	DstName6 pulumi.StringPtrInput
	// Quick mode destination port (1 - 65535 or 0 for all).
	DstPort pulumi.IntPtrInput
	// Remote proxy ID IPv4 start.
	DstStartIp pulumi.StringPtrInput
	// Remote proxy ID IPv6 start.
	DstStartIp6 pulumi.StringPtrInput
	// Remote proxy ID IPv4 subnet.
	DstSubnet pulumi.StringPtrInput
	// Remote proxy ID IPv6 subnet.
	DstSubnet6 pulumi.StringPtrInput
	// ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`.
	Encapsulation pulumi.StringPtrInput
	// Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`.
	InboundDscpCopy pulumi.StringPtrInput
	// Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`.
	InitiatorTsNarrow pulumi.StringPtrInput
	// Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`.
	Ipv4Df pulumi.StringPtrInput
	// Enable/disable keep alive. Valid values: `enable`, `disable`.
	Keepalive pulumi.StringPtrInput
	// Keylife type. Valid values: `seconds`, `kbs`, `both`.
	KeylifeType pulumi.StringPtrInput
	// Phase2 key life in number of bytes of traffic (5120 - 4294967295).
	Keylifekbs pulumi.IntPtrInput
	// Phase2 key life in time in seconds (120 - 172800).
	Keylifeseconds pulumi.IntPtrInput
	// Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`.
	L2tp pulumi.StringPtrInput
	// IPsec tunnel name.
	Name pulumi.StringPtrInput
	// Enable/disable PFS feature. Valid values: `enable`, `disable`.
	Pfs pulumi.StringPtrInput
	// Phase 1 determines the options required for phase 2.
	Phase1name pulumi.StringPtrInput
	// Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
	Proposal pulumi.StringPtrInput
	// Quick mode protocol selector (1 - 255 or 0 for all).
	Protocol pulumi.IntPtrInput
	// Enable/disable replay detection. Valid values: `enable`, `disable`.
	Replay pulumi.StringPtrInput
	// Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`.
	RouteOverlap pulumi.StringPtrInput
	// Enable/disable single source IP restriction. Valid values: `enable`, `disable`.
	SingleSource pulumi.StringPtrInput
	// Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`.
	SrcAddrType pulumi.StringPtrInput
	// Local proxy ID end.
	SrcEndIp pulumi.StringPtrInput
	// Local proxy ID IPv6 end.
	SrcEndIp6 pulumi.StringPtrInput
	// Local proxy ID name.
	SrcName pulumi.StringPtrInput
	// Local proxy ID name.
	SrcName6 pulumi.StringPtrInput
	// Quick mode source port (1 - 65535 or 0 for all).
	SrcPort pulumi.IntPtrInput
	// Local proxy ID start.
	SrcStartIp pulumi.StringPtrInput
	// Local proxy ID IPv6 start.
	SrcStartIp6 pulumi.StringPtrInput
	// Local proxy ID subnet.
	SrcSubnet pulumi.StringPtrInput
	// Local proxy ID IPv6 subnet.
	SrcSubnet6 pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

func (Phase2interfaceState) ElementType 

func (Phase2interfaceState) ElementType() reflect.Type

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.