Documentation ¶
Index ¶
- type Concentrator
- type ConcentratorArgs
- type ConcentratorArray
- type ConcentratorArrayInput
- type ConcentratorArrayOutput
- func (ConcentratorArrayOutput) ElementType() reflect.Type
- func (o ConcentratorArrayOutput) Index(i pulumi.IntInput) ConcentratorOutput
- func (o ConcentratorArrayOutput) ToConcentratorArrayOutput() ConcentratorArrayOutput
- func (o ConcentratorArrayOutput) ToConcentratorArrayOutputWithContext(ctx context.Context) ConcentratorArrayOutput
- type ConcentratorInput
- type ConcentratorMap
- type ConcentratorMapInput
- type ConcentratorMapOutput
- func (ConcentratorMapOutput) ElementType() reflect.Type
- func (o ConcentratorMapOutput) MapIndex(k pulumi.StringInput) ConcentratorOutput
- func (o ConcentratorMapOutput) ToConcentratorMapOutput() ConcentratorMapOutput
- func (o ConcentratorMapOutput) ToConcentratorMapOutputWithContext(ctx context.Context) ConcentratorMapOutput
- type ConcentratorMember
- type ConcentratorMemberArgs
- type ConcentratorMemberArray
- type ConcentratorMemberArrayInput
- type ConcentratorMemberArrayOutput
- func (ConcentratorMemberArrayOutput) ElementType() reflect.Type
- func (o ConcentratorMemberArrayOutput) Index(i pulumi.IntInput) ConcentratorMemberOutput
- func (o ConcentratorMemberArrayOutput) ToConcentratorMemberArrayOutput() ConcentratorMemberArrayOutput
- func (o ConcentratorMemberArrayOutput) ToConcentratorMemberArrayOutputWithContext(ctx context.Context) ConcentratorMemberArrayOutput
- type ConcentratorMemberInput
- type ConcentratorMemberOutput
- func (ConcentratorMemberOutput) ElementType() reflect.Type
- func (o ConcentratorMemberOutput) Name() pulumi.StringPtrOutput
- func (o ConcentratorMemberOutput) ToConcentratorMemberOutput() ConcentratorMemberOutput
- func (o ConcentratorMemberOutput) ToConcentratorMemberOutputWithContext(ctx context.Context) ConcentratorMemberOutput
- type ConcentratorOutput
- func (o ConcentratorOutput) DynamicSortSubtable() pulumi.StringPtrOutput
- func (ConcentratorOutput) ElementType() reflect.Type
- func (o ConcentratorOutput) Fosid() pulumi.IntOutput
- func (o ConcentratorOutput) GetAllTables() pulumi.StringPtrOutput
- func (o ConcentratorOutput) Members() ConcentratorMemberArrayOutput
- func (o ConcentratorOutput) Name() pulumi.StringOutput
- func (o ConcentratorOutput) SrcCheck() pulumi.StringOutput
- func (o ConcentratorOutput) ToConcentratorOutput() ConcentratorOutput
- func (o ConcentratorOutput) ToConcentratorOutputWithContext(ctx context.Context) ConcentratorOutput
- func (o ConcentratorOutput) Vdomparam() pulumi.StringPtrOutput
- type ConcentratorState
- type Fec
- type FecArgs
- type FecArray
- type FecArrayInput
- type FecArrayOutput
- type FecInput
- type FecMap
- type FecMapInput
- type FecMapOutput
- type FecMapping
- type FecMappingArgs
- type FecMappingArray
- type FecMappingArrayInput
- type FecMappingArrayOutput
- func (FecMappingArrayOutput) ElementType() reflect.Type
- func (o FecMappingArrayOutput) Index(i pulumi.IntInput) FecMappingOutput
- func (o FecMappingArrayOutput) ToFecMappingArrayOutput() FecMappingArrayOutput
- func (o FecMappingArrayOutput) ToFecMappingArrayOutputWithContext(ctx context.Context) FecMappingArrayOutput
- type FecMappingInput
- type FecMappingOutput
- func (o FecMappingOutput) BandwidthBiThreshold() pulumi.IntPtrOutput
- func (o FecMappingOutput) BandwidthDownThreshold() pulumi.IntPtrOutput
- func (o FecMappingOutput) BandwidthUpThreshold() pulumi.IntPtrOutput
- func (o FecMappingOutput) Base() pulumi.IntPtrOutput
- func (FecMappingOutput) ElementType() reflect.Type
- func (o FecMappingOutput) LatencyThreshold() pulumi.IntPtrOutput
- func (o FecMappingOutput) PacketLossThreshold() pulumi.IntPtrOutput
- func (o FecMappingOutput) Redundant() pulumi.IntPtrOutput
- func (o FecMappingOutput) Seqno() pulumi.IntPtrOutput
- func (o FecMappingOutput) ToFecMappingOutput() FecMappingOutput
- func (o FecMappingOutput) ToFecMappingOutputWithContext(ctx context.Context) FecMappingOutput
- type FecOutput
- func (o FecOutput) DynamicSortSubtable() pulumi.StringPtrOutput
- func (FecOutput) ElementType() reflect.Type
- func (o FecOutput) GetAllTables() pulumi.StringPtrOutput
- func (o FecOutput) Mappings() FecMappingArrayOutput
- func (o FecOutput) Name() pulumi.StringOutput
- func (o FecOutput) ToFecOutput() FecOutput
- func (o FecOutput) ToFecOutputWithContext(ctx context.Context) FecOutput
- func (o FecOutput) Vdomparam() pulumi.StringPtrOutput
- type FecState
- type Forticlient
- type ForticlientArgs
- type ForticlientArray
- type ForticlientArrayInput
- type ForticlientArrayOutput
- func (ForticlientArrayOutput) ElementType() reflect.Type
- func (o ForticlientArrayOutput) Index(i pulumi.IntInput) ForticlientOutput
- func (o ForticlientArrayOutput) ToForticlientArrayOutput() ForticlientArrayOutput
- func (o ForticlientArrayOutput) ToForticlientArrayOutputWithContext(ctx context.Context) ForticlientArrayOutput
- type ForticlientInput
- type ForticlientMap
- type ForticlientMapInput
- type ForticlientMapOutput
- func (ForticlientMapOutput) ElementType() reflect.Type
- func (o ForticlientMapOutput) MapIndex(k pulumi.StringInput) ForticlientOutput
- func (o ForticlientMapOutput) ToForticlientMapOutput() ForticlientMapOutput
- func (o ForticlientMapOutput) ToForticlientMapOutputWithContext(ctx context.Context) ForticlientMapOutput
- type ForticlientOutput
- func (ForticlientOutput) ElementType() reflect.Type
- func (o ForticlientOutput) Phase2name() pulumi.StringOutput
- func (o ForticlientOutput) Realm() pulumi.StringOutput
- func (o ForticlientOutput) Status() pulumi.StringOutput
- func (o ForticlientOutput) ToForticlientOutput() ForticlientOutput
- func (o ForticlientOutput) ToForticlientOutputWithContext(ctx context.Context) ForticlientOutput
- func (o ForticlientOutput) Usergroupname() pulumi.StringOutput
- func (o ForticlientOutput) Vdomparam() pulumi.StringPtrOutput
- type ForticlientState
- type Manualkey
- type ManualkeyArgs
- type ManualkeyArray
- type ManualkeyArrayInput
- type ManualkeyArrayOutput
- func (ManualkeyArrayOutput) ElementType() reflect.Type
- func (o ManualkeyArrayOutput) Index(i pulumi.IntInput) ManualkeyOutput
- func (o ManualkeyArrayOutput) ToManualkeyArrayOutput() ManualkeyArrayOutput
- func (o ManualkeyArrayOutput) ToManualkeyArrayOutputWithContext(ctx context.Context) ManualkeyArrayOutput
- type ManualkeyInput
- type ManualkeyMap
- type ManualkeyMapInput
- type ManualkeyMapOutput
- type ManualkeyOutput
- func (o ManualkeyOutput) Authentication() pulumi.StringOutput
- func (o ManualkeyOutput) Authkey() pulumi.StringOutput
- func (ManualkeyOutput) ElementType() reflect.Type
- func (o ManualkeyOutput) Enckey() pulumi.StringOutput
- func (o ManualkeyOutput) Encryption() pulumi.StringOutput
- func (o ManualkeyOutput) Interface() pulumi.StringOutput
- func (o ManualkeyOutput) LocalGw() pulumi.StringOutput
- func (o ManualkeyOutput) Localspi() pulumi.StringOutput
- func (o ManualkeyOutput) Name() pulumi.StringOutput
- func (o ManualkeyOutput) NpuOffload() pulumi.StringOutput
- func (o ManualkeyOutput) RemoteGw() pulumi.StringOutput
- func (o ManualkeyOutput) Remotespi() pulumi.StringOutput
- func (o ManualkeyOutput) ToManualkeyOutput() ManualkeyOutput
- func (o ManualkeyOutput) ToManualkeyOutputWithContext(ctx context.Context) ManualkeyOutput
- func (o ManualkeyOutput) Vdomparam() pulumi.StringPtrOutput
- type ManualkeyState
- type Manualkeyinterface
- type ManualkeyinterfaceArgs
- type ManualkeyinterfaceArray
- type ManualkeyinterfaceArrayInput
- type ManualkeyinterfaceArrayOutput
- func (ManualkeyinterfaceArrayOutput) ElementType() reflect.Type
- func (o ManualkeyinterfaceArrayOutput) Index(i pulumi.IntInput) ManualkeyinterfaceOutput
- func (o ManualkeyinterfaceArrayOutput) ToManualkeyinterfaceArrayOutput() ManualkeyinterfaceArrayOutput
- func (o ManualkeyinterfaceArrayOutput) ToManualkeyinterfaceArrayOutputWithContext(ctx context.Context) ManualkeyinterfaceArrayOutput
- type ManualkeyinterfaceInput
- type ManualkeyinterfaceMap
- type ManualkeyinterfaceMapInput
- type ManualkeyinterfaceMapOutput
- func (ManualkeyinterfaceMapOutput) ElementType() reflect.Type
- func (o ManualkeyinterfaceMapOutput) MapIndex(k pulumi.StringInput) ManualkeyinterfaceOutput
- func (o ManualkeyinterfaceMapOutput) ToManualkeyinterfaceMapOutput() ManualkeyinterfaceMapOutput
- func (o ManualkeyinterfaceMapOutput) ToManualkeyinterfaceMapOutputWithContext(ctx context.Context) ManualkeyinterfaceMapOutput
- type ManualkeyinterfaceOutput
- func (o ManualkeyinterfaceOutput) AddrType() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) AuthAlg() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) AuthKey() pulumi.StringOutput
- func (ManualkeyinterfaceOutput) ElementType() reflect.Type
- func (o ManualkeyinterfaceOutput) EncAlg() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) EncKey() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) Interface() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) IpVersion() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) LocalGw() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) LocalGw6() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) LocalSpi() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) Name() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) NpuOffload() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) RemoteGw() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) RemoteGw6() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) RemoteSpi() pulumi.StringOutput
- func (o ManualkeyinterfaceOutput) ToManualkeyinterfaceOutput() ManualkeyinterfaceOutput
- func (o ManualkeyinterfaceOutput) ToManualkeyinterfaceOutputWithContext(ctx context.Context) ManualkeyinterfaceOutput
- func (o ManualkeyinterfaceOutput) Vdomparam() pulumi.StringPtrOutput
- type ManualkeyinterfaceState
- type Phase1
- type Phase1Args
- type Phase1Array
- type Phase1ArrayInput
- type Phase1ArrayOutput
- type Phase1BackupGateway
- type Phase1BackupGatewayArgs
- type Phase1BackupGatewayArray
- type Phase1BackupGatewayArrayInput
- type Phase1BackupGatewayArrayOutput
- func (Phase1BackupGatewayArrayOutput) ElementType() reflect.Type
- func (o Phase1BackupGatewayArrayOutput) Index(i pulumi.IntInput) Phase1BackupGatewayOutput
- func (o Phase1BackupGatewayArrayOutput) ToPhase1BackupGatewayArrayOutput() Phase1BackupGatewayArrayOutput
- func (o Phase1BackupGatewayArrayOutput) ToPhase1BackupGatewayArrayOutputWithContext(ctx context.Context) Phase1BackupGatewayArrayOutput
- type Phase1BackupGatewayInput
- type Phase1BackupGatewayOutput
- func (o Phase1BackupGatewayOutput) Address() pulumi.StringPtrOutput
- func (Phase1BackupGatewayOutput) ElementType() reflect.Type
- func (o Phase1BackupGatewayOutput) ToPhase1BackupGatewayOutput() Phase1BackupGatewayOutput
- func (o Phase1BackupGatewayOutput) ToPhase1BackupGatewayOutputWithContext(ctx context.Context) Phase1BackupGatewayOutput
- type Phase1Certificate
- type Phase1CertificateArgs
- type Phase1CertificateArray
- type Phase1CertificateArrayInput
- type Phase1CertificateArrayOutput
- func (Phase1CertificateArrayOutput) ElementType() reflect.Type
- func (o Phase1CertificateArrayOutput) Index(i pulumi.IntInput) Phase1CertificateOutput
- func (o Phase1CertificateArrayOutput) ToPhase1CertificateArrayOutput() Phase1CertificateArrayOutput
- func (o Phase1CertificateArrayOutput) ToPhase1CertificateArrayOutputWithContext(ctx context.Context) Phase1CertificateArrayOutput
- type Phase1CertificateInput
- type Phase1CertificateOutput
- func (Phase1CertificateOutput) ElementType() reflect.Type
- func (o Phase1CertificateOutput) Name() pulumi.StringPtrOutput
- func (o Phase1CertificateOutput) ToPhase1CertificateOutput() Phase1CertificateOutput
- func (o Phase1CertificateOutput) ToPhase1CertificateOutputWithContext(ctx context.Context) Phase1CertificateOutput
- type Phase1Input
- type Phase1InternalDomainList
- type Phase1InternalDomainListArgs
- func (Phase1InternalDomainListArgs) ElementType() reflect.Type
- func (i Phase1InternalDomainListArgs) ToPhase1InternalDomainListOutput() Phase1InternalDomainListOutput
- func (i Phase1InternalDomainListArgs) ToPhase1InternalDomainListOutputWithContext(ctx context.Context) Phase1InternalDomainListOutput
- type Phase1InternalDomainListArray
- func (Phase1InternalDomainListArray) ElementType() reflect.Type
- func (i Phase1InternalDomainListArray) ToPhase1InternalDomainListArrayOutput() Phase1InternalDomainListArrayOutput
- func (i Phase1InternalDomainListArray) ToPhase1InternalDomainListArrayOutputWithContext(ctx context.Context) Phase1InternalDomainListArrayOutput
- type Phase1InternalDomainListArrayInput
- type Phase1InternalDomainListArrayOutput
- func (Phase1InternalDomainListArrayOutput) ElementType() reflect.Type
- func (o Phase1InternalDomainListArrayOutput) Index(i pulumi.IntInput) Phase1InternalDomainListOutput
- func (o Phase1InternalDomainListArrayOutput) ToPhase1InternalDomainListArrayOutput() Phase1InternalDomainListArrayOutput
- func (o Phase1InternalDomainListArrayOutput) ToPhase1InternalDomainListArrayOutputWithContext(ctx context.Context) Phase1InternalDomainListArrayOutput
- type Phase1InternalDomainListInput
- type Phase1InternalDomainListOutput
- func (o Phase1InternalDomainListOutput) DomainName() pulumi.StringPtrOutput
- func (Phase1InternalDomainListOutput) ElementType() reflect.Type
- func (o Phase1InternalDomainListOutput) ToPhase1InternalDomainListOutput() Phase1InternalDomainListOutput
- func (o Phase1InternalDomainListOutput) ToPhase1InternalDomainListOutputWithContext(ctx context.Context) Phase1InternalDomainListOutput
- type Phase1Ipv4ExcludeRange
- type Phase1Ipv4ExcludeRangeArgs
- type Phase1Ipv4ExcludeRangeArray
- func (Phase1Ipv4ExcludeRangeArray) ElementType() reflect.Type
- func (i Phase1Ipv4ExcludeRangeArray) ToPhase1Ipv4ExcludeRangeArrayOutput() Phase1Ipv4ExcludeRangeArrayOutput
- func (i Phase1Ipv4ExcludeRangeArray) ToPhase1Ipv4ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1Ipv4ExcludeRangeArrayOutput
- type Phase1Ipv4ExcludeRangeArrayInput
- type Phase1Ipv4ExcludeRangeArrayOutput
- func (Phase1Ipv4ExcludeRangeArrayOutput) ElementType() reflect.Type
- func (o Phase1Ipv4ExcludeRangeArrayOutput) Index(i pulumi.IntInput) Phase1Ipv4ExcludeRangeOutput
- func (o Phase1Ipv4ExcludeRangeArrayOutput) ToPhase1Ipv4ExcludeRangeArrayOutput() Phase1Ipv4ExcludeRangeArrayOutput
- func (o Phase1Ipv4ExcludeRangeArrayOutput) ToPhase1Ipv4ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1Ipv4ExcludeRangeArrayOutput
- type Phase1Ipv4ExcludeRangeInput
- type Phase1Ipv4ExcludeRangeOutput
- func (Phase1Ipv4ExcludeRangeOutput) ElementType() reflect.Type
- func (o Phase1Ipv4ExcludeRangeOutput) EndIp() pulumi.StringPtrOutput
- func (o Phase1Ipv4ExcludeRangeOutput) Id() pulumi.IntPtrOutput
- func (o Phase1Ipv4ExcludeRangeOutput) StartIp() pulumi.StringPtrOutput
- func (o Phase1Ipv4ExcludeRangeOutput) ToPhase1Ipv4ExcludeRangeOutput() Phase1Ipv4ExcludeRangeOutput
- func (o Phase1Ipv4ExcludeRangeOutput) ToPhase1Ipv4ExcludeRangeOutputWithContext(ctx context.Context) Phase1Ipv4ExcludeRangeOutput
- type Phase1Ipv6ExcludeRange
- type Phase1Ipv6ExcludeRangeArgs
- type Phase1Ipv6ExcludeRangeArray
- func (Phase1Ipv6ExcludeRangeArray) ElementType() reflect.Type
- func (i Phase1Ipv6ExcludeRangeArray) ToPhase1Ipv6ExcludeRangeArrayOutput() Phase1Ipv6ExcludeRangeArrayOutput
- func (i Phase1Ipv6ExcludeRangeArray) ToPhase1Ipv6ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1Ipv6ExcludeRangeArrayOutput
- type Phase1Ipv6ExcludeRangeArrayInput
- type Phase1Ipv6ExcludeRangeArrayOutput
- func (Phase1Ipv6ExcludeRangeArrayOutput) ElementType() reflect.Type
- func (o Phase1Ipv6ExcludeRangeArrayOutput) Index(i pulumi.IntInput) Phase1Ipv6ExcludeRangeOutput
- func (o Phase1Ipv6ExcludeRangeArrayOutput) ToPhase1Ipv6ExcludeRangeArrayOutput() Phase1Ipv6ExcludeRangeArrayOutput
- func (o Phase1Ipv6ExcludeRangeArrayOutput) ToPhase1Ipv6ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1Ipv6ExcludeRangeArrayOutput
- type Phase1Ipv6ExcludeRangeInput
- type Phase1Ipv6ExcludeRangeOutput
- func (Phase1Ipv6ExcludeRangeOutput) ElementType() reflect.Type
- func (o Phase1Ipv6ExcludeRangeOutput) EndIp() pulumi.StringPtrOutput
- func (o Phase1Ipv6ExcludeRangeOutput) Id() pulumi.IntPtrOutput
- func (o Phase1Ipv6ExcludeRangeOutput) StartIp() pulumi.StringPtrOutput
- func (o Phase1Ipv6ExcludeRangeOutput) ToPhase1Ipv6ExcludeRangeOutput() Phase1Ipv6ExcludeRangeOutput
- func (o Phase1Ipv6ExcludeRangeOutput) ToPhase1Ipv6ExcludeRangeOutputWithContext(ctx context.Context) Phase1Ipv6ExcludeRangeOutput
- type Phase1Map
- type Phase1MapInput
- type Phase1MapOutput
- type Phase1Output
- func (o Phase1Output) AcctVerify() pulumi.StringOutput
- func (o Phase1Output) AddGwRoute() pulumi.StringOutput
- func (o Phase1Output) AddRoute() pulumi.StringOutput
- func (o Phase1Output) AssignIp() pulumi.StringOutput
- func (o Phase1Output) AssignIpFrom() pulumi.StringOutput
- func (o Phase1Output) Authmethod() pulumi.StringOutput
- func (o Phase1Output) AuthmethodRemote() pulumi.StringOutput
- func (o Phase1Output) Authpasswd() pulumi.StringPtrOutput
- func (o Phase1Output) Authusr() pulumi.StringOutput
- func (o Phase1Output) Authusrgrp() pulumi.StringOutput
- func (o Phase1Output) AutoNegotiate() pulumi.StringOutput
- func (o Phase1Output) AzureAdAutoconnect() pulumi.StringOutput
- func (o Phase1Output) BackupGateways() Phase1BackupGatewayArrayOutput
- func (o Phase1Output) Banner() pulumi.StringPtrOutput
- func (o Phase1Output) CertIdValidation() pulumi.StringOutput
- func (o Phase1Output) CertTrustStore() pulumi.StringOutput
- func (o Phase1Output) Certificates() Phase1CertificateArrayOutput
- func (o Phase1Output) ChildlessIke() pulumi.StringOutput
- func (o Phase1Output) ClientAutoNegotiate() pulumi.StringOutput
- func (o Phase1Output) ClientKeepAlive() pulumi.StringOutput
- func (o Phase1Output) Comments() pulumi.StringPtrOutput
- func (o Phase1Output) DevId() pulumi.StringOutput
- func (o Phase1Output) DevIdNotification() pulumi.StringOutput
- func (o Phase1Output) Dhcp6RaLinkaddr() pulumi.StringOutput
- func (o Phase1Output) DhcpRaGiaddr() pulumi.StringOutput
- func (o Phase1Output) Dhgrp() pulumi.StringOutput
- func (o Phase1Output) DigitalSignatureAuth() pulumi.StringOutput
- func (o Phase1Output) Distance() pulumi.IntOutput
- func (o Phase1Output) DnsMode() pulumi.StringOutput
- func (o Phase1Output) Domain() pulumi.StringOutput
- func (o Phase1Output) Dpd() pulumi.StringOutput
- func (o Phase1Output) DpdRetrycount() pulumi.IntOutput
- func (o Phase1Output) DpdRetryinterval() pulumi.StringOutput
- func (o Phase1Output) DynamicSortSubtable() pulumi.StringPtrOutput
- func (o Phase1Output) Eap() pulumi.StringOutput
- func (o Phase1Output) EapCertAuth() pulumi.StringOutput
- func (o Phase1Output) EapExcludePeergrp() pulumi.StringOutput
- func (o Phase1Output) EapIdentity() pulumi.StringOutput
- func (Phase1Output) ElementType() reflect.Type
- func (o Phase1Output) EmsSnCheck() pulumi.StringOutput
- func (o Phase1Output) EnforceUniqueId() pulumi.StringOutput
- func (o Phase1Output) Esn() pulumi.StringOutput
- func (o Phase1Output) ExchangeFgtDeviceId() pulumi.StringOutput
- func (o Phase1Output) FallbackTcpThreshold() pulumi.IntOutput
- func (o Phase1Output) FecBase() pulumi.IntOutput
- func (o Phase1Output) FecCodec() pulumi.IntOutput
- func (o Phase1Output) FecCodecString() pulumi.StringOutput
- func (o Phase1Output) FecEgress() pulumi.StringOutput
- func (o Phase1Output) FecHealthCheck() pulumi.StringOutput
- func (o Phase1Output) FecIngress() pulumi.StringOutput
- func (o Phase1Output) FecMappingProfile() pulumi.StringOutput
- func (o Phase1Output) FecReceiveTimeout() pulumi.IntOutput
- func (o Phase1Output) FecRedundant() pulumi.IntOutput
- func (o Phase1Output) FecSendTimeout() pulumi.IntOutput
- func (o Phase1Output) FgspSync() pulumi.StringOutput
- func (o Phase1Output) ForticlientEnforcement() pulumi.StringOutput
- func (o Phase1Output) FortinetEsp() pulumi.StringOutput
- func (o Phase1Output) Fragmentation() pulumi.StringOutput
- func (o Phase1Output) FragmentationMtu() pulumi.IntOutput
- func (o Phase1Output) GetAllTables() pulumi.StringPtrOutput
- func (o Phase1Output) GroupAuthentication() pulumi.StringOutput
- func (o Phase1Output) GroupAuthenticationSecret() pulumi.StringPtrOutput
- func (o Phase1Output) HaSyncEspSeqno() pulumi.StringOutput
- func (o Phase1Output) IdleTimeout() pulumi.StringOutput
- func (o Phase1Output) IdleTimeoutinterval() pulumi.IntOutput
- func (o Phase1Output) IkeVersion() pulumi.StringOutput
- func (o Phase1Output) InboundDscpCopy() pulumi.StringOutput
- func (o Phase1Output) IncludeLocalLan() pulumi.StringOutput
- func (o Phase1Output) Interface() pulumi.StringOutput
- func (o Phase1Output) InternalDomainLists() Phase1InternalDomainListArrayOutput
- func (o Phase1Output) IpDelayInterval() pulumi.IntOutput
- func (o Phase1Output) Ipv4DnsServer1() pulumi.StringOutput
- func (o Phase1Output) Ipv4DnsServer2() pulumi.StringOutput
- func (o Phase1Output) Ipv4DnsServer3() pulumi.StringOutput
- func (o Phase1Output) Ipv4EndIp() pulumi.StringOutput
- func (o Phase1Output) Ipv4ExcludeRanges() Phase1Ipv4ExcludeRangeArrayOutput
- func (o Phase1Output) Ipv4Name() pulumi.StringOutput
- func (o Phase1Output) Ipv4Netmask() pulumi.StringOutput
- func (o Phase1Output) Ipv4SplitExclude() pulumi.StringOutput
- func (o Phase1Output) Ipv4SplitInclude() pulumi.StringOutput
- func (o Phase1Output) Ipv4StartIp() pulumi.StringOutput
- func (o Phase1Output) Ipv4WinsServer1() pulumi.StringOutput
- func (o Phase1Output) Ipv4WinsServer2() pulumi.StringOutput
- func (o Phase1Output) Ipv6DnsServer1() pulumi.StringOutput
- func (o Phase1Output) Ipv6DnsServer2() pulumi.StringOutput
- func (o Phase1Output) Ipv6DnsServer3() pulumi.StringOutput
- func (o Phase1Output) Ipv6EndIp() pulumi.StringOutput
- func (o Phase1Output) Ipv6ExcludeRanges() Phase1Ipv6ExcludeRangeArrayOutput
- func (o Phase1Output) Ipv6Name() pulumi.StringOutput
- func (o Phase1Output) Ipv6Prefix() pulumi.IntOutput
- func (o Phase1Output) Ipv6SplitExclude() pulumi.StringOutput
- func (o Phase1Output) Ipv6SplitInclude() pulumi.StringOutput
- func (o Phase1Output) Ipv6StartIp() pulumi.StringOutput
- func (o Phase1Output) Keepalive() pulumi.IntOutput
- func (o Phase1Output) Keylife() pulumi.IntOutput
- func (o Phase1Output) Kms() pulumi.StringOutput
- func (o Phase1Output) LinkCost() pulumi.IntOutput
- func (o Phase1Output) LocalGw() pulumi.StringOutput
- func (o Phase1Output) Localid() pulumi.StringOutput
- func (o Phase1Output) LocalidType() pulumi.StringOutput
- func (o Phase1Output) LoopbackAsymroute() pulumi.StringOutput
- func (o Phase1Output) MeshSelectorType() pulumi.StringOutput
- func (o Phase1Output) Mode() pulumi.StringOutput
- func (o Phase1Output) ModeCfg() pulumi.StringOutput
- func (o Phase1Output) ModeCfgAllowClientSelector() pulumi.StringOutput
- func (o Phase1Output) Name() pulumi.StringOutput
- func (o Phase1Output) Nattraversal() pulumi.StringOutput
- func (o Phase1Output) NegotiateTimeout() pulumi.IntOutput
- func (o Phase1Output) NetworkId() pulumi.IntOutput
- func (o Phase1Output) NetworkOverlay() pulumi.StringOutput
- func (o Phase1Output) NpuOffload() pulumi.StringOutput
- func (o Phase1Output) Peer() pulumi.StringOutput
- func (o Phase1Output) Peergrp() pulumi.StringOutput
- func (o Phase1Output) Peerid() pulumi.StringOutput
- func (o Phase1Output) Peertype() pulumi.StringOutput
- func (o Phase1Output) Ppk() pulumi.StringOutput
- func (o Phase1Output) PpkIdentity() pulumi.StringOutput
- func (o Phase1Output) PpkSecret() pulumi.StringPtrOutput
- func (o Phase1Output) Priority() pulumi.IntOutput
- func (o Phase1Output) Proposal() pulumi.StringOutput
- func (o Phase1Output) Psksecret() pulumi.StringOutput
- func (o Phase1Output) PsksecretRemote() pulumi.StringPtrOutput
- func (o Phase1Output) Qkd() pulumi.StringOutput
- func (o Phase1Output) QkdProfile() pulumi.StringOutput
- func (o Phase1Output) Reauth() pulumi.StringOutput
- func (o Phase1Output) Rekey() pulumi.StringOutput
- func (o Phase1Output) RemoteGw() pulumi.StringOutput
- func (o Phase1Output) RemotegwDdns() pulumi.StringOutput
- func (o Phase1Output) RsaSignatureFormat() pulumi.StringOutput
- func (o Phase1Output) RsaSignatureHashOverride() pulumi.StringOutput
- func (o Phase1Output) SavePassword() pulumi.StringOutput
- func (o Phase1Output) SendCertChain() pulumi.StringOutput
- func (o Phase1Output) SignatureHashAlg() pulumi.StringOutput
- func (o Phase1Output) SplitIncludeService() pulumi.StringOutput
- func (o Phase1Output) SuiteB() pulumi.StringOutput
- func (o Phase1Output) ToPhase1Output() Phase1Output
- func (o Phase1Output) ToPhase1OutputWithContext(ctx context.Context) Phase1Output
- func (o Phase1Output) Transport() pulumi.StringOutput
- func (o Phase1Output) Type() pulumi.StringOutput
- func (o Phase1Output) UnitySupport() pulumi.StringOutput
- func (o Phase1Output) Usrgrp() pulumi.StringOutput
- func (o Phase1Output) Vdomparam() pulumi.StringPtrOutput
- func (o Phase1Output) WizardType() pulumi.StringOutput
- func (o Phase1Output) Xauthtype() pulumi.StringOutput
- type Phase1State
- type Phase1interface
- type Phase1interfaceArgs
- type Phase1interfaceArray
- type Phase1interfaceArrayInput
- type Phase1interfaceArrayOutput
- func (Phase1interfaceArrayOutput) ElementType() reflect.Type
- func (o Phase1interfaceArrayOutput) Index(i pulumi.IntInput) Phase1interfaceOutput
- func (o Phase1interfaceArrayOutput) ToPhase1interfaceArrayOutput() Phase1interfaceArrayOutput
- func (o Phase1interfaceArrayOutput) ToPhase1interfaceArrayOutputWithContext(ctx context.Context) Phase1interfaceArrayOutput
- type Phase1interfaceBackupGateway
- type Phase1interfaceBackupGatewayArgs
- func (Phase1interfaceBackupGatewayArgs) ElementType() reflect.Type
- func (i Phase1interfaceBackupGatewayArgs) ToPhase1interfaceBackupGatewayOutput() Phase1interfaceBackupGatewayOutput
- func (i Phase1interfaceBackupGatewayArgs) ToPhase1interfaceBackupGatewayOutputWithContext(ctx context.Context) Phase1interfaceBackupGatewayOutput
- type Phase1interfaceBackupGatewayArray
- func (Phase1interfaceBackupGatewayArray) ElementType() reflect.Type
- func (i Phase1interfaceBackupGatewayArray) ToPhase1interfaceBackupGatewayArrayOutput() Phase1interfaceBackupGatewayArrayOutput
- func (i Phase1interfaceBackupGatewayArray) ToPhase1interfaceBackupGatewayArrayOutputWithContext(ctx context.Context) Phase1interfaceBackupGatewayArrayOutput
- type Phase1interfaceBackupGatewayArrayInput
- type Phase1interfaceBackupGatewayArrayOutput
- func (Phase1interfaceBackupGatewayArrayOutput) ElementType() reflect.Type
- func (o Phase1interfaceBackupGatewayArrayOutput) Index(i pulumi.IntInput) Phase1interfaceBackupGatewayOutput
- func (o Phase1interfaceBackupGatewayArrayOutput) ToPhase1interfaceBackupGatewayArrayOutput() Phase1interfaceBackupGatewayArrayOutput
- func (o Phase1interfaceBackupGatewayArrayOutput) ToPhase1interfaceBackupGatewayArrayOutputWithContext(ctx context.Context) Phase1interfaceBackupGatewayArrayOutput
- type Phase1interfaceBackupGatewayInput
- type Phase1interfaceBackupGatewayOutput
- func (o Phase1interfaceBackupGatewayOutput) Address() pulumi.StringPtrOutput
- func (Phase1interfaceBackupGatewayOutput) ElementType() reflect.Type
- func (o Phase1interfaceBackupGatewayOutput) ToPhase1interfaceBackupGatewayOutput() Phase1interfaceBackupGatewayOutput
- func (o Phase1interfaceBackupGatewayOutput) ToPhase1interfaceBackupGatewayOutputWithContext(ctx context.Context) Phase1interfaceBackupGatewayOutput
- type Phase1interfaceCertificate
- type Phase1interfaceCertificateArgs
- func (Phase1interfaceCertificateArgs) ElementType() reflect.Type
- func (i Phase1interfaceCertificateArgs) ToPhase1interfaceCertificateOutput() Phase1interfaceCertificateOutput
- func (i Phase1interfaceCertificateArgs) ToPhase1interfaceCertificateOutputWithContext(ctx context.Context) Phase1interfaceCertificateOutput
- type Phase1interfaceCertificateArray
- func (Phase1interfaceCertificateArray) ElementType() reflect.Type
- func (i Phase1interfaceCertificateArray) ToPhase1interfaceCertificateArrayOutput() Phase1interfaceCertificateArrayOutput
- func (i Phase1interfaceCertificateArray) ToPhase1interfaceCertificateArrayOutputWithContext(ctx context.Context) Phase1interfaceCertificateArrayOutput
- type Phase1interfaceCertificateArrayInput
- type Phase1interfaceCertificateArrayOutput
- func (Phase1interfaceCertificateArrayOutput) ElementType() reflect.Type
- func (o Phase1interfaceCertificateArrayOutput) Index(i pulumi.IntInput) Phase1interfaceCertificateOutput
- func (o Phase1interfaceCertificateArrayOutput) ToPhase1interfaceCertificateArrayOutput() Phase1interfaceCertificateArrayOutput
- func (o Phase1interfaceCertificateArrayOutput) ToPhase1interfaceCertificateArrayOutputWithContext(ctx context.Context) Phase1interfaceCertificateArrayOutput
- type Phase1interfaceCertificateInput
- type Phase1interfaceCertificateOutput
- func (Phase1interfaceCertificateOutput) ElementType() reflect.Type
- func (o Phase1interfaceCertificateOutput) Name() pulumi.StringPtrOutput
- func (o Phase1interfaceCertificateOutput) ToPhase1interfaceCertificateOutput() Phase1interfaceCertificateOutput
- func (o Phase1interfaceCertificateOutput) ToPhase1interfaceCertificateOutputWithContext(ctx context.Context) Phase1interfaceCertificateOutput
- type Phase1interfaceInput
- type Phase1interfaceInternalDomainList
- type Phase1interfaceInternalDomainListArgs
- func (Phase1interfaceInternalDomainListArgs) ElementType() reflect.Type
- func (i Phase1interfaceInternalDomainListArgs) ToPhase1interfaceInternalDomainListOutput() Phase1interfaceInternalDomainListOutput
- func (i Phase1interfaceInternalDomainListArgs) ToPhase1interfaceInternalDomainListOutputWithContext(ctx context.Context) Phase1interfaceInternalDomainListOutput
- type Phase1interfaceInternalDomainListArray
- func (Phase1interfaceInternalDomainListArray) ElementType() reflect.Type
- func (i Phase1interfaceInternalDomainListArray) ToPhase1interfaceInternalDomainListArrayOutput() Phase1interfaceInternalDomainListArrayOutput
- func (i Phase1interfaceInternalDomainListArray) ToPhase1interfaceInternalDomainListArrayOutputWithContext(ctx context.Context) Phase1interfaceInternalDomainListArrayOutput
- type Phase1interfaceInternalDomainListArrayInput
- type Phase1interfaceInternalDomainListArrayOutput
- func (Phase1interfaceInternalDomainListArrayOutput) ElementType() reflect.Type
- func (o Phase1interfaceInternalDomainListArrayOutput) Index(i pulumi.IntInput) Phase1interfaceInternalDomainListOutput
- func (o Phase1interfaceInternalDomainListArrayOutput) ToPhase1interfaceInternalDomainListArrayOutput() Phase1interfaceInternalDomainListArrayOutput
- func (o Phase1interfaceInternalDomainListArrayOutput) ToPhase1interfaceInternalDomainListArrayOutputWithContext(ctx context.Context) Phase1interfaceInternalDomainListArrayOutput
- type Phase1interfaceInternalDomainListInput
- type Phase1interfaceInternalDomainListOutput
- func (o Phase1interfaceInternalDomainListOutput) DomainName() pulumi.StringPtrOutput
- func (Phase1interfaceInternalDomainListOutput) ElementType() reflect.Type
- func (o Phase1interfaceInternalDomainListOutput) ToPhase1interfaceInternalDomainListOutput() Phase1interfaceInternalDomainListOutput
- func (o Phase1interfaceInternalDomainListOutput) ToPhase1interfaceInternalDomainListOutputWithContext(ctx context.Context) Phase1interfaceInternalDomainListOutput
- type Phase1interfaceIpv4ExcludeRange
- type Phase1interfaceIpv4ExcludeRangeArgs
- func (Phase1interfaceIpv4ExcludeRangeArgs) ElementType() reflect.Type
- func (i Phase1interfaceIpv4ExcludeRangeArgs) ToPhase1interfaceIpv4ExcludeRangeOutput() Phase1interfaceIpv4ExcludeRangeOutput
- func (i Phase1interfaceIpv4ExcludeRangeArgs) ToPhase1interfaceIpv4ExcludeRangeOutputWithContext(ctx context.Context) Phase1interfaceIpv4ExcludeRangeOutput
- type Phase1interfaceIpv4ExcludeRangeArray
- func (Phase1interfaceIpv4ExcludeRangeArray) ElementType() reflect.Type
- func (i Phase1interfaceIpv4ExcludeRangeArray) ToPhase1interfaceIpv4ExcludeRangeArrayOutput() Phase1interfaceIpv4ExcludeRangeArrayOutput
- func (i Phase1interfaceIpv4ExcludeRangeArray) ToPhase1interfaceIpv4ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1interfaceIpv4ExcludeRangeArrayOutput
- type Phase1interfaceIpv4ExcludeRangeArrayInput
- type Phase1interfaceIpv4ExcludeRangeArrayOutput
- func (Phase1interfaceIpv4ExcludeRangeArrayOutput) ElementType() reflect.Type
- func (o Phase1interfaceIpv4ExcludeRangeArrayOutput) Index(i pulumi.IntInput) Phase1interfaceIpv4ExcludeRangeOutput
- func (o Phase1interfaceIpv4ExcludeRangeArrayOutput) ToPhase1interfaceIpv4ExcludeRangeArrayOutput() Phase1interfaceIpv4ExcludeRangeArrayOutput
- func (o Phase1interfaceIpv4ExcludeRangeArrayOutput) ToPhase1interfaceIpv4ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1interfaceIpv4ExcludeRangeArrayOutput
- type Phase1interfaceIpv4ExcludeRangeInput
- type Phase1interfaceIpv4ExcludeRangeOutput
- func (Phase1interfaceIpv4ExcludeRangeOutput) ElementType() reflect.Type
- func (o Phase1interfaceIpv4ExcludeRangeOutput) EndIp() pulumi.StringPtrOutput
- func (o Phase1interfaceIpv4ExcludeRangeOutput) Id() pulumi.IntPtrOutput
- func (o Phase1interfaceIpv4ExcludeRangeOutput) StartIp() pulumi.StringPtrOutput
- func (o Phase1interfaceIpv4ExcludeRangeOutput) ToPhase1interfaceIpv4ExcludeRangeOutput() Phase1interfaceIpv4ExcludeRangeOutput
- func (o Phase1interfaceIpv4ExcludeRangeOutput) ToPhase1interfaceIpv4ExcludeRangeOutputWithContext(ctx context.Context) Phase1interfaceIpv4ExcludeRangeOutput
- type Phase1interfaceIpv6ExcludeRange
- type Phase1interfaceIpv6ExcludeRangeArgs
- func (Phase1interfaceIpv6ExcludeRangeArgs) ElementType() reflect.Type
- func (i Phase1interfaceIpv6ExcludeRangeArgs) ToPhase1interfaceIpv6ExcludeRangeOutput() Phase1interfaceIpv6ExcludeRangeOutput
- func (i Phase1interfaceIpv6ExcludeRangeArgs) ToPhase1interfaceIpv6ExcludeRangeOutputWithContext(ctx context.Context) Phase1interfaceIpv6ExcludeRangeOutput
- type Phase1interfaceIpv6ExcludeRangeArray
- func (Phase1interfaceIpv6ExcludeRangeArray) ElementType() reflect.Type
- func (i Phase1interfaceIpv6ExcludeRangeArray) ToPhase1interfaceIpv6ExcludeRangeArrayOutput() Phase1interfaceIpv6ExcludeRangeArrayOutput
- func (i Phase1interfaceIpv6ExcludeRangeArray) ToPhase1interfaceIpv6ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1interfaceIpv6ExcludeRangeArrayOutput
- type Phase1interfaceIpv6ExcludeRangeArrayInput
- type Phase1interfaceIpv6ExcludeRangeArrayOutput
- func (Phase1interfaceIpv6ExcludeRangeArrayOutput) ElementType() reflect.Type
- func (o Phase1interfaceIpv6ExcludeRangeArrayOutput) Index(i pulumi.IntInput) Phase1interfaceIpv6ExcludeRangeOutput
- func (o Phase1interfaceIpv6ExcludeRangeArrayOutput) ToPhase1interfaceIpv6ExcludeRangeArrayOutput() Phase1interfaceIpv6ExcludeRangeArrayOutput
- func (o Phase1interfaceIpv6ExcludeRangeArrayOutput) ToPhase1interfaceIpv6ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1interfaceIpv6ExcludeRangeArrayOutput
- type Phase1interfaceIpv6ExcludeRangeInput
- type Phase1interfaceIpv6ExcludeRangeOutput
- func (Phase1interfaceIpv6ExcludeRangeOutput) ElementType() reflect.Type
- func (o Phase1interfaceIpv6ExcludeRangeOutput) EndIp() pulumi.StringPtrOutput
- func (o Phase1interfaceIpv6ExcludeRangeOutput) Id() pulumi.IntPtrOutput
- func (o Phase1interfaceIpv6ExcludeRangeOutput) StartIp() pulumi.StringPtrOutput
- func (o Phase1interfaceIpv6ExcludeRangeOutput) ToPhase1interfaceIpv6ExcludeRangeOutput() Phase1interfaceIpv6ExcludeRangeOutput
- func (o Phase1interfaceIpv6ExcludeRangeOutput) ToPhase1interfaceIpv6ExcludeRangeOutputWithContext(ctx context.Context) Phase1interfaceIpv6ExcludeRangeOutput
- type Phase1interfaceMap
- type Phase1interfaceMapInput
- type Phase1interfaceMapOutput
- func (Phase1interfaceMapOutput) ElementType() reflect.Type
- func (o Phase1interfaceMapOutput) MapIndex(k pulumi.StringInput) Phase1interfaceOutput
- func (o Phase1interfaceMapOutput) ToPhase1interfaceMapOutput() Phase1interfaceMapOutput
- func (o Phase1interfaceMapOutput) ToPhase1interfaceMapOutputWithContext(ctx context.Context) Phase1interfaceMapOutput
- type Phase1interfaceOutput
- func (o Phase1interfaceOutput) AcctVerify() pulumi.StringOutput
- func (o Phase1interfaceOutput) AddGwRoute() pulumi.StringOutput
- func (o Phase1interfaceOutput) AddRoute() pulumi.StringOutput
- func (o Phase1interfaceOutput) AggregateMember() pulumi.StringOutput
- func (o Phase1interfaceOutput) AggregateWeight() pulumi.IntOutput
- func (o Phase1interfaceOutput) AssignIp() pulumi.StringOutput
- func (o Phase1interfaceOutput) AssignIpFrom() pulumi.StringOutput
- func (o Phase1interfaceOutput) Authmethod() pulumi.StringOutput
- func (o Phase1interfaceOutput) AuthmethodRemote() pulumi.StringOutput
- func (o Phase1interfaceOutput) Authpasswd() pulumi.StringPtrOutput
- func (o Phase1interfaceOutput) Authusr() pulumi.StringOutput
- func (o Phase1interfaceOutput) Authusrgrp() pulumi.StringOutput
- func (o Phase1interfaceOutput) AutoDiscoveryCrossover() pulumi.StringOutput
- func (o Phase1interfaceOutput) AutoDiscoveryForwarder() pulumi.StringOutput
- func (o Phase1interfaceOutput) AutoDiscoveryOfferInterval() pulumi.IntOutput
- func (o Phase1interfaceOutput) AutoDiscoveryPsk() pulumi.StringOutput
- func (o Phase1interfaceOutput) AutoDiscoveryReceiver() pulumi.StringOutput
- func (o Phase1interfaceOutput) AutoDiscoverySender() pulumi.StringOutput
- func (o Phase1interfaceOutput) AutoDiscoveryShortcuts() pulumi.StringOutput
- func (o Phase1interfaceOutput) AutoNegotiate() pulumi.StringOutput
- func (o Phase1interfaceOutput) AzureAdAutoconnect() pulumi.StringOutput
- func (o Phase1interfaceOutput) BackupGateways() Phase1interfaceBackupGatewayArrayOutput
- func (o Phase1interfaceOutput) Banner() pulumi.StringPtrOutput
- func (o Phase1interfaceOutput) CertIdValidation() pulumi.StringOutput
- func (o Phase1interfaceOutput) CertTrustStore() pulumi.StringOutput
- func (o Phase1interfaceOutput) Certificates() Phase1interfaceCertificateArrayOutput
- func (o Phase1interfaceOutput) ChildlessIke() pulumi.StringOutput
- func (o Phase1interfaceOutput) ClientAutoNegotiate() pulumi.StringOutput
- func (o Phase1interfaceOutput) ClientKeepAlive() pulumi.StringOutput
- func (o Phase1interfaceOutput) Comments() pulumi.StringPtrOutput
- func (o Phase1interfaceOutput) DefaultGw() pulumi.StringOutput
- func (o Phase1interfaceOutput) DefaultGwPriority() pulumi.IntOutput
- func (o Phase1interfaceOutput) DevId() pulumi.StringOutput
- func (o Phase1interfaceOutput) DevIdNotification() pulumi.StringOutput
- func (o Phase1interfaceOutput) Dhcp6RaLinkaddr() pulumi.StringOutput
- func (o Phase1interfaceOutput) DhcpRaGiaddr() pulumi.StringOutput
- func (o Phase1interfaceOutput) Dhgrp() pulumi.StringOutput
- func (o Phase1interfaceOutput) DigitalSignatureAuth() pulumi.StringOutput
- func (o Phase1interfaceOutput) Distance() pulumi.IntOutput
- func (o Phase1interfaceOutput) DnsMode() pulumi.StringOutput
- func (o Phase1interfaceOutput) Domain() pulumi.StringOutput
- func (o Phase1interfaceOutput) Dpd() pulumi.StringOutput
- func (o Phase1interfaceOutput) DpdRetrycount() pulumi.IntOutput
- func (o Phase1interfaceOutput) DpdRetryinterval() pulumi.StringOutput
- func (o Phase1interfaceOutput) DynamicSortSubtable() pulumi.StringPtrOutput
- func (o Phase1interfaceOutput) Eap() pulumi.StringOutput
- func (o Phase1interfaceOutput) EapCertAuth() pulumi.StringOutput
- func (o Phase1interfaceOutput) EapExcludePeergrp() pulumi.StringOutput
- func (o Phase1interfaceOutput) EapIdentity() pulumi.StringOutput
- func (Phase1interfaceOutput) ElementType() reflect.Type
- func (o Phase1interfaceOutput) EmsSnCheck() pulumi.StringOutput
- func (o Phase1interfaceOutput) EncapLocalGw4() pulumi.StringOutput
- func (o Phase1interfaceOutput) EncapLocalGw6() pulumi.StringOutput
- func (o Phase1interfaceOutput) EncapRemoteGw4() pulumi.StringOutput
- func (o Phase1interfaceOutput) EncapRemoteGw6() pulumi.StringOutput
- func (o Phase1interfaceOutput) Encapsulation() pulumi.StringOutput
- func (o Phase1interfaceOutput) EncapsulationAddress() pulumi.StringOutput
- func (o Phase1interfaceOutput) EnforceUniqueId() pulumi.StringOutput
- func (o Phase1interfaceOutput) Esn() pulumi.StringOutput
- func (o Phase1interfaceOutput) ExchangeFgtDeviceId() pulumi.StringOutput
- func (o Phase1interfaceOutput) ExchangeInterfaceIp() pulumi.StringOutput
- func (o Phase1interfaceOutput) ExchangeIpAddr4() pulumi.StringOutput
- func (o Phase1interfaceOutput) ExchangeIpAddr6() pulumi.StringOutput
- func (o Phase1interfaceOutput) FallbackTcpThreshold() pulumi.IntOutput
- func (o Phase1interfaceOutput) FecBase() pulumi.IntOutput
- func (o Phase1interfaceOutput) FecCodec() pulumi.IntOutput
- func (o Phase1interfaceOutput) FecCodecString() pulumi.StringOutput
- func (o Phase1interfaceOutput) FecEgress() pulumi.StringOutput
- func (o Phase1interfaceOutput) FecHealthCheck() pulumi.StringOutput
- func (o Phase1interfaceOutput) FecIngress() pulumi.StringOutput
- func (o Phase1interfaceOutput) FecMappingProfile() pulumi.StringOutput
- func (o Phase1interfaceOutput) FecReceiveTimeout() pulumi.IntOutput
- func (o Phase1interfaceOutput) FecRedundant() pulumi.IntOutput
- func (o Phase1interfaceOutput) FecSendTimeout() pulumi.IntOutput
- func (o Phase1interfaceOutput) FgspSync() pulumi.StringOutput
- func (o Phase1interfaceOutput) ForticlientEnforcement() pulumi.StringOutput
- func (o Phase1interfaceOutput) FortinetEsp() pulumi.StringOutput
- func (o Phase1interfaceOutput) Fragmentation() pulumi.StringOutput
- func (o Phase1interfaceOutput) FragmentationMtu() pulumi.IntOutput
- func (o Phase1interfaceOutput) GetAllTables() pulumi.StringPtrOutput
- func (o Phase1interfaceOutput) GroupAuthentication() pulumi.StringOutput
- func (o Phase1interfaceOutput) GroupAuthenticationSecret() pulumi.StringPtrOutput
- func (o Phase1interfaceOutput) HaSyncEspSeqno() pulumi.StringOutput
- func (o Phase1interfaceOutput) IdleTimeout() pulumi.StringOutput
- func (o Phase1interfaceOutput) IdleTimeoutinterval() pulumi.IntOutput
- func (o Phase1interfaceOutput) IkeVersion() pulumi.StringOutput
- func (o Phase1interfaceOutput) InboundDscpCopy() pulumi.StringOutput
- func (o Phase1interfaceOutput) IncludeLocalLan() pulumi.StringOutput
- func (o Phase1interfaceOutput) Interface() pulumi.StringOutput
- func (o Phase1interfaceOutput) InternalDomainLists() Phase1interfaceInternalDomainListArrayOutput
- func (o Phase1interfaceOutput) IpDelayInterval() pulumi.IntOutput
- func (o Phase1interfaceOutput) IpFragmentation() pulumi.StringOutput
- func (o Phase1interfaceOutput) IpVersion() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv4DnsServer1() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv4DnsServer2() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv4DnsServer3() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv4EndIp() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv4ExcludeRanges() Phase1interfaceIpv4ExcludeRangeArrayOutput
- func (o Phase1interfaceOutput) Ipv4Name() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv4Netmask() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv4SplitExclude() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv4SplitInclude() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv4StartIp() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv4WinsServer1() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv4WinsServer2() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv6DnsServer1() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv6DnsServer2() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv6DnsServer3() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv6EndIp() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv6ExcludeRanges() Phase1interfaceIpv6ExcludeRangeArrayOutput
- func (o Phase1interfaceOutput) Ipv6Name() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv6Prefix() pulumi.IntOutput
- func (o Phase1interfaceOutput) Ipv6SplitExclude() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv6SplitInclude() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ipv6StartIp() pulumi.StringOutput
- func (o Phase1interfaceOutput) Keepalive() pulumi.IntOutput
- func (o Phase1interfaceOutput) Keylife() pulumi.IntOutput
- func (o Phase1interfaceOutput) Kms() pulumi.StringOutput
- func (o Phase1interfaceOutput) LinkCost() pulumi.IntOutput
- func (o Phase1interfaceOutput) LocalGw() pulumi.StringOutput
- func (o Phase1interfaceOutput) LocalGw6() pulumi.StringOutput
- func (o Phase1interfaceOutput) Localid() pulumi.StringOutput
- func (o Phase1interfaceOutput) LocalidType() pulumi.StringOutput
- func (o Phase1interfaceOutput) LoopbackAsymroute() pulumi.StringOutput
- func (o Phase1interfaceOutput) MeshSelectorType() pulumi.StringOutput
- func (o Phase1interfaceOutput) Mode() pulumi.StringOutput
- func (o Phase1interfaceOutput) ModeCfg() pulumi.StringOutput
- func (o Phase1interfaceOutput) ModeCfgAllowClientSelector() pulumi.StringOutput
- func (o Phase1interfaceOutput) Monitor() pulumi.StringOutput
- func (o Phase1interfaceOutput) MonitorHoldDownDelay() pulumi.IntOutput
- func (o Phase1interfaceOutput) MonitorHoldDownTime() pulumi.StringOutput
- func (o Phase1interfaceOutput) MonitorHoldDownType() pulumi.StringOutput
- func (o Phase1interfaceOutput) MonitorHoldDownWeekday() pulumi.StringOutput
- func (o Phase1interfaceOutput) MonitorMin() pulumi.IntOutput
- func (o Phase1interfaceOutput) Name() pulumi.StringOutput
- func (o Phase1interfaceOutput) Nattraversal() pulumi.StringOutput
- func (o Phase1interfaceOutput) NegotiateTimeout() pulumi.IntOutput
- func (o Phase1interfaceOutput) NetDevice() pulumi.StringOutput
- func (o Phase1interfaceOutput) NetworkId() pulumi.IntOutput
- func (o Phase1interfaceOutput) NetworkOverlay() pulumi.StringOutput
- func (o Phase1interfaceOutput) NpuOffload() pulumi.StringOutput
- func (o Phase1interfaceOutput) PacketRedistribution() pulumi.StringOutput
- func (o Phase1interfaceOutput) PassiveMode() pulumi.StringOutput
- func (o Phase1interfaceOutput) Peer() pulumi.StringOutput
- func (o Phase1interfaceOutput) Peergrp() pulumi.StringOutput
- func (o Phase1interfaceOutput) Peerid() pulumi.StringOutput
- func (o Phase1interfaceOutput) Peertype() pulumi.StringOutput
- func (o Phase1interfaceOutput) Ppk() pulumi.StringOutput
- func (o Phase1interfaceOutput) PpkIdentity() pulumi.StringOutput
- func (o Phase1interfaceOutput) PpkSecret() pulumi.StringPtrOutput
- func (o Phase1interfaceOutput) Priority() pulumi.IntOutput
- func (o Phase1interfaceOutput) Proposal() pulumi.StringOutput
- func (o Phase1interfaceOutput) Psksecret() pulumi.StringPtrOutput
- func (o Phase1interfaceOutput) PsksecretRemote() pulumi.StringPtrOutput
- func (o Phase1interfaceOutput) Qkd() pulumi.StringOutput
- func (o Phase1interfaceOutput) QkdProfile() pulumi.StringOutput
- func (o Phase1interfaceOutput) Reauth() pulumi.StringOutput
- func (o Phase1interfaceOutput) Rekey() pulumi.StringOutput
- func (o Phase1interfaceOutput) RemoteGw() pulumi.StringOutput
- func (o Phase1interfaceOutput) RemoteGw6() pulumi.StringOutput
- func (o Phase1interfaceOutput) RemotegwDdns() pulumi.StringOutput
- func (o Phase1interfaceOutput) RsaSignatureFormat() pulumi.StringOutput
- func (o Phase1interfaceOutput) RsaSignatureHashOverride() pulumi.StringOutput
- func (o Phase1interfaceOutput) SavePassword() pulumi.StringOutput
- func (o Phase1interfaceOutput) SendCertChain() pulumi.StringOutput
- func (o Phase1interfaceOutput) SignatureHashAlg() pulumi.StringOutput
- func (o Phase1interfaceOutput) SplitIncludeService() pulumi.StringOutput
- func (o Phase1interfaceOutput) SuiteB() pulumi.StringOutput
- func (o Phase1interfaceOutput) ToPhase1interfaceOutput() Phase1interfaceOutput
- func (o Phase1interfaceOutput) ToPhase1interfaceOutputWithContext(ctx context.Context) Phase1interfaceOutput
- func (o Phase1interfaceOutput) Transport() pulumi.StringOutput
- func (o Phase1interfaceOutput) TunnelSearch() pulumi.StringOutput
- func (o Phase1interfaceOutput) Type() pulumi.StringOutput
- func (o Phase1interfaceOutput) UnitySupport() pulumi.StringOutput
- func (o Phase1interfaceOutput) Usrgrp() pulumi.StringOutput
- func (o Phase1interfaceOutput) Vdomparam() pulumi.StringPtrOutput
- func (o Phase1interfaceOutput) Vni() pulumi.IntOutput
- func (o Phase1interfaceOutput) WizardType() pulumi.StringOutput
- func (o Phase1interfaceOutput) Xauthtype() pulumi.StringOutput
- type Phase1interfaceState
- type Phase2
- type Phase2Args
- type Phase2Array
- type Phase2ArrayInput
- type Phase2ArrayOutput
- type Phase2Input
- type Phase2Map
- type Phase2MapInput
- type Phase2MapOutput
- type Phase2Output
- func (o Phase2Output) AddRoute() pulumi.StringOutput
- func (o Phase2Output) AutoNegotiate() pulumi.StringOutput
- func (o Phase2Output) Comments() pulumi.StringPtrOutput
- func (o Phase2Output) DhcpIpsec() pulumi.StringOutput
- func (o Phase2Output) Dhgrp() pulumi.StringOutput
- func (o Phase2Output) Diffserv() pulumi.StringOutput
- func (o Phase2Output) Diffservcode() pulumi.StringOutput
- func (o Phase2Output) DstAddrType() pulumi.StringOutput
- func (o Phase2Output) DstEndIp() pulumi.StringOutput
- func (o Phase2Output) DstEndIp6() pulumi.StringOutput
- func (o Phase2Output) DstName() pulumi.StringOutput
- func (o Phase2Output) DstName6() pulumi.StringOutput
- func (o Phase2Output) DstPort() pulumi.IntOutput
- func (o Phase2Output) DstStartIp() pulumi.StringOutput
- func (o Phase2Output) DstStartIp6() pulumi.StringOutput
- func (o Phase2Output) DstSubnet() pulumi.StringOutput
- func (o Phase2Output) DstSubnet6() pulumi.StringOutput
- func (Phase2Output) ElementType() reflect.Type
- func (o Phase2Output) Encapsulation() pulumi.StringOutput
- func (o Phase2Output) InboundDscpCopy() pulumi.StringOutput
- func (o Phase2Output) InitiatorTsNarrow() pulumi.StringOutput
- func (o Phase2Output) Ipv4Df() pulumi.StringOutput
- func (o Phase2Output) Keepalive() pulumi.StringOutput
- func (o Phase2Output) KeylifeType() pulumi.StringOutput
- func (o Phase2Output) Keylifekbs() pulumi.IntOutput
- func (o Phase2Output) Keylifeseconds() pulumi.IntOutput
- func (o Phase2Output) L2tp() pulumi.StringOutput
- func (o Phase2Output) Name() pulumi.StringOutput
- func (o Phase2Output) Pfs() pulumi.StringOutput
- func (o Phase2Output) Phase1name() pulumi.StringOutput
- func (o Phase2Output) Proposal() pulumi.StringOutput
- func (o Phase2Output) Protocol() pulumi.IntOutput
- func (o Phase2Output) Replay() pulumi.StringOutput
- func (o Phase2Output) RouteOverlap() pulumi.StringOutput
- func (o Phase2Output) SelectorMatch() pulumi.StringOutput
- func (o Phase2Output) SingleSource() pulumi.StringOutput
- func (o Phase2Output) SrcAddrType() pulumi.StringOutput
- func (o Phase2Output) SrcEndIp() pulumi.StringOutput
- func (o Phase2Output) SrcEndIp6() pulumi.StringOutput
- func (o Phase2Output) SrcName() pulumi.StringOutput
- func (o Phase2Output) SrcName6() pulumi.StringOutput
- func (o Phase2Output) SrcPort() pulumi.IntOutput
- func (o Phase2Output) SrcStartIp() pulumi.StringOutput
- func (o Phase2Output) SrcStartIp6() pulumi.StringOutput
- func (o Phase2Output) SrcSubnet() pulumi.StringOutput
- func (o Phase2Output) SrcSubnet6() pulumi.StringOutput
- func (o Phase2Output) ToPhase2Output() Phase2Output
- func (o Phase2Output) ToPhase2OutputWithContext(ctx context.Context) Phase2Output
- func (o Phase2Output) UseNatip() pulumi.StringOutput
- func (o Phase2Output) Vdomparam() pulumi.StringPtrOutput
- type Phase2State
- type Phase2interface
- type Phase2interfaceArgs
- type Phase2interfaceArray
- type Phase2interfaceArrayInput
- type Phase2interfaceArrayOutput
- func (Phase2interfaceArrayOutput) ElementType() reflect.Type
- func (o Phase2interfaceArrayOutput) Index(i pulumi.IntInput) Phase2interfaceOutput
- func (o Phase2interfaceArrayOutput) ToPhase2interfaceArrayOutput() Phase2interfaceArrayOutput
- func (o Phase2interfaceArrayOutput) ToPhase2interfaceArrayOutputWithContext(ctx context.Context) Phase2interfaceArrayOutput
- type Phase2interfaceInput
- type Phase2interfaceMap
- type Phase2interfaceMapInput
- type Phase2interfaceMapOutput
- func (Phase2interfaceMapOutput) ElementType() reflect.Type
- func (o Phase2interfaceMapOutput) MapIndex(k pulumi.StringInput) Phase2interfaceOutput
- func (o Phase2interfaceMapOutput) ToPhase2interfaceMapOutput() Phase2interfaceMapOutput
- func (o Phase2interfaceMapOutput) ToPhase2interfaceMapOutputWithContext(ctx context.Context) Phase2interfaceMapOutput
- type Phase2interfaceOutput
- func (o Phase2interfaceOutput) AddRoute() pulumi.StringOutput
- func (o Phase2interfaceOutput) AutoDiscoveryForwarder() pulumi.StringOutput
- func (o Phase2interfaceOutput) AutoDiscoverySender() pulumi.StringOutput
- func (o Phase2interfaceOutput) AutoNegotiate() pulumi.StringOutput
- func (o Phase2interfaceOutput) Comments() pulumi.StringPtrOutput
- func (o Phase2interfaceOutput) DhcpIpsec() pulumi.StringOutput
- func (o Phase2interfaceOutput) Dhgrp() pulumi.StringOutput
- func (o Phase2interfaceOutput) Diffserv() pulumi.StringOutput
- func (o Phase2interfaceOutput) Diffservcode() pulumi.StringOutput
- func (o Phase2interfaceOutput) DstAddrType() pulumi.StringOutput
- func (o Phase2interfaceOutput) DstEndIp() pulumi.StringOutput
- func (o Phase2interfaceOutput) DstEndIp6() pulumi.StringOutput
- func (o Phase2interfaceOutput) DstName() pulumi.StringOutput
- func (o Phase2interfaceOutput) DstName6() pulumi.StringOutput
- func (o Phase2interfaceOutput) DstPort() pulumi.IntOutput
- func (o Phase2interfaceOutput) DstStartIp() pulumi.StringOutput
- func (o Phase2interfaceOutput) DstStartIp6() pulumi.StringOutput
- func (o Phase2interfaceOutput) DstSubnet() pulumi.StringOutput
- func (o Phase2interfaceOutput) DstSubnet6() pulumi.StringOutput
- func (Phase2interfaceOutput) ElementType() reflect.Type
- func (o Phase2interfaceOutput) Encapsulation() pulumi.StringOutput
- func (o Phase2interfaceOutput) InboundDscpCopy() pulumi.StringOutput
- func (o Phase2interfaceOutput) InitiatorTsNarrow() pulumi.StringOutput
- func (o Phase2interfaceOutput) Ipv4Df() pulumi.StringOutput
- func (o Phase2interfaceOutput) Keepalive() pulumi.StringOutput
- func (o Phase2interfaceOutput) KeylifeType() pulumi.StringOutput
- func (o Phase2interfaceOutput) Keylifekbs() pulumi.IntOutput
- func (o Phase2interfaceOutput) Keylifeseconds() pulumi.IntOutput
- func (o Phase2interfaceOutput) L2tp() pulumi.StringOutput
- func (o Phase2interfaceOutput) Name() pulumi.StringOutput
- func (o Phase2interfaceOutput) Pfs() pulumi.StringOutput
- func (o Phase2interfaceOutput) Phase1name() pulumi.StringOutput
- func (o Phase2interfaceOutput) Proposal() pulumi.StringOutput
- func (o Phase2interfaceOutput) Protocol() pulumi.IntOutput
- func (o Phase2interfaceOutput) Replay() pulumi.StringOutput
- func (o Phase2interfaceOutput) RouteOverlap() pulumi.StringOutput
- func (o Phase2interfaceOutput) SingleSource() pulumi.StringOutput
- func (o Phase2interfaceOutput) SrcAddrType() pulumi.StringOutput
- func (o Phase2interfaceOutput) SrcEndIp() pulumi.StringOutput
- func (o Phase2interfaceOutput) SrcEndIp6() pulumi.StringOutput
- func (o Phase2interfaceOutput) SrcName() pulumi.StringOutput
- func (o Phase2interfaceOutput) SrcName6() pulumi.StringOutput
- func (o Phase2interfaceOutput) SrcPort() pulumi.IntOutput
- func (o Phase2interfaceOutput) SrcStartIp() pulumi.StringOutput
- func (o Phase2interfaceOutput) SrcStartIp6() pulumi.StringOutput
- func (o Phase2interfaceOutput) SrcSubnet() pulumi.StringOutput
- func (o Phase2interfaceOutput) SrcSubnet6() pulumi.StringOutput
- func (o Phase2interfaceOutput) ToPhase2interfaceOutput() Phase2interfaceOutput
- func (o Phase2interfaceOutput) ToPhase2interfaceOutputWithContext(ctx context.Context) Phase2interfaceOutput
- func (o Phase2interfaceOutput) Vdomparam() pulumi.StringPtrOutput
- type Phase2interfaceState
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Concentrator ¶
type Concentrator struct { pulumi.CustomResourceState // Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. DynamicSortSubtable pulumi.StringPtrOutput `pulumi:"dynamicSortSubtable"` // Concentrator ID. (1-65535) Fosid pulumi.IntOutput `pulumi:"fosid"` // Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. GetAllTables pulumi.StringPtrOutput `pulumi:"getAllTables"` // Names of up to 3 VPN tunnels to add to the concentrator. The structure of `member` block is documented below. Members ConcentratorMemberArrayOutput `pulumi:"members"` // Concentrator name. Name pulumi.StringOutput `pulumi:"name"` // Enable to check source address of phase 2 selector. Disable to check only the destination selector. Valid values: `disable`, `enable`. SrcCheck pulumi.StringOutput `pulumi:"srcCheck"` // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"` }
Concentrator configuration.
## Example Usage
<!--Start PulumiCodeChooser --> ```go package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi" "github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { _, err := vpn.NewConcentrator(ctx, "trname", &vpn.ConcentratorArgs{ SrcCheck: pulumi.String("disable"), }) if err != nil { return err } return nil }) }
``` <!--End PulumiCodeChooser -->
## Import
VpnIpsec Concentrator can be imported using any of these accepted formats:
```sh $ pulumi import fortios:vpn/ipsec/concentrator:Concentrator labelname {{name}} ```
If you do not want to import arguments of block:
$ export "FORTIOS_IMPORT_TABLE"="false"
```sh $ pulumi import fortios:vpn/ipsec/concentrator:Concentrator labelname {{name}} ```
$ unset "FORTIOS_IMPORT_TABLE"
func GetConcentrator ¶
func GetConcentrator(ctx *pulumi.Context, name string, id pulumi.IDInput, state *ConcentratorState, opts ...pulumi.ResourceOption) (*Concentrator, error)
GetConcentrator gets an existing Concentrator resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewConcentrator ¶
func NewConcentrator(ctx *pulumi.Context, name string, args *ConcentratorArgs, opts ...pulumi.ResourceOption) (*Concentrator, error)
NewConcentrator registers a new resource with the given unique name, arguments, and options.
func (*Concentrator) ElementType ¶
func (*Concentrator) ElementType() reflect.Type
func (*Concentrator) ToConcentratorOutput ¶
func (i *Concentrator) ToConcentratorOutput() ConcentratorOutput
func (*Concentrator) ToConcentratorOutputWithContext ¶
func (i *Concentrator) ToConcentratorOutputWithContext(ctx context.Context) ConcentratorOutput
type ConcentratorArgs ¶
type ConcentratorArgs struct { // Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. DynamicSortSubtable pulumi.StringPtrInput // Concentrator ID. (1-65535) Fosid pulumi.IntPtrInput // Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. GetAllTables pulumi.StringPtrInput // Names of up to 3 VPN tunnels to add to the concentrator. The structure of `member` block is documented below. Members ConcentratorMemberArrayInput // Concentrator name. Name pulumi.StringPtrInput // Enable to check source address of phase 2 selector. Disable to check only the destination selector. Valid values: `disable`, `enable`. SrcCheck pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
The set of arguments for constructing a Concentrator resource.
func (ConcentratorArgs) ElementType ¶
func (ConcentratorArgs) ElementType() reflect.Type
type ConcentratorArray ¶
type ConcentratorArray []ConcentratorInput
func (ConcentratorArray) ElementType ¶
func (ConcentratorArray) ElementType() reflect.Type
func (ConcentratorArray) ToConcentratorArrayOutput ¶
func (i ConcentratorArray) ToConcentratorArrayOutput() ConcentratorArrayOutput
func (ConcentratorArray) ToConcentratorArrayOutputWithContext ¶
func (i ConcentratorArray) ToConcentratorArrayOutputWithContext(ctx context.Context) ConcentratorArrayOutput
type ConcentratorArrayInput ¶
type ConcentratorArrayInput interface { pulumi.Input ToConcentratorArrayOutput() ConcentratorArrayOutput ToConcentratorArrayOutputWithContext(context.Context) ConcentratorArrayOutput }
ConcentratorArrayInput is an input type that accepts ConcentratorArray and ConcentratorArrayOutput values. You can construct a concrete instance of `ConcentratorArrayInput` via:
ConcentratorArray{ ConcentratorArgs{...} }
type ConcentratorArrayOutput ¶
type ConcentratorArrayOutput struct{ *pulumi.OutputState }
func (ConcentratorArrayOutput) ElementType ¶
func (ConcentratorArrayOutput) ElementType() reflect.Type
func (ConcentratorArrayOutput) Index ¶
func (o ConcentratorArrayOutput) Index(i pulumi.IntInput) ConcentratorOutput
func (ConcentratorArrayOutput) ToConcentratorArrayOutput ¶
func (o ConcentratorArrayOutput) ToConcentratorArrayOutput() ConcentratorArrayOutput
func (ConcentratorArrayOutput) ToConcentratorArrayOutputWithContext ¶
func (o ConcentratorArrayOutput) ToConcentratorArrayOutputWithContext(ctx context.Context) ConcentratorArrayOutput
type ConcentratorInput ¶
type ConcentratorInput interface { pulumi.Input ToConcentratorOutput() ConcentratorOutput ToConcentratorOutputWithContext(ctx context.Context) ConcentratorOutput }
type ConcentratorMap ¶
type ConcentratorMap map[string]ConcentratorInput
func (ConcentratorMap) ElementType ¶
func (ConcentratorMap) ElementType() reflect.Type
func (ConcentratorMap) ToConcentratorMapOutput ¶
func (i ConcentratorMap) ToConcentratorMapOutput() ConcentratorMapOutput
func (ConcentratorMap) ToConcentratorMapOutputWithContext ¶
func (i ConcentratorMap) ToConcentratorMapOutputWithContext(ctx context.Context) ConcentratorMapOutput
type ConcentratorMapInput ¶
type ConcentratorMapInput interface { pulumi.Input ToConcentratorMapOutput() ConcentratorMapOutput ToConcentratorMapOutputWithContext(context.Context) ConcentratorMapOutput }
ConcentratorMapInput is an input type that accepts ConcentratorMap and ConcentratorMapOutput values. You can construct a concrete instance of `ConcentratorMapInput` via:
ConcentratorMap{ "key": ConcentratorArgs{...} }
type ConcentratorMapOutput ¶
type ConcentratorMapOutput struct{ *pulumi.OutputState }
func (ConcentratorMapOutput) ElementType ¶
func (ConcentratorMapOutput) ElementType() reflect.Type
func (ConcentratorMapOutput) MapIndex ¶
func (o ConcentratorMapOutput) MapIndex(k pulumi.StringInput) ConcentratorOutput
func (ConcentratorMapOutput) ToConcentratorMapOutput ¶
func (o ConcentratorMapOutput) ToConcentratorMapOutput() ConcentratorMapOutput
func (ConcentratorMapOutput) ToConcentratorMapOutputWithContext ¶
func (o ConcentratorMapOutput) ToConcentratorMapOutputWithContext(ctx context.Context) ConcentratorMapOutput
type ConcentratorMember ¶
type ConcentratorMember struct { // Member name. Name *string `pulumi:"name"` }
type ConcentratorMemberArgs ¶
type ConcentratorMemberArgs struct { // Member name. Name pulumi.StringPtrInput `pulumi:"name"` }
func (ConcentratorMemberArgs) ElementType ¶
func (ConcentratorMemberArgs) ElementType() reflect.Type
func (ConcentratorMemberArgs) ToConcentratorMemberOutput ¶
func (i ConcentratorMemberArgs) ToConcentratorMemberOutput() ConcentratorMemberOutput
func (ConcentratorMemberArgs) ToConcentratorMemberOutputWithContext ¶
func (i ConcentratorMemberArgs) ToConcentratorMemberOutputWithContext(ctx context.Context) ConcentratorMemberOutput
type ConcentratorMemberArray ¶
type ConcentratorMemberArray []ConcentratorMemberInput
func (ConcentratorMemberArray) ElementType ¶
func (ConcentratorMemberArray) ElementType() reflect.Type
func (ConcentratorMemberArray) ToConcentratorMemberArrayOutput ¶
func (i ConcentratorMemberArray) ToConcentratorMemberArrayOutput() ConcentratorMemberArrayOutput
func (ConcentratorMemberArray) ToConcentratorMemberArrayOutputWithContext ¶
func (i ConcentratorMemberArray) ToConcentratorMemberArrayOutputWithContext(ctx context.Context) ConcentratorMemberArrayOutput
type ConcentratorMemberArrayInput ¶
type ConcentratorMemberArrayInput interface { pulumi.Input ToConcentratorMemberArrayOutput() ConcentratorMemberArrayOutput ToConcentratorMemberArrayOutputWithContext(context.Context) ConcentratorMemberArrayOutput }
ConcentratorMemberArrayInput is an input type that accepts ConcentratorMemberArray and ConcentratorMemberArrayOutput values. You can construct a concrete instance of `ConcentratorMemberArrayInput` via:
ConcentratorMemberArray{ ConcentratorMemberArgs{...} }
type ConcentratorMemberArrayOutput ¶
type ConcentratorMemberArrayOutput struct{ *pulumi.OutputState }
func (ConcentratorMemberArrayOutput) ElementType ¶
func (ConcentratorMemberArrayOutput) ElementType() reflect.Type
func (ConcentratorMemberArrayOutput) Index ¶
func (o ConcentratorMemberArrayOutput) Index(i pulumi.IntInput) ConcentratorMemberOutput
func (ConcentratorMemberArrayOutput) ToConcentratorMemberArrayOutput ¶
func (o ConcentratorMemberArrayOutput) ToConcentratorMemberArrayOutput() ConcentratorMemberArrayOutput
func (ConcentratorMemberArrayOutput) ToConcentratorMemberArrayOutputWithContext ¶
func (o ConcentratorMemberArrayOutput) ToConcentratorMemberArrayOutputWithContext(ctx context.Context) ConcentratorMemberArrayOutput
type ConcentratorMemberInput ¶
type ConcentratorMemberInput interface { pulumi.Input ToConcentratorMemberOutput() ConcentratorMemberOutput ToConcentratorMemberOutputWithContext(context.Context) ConcentratorMemberOutput }
ConcentratorMemberInput is an input type that accepts ConcentratorMemberArgs and ConcentratorMemberOutput values. You can construct a concrete instance of `ConcentratorMemberInput` via:
ConcentratorMemberArgs{...}
type ConcentratorMemberOutput ¶
type ConcentratorMemberOutput struct{ *pulumi.OutputState }
func (ConcentratorMemberOutput) ElementType ¶
func (ConcentratorMemberOutput) ElementType() reflect.Type
func (ConcentratorMemberOutput) Name ¶
func (o ConcentratorMemberOutput) Name() pulumi.StringPtrOutput
Member name.
func (ConcentratorMemberOutput) ToConcentratorMemberOutput ¶
func (o ConcentratorMemberOutput) ToConcentratorMemberOutput() ConcentratorMemberOutput
func (ConcentratorMemberOutput) ToConcentratorMemberOutputWithContext ¶
func (o ConcentratorMemberOutput) ToConcentratorMemberOutputWithContext(ctx context.Context) ConcentratorMemberOutput
type ConcentratorOutput ¶
type ConcentratorOutput struct{ *pulumi.OutputState }
func (ConcentratorOutput) DynamicSortSubtable ¶
func (o ConcentratorOutput) DynamicSortSubtable() pulumi.StringPtrOutput
Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
func (ConcentratorOutput) ElementType ¶
func (ConcentratorOutput) ElementType() reflect.Type
func (ConcentratorOutput) Fosid ¶
func (o ConcentratorOutput) Fosid() pulumi.IntOutput
Concentrator ID. (1-65535)
func (ConcentratorOutput) GetAllTables ¶
func (o ConcentratorOutput) GetAllTables() pulumi.StringPtrOutput
Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
func (ConcentratorOutput) Members ¶
func (o ConcentratorOutput) Members() ConcentratorMemberArrayOutput
Names of up to 3 VPN tunnels to add to the concentrator. The structure of `member` block is documented below.
func (ConcentratorOutput) Name ¶
func (o ConcentratorOutput) Name() pulumi.StringOutput
Concentrator name.
func (ConcentratorOutput) SrcCheck ¶
func (o ConcentratorOutput) SrcCheck() pulumi.StringOutput
Enable to check source address of phase 2 selector. Disable to check only the destination selector. Valid values: `disable`, `enable`.
func (ConcentratorOutput) ToConcentratorOutput ¶
func (o ConcentratorOutput) ToConcentratorOutput() ConcentratorOutput
func (ConcentratorOutput) ToConcentratorOutputWithContext ¶
func (o ConcentratorOutput) ToConcentratorOutputWithContext(ctx context.Context) ConcentratorOutput
func (ConcentratorOutput) Vdomparam ¶
func (o ConcentratorOutput) Vdomparam() pulumi.StringPtrOutput
Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
type ConcentratorState ¶
type ConcentratorState struct { // Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. DynamicSortSubtable pulumi.StringPtrInput // Concentrator ID. (1-65535) Fosid pulumi.IntPtrInput // Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. GetAllTables pulumi.StringPtrInput // Names of up to 3 VPN tunnels to add to the concentrator. The structure of `member` block is documented below. Members ConcentratorMemberArrayInput // Concentrator name. Name pulumi.StringPtrInput // Enable to check source address of phase 2 selector. Disable to check only the destination selector. Valid values: `disable`, `enable`. SrcCheck pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
func (ConcentratorState) ElementType ¶
func (ConcentratorState) ElementType() reflect.Type
type Fec ¶
type Fec struct { pulumi.CustomResourceState // Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. DynamicSortSubtable pulumi.StringPtrOutput `pulumi:"dynamicSortSubtable"` // Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. GetAllTables pulumi.StringPtrOutput `pulumi:"getAllTables"` // FEC redundancy mapping table. The structure of `mappings` block is documented below. Mappings FecMappingArrayOutput `pulumi:"mappings"` // Profile name. Name pulumi.StringOutput `pulumi:"name"` // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"` }
Configure Forward Error Correction (FEC) mapping profiles. Applies to FortiOS Version `>= 7.0.2`.
## Import
VpnIpsec Fec can be imported using any of these accepted formats:
```sh $ pulumi import fortios:vpn/ipsec/fec:Fec labelname {{name}} ```
If you do not want to import arguments of block:
$ export "FORTIOS_IMPORT_TABLE"="false"
```sh $ pulumi import fortios:vpn/ipsec/fec:Fec labelname {{name}} ```
$ unset "FORTIOS_IMPORT_TABLE"
func GetFec ¶
func GetFec(ctx *pulumi.Context, name string, id pulumi.IDInput, state *FecState, opts ...pulumi.ResourceOption) (*Fec, error)
GetFec gets an existing Fec resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewFec ¶
func NewFec(ctx *pulumi.Context, name string, args *FecArgs, opts ...pulumi.ResourceOption) (*Fec, error)
NewFec registers a new resource with the given unique name, arguments, and options.
func (*Fec) ElementType ¶
func (*Fec) ToFecOutput ¶
type FecArgs ¶
type FecArgs struct { // Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. DynamicSortSubtable pulumi.StringPtrInput // Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. GetAllTables pulumi.StringPtrInput // FEC redundancy mapping table. The structure of `mappings` block is documented below. Mappings FecMappingArrayInput // Profile name. Name pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
The set of arguments for constructing a Fec resource.
func (FecArgs) ElementType ¶
type FecArray ¶
type FecArray []FecInput
func (FecArray) ElementType ¶
func (FecArray) ToFecArrayOutput ¶
func (i FecArray) ToFecArrayOutput() FecArrayOutput
func (FecArray) ToFecArrayOutputWithContext ¶
func (i FecArray) ToFecArrayOutputWithContext(ctx context.Context) FecArrayOutput
type FecArrayInput ¶
type FecArrayInput interface { pulumi.Input ToFecArrayOutput() FecArrayOutput ToFecArrayOutputWithContext(context.Context) FecArrayOutput }
FecArrayInput is an input type that accepts FecArray and FecArrayOutput values. You can construct a concrete instance of `FecArrayInput` via:
FecArray{ FecArgs{...} }
type FecArrayOutput ¶
type FecArrayOutput struct{ *pulumi.OutputState }
func (FecArrayOutput) ElementType ¶
func (FecArrayOutput) ElementType() reflect.Type
func (FecArrayOutput) ToFecArrayOutput ¶
func (o FecArrayOutput) ToFecArrayOutput() FecArrayOutput
func (FecArrayOutput) ToFecArrayOutputWithContext ¶
func (o FecArrayOutput) ToFecArrayOutputWithContext(ctx context.Context) FecArrayOutput
type FecMap ¶
func (FecMap) ElementType ¶
func (FecMap) ToFecMapOutput ¶
func (i FecMap) ToFecMapOutput() FecMapOutput
func (FecMap) ToFecMapOutputWithContext ¶
func (i FecMap) ToFecMapOutputWithContext(ctx context.Context) FecMapOutput
type FecMapInput ¶
type FecMapInput interface { pulumi.Input ToFecMapOutput() FecMapOutput ToFecMapOutputWithContext(context.Context) FecMapOutput }
FecMapInput is an input type that accepts FecMap and FecMapOutput values. You can construct a concrete instance of `FecMapInput` via:
FecMap{ "key": FecArgs{...} }
type FecMapOutput ¶
type FecMapOutput struct{ *pulumi.OutputState }
func (FecMapOutput) ElementType ¶
func (FecMapOutput) ElementType() reflect.Type
func (FecMapOutput) MapIndex ¶
func (o FecMapOutput) MapIndex(k pulumi.StringInput) FecOutput
func (FecMapOutput) ToFecMapOutput ¶
func (o FecMapOutput) ToFecMapOutput() FecMapOutput
func (FecMapOutput) ToFecMapOutputWithContext ¶
func (o FecMapOutput) ToFecMapOutputWithContext(ctx context.Context) FecMapOutput
type FecMapping ¶
type FecMapping struct { // Apply FEC parameters when available bi-bandwidth is >= threshold (kbps, 0 means no threshold). BandwidthBiThreshold *int `pulumi:"bandwidthBiThreshold"` // Apply FEC parameters when available down bandwidth is >= threshold (kbps, 0 means no threshold). BandwidthDownThreshold *int `pulumi:"bandwidthDownThreshold"` // Apply FEC parameters when available up bandwidth is >= threshold (kbps, 0 means no threshold). BandwidthUpThreshold *int `pulumi:"bandwidthUpThreshold"` // Number of base FEC packets (1 - 20). Base *int `pulumi:"base"` // Apply FEC parameters when latency is <= threshold (0 means no threshold). LatencyThreshold *int `pulumi:"latencyThreshold"` // Apply FEC parameters when packet loss is >= threshold (0 - 100, 0 means no threshold). PacketLossThreshold *int `pulumi:"packetLossThreshold"` // Number of redundant FEC packets (1 - 5). Redundant *int `pulumi:"redundant"` // Sequence number (1 - 64). Seqno *int `pulumi:"seqno"` }
type FecMappingArgs ¶
type FecMappingArgs struct { // Apply FEC parameters when available bi-bandwidth is >= threshold (kbps, 0 means no threshold). BandwidthBiThreshold pulumi.IntPtrInput `pulumi:"bandwidthBiThreshold"` // Apply FEC parameters when available down bandwidth is >= threshold (kbps, 0 means no threshold). BandwidthDownThreshold pulumi.IntPtrInput `pulumi:"bandwidthDownThreshold"` // Apply FEC parameters when available up bandwidth is >= threshold (kbps, 0 means no threshold). BandwidthUpThreshold pulumi.IntPtrInput `pulumi:"bandwidthUpThreshold"` // Number of base FEC packets (1 - 20). Base pulumi.IntPtrInput `pulumi:"base"` // Apply FEC parameters when latency is <= threshold (0 means no threshold). LatencyThreshold pulumi.IntPtrInput `pulumi:"latencyThreshold"` // Apply FEC parameters when packet loss is >= threshold (0 - 100, 0 means no threshold). PacketLossThreshold pulumi.IntPtrInput `pulumi:"packetLossThreshold"` // Number of redundant FEC packets (1 - 5). Redundant pulumi.IntPtrInput `pulumi:"redundant"` // Sequence number (1 - 64). Seqno pulumi.IntPtrInput `pulumi:"seqno"` }
func (FecMappingArgs) ElementType ¶
func (FecMappingArgs) ElementType() reflect.Type
func (FecMappingArgs) ToFecMappingOutput ¶
func (i FecMappingArgs) ToFecMappingOutput() FecMappingOutput
func (FecMappingArgs) ToFecMappingOutputWithContext ¶
func (i FecMappingArgs) ToFecMappingOutputWithContext(ctx context.Context) FecMappingOutput
type FecMappingArray ¶
type FecMappingArray []FecMappingInput
func (FecMappingArray) ElementType ¶
func (FecMappingArray) ElementType() reflect.Type
func (FecMappingArray) ToFecMappingArrayOutput ¶
func (i FecMappingArray) ToFecMappingArrayOutput() FecMappingArrayOutput
func (FecMappingArray) ToFecMappingArrayOutputWithContext ¶
func (i FecMappingArray) ToFecMappingArrayOutputWithContext(ctx context.Context) FecMappingArrayOutput
type FecMappingArrayInput ¶
type FecMappingArrayInput interface { pulumi.Input ToFecMappingArrayOutput() FecMappingArrayOutput ToFecMappingArrayOutputWithContext(context.Context) FecMappingArrayOutput }
FecMappingArrayInput is an input type that accepts FecMappingArray and FecMappingArrayOutput values. You can construct a concrete instance of `FecMappingArrayInput` via:
FecMappingArray{ FecMappingArgs{...} }
type FecMappingArrayOutput ¶
type FecMappingArrayOutput struct{ *pulumi.OutputState }
func (FecMappingArrayOutput) ElementType ¶
func (FecMappingArrayOutput) ElementType() reflect.Type
func (FecMappingArrayOutput) Index ¶
func (o FecMappingArrayOutput) Index(i pulumi.IntInput) FecMappingOutput
func (FecMappingArrayOutput) ToFecMappingArrayOutput ¶
func (o FecMappingArrayOutput) ToFecMappingArrayOutput() FecMappingArrayOutput
func (FecMappingArrayOutput) ToFecMappingArrayOutputWithContext ¶
func (o FecMappingArrayOutput) ToFecMappingArrayOutputWithContext(ctx context.Context) FecMappingArrayOutput
type FecMappingInput ¶
type FecMappingInput interface { pulumi.Input ToFecMappingOutput() FecMappingOutput ToFecMappingOutputWithContext(context.Context) FecMappingOutput }
FecMappingInput is an input type that accepts FecMappingArgs and FecMappingOutput values. You can construct a concrete instance of `FecMappingInput` via:
FecMappingArgs{...}
type FecMappingOutput ¶
type FecMappingOutput struct{ *pulumi.OutputState }
func (FecMappingOutput) BandwidthBiThreshold ¶
func (o FecMappingOutput) BandwidthBiThreshold() pulumi.IntPtrOutput
Apply FEC parameters when available bi-bandwidth is >= threshold (kbps, 0 means no threshold).
func (FecMappingOutput) BandwidthDownThreshold ¶
func (o FecMappingOutput) BandwidthDownThreshold() pulumi.IntPtrOutput
Apply FEC parameters when available down bandwidth is >= threshold (kbps, 0 means no threshold).
func (FecMappingOutput) BandwidthUpThreshold ¶
func (o FecMappingOutput) BandwidthUpThreshold() pulumi.IntPtrOutput
Apply FEC parameters when available up bandwidth is >= threshold (kbps, 0 means no threshold).
func (FecMappingOutput) Base ¶
func (o FecMappingOutput) Base() pulumi.IntPtrOutput
Number of base FEC packets (1 - 20).
func (FecMappingOutput) ElementType ¶
func (FecMappingOutput) ElementType() reflect.Type
func (FecMappingOutput) LatencyThreshold ¶
func (o FecMappingOutput) LatencyThreshold() pulumi.IntPtrOutput
Apply FEC parameters when latency is <= threshold (0 means no threshold).
func (FecMappingOutput) PacketLossThreshold ¶
func (o FecMappingOutput) PacketLossThreshold() pulumi.IntPtrOutput
Apply FEC parameters when packet loss is >= threshold (0 - 100, 0 means no threshold).
func (FecMappingOutput) Redundant ¶
func (o FecMappingOutput) Redundant() pulumi.IntPtrOutput
Number of redundant FEC packets (1 - 5).
func (FecMappingOutput) Seqno ¶
func (o FecMappingOutput) Seqno() pulumi.IntPtrOutput
Sequence number (1 - 64).
func (FecMappingOutput) ToFecMappingOutput ¶
func (o FecMappingOutput) ToFecMappingOutput() FecMappingOutput
func (FecMappingOutput) ToFecMappingOutputWithContext ¶
func (o FecMappingOutput) ToFecMappingOutputWithContext(ctx context.Context) FecMappingOutput
type FecOutput ¶
type FecOutput struct{ *pulumi.OutputState }
func (FecOutput) DynamicSortSubtable ¶
func (o FecOutput) DynamicSortSubtable() pulumi.StringPtrOutput
Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
func (FecOutput) ElementType ¶
func (FecOutput) GetAllTables ¶
func (o FecOutput) GetAllTables() pulumi.StringPtrOutput
Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
func (FecOutput) Mappings ¶
func (o FecOutput) Mappings() FecMappingArrayOutput
FEC redundancy mapping table. The structure of `mappings` block is documented below.
func (FecOutput) ToFecOutput ¶
func (FecOutput) ToFecOutputWithContext ¶
func (FecOutput) Vdomparam ¶
func (o FecOutput) Vdomparam() pulumi.StringPtrOutput
Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
type FecState ¶
type FecState struct { // Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. DynamicSortSubtable pulumi.StringPtrInput // Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. GetAllTables pulumi.StringPtrInput // FEC redundancy mapping table. The structure of `mappings` block is documented below. Mappings FecMappingArrayInput // Profile name. Name pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
func (FecState) ElementType ¶
type Forticlient ¶
type Forticlient struct { pulumi.CustomResourceState // Phase 2 tunnel name that you defined in the FortiClient dialup configuration. Phase2name pulumi.StringOutput `pulumi:"phase2name"` // FortiClient realm name. Realm pulumi.StringOutput `pulumi:"realm"` // Enable/disable this FortiClient configuration. Valid values: `enable`, `disable`. Status pulumi.StringOutput `pulumi:"status"` // User group name for FortiClient users. Usergroupname pulumi.StringOutput `pulumi:"usergroupname"` // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"` }
Configure FortiClient policy realm.
## Example Usage
<!--Start PulumiCodeChooser --> ```go package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi" "github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { // fortios_vpnipsec_phase1interface.trname2: trname4, err := vpn.NewPhase1interface(ctx, "trname4", &vpn.Phase1interfaceArgs{ AcctVerify: pulumi.String("disable"), AddGwRoute: pulumi.String("disable"), AddRoute: pulumi.String("enable"), AssignIp: pulumi.String("enable"), AssignIpFrom: pulumi.String("range"), Authmethod: pulumi.String("psk"), Authusrgrp: pulumi.String("Guest-group"), AutoDiscoveryForwarder: pulumi.String("disable"), AutoDiscoveryPsk: pulumi.String("disable"), AutoDiscoveryReceiver: pulumi.String("disable"), AutoDiscoverySender: pulumi.String("disable"), AutoNegotiate: pulumi.String("enable"), CertIdValidation: pulumi.String("enable"), ChildlessIke: pulumi.String("disable"), ClientAutoNegotiate: pulumi.String("disable"), ClientKeepAlive: pulumi.String("disable"), Comments: pulumi.String("VPN: Dialup_IPsec (Created by VPN wizard)"), DefaultGw: pulumi.String("0.0.0.0"), DefaultGwPriority: pulumi.Int(0), Dhgrp: pulumi.String("14 5"), DigitalSignatureAuth: pulumi.String("disable"), Distance: pulumi.Int(15), DnsMode: pulumi.String("auto"), Dpd: pulumi.String("on-idle"), DpdRetrycount: pulumi.Int(3), DpdRetryinterval: pulumi.String("60"), Eap: pulumi.String("disable"), EapIdentity: pulumi.String("use-id-payload"), EncapLocalGw4: pulumi.String("0.0.0.0"), EncapLocalGw6: pulumi.String("::"), EncapRemoteGw4: pulumi.String("0.0.0.0"), EncapRemoteGw6: pulumi.String("::"), Encapsulation: pulumi.String("none"), EncapsulationAddress: pulumi.String("ike"), EnforceUniqueId: pulumi.String("disable"), ExchangeInterfaceIp: pulumi.String("disable"), ExchangeIpAddr4: pulumi.String("0.0.0.0"), ExchangeIpAddr6: pulumi.String("::"), ForticlientEnforcement: pulumi.String("disable"), Fragmentation: pulumi.String("enable"), FragmentationMtu: pulumi.Int(1200), GroupAuthentication: pulumi.String("disable"), HaSyncEspSeqno: pulumi.String("enable"), IdleTimeout: pulumi.String("disable"), IdleTimeoutinterval: pulumi.Int(15), IkeVersion: pulumi.String("1"), IncludeLocalLan: pulumi.String("disable"), Interface: pulumi.String("port4"), IpVersion: pulumi.String("4"), Ipv4DnsServer1: pulumi.String("0.0.0.0"), Ipv4DnsServer2: pulumi.String("0.0.0.0"), Ipv4DnsServer3: pulumi.String("0.0.0.0"), Ipv4EndIp: pulumi.String("10.10.10.10"), Ipv4Netmask: pulumi.String("255.255.255.192"), Ipv4SplitInclude: pulumi.String("FIREWALL_AUTH_PORTAL_ADDRESS"), Ipv4StartIp: pulumi.String("10.10.10.1"), Ipv4WinsServer1: pulumi.String("0.0.0.0"), Ipv4WinsServer2: pulumi.String("0.0.0.0"), Ipv6DnsServer1: pulumi.String("::"), Ipv6DnsServer2: pulumi.String("::"), Ipv6DnsServer3: pulumi.String("::"), Ipv6EndIp: pulumi.String("::"), Ipv6Prefix: pulumi.Int(128), Ipv6StartIp: pulumi.String("::"), Keepalive: pulumi.Int(10), Keylife: pulumi.Int(86400), LocalGw: pulumi.String("0.0.0.0"), LocalGw6: pulumi.String("::"), LocalidType: pulumi.String("auto"), MeshSelectorType: pulumi.String("disable"), Mode: pulumi.String("aggressive"), ModeCfg: pulumi.String("enable"), MonitorHoldDownDelay: pulumi.Int(0), MonitorHoldDownTime: pulumi.String("00:00"), MonitorHoldDownType: pulumi.String("immediate"), MonitorHoldDownWeekday: pulumi.String("sunday"), Nattraversal: pulumi.String("enable"), NegotiateTimeout: pulumi.Int(30), NetDevice: pulumi.String("enable"), PassiveMode: pulumi.String("disable"), Peertype: pulumi.String("any"), Psksecret: pulumi.String("NCIEW32930293203932"), Ppk: pulumi.String("disable"), Priority: pulumi.Int(0), Proposal: pulumi.String("aes128-sha256 aes256-sha256 aes128-sha1 aes256-sha1"), Reauth: pulumi.String("disable"), Rekey: pulumi.String("enable"), RemoteGw: pulumi.String("0.0.0.0"), RemoteGw6: pulumi.String("::"), RsaSignatureFormat: pulumi.String("pkcs1"), SavePassword: pulumi.String("enable"), SendCertChain: pulumi.String("enable"), SignatureHashAlg: pulumi.String("sha2-512 sha2-384 sha2-256 sha1"), SuiteB: pulumi.String("disable"), TunnelSearch: pulumi.String("selectors"), Type: pulumi.String("dynamic"), UnitySupport: pulumi.String("enable"), WizardType: pulumi.String("dialup-forticlient"), Xauthtype: pulumi.String("auto"), }) if err != nil { return err } // fortios_vpnipsec_phase2interface.trname1: trname3, err := vpn.NewPhase2interface(ctx, "trname3", &vpn.Phase2interfaceArgs{ AddRoute: pulumi.String("phase1"), AutoDiscoveryForwarder: pulumi.String("phase1"), AutoDiscoverySender: pulumi.String("phase1"), AutoNegotiate: pulumi.String("disable"), DhcpIpsec: pulumi.String("disable"), Dhgrp: pulumi.String("14 5"), DstAddrType: pulumi.String("subnet"), DstEndIp: pulumi.String("0.0.0.0"), DstEndIp6: pulumi.String("::"), DstPort: pulumi.Int(0), DstStartIp: pulumi.String("0.0.0.0"), DstStartIp6: pulumi.String("::"), DstSubnet: pulumi.String("0.0.0.0 0.0.0.0"), DstSubnet6: pulumi.String("::/0"), Encapsulation: pulumi.String("tunnel-mode"), Keepalive: pulumi.String("disable"), KeylifeType: pulumi.String("seconds"), Keylifekbs: pulumi.Int(5120), Keylifeseconds: pulumi.Int(43200), L2tp: pulumi.String("disable"), Pfs: pulumi.String("enable"), Phase1name: trname4.Name, Proposal: pulumi.String("aes128-sha1 aes256-sha1 aes128-sha256 aes256-sha256 aes128gcm aes256gcm chacha20poly1305"), Protocol: pulumi.Int(0), Replay: pulumi.String("enable"), RouteOverlap: pulumi.String("use-new"), SingleSource: pulumi.String("disable"), SrcAddrType: pulumi.String("subnet"), SrcEndIp: pulumi.String("0.0.0.0"), SrcEndIp6: pulumi.String("::"), SrcPort: pulumi.Int(0), SrcStartIp: pulumi.String("0.0.0.0"), SrcStartIp6: pulumi.String("::"), SrcSubnet: pulumi.String("0.0.0.0 0.0.0.0"), SrcSubnet6: pulumi.String("::/0"), }) if err != nil { return err } _, err = vpn.NewForticlient(ctx, "trname", &vpn.ForticlientArgs{ Phase2name: trname3.Name, Realm: pulumi.String("1"), Status: pulumi.String("enable"), Usergroupname: pulumi.String("Guest-group"), }) if err != nil { return err } return nil }) }
``` <!--End PulumiCodeChooser -->
## Import
VpnIpsec Forticlient can be imported using any of these accepted formats:
```sh $ pulumi import fortios:vpn/ipsec/forticlient:Forticlient labelname {{realm}} ```
If you do not want to import arguments of block:
$ export "FORTIOS_IMPORT_TABLE"="false"
```sh $ pulumi import fortios:vpn/ipsec/forticlient:Forticlient labelname {{realm}} ```
$ unset "FORTIOS_IMPORT_TABLE"
func GetForticlient ¶
func GetForticlient(ctx *pulumi.Context, name string, id pulumi.IDInput, state *ForticlientState, opts ...pulumi.ResourceOption) (*Forticlient, error)
GetForticlient gets an existing Forticlient resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewForticlient ¶
func NewForticlient(ctx *pulumi.Context, name string, args *ForticlientArgs, opts ...pulumi.ResourceOption) (*Forticlient, error)
NewForticlient registers a new resource with the given unique name, arguments, and options.
func (*Forticlient) ElementType ¶
func (*Forticlient) ElementType() reflect.Type
func (*Forticlient) ToForticlientOutput ¶
func (i *Forticlient) ToForticlientOutput() ForticlientOutput
func (*Forticlient) ToForticlientOutputWithContext ¶
func (i *Forticlient) ToForticlientOutputWithContext(ctx context.Context) ForticlientOutput
type ForticlientArgs ¶
type ForticlientArgs struct { // Phase 2 tunnel name that you defined in the FortiClient dialup configuration. Phase2name pulumi.StringInput // FortiClient realm name. Realm pulumi.StringPtrInput // Enable/disable this FortiClient configuration. Valid values: `enable`, `disable`. Status pulumi.StringPtrInput // User group name for FortiClient users. Usergroupname pulumi.StringInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
The set of arguments for constructing a Forticlient resource.
func (ForticlientArgs) ElementType ¶
func (ForticlientArgs) ElementType() reflect.Type
type ForticlientArray ¶
type ForticlientArray []ForticlientInput
func (ForticlientArray) ElementType ¶
func (ForticlientArray) ElementType() reflect.Type
func (ForticlientArray) ToForticlientArrayOutput ¶
func (i ForticlientArray) ToForticlientArrayOutput() ForticlientArrayOutput
func (ForticlientArray) ToForticlientArrayOutputWithContext ¶
func (i ForticlientArray) ToForticlientArrayOutputWithContext(ctx context.Context) ForticlientArrayOutput
type ForticlientArrayInput ¶
type ForticlientArrayInput interface { pulumi.Input ToForticlientArrayOutput() ForticlientArrayOutput ToForticlientArrayOutputWithContext(context.Context) ForticlientArrayOutput }
ForticlientArrayInput is an input type that accepts ForticlientArray and ForticlientArrayOutput values. You can construct a concrete instance of `ForticlientArrayInput` via:
ForticlientArray{ ForticlientArgs{...} }
type ForticlientArrayOutput ¶
type ForticlientArrayOutput struct{ *pulumi.OutputState }
func (ForticlientArrayOutput) ElementType ¶
func (ForticlientArrayOutput) ElementType() reflect.Type
func (ForticlientArrayOutput) Index ¶
func (o ForticlientArrayOutput) Index(i pulumi.IntInput) ForticlientOutput
func (ForticlientArrayOutput) ToForticlientArrayOutput ¶
func (o ForticlientArrayOutput) ToForticlientArrayOutput() ForticlientArrayOutput
func (ForticlientArrayOutput) ToForticlientArrayOutputWithContext ¶
func (o ForticlientArrayOutput) ToForticlientArrayOutputWithContext(ctx context.Context) ForticlientArrayOutput
type ForticlientInput ¶
type ForticlientInput interface { pulumi.Input ToForticlientOutput() ForticlientOutput ToForticlientOutputWithContext(ctx context.Context) ForticlientOutput }
type ForticlientMap ¶
type ForticlientMap map[string]ForticlientInput
func (ForticlientMap) ElementType ¶
func (ForticlientMap) ElementType() reflect.Type
func (ForticlientMap) ToForticlientMapOutput ¶
func (i ForticlientMap) ToForticlientMapOutput() ForticlientMapOutput
func (ForticlientMap) ToForticlientMapOutputWithContext ¶
func (i ForticlientMap) ToForticlientMapOutputWithContext(ctx context.Context) ForticlientMapOutput
type ForticlientMapInput ¶
type ForticlientMapInput interface { pulumi.Input ToForticlientMapOutput() ForticlientMapOutput ToForticlientMapOutputWithContext(context.Context) ForticlientMapOutput }
ForticlientMapInput is an input type that accepts ForticlientMap and ForticlientMapOutput values. You can construct a concrete instance of `ForticlientMapInput` via:
ForticlientMap{ "key": ForticlientArgs{...} }
type ForticlientMapOutput ¶
type ForticlientMapOutput struct{ *pulumi.OutputState }
func (ForticlientMapOutput) ElementType ¶
func (ForticlientMapOutput) ElementType() reflect.Type
func (ForticlientMapOutput) MapIndex ¶
func (o ForticlientMapOutput) MapIndex(k pulumi.StringInput) ForticlientOutput
func (ForticlientMapOutput) ToForticlientMapOutput ¶
func (o ForticlientMapOutput) ToForticlientMapOutput() ForticlientMapOutput
func (ForticlientMapOutput) ToForticlientMapOutputWithContext ¶
func (o ForticlientMapOutput) ToForticlientMapOutputWithContext(ctx context.Context) ForticlientMapOutput
type ForticlientOutput ¶
type ForticlientOutput struct{ *pulumi.OutputState }
func (ForticlientOutput) ElementType ¶
func (ForticlientOutput) ElementType() reflect.Type
func (ForticlientOutput) Phase2name ¶
func (o ForticlientOutput) Phase2name() pulumi.StringOutput
Phase 2 tunnel name that you defined in the FortiClient dialup configuration.
func (ForticlientOutput) Realm ¶
func (o ForticlientOutput) Realm() pulumi.StringOutput
FortiClient realm name.
func (ForticlientOutput) Status ¶
func (o ForticlientOutput) Status() pulumi.StringOutput
Enable/disable this FortiClient configuration. Valid values: `enable`, `disable`.
func (ForticlientOutput) ToForticlientOutput ¶
func (o ForticlientOutput) ToForticlientOutput() ForticlientOutput
func (ForticlientOutput) ToForticlientOutputWithContext ¶
func (o ForticlientOutput) ToForticlientOutputWithContext(ctx context.Context) ForticlientOutput
func (ForticlientOutput) Usergroupname ¶
func (o ForticlientOutput) Usergroupname() pulumi.StringOutput
User group name for FortiClient users.
func (ForticlientOutput) Vdomparam ¶
func (o ForticlientOutput) Vdomparam() pulumi.StringPtrOutput
Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
type ForticlientState ¶
type ForticlientState struct { // Phase 2 tunnel name that you defined in the FortiClient dialup configuration. Phase2name pulumi.StringPtrInput // FortiClient realm name. Realm pulumi.StringPtrInput // Enable/disable this FortiClient configuration. Valid values: `enable`, `disable`. Status pulumi.StringPtrInput // User group name for FortiClient users. Usergroupname pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
func (ForticlientState) ElementType ¶
func (ForticlientState) ElementType() reflect.Type
type Manualkey ¶
type Manualkey struct { pulumi.CustomResourceState // Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`. Authentication pulumi.StringOutput `pulumi:"authentication"` // Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens. Authkey pulumi.StringOutput `pulumi:"authkey"` // Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens. Enckey pulumi.StringOutput `pulumi:"enckey"` // Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`. Encryption pulumi.StringOutput `pulumi:"encryption"` // Name of the physical, aggregate, or VLAN interface. Interface pulumi.StringOutput `pulumi:"interface"` // Local gateway. LocalGw pulumi.StringOutput `pulumi:"localGw"` // Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules. Localspi pulumi.StringOutput `pulumi:"localspi"` // IPsec tunnel name. Name pulumi.StringOutput `pulumi:"name"` // Enable/disable NPU offloading. Valid values: `enable`, `disable`. NpuOffload pulumi.StringOutput `pulumi:"npuOffload"` // Peer gateway. RemoteGw pulumi.StringOutput `pulumi:"remoteGw"` // Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules. Remotespi pulumi.StringOutput `pulumi:"remotespi"` // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"` }
Configure IPsec manual keys.
## Example Usage
<!--Start PulumiCodeChooser --> ```go package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi" "github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { _, err := vpn.NewManualkey(ctx, "trname", &vpn.ManualkeyArgs{ Authentication: pulumi.String("md5"), Authkey: pulumi.String("EE32CA121ECD772A-ECACAABA212345EC"), Enckey: pulumi.String("-"), Encryption: pulumi.String("null"), Interface: pulumi.String("port4"), LocalGw: pulumi.String("0.0.0.0"), Localspi: pulumi.String("0x100"), RemoteGw: pulumi.String("1.1.1.1"), Remotespi: pulumi.String("0x100"), }) if err != nil { return err } return nil }) }
``` <!--End PulumiCodeChooser -->
## Import
VpnIpsec Manualkey can be imported using any of these accepted formats:
```sh $ pulumi import fortios:vpn/ipsec/manualkey:Manualkey labelname {{name}} ```
If you do not want to import arguments of block:
$ export "FORTIOS_IMPORT_TABLE"="false"
```sh $ pulumi import fortios:vpn/ipsec/manualkey:Manualkey labelname {{name}} ```
$ unset "FORTIOS_IMPORT_TABLE"
func GetManualkey ¶
func GetManualkey(ctx *pulumi.Context, name string, id pulumi.IDInput, state *ManualkeyState, opts ...pulumi.ResourceOption) (*Manualkey, error)
GetManualkey gets an existing Manualkey resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewManualkey ¶
func NewManualkey(ctx *pulumi.Context, name string, args *ManualkeyArgs, opts ...pulumi.ResourceOption) (*Manualkey, error)
NewManualkey registers a new resource with the given unique name, arguments, and options.
func (*Manualkey) ElementType ¶
func (*Manualkey) ToManualkeyOutput ¶
func (i *Manualkey) ToManualkeyOutput() ManualkeyOutput
func (*Manualkey) ToManualkeyOutputWithContext ¶
func (i *Manualkey) ToManualkeyOutputWithContext(ctx context.Context) ManualkeyOutput
type ManualkeyArgs ¶
type ManualkeyArgs struct { // Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`. Authentication pulumi.StringInput // Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens. Authkey pulumi.StringPtrInput // Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens. Enckey pulumi.StringPtrInput // Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`. Encryption pulumi.StringInput // Name of the physical, aggregate, or VLAN interface. Interface pulumi.StringInput // Local gateway. LocalGw pulumi.StringPtrInput // Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules. Localspi pulumi.StringPtrInput // IPsec tunnel name. Name pulumi.StringPtrInput // Enable/disable NPU offloading. Valid values: `enable`, `disable`. NpuOffload pulumi.StringPtrInput // Peer gateway. RemoteGw pulumi.StringInput // Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules. Remotespi pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
The set of arguments for constructing a Manualkey resource.
func (ManualkeyArgs) ElementType ¶
func (ManualkeyArgs) ElementType() reflect.Type
type ManualkeyArray ¶
type ManualkeyArray []ManualkeyInput
func (ManualkeyArray) ElementType ¶
func (ManualkeyArray) ElementType() reflect.Type
func (ManualkeyArray) ToManualkeyArrayOutput ¶
func (i ManualkeyArray) ToManualkeyArrayOutput() ManualkeyArrayOutput
func (ManualkeyArray) ToManualkeyArrayOutputWithContext ¶
func (i ManualkeyArray) ToManualkeyArrayOutputWithContext(ctx context.Context) ManualkeyArrayOutput
type ManualkeyArrayInput ¶
type ManualkeyArrayInput interface { pulumi.Input ToManualkeyArrayOutput() ManualkeyArrayOutput ToManualkeyArrayOutputWithContext(context.Context) ManualkeyArrayOutput }
ManualkeyArrayInput is an input type that accepts ManualkeyArray and ManualkeyArrayOutput values. You can construct a concrete instance of `ManualkeyArrayInput` via:
ManualkeyArray{ ManualkeyArgs{...} }
type ManualkeyArrayOutput ¶
type ManualkeyArrayOutput struct{ *pulumi.OutputState }
func (ManualkeyArrayOutput) ElementType ¶
func (ManualkeyArrayOutput) ElementType() reflect.Type
func (ManualkeyArrayOutput) Index ¶
func (o ManualkeyArrayOutput) Index(i pulumi.IntInput) ManualkeyOutput
func (ManualkeyArrayOutput) ToManualkeyArrayOutput ¶
func (o ManualkeyArrayOutput) ToManualkeyArrayOutput() ManualkeyArrayOutput
func (ManualkeyArrayOutput) ToManualkeyArrayOutputWithContext ¶
func (o ManualkeyArrayOutput) ToManualkeyArrayOutputWithContext(ctx context.Context) ManualkeyArrayOutput
type ManualkeyInput ¶
type ManualkeyInput interface { pulumi.Input ToManualkeyOutput() ManualkeyOutput ToManualkeyOutputWithContext(ctx context.Context) ManualkeyOutput }
type ManualkeyMap ¶
type ManualkeyMap map[string]ManualkeyInput
func (ManualkeyMap) ElementType ¶
func (ManualkeyMap) ElementType() reflect.Type
func (ManualkeyMap) ToManualkeyMapOutput ¶
func (i ManualkeyMap) ToManualkeyMapOutput() ManualkeyMapOutput
func (ManualkeyMap) ToManualkeyMapOutputWithContext ¶
func (i ManualkeyMap) ToManualkeyMapOutputWithContext(ctx context.Context) ManualkeyMapOutput
type ManualkeyMapInput ¶
type ManualkeyMapInput interface { pulumi.Input ToManualkeyMapOutput() ManualkeyMapOutput ToManualkeyMapOutputWithContext(context.Context) ManualkeyMapOutput }
ManualkeyMapInput is an input type that accepts ManualkeyMap and ManualkeyMapOutput values. You can construct a concrete instance of `ManualkeyMapInput` via:
ManualkeyMap{ "key": ManualkeyArgs{...} }
type ManualkeyMapOutput ¶
type ManualkeyMapOutput struct{ *pulumi.OutputState }
func (ManualkeyMapOutput) ElementType ¶
func (ManualkeyMapOutput) ElementType() reflect.Type
func (ManualkeyMapOutput) MapIndex ¶
func (o ManualkeyMapOutput) MapIndex(k pulumi.StringInput) ManualkeyOutput
func (ManualkeyMapOutput) ToManualkeyMapOutput ¶
func (o ManualkeyMapOutput) ToManualkeyMapOutput() ManualkeyMapOutput
func (ManualkeyMapOutput) ToManualkeyMapOutputWithContext ¶
func (o ManualkeyMapOutput) ToManualkeyMapOutputWithContext(ctx context.Context) ManualkeyMapOutput
type ManualkeyOutput ¶
type ManualkeyOutput struct{ *pulumi.OutputState }
func (ManualkeyOutput) Authentication ¶
func (o ManualkeyOutput) Authentication() pulumi.StringOutput
Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`.
func (ManualkeyOutput) Authkey ¶
func (o ManualkeyOutput) Authkey() pulumi.StringOutput
Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens.
func (ManualkeyOutput) ElementType ¶
func (ManualkeyOutput) ElementType() reflect.Type
func (ManualkeyOutput) Enckey ¶
func (o ManualkeyOutput) Enckey() pulumi.StringOutput
Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens.
func (ManualkeyOutput) Encryption ¶
func (o ManualkeyOutput) Encryption() pulumi.StringOutput
Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`.
func (ManualkeyOutput) Interface ¶
func (o ManualkeyOutput) Interface() pulumi.StringOutput
Name of the physical, aggregate, or VLAN interface.
func (ManualkeyOutput) LocalGw ¶
func (o ManualkeyOutput) LocalGw() pulumi.StringOutput
Local gateway.
func (ManualkeyOutput) Localspi ¶
func (o ManualkeyOutput) Localspi() pulumi.StringOutput
Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
func (ManualkeyOutput) Name ¶
func (o ManualkeyOutput) Name() pulumi.StringOutput
IPsec tunnel name.
func (ManualkeyOutput) NpuOffload ¶
func (o ManualkeyOutput) NpuOffload() pulumi.StringOutput
Enable/disable NPU offloading. Valid values: `enable`, `disable`.
func (ManualkeyOutput) RemoteGw ¶
func (o ManualkeyOutput) RemoteGw() pulumi.StringOutput
Peer gateway.
func (ManualkeyOutput) Remotespi ¶
func (o ManualkeyOutput) Remotespi() pulumi.StringOutput
Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
func (ManualkeyOutput) ToManualkeyOutput ¶
func (o ManualkeyOutput) ToManualkeyOutput() ManualkeyOutput
func (ManualkeyOutput) ToManualkeyOutputWithContext ¶
func (o ManualkeyOutput) ToManualkeyOutputWithContext(ctx context.Context) ManualkeyOutput
func (ManualkeyOutput) Vdomparam ¶
func (o ManualkeyOutput) Vdomparam() pulumi.StringPtrOutput
Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
type ManualkeyState ¶
type ManualkeyState struct { // Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`. Authentication pulumi.StringPtrInput // Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens. Authkey pulumi.StringPtrInput // Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens. Enckey pulumi.StringPtrInput // Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`. Encryption pulumi.StringPtrInput // Name of the physical, aggregate, or VLAN interface. Interface pulumi.StringPtrInput // Local gateway. LocalGw pulumi.StringPtrInput // Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules. Localspi pulumi.StringPtrInput // IPsec tunnel name. Name pulumi.StringPtrInput // Enable/disable NPU offloading. Valid values: `enable`, `disable`. NpuOffload pulumi.StringPtrInput // Peer gateway. RemoteGw pulumi.StringPtrInput // Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules. Remotespi pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
func (ManualkeyState) ElementType ¶
func (ManualkeyState) ElementType() reflect.Type
type Manualkeyinterface ¶
type Manualkeyinterface struct { pulumi.CustomResourceState // IP version to use for IP packets. Valid values: `4`, `6`. AddrType pulumi.StringOutput `pulumi:"addrType"` // Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`. AuthAlg pulumi.StringOutput `pulumi:"authAlg"` // Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens. AuthKey pulumi.StringOutput `pulumi:"authKey"` // Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`. EncAlg pulumi.StringOutput `pulumi:"encAlg"` // Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens. EncKey pulumi.StringOutput `pulumi:"encKey"` // Name of the physical, aggregate, or VLAN interface. Interface pulumi.StringOutput `pulumi:"interface"` // IP version to use for VPN interface. Valid values: `4`, `6`. IpVersion pulumi.StringOutput `pulumi:"ipVersion"` // IPv4 address of the local gateway's external interface. LocalGw pulumi.StringOutput `pulumi:"localGw"` // Local IPv6 address of VPN gateway. LocalGw6 pulumi.StringOutput `pulumi:"localGw6"` // Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules. LocalSpi pulumi.StringOutput `pulumi:"localSpi"` // IPsec tunnel name. Name pulumi.StringOutput `pulumi:"name"` // Enable/disable offloading IPsec VPN manual key sessions to NPUs. Valid values: `enable`, `disable`. NpuOffload pulumi.StringOutput `pulumi:"npuOffload"` // IPv4 address of the remote gateway's external interface. RemoteGw pulumi.StringOutput `pulumi:"remoteGw"` // Remote IPv6 address of VPN gateway. RemoteGw6 pulumi.StringOutput `pulumi:"remoteGw6"` // Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules. RemoteSpi pulumi.StringOutput `pulumi:"remoteSpi"` // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"` }
Configure IPsec manual keys.
## Example Usage
<!--Start PulumiCodeChooser --> ```go package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi" "github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { _, err := vpn.NewManualkeyinterface(ctx, "trname", &vpn.ManualkeyinterfaceArgs{ AddrType: pulumi.String("4"), AuthAlg: pulumi.String("null"), AuthKey: pulumi.String("-"), EncAlg: pulumi.String("des"), EncKey: pulumi.String("CECA2184ACADAEEF"), Interface: pulumi.String("port3"), IpVersion: pulumi.String("4"), LocalGw: pulumi.String("0.0.0.0"), LocalGw6: pulumi.String("::"), LocalSpi: pulumi.String("0x100"), RemoteGw: pulumi.String("2.2.2.2"), RemoteGw6: pulumi.String("::"), RemoteSpi: pulumi.String("0x100"), }) if err != nil { return err } return nil }) }
``` <!--End PulumiCodeChooser -->
## Import
VpnIpsec ManualkeyInterface can be imported using any of these accepted formats:
```sh $ pulumi import fortios:vpn/ipsec/manualkeyinterface:Manualkeyinterface labelname {{name}} ```
If you do not want to import arguments of block:
$ export "FORTIOS_IMPORT_TABLE"="false"
```sh $ pulumi import fortios:vpn/ipsec/manualkeyinterface:Manualkeyinterface labelname {{name}} ```
$ unset "FORTIOS_IMPORT_TABLE"
func GetManualkeyinterface ¶
func GetManualkeyinterface(ctx *pulumi.Context, name string, id pulumi.IDInput, state *ManualkeyinterfaceState, opts ...pulumi.ResourceOption) (*Manualkeyinterface, error)
GetManualkeyinterface gets an existing Manualkeyinterface resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewManualkeyinterface ¶
func NewManualkeyinterface(ctx *pulumi.Context, name string, args *ManualkeyinterfaceArgs, opts ...pulumi.ResourceOption) (*Manualkeyinterface, error)
NewManualkeyinterface registers a new resource with the given unique name, arguments, and options.
func (*Manualkeyinterface) ElementType ¶
func (*Manualkeyinterface) ElementType() reflect.Type
func (*Manualkeyinterface) ToManualkeyinterfaceOutput ¶
func (i *Manualkeyinterface) ToManualkeyinterfaceOutput() ManualkeyinterfaceOutput
func (*Manualkeyinterface) ToManualkeyinterfaceOutputWithContext ¶
func (i *Manualkeyinterface) ToManualkeyinterfaceOutputWithContext(ctx context.Context) ManualkeyinterfaceOutput
type ManualkeyinterfaceArgs ¶
type ManualkeyinterfaceArgs struct { // IP version to use for IP packets. Valid values: `4`, `6`. AddrType pulumi.StringPtrInput // Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`. AuthAlg pulumi.StringInput // Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens. AuthKey pulumi.StringPtrInput // Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`. EncAlg pulumi.StringInput // Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens. EncKey pulumi.StringPtrInput // Name of the physical, aggregate, or VLAN interface. Interface pulumi.StringInput // IP version to use for VPN interface. Valid values: `4`, `6`. IpVersion pulumi.StringPtrInput // IPv4 address of the local gateway's external interface. LocalGw pulumi.StringPtrInput // Local IPv6 address of VPN gateway. LocalGw6 pulumi.StringPtrInput // Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules. LocalSpi pulumi.StringPtrInput // IPsec tunnel name. Name pulumi.StringPtrInput // Enable/disable offloading IPsec VPN manual key sessions to NPUs. Valid values: `enable`, `disable`. NpuOffload pulumi.StringPtrInput // IPv4 address of the remote gateway's external interface. RemoteGw pulumi.StringInput // Remote IPv6 address of VPN gateway. RemoteGw6 pulumi.StringInput // Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules. RemoteSpi pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
The set of arguments for constructing a Manualkeyinterface resource.
func (ManualkeyinterfaceArgs) ElementType ¶
func (ManualkeyinterfaceArgs) ElementType() reflect.Type
type ManualkeyinterfaceArray ¶
type ManualkeyinterfaceArray []ManualkeyinterfaceInput
func (ManualkeyinterfaceArray) ElementType ¶
func (ManualkeyinterfaceArray) ElementType() reflect.Type
func (ManualkeyinterfaceArray) ToManualkeyinterfaceArrayOutput ¶
func (i ManualkeyinterfaceArray) ToManualkeyinterfaceArrayOutput() ManualkeyinterfaceArrayOutput
func (ManualkeyinterfaceArray) ToManualkeyinterfaceArrayOutputWithContext ¶
func (i ManualkeyinterfaceArray) ToManualkeyinterfaceArrayOutputWithContext(ctx context.Context) ManualkeyinterfaceArrayOutput
type ManualkeyinterfaceArrayInput ¶
type ManualkeyinterfaceArrayInput interface { pulumi.Input ToManualkeyinterfaceArrayOutput() ManualkeyinterfaceArrayOutput ToManualkeyinterfaceArrayOutputWithContext(context.Context) ManualkeyinterfaceArrayOutput }
ManualkeyinterfaceArrayInput is an input type that accepts ManualkeyinterfaceArray and ManualkeyinterfaceArrayOutput values. You can construct a concrete instance of `ManualkeyinterfaceArrayInput` via:
ManualkeyinterfaceArray{ ManualkeyinterfaceArgs{...} }
type ManualkeyinterfaceArrayOutput ¶
type ManualkeyinterfaceArrayOutput struct{ *pulumi.OutputState }
func (ManualkeyinterfaceArrayOutput) ElementType ¶
func (ManualkeyinterfaceArrayOutput) ElementType() reflect.Type
func (ManualkeyinterfaceArrayOutput) Index ¶
func (o ManualkeyinterfaceArrayOutput) Index(i pulumi.IntInput) ManualkeyinterfaceOutput
func (ManualkeyinterfaceArrayOutput) ToManualkeyinterfaceArrayOutput ¶
func (o ManualkeyinterfaceArrayOutput) ToManualkeyinterfaceArrayOutput() ManualkeyinterfaceArrayOutput
func (ManualkeyinterfaceArrayOutput) ToManualkeyinterfaceArrayOutputWithContext ¶
func (o ManualkeyinterfaceArrayOutput) ToManualkeyinterfaceArrayOutputWithContext(ctx context.Context) ManualkeyinterfaceArrayOutput
type ManualkeyinterfaceInput ¶
type ManualkeyinterfaceInput interface { pulumi.Input ToManualkeyinterfaceOutput() ManualkeyinterfaceOutput ToManualkeyinterfaceOutputWithContext(ctx context.Context) ManualkeyinterfaceOutput }
type ManualkeyinterfaceMap ¶
type ManualkeyinterfaceMap map[string]ManualkeyinterfaceInput
func (ManualkeyinterfaceMap) ElementType ¶
func (ManualkeyinterfaceMap) ElementType() reflect.Type
func (ManualkeyinterfaceMap) ToManualkeyinterfaceMapOutput ¶
func (i ManualkeyinterfaceMap) ToManualkeyinterfaceMapOutput() ManualkeyinterfaceMapOutput
func (ManualkeyinterfaceMap) ToManualkeyinterfaceMapOutputWithContext ¶
func (i ManualkeyinterfaceMap) ToManualkeyinterfaceMapOutputWithContext(ctx context.Context) ManualkeyinterfaceMapOutput
type ManualkeyinterfaceMapInput ¶
type ManualkeyinterfaceMapInput interface { pulumi.Input ToManualkeyinterfaceMapOutput() ManualkeyinterfaceMapOutput ToManualkeyinterfaceMapOutputWithContext(context.Context) ManualkeyinterfaceMapOutput }
ManualkeyinterfaceMapInput is an input type that accepts ManualkeyinterfaceMap and ManualkeyinterfaceMapOutput values. You can construct a concrete instance of `ManualkeyinterfaceMapInput` via:
ManualkeyinterfaceMap{ "key": ManualkeyinterfaceArgs{...} }
type ManualkeyinterfaceMapOutput ¶
type ManualkeyinterfaceMapOutput struct{ *pulumi.OutputState }
func (ManualkeyinterfaceMapOutput) ElementType ¶
func (ManualkeyinterfaceMapOutput) ElementType() reflect.Type
func (ManualkeyinterfaceMapOutput) MapIndex ¶
func (o ManualkeyinterfaceMapOutput) MapIndex(k pulumi.StringInput) ManualkeyinterfaceOutput
func (ManualkeyinterfaceMapOutput) ToManualkeyinterfaceMapOutput ¶
func (o ManualkeyinterfaceMapOutput) ToManualkeyinterfaceMapOutput() ManualkeyinterfaceMapOutput
func (ManualkeyinterfaceMapOutput) ToManualkeyinterfaceMapOutputWithContext ¶
func (o ManualkeyinterfaceMapOutput) ToManualkeyinterfaceMapOutputWithContext(ctx context.Context) ManualkeyinterfaceMapOutput
type ManualkeyinterfaceOutput ¶
type ManualkeyinterfaceOutput struct{ *pulumi.OutputState }
func (ManualkeyinterfaceOutput) AddrType ¶
func (o ManualkeyinterfaceOutput) AddrType() pulumi.StringOutput
IP version to use for IP packets. Valid values: `4`, `6`.
func (ManualkeyinterfaceOutput) AuthAlg ¶
func (o ManualkeyinterfaceOutput) AuthAlg() pulumi.StringOutput
Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`.
func (ManualkeyinterfaceOutput) AuthKey ¶
func (o ManualkeyinterfaceOutput) AuthKey() pulumi.StringOutput
Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens.
func (ManualkeyinterfaceOutput) ElementType ¶
func (ManualkeyinterfaceOutput) ElementType() reflect.Type
func (ManualkeyinterfaceOutput) EncAlg ¶
func (o ManualkeyinterfaceOutput) EncAlg() pulumi.StringOutput
Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`.
func (ManualkeyinterfaceOutput) EncKey ¶
func (o ManualkeyinterfaceOutput) EncKey() pulumi.StringOutput
Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens.
func (ManualkeyinterfaceOutput) Interface ¶
func (o ManualkeyinterfaceOutput) Interface() pulumi.StringOutput
Name of the physical, aggregate, or VLAN interface.
func (ManualkeyinterfaceOutput) IpVersion ¶
func (o ManualkeyinterfaceOutput) IpVersion() pulumi.StringOutput
IP version to use for VPN interface. Valid values: `4`, `6`.
func (ManualkeyinterfaceOutput) LocalGw ¶
func (o ManualkeyinterfaceOutput) LocalGw() pulumi.StringOutput
IPv4 address of the local gateway's external interface.
func (ManualkeyinterfaceOutput) LocalGw6 ¶
func (o ManualkeyinterfaceOutput) LocalGw6() pulumi.StringOutput
Local IPv6 address of VPN gateway.
func (ManualkeyinterfaceOutput) LocalSpi ¶
func (o ManualkeyinterfaceOutput) LocalSpi() pulumi.StringOutput
Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
func (ManualkeyinterfaceOutput) Name ¶
func (o ManualkeyinterfaceOutput) Name() pulumi.StringOutput
IPsec tunnel name.
func (ManualkeyinterfaceOutput) NpuOffload ¶
func (o ManualkeyinterfaceOutput) NpuOffload() pulumi.StringOutput
Enable/disable offloading IPsec VPN manual key sessions to NPUs. Valid values: `enable`, `disable`.
func (ManualkeyinterfaceOutput) RemoteGw ¶
func (o ManualkeyinterfaceOutput) RemoteGw() pulumi.StringOutput
IPv4 address of the remote gateway's external interface.
func (ManualkeyinterfaceOutput) RemoteGw6 ¶
func (o ManualkeyinterfaceOutput) RemoteGw6() pulumi.StringOutput
Remote IPv6 address of VPN gateway.
func (ManualkeyinterfaceOutput) RemoteSpi ¶
func (o ManualkeyinterfaceOutput) RemoteSpi() pulumi.StringOutput
Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules.
func (ManualkeyinterfaceOutput) ToManualkeyinterfaceOutput ¶
func (o ManualkeyinterfaceOutput) ToManualkeyinterfaceOutput() ManualkeyinterfaceOutput
func (ManualkeyinterfaceOutput) ToManualkeyinterfaceOutputWithContext ¶
func (o ManualkeyinterfaceOutput) ToManualkeyinterfaceOutputWithContext(ctx context.Context) ManualkeyinterfaceOutput
func (ManualkeyinterfaceOutput) Vdomparam ¶
func (o ManualkeyinterfaceOutput) Vdomparam() pulumi.StringPtrOutput
Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
type ManualkeyinterfaceState ¶
type ManualkeyinterfaceState struct { // IP version to use for IP packets. Valid values: `4`, `6`. AddrType pulumi.StringPtrInput // Authentication algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `md5`, `sha1`, `sha256`, `sha384`, `sha512`. AuthAlg pulumi.StringPtrInput // Hexadecimal authentication key in 16-digit (8-byte) segments separated by hyphens. AuthKey pulumi.StringPtrInput // Encryption algorithm. Must be the same for both ends of the tunnel. Valid values: `null`, `des`, `3des`, `aes128`, `aes192`, `aes256`, `aria128`, `aria192`, `aria256`, `seed`. EncAlg pulumi.StringPtrInput // Hexadecimal encryption key in 16-digit (8-byte) segments separated by hyphens. EncKey pulumi.StringPtrInput // Name of the physical, aggregate, or VLAN interface. Interface pulumi.StringPtrInput // IP version to use for VPN interface. Valid values: `4`, `6`. IpVersion pulumi.StringPtrInput // IPv4 address of the local gateway's external interface. LocalGw pulumi.StringPtrInput // Local IPv6 address of VPN gateway. LocalGw6 pulumi.StringPtrInput // Local SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules. LocalSpi pulumi.StringPtrInput // IPsec tunnel name. Name pulumi.StringPtrInput // Enable/disable offloading IPsec VPN manual key sessions to NPUs. Valid values: `enable`, `disable`. NpuOffload pulumi.StringPtrInput // IPv4 address of the remote gateway's external interface. RemoteGw pulumi.StringPtrInput // Remote IPv6 address of VPN gateway. RemoteGw6 pulumi.StringPtrInput // Remote SPI, a hexadecimal 8-digit (4-byte) tag. Discerns between two traffic streams with different encryption rules. RemoteSpi pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
func (ManualkeyinterfaceState) ElementType ¶
func (ManualkeyinterfaceState) ElementType() reflect.Type
type Phase1 ¶
type Phase1 struct { pulumi.CustomResourceState // Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`. AcctVerify pulumi.StringOutput `pulumi:"acctVerify"` // Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`. AddGwRoute pulumi.StringOutput `pulumi:"addGwRoute"` // Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`. AddRoute pulumi.StringOutput `pulumi:"addRoute"` // Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`. AssignIp pulumi.StringOutput `pulumi:"assignIp"` // Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`. AssignIpFrom pulumi.StringOutput `pulumi:"assignIpFrom"` // Authentication method. Valid values: `psk`, `signature`. Authmethod pulumi.StringOutput `pulumi:"authmethod"` // Authentication method (remote side). Valid values: `psk`, `signature`. AuthmethodRemote pulumi.StringOutput `pulumi:"authmethodRemote"` // XAuth password (max 35 characters). Authpasswd pulumi.StringPtrOutput `pulumi:"authpasswd"` // XAuth user name. Authusr pulumi.StringOutput `pulumi:"authusr"` // Authentication user group. Authusrgrp pulumi.StringOutput `pulumi:"authusrgrp"` // Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`. AutoNegotiate pulumi.StringOutput `pulumi:"autoNegotiate"` // Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`. AzureAdAutoconnect pulumi.StringOutput `pulumi:"azureAdAutoconnect"` // Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below. BackupGateways Phase1BackupGatewayArrayOutput `pulumi:"backupGateways"` // Message that unity client should display after connecting. Banner pulumi.StringPtrOutput `pulumi:"banner"` // Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`. CertIdValidation pulumi.StringOutput `pulumi:"certIdValidation"` // CA certificate trust store. Valid values: `local`, `ems`. CertTrustStore pulumi.StringOutput `pulumi:"certTrustStore"` // Names of up to 4 signed personal certificates. The structure of `certificate` block is documented below. Certificates Phase1CertificateArrayOutput `pulumi:"certificates"` // Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`. ChildlessIke pulumi.StringOutput `pulumi:"childlessIke"` // Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`. ClientAutoNegotiate pulumi.StringOutput `pulumi:"clientAutoNegotiate"` // Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`. ClientKeepAlive pulumi.StringOutput `pulumi:"clientKeepAlive"` // Comment. Comments pulumi.StringPtrOutput `pulumi:"comments"` // Device ID carried by the device ID notification. DevId pulumi.StringOutput `pulumi:"devId"` // Enable/disable device ID notification. Valid values: `disable`, `enable`. DevIdNotification pulumi.StringOutput `pulumi:"devIdNotification"` // Relay agent IPv6 link address to use in DHCP6 requests. Dhcp6RaLinkaddr pulumi.StringOutput `pulumi:"dhcp6RaLinkaddr"` // Relay agent gateway IP address to use in the giaddr field of DHCP requests. DhcpRaGiaddr pulumi.StringOutput `pulumi:"dhcpRaGiaddr"` // DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`. Dhgrp pulumi.StringOutput `pulumi:"dhgrp"` // Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`. DigitalSignatureAuth pulumi.StringOutput `pulumi:"digitalSignatureAuth"` // Distance for routes added by IKE (1 - 255). Distance pulumi.IntOutput `pulumi:"distance"` // DNS server mode. Valid values: `manual`, `auto`. DnsMode pulumi.StringOutput `pulumi:"dnsMode"` // Instruct unity clients about the default DNS domain. Domain pulumi.StringOutput `pulumi:"domain"` // Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`. Dpd pulumi.StringOutput `pulumi:"dpd"` // Number of DPD retry attempts. DpdRetrycount pulumi.IntOutput `pulumi:"dpdRetrycount"` // DPD retry interval. DpdRetryinterval pulumi.StringOutput `pulumi:"dpdRetryinterval"` // Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. DynamicSortSubtable pulumi.StringPtrOutput `pulumi:"dynamicSortSubtable"` // Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`. Eap pulumi.StringOutput `pulumi:"eap"` // Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`. EapCertAuth pulumi.StringOutput `pulumi:"eapCertAuth"` // Peer group excluded from EAP authentication. EapExcludePeergrp pulumi.StringOutput `pulumi:"eapExcludePeergrp"` // IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`. EapIdentity pulumi.StringOutput `pulumi:"eapIdentity"` // Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`. EmsSnCheck pulumi.StringOutput `pulumi:"emsSnCheck"` // Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`. EnforceUniqueId pulumi.StringOutput `pulumi:"enforceUniqueId"` // Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`. Esn pulumi.StringOutput `pulumi:"esn"` // Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`. ExchangeFgtDeviceId pulumi.StringOutput `pulumi:"exchangeFgtDeviceId"` // Timeout in seconds before falling back IKE/IPsec traffic to tcp. FallbackTcpThreshold pulumi.IntOutput `pulumi:"fallbackTcpThreshold"` // Number of base Forward Error Correction packets (1 - 100). FecBase pulumi.IntOutput `pulumi:"fecBase"` // ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor). FecCodec pulumi.IntOutput `pulumi:"fecCodec"` // Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`. FecCodecString pulumi.StringOutput `pulumi:"fecCodecString"` // Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`. FecEgress pulumi.StringOutput `pulumi:"fecEgress"` // SD-WAN health check. FecHealthCheck pulumi.StringOutput `pulumi:"fecHealthCheck"` // Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`. FecIngress pulumi.StringOutput `pulumi:"fecIngress"` // Forward Error Correction (FEC) mapping profile. FecMappingProfile pulumi.StringOutput `pulumi:"fecMappingProfile"` // Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000). FecReceiveTimeout pulumi.IntOutput `pulumi:"fecReceiveTimeout"` // Number of redundant Forward Error Correction packets (1 - 100). FecRedundant pulumi.IntOutput `pulumi:"fecRedundant"` // Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000). FecSendTimeout pulumi.IntOutput `pulumi:"fecSendTimeout"` // Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`. FgspSync pulumi.StringOutput `pulumi:"fgspSync"` // Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`. ForticlientEnforcement pulumi.StringOutput `pulumi:"forticlientEnforcement"` // Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`. FortinetEsp pulumi.StringOutput `pulumi:"fortinetEsp"` // Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`. Fragmentation pulumi.StringOutput `pulumi:"fragmentation"` // IKE fragmentation MTU (500 - 16000). FragmentationMtu pulumi.IntOutput `pulumi:"fragmentationMtu"` // Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. GetAllTables pulumi.StringPtrOutput `pulumi:"getAllTables"` // Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`. GroupAuthentication pulumi.StringOutput `pulumi:"groupAuthentication"` // Password for IKEv2 IDi group authentication. (ASCII string or hexadecimal indicated by a leading 0x.) GroupAuthenticationSecret pulumi.StringPtrOutput `pulumi:"groupAuthenticationSecret"` // Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`. HaSyncEspSeqno pulumi.StringOutput `pulumi:"haSyncEspSeqno"` // Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`. IdleTimeout pulumi.StringOutput `pulumi:"idleTimeout"` // IPsec tunnel idle timeout in minutes (5 - 43200). IdleTimeoutinterval pulumi.IntOutput `pulumi:"idleTimeoutinterval"` // IKE protocol version. Valid values: `1`, `2`. IkeVersion pulumi.StringOutput `pulumi:"ikeVersion"` // Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`. InboundDscpCopy pulumi.StringOutput `pulumi:"inboundDscpCopy"` // Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`. IncludeLocalLan pulumi.StringOutput `pulumi:"includeLocalLan"` // Local physical, aggregate, or VLAN outgoing interface. Interface pulumi.StringOutput `pulumi:"interface"` // One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below. InternalDomainLists Phase1InternalDomainListArrayOutput `pulumi:"internalDomainLists"` // IP address reuse delay interval in seconds (0 - 28800). IpDelayInterval pulumi.IntOutput `pulumi:"ipDelayInterval"` // IPv4 DNS server 1. Ipv4DnsServer1 pulumi.StringOutput `pulumi:"ipv4DnsServer1"` // IPv4 DNS server 2. Ipv4DnsServer2 pulumi.StringOutput `pulumi:"ipv4DnsServer2"` // IPv4 DNS server 3. Ipv4DnsServer3 pulumi.StringOutput `pulumi:"ipv4DnsServer3"` // End of IPv4 range. Ipv4EndIp pulumi.StringOutput `pulumi:"ipv4EndIp"` // Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below. Ipv4ExcludeRanges Phase1Ipv4ExcludeRangeArrayOutput `pulumi:"ipv4ExcludeRanges"` // IPv4 address name. Ipv4Name pulumi.StringOutput `pulumi:"ipv4Name"` // IPv4 Netmask. Ipv4Netmask pulumi.StringOutput `pulumi:"ipv4Netmask"` // IPv4 subnets that should not be sent over the IPsec tunnel. Ipv4SplitExclude pulumi.StringOutput `pulumi:"ipv4SplitExclude"` // IPv4 split-include subnets. Ipv4SplitInclude pulumi.StringOutput `pulumi:"ipv4SplitInclude"` // Start of IPv4 range. Ipv4StartIp pulumi.StringOutput `pulumi:"ipv4StartIp"` // WINS server 1. Ipv4WinsServer1 pulumi.StringOutput `pulumi:"ipv4WinsServer1"` // WINS server 2. Ipv4WinsServer2 pulumi.StringOutput `pulumi:"ipv4WinsServer2"` // IPv6 DNS server 1. Ipv6DnsServer1 pulumi.StringOutput `pulumi:"ipv6DnsServer1"` // IPv6 DNS server 2. Ipv6DnsServer2 pulumi.StringOutput `pulumi:"ipv6DnsServer2"` // IPv6 DNS server 3. Ipv6DnsServer3 pulumi.StringOutput `pulumi:"ipv6DnsServer3"` // End of IPv6 range. Ipv6EndIp pulumi.StringOutput `pulumi:"ipv6EndIp"` // Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below. Ipv6ExcludeRanges Phase1Ipv6ExcludeRangeArrayOutput `pulumi:"ipv6ExcludeRanges"` // IPv6 address name. Ipv6Name pulumi.StringOutput `pulumi:"ipv6Name"` // IPv6 prefix. Ipv6Prefix pulumi.IntOutput `pulumi:"ipv6Prefix"` // IPv6 subnets that should not be sent over the IPsec tunnel. Ipv6SplitExclude pulumi.StringOutput `pulumi:"ipv6SplitExclude"` // IPv6 split-include subnets. Ipv6SplitInclude pulumi.StringOutput `pulumi:"ipv6SplitInclude"` // Start of IPv6 range. Ipv6StartIp pulumi.StringOutput `pulumi:"ipv6StartIp"` // NAT-T keep alive interval. Keepalive pulumi.IntOutput `pulumi:"keepalive"` // Time to wait in seconds before phase 1 encryption key expires. Keylife pulumi.IntOutput `pulumi:"keylife"` // Key Management Services server. Kms pulumi.StringOutput `pulumi:"kms"` // VPN tunnel underlay link cost. LinkCost pulumi.IntOutput `pulumi:"linkCost"` // Local VPN gateway. LocalGw pulumi.StringOutput `pulumi:"localGw"` // Local ID. Localid pulumi.StringOutput `pulumi:"localid"` // Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`. LocalidType pulumi.StringOutput `pulumi:"localidType"` // Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`. LoopbackAsymroute pulumi.StringOutput `pulumi:"loopbackAsymroute"` // Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`. MeshSelectorType pulumi.StringOutput `pulumi:"meshSelectorType"` // ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`. Mode pulumi.StringOutput `pulumi:"mode"` // Enable/disable configuration method. Valid values: `disable`, `enable`. ModeCfg pulumi.StringOutput `pulumi:"modeCfg"` // Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`. ModeCfgAllowClientSelector pulumi.StringOutput `pulumi:"modeCfgAllowClientSelector"` // IPsec remote gateway name. Name pulumi.StringOutput `pulumi:"name"` // Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`. Nattraversal pulumi.StringOutput `pulumi:"nattraversal"` // IKE SA negotiation timeout in seconds (1 - 300). NegotiateTimeout pulumi.IntOutput `pulumi:"negotiateTimeout"` // VPN gateway network ID. NetworkId pulumi.IntOutput `pulumi:"networkId"` // Enable/disable network overlays. Valid values: `disable`, `enable`. NetworkOverlay pulumi.StringOutput `pulumi:"networkOverlay"` // Enable/disable offloading NPU. Valid values: `enable`, `disable`. NpuOffload pulumi.StringOutput `pulumi:"npuOffload"` // Accept this peer certificate. Peer pulumi.StringOutput `pulumi:"peer"` // Accept this peer certificate group. Peergrp pulumi.StringOutput `pulumi:"peergrp"` // Accept this peer identity. Peerid pulumi.StringOutput `pulumi:"peerid"` // Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`. Peertype pulumi.StringOutput `pulumi:"peertype"` // Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`. Ppk pulumi.StringOutput `pulumi:"ppk"` // IKEv2 Postquantum Preshared Key Identity. PpkIdentity pulumi.StringOutput `pulumi:"ppkIdentity"` // IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x). PpkSecret pulumi.StringPtrOutput `pulumi:"ppkSecret"` // Priority for routes added by IKE (0 - 4294967295). Priority pulumi.IntOutput `pulumi:"priority"` // Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`. Proposal pulumi.StringOutput `pulumi:"proposal"` // Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x). Psksecret pulumi.StringOutput `pulumi:"psksecret"` // Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x). PsksecretRemote pulumi.StringPtrOutput `pulumi:"psksecretRemote"` // Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`. Qkd pulumi.StringOutput `pulumi:"qkd"` // Quantum Key Distribution (QKD) server profile. QkdProfile pulumi.StringOutput `pulumi:"qkdProfile"` // Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`. Reauth pulumi.StringOutput `pulumi:"reauth"` // Enable/disable phase1 rekey. Valid values: `enable`, `disable`. Rekey pulumi.StringOutput `pulumi:"rekey"` // Remote VPN gateway. RemoteGw pulumi.StringOutput `pulumi:"remoteGw"` // Domain name of remote gateway (eg. name.DDNS.com). RemotegwDdns pulumi.StringOutput `pulumi:"remotegwDdns"` // Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`. RsaSignatureFormat pulumi.StringOutput `pulumi:"rsaSignatureFormat"` // Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`. RsaSignatureHashOverride pulumi.StringOutput `pulumi:"rsaSignatureHashOverride"` // Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`. SavePassword pulumi.StringOutput `pulumi:"savePassword"` // Enable/disable sending certificate chain. Valid values: `enable`, `disable`. SendCertChain pulumi.StringOutput `pulumi:"sendCertChain"` // Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`. SignatureHashAlg pulumi.StringOutput `pulumi:"signatureHashAlg"` // Split-include services. SplitIncludeService pulumi.StringOutput `pulumi:"splitIncludeService"` // Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`. SuiteB pulumi.StringOutput `pulumi:"suiteB"` // Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`. Transport pulumi.StringOutput `pulumi:"transport"` // Remote gateway type. Valid values: `static`, `dynamic`, `ddns`. Type pulumi.StringOutput `pulumi:"type"` // Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`. UnitySupport pulumi.StringOutput `pulumi:"unitySupport"` // User group name for dialup peers. Usrgrp pulumi.StringOutput `pulumi:"usrgrp"` // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"` // GUI VPN Wizard Type. WizardType pulumi.StringOutput `pulumi:"wizardType"` // XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`. Xauthtype pulumi.StringOutput `pulumi:"xauthtype"` }
Configure VPN remote gateway.
## Example Usage
<!--Start PulumiCodeChooser --> ```go package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi" "github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { _, err := vpn.NewPhase1(ctx, "trnamex1", &vpn.Phase1Args{ AcctVerify: pulumi.String("disable"), AddGwRoute: pulumi.String("disable"), AddRoute: pulumi.String("disable"), AssignIp: pulumi.String("enable"), AssignIpFrom: pulumi.String("range"), Authmethod: pulumi.String("psk"), AutoNegotiate: pulumi.String("enable"), CertIdValidation: pulumi.String("enable"), ChildlessIke: pulumi.String("disable"), ClientAutoNegotiate: pulumi.String("disable"), ClientKeepAlive: pulumi.String("disable"), Dhgrp: pulumi.String("14 5"), DigitalSignatureAuth: pulumi.String("disable"), Distance: pulumi.Int(15), DnsMode: pulumi.String("manual"), Dpd: pulumi.String("on-demand"), DpdRetrycount: pulumi.Int(3), DpdRetryinterval: pulumi.String("20"), Eap: pulumi.String("disable"), EapIdentity: pulumi.String("use-id-payload"), EnforceUniqueId: pulumi.String("disable"), ForticlientEnforcement: pulumi.String("disable"), Fragmentation: pulumi.String("enable"), FragmentationMtu: pulumi.Int(1200), GroupAuthentication: pulumi.String("disable"), HaSyncEspSeqno: pulumi.String("enable"), IdleTimeout: pulumi.String("disable"), IdleTimeoutinterval: pulumi.Int(15), IkeVersion: pulumi.String("1"), IncludeLocalLan: pulumi.String("disable"), Interface: pulumi.String("port4"), Ipv4DnsServer1: pulumi.String("0.0.0.0"), Ipv4DnsServer2: pulumi.String("0.0.0.0"), Ipv4DnsServer3: pulumi.String("0.0.0.0"), Ipv4EndIp: pulumi.String("0.0.0.0"), Ipv4Netmask: pulumi.String("255.255.255.255"), Ipv4StartIp: pulumi.String("0.0.0.0"), Ipv4WinsServer1: pulumi.String("0.0.0.0"), Ipv4WinsServer2: pulumi.String("0.0.0.0"), Ipv6DnsServer1: pulumi.String("::"), Ipv6DnsServer2: pulumi.String("::"), Ipv6DnsServer3: pulumi.String("::"), Ipv6EndIp: pulumi.String("::"), Ipv6Prefix: pulumi.Int(128), Ipv6StartIp: pulumi.String("::"), Keepalive: pulumi.Int(10), Keylife: pulumi.Int(86400), LocalGw: pulumi.String("0.0.0.0"), LocalidType: pulumi.String("auto"), MeshSelectorType: pulumi.String("disable"), Mode: pulumi.String("main"), ModeCfg: pulumi.String("disable"), Nattraversal: pulumi.String("enable"), NegotiateTimeout: pulumi.Int(30), Peertype: pulumi.String("any"), Ppk: pulumi.String("disable"), Priority: pulumi.Int(0), Proposal: pulumi.String("aes128-sha256 aes256-sha256 aes128-sha1 aes256-sha1"), Psksecret: pulumi.String("dewcEde2112"), Reauth: pulumi.String("disable"), Rekey: pulumi.String("enable"), RemoteGw: pulumi.String("1.1.1.1"), RsaSignatureFormat: pulumi.String("pkcs1"), SavePassword: pulumi.String("disable"), SendCertChain: pulumi.String("enable"), SignatureHashAlg: pulumi.String("sha2-512 sha2-384 sha2-256 sha1"), SuiteB: pulumi.String("disable"), Type: pulumi.String("static"), UnitySupport: pulumi.String("enable"), WizardType: pulumi.String("custom"), Xauthtype: pulumi.String("disable"), }) if err != nil { return err } return nil }) }
``` <!--End PulumiCodeChooser -->
## Import
VpnIpsec Phase1 can be imported using any of these accepted formats:
```sh $ pulumi import fortios:vpn/ipsec/phase1:Phase1 labelname {{name}} ```
If you do not want to import arguments of block:
$ export "FORTIOS_IMPORT_TABLE"="false"
```sh $ pulumi import fortios:vpn/ipsec/phase1:Phase1 labelname {{name}} ```
$ unset "FORTIOS_IMPORT_TABLE"
func GetPhase1 ¶
func GetPhase1(ctx *pulumi.Context, name string, id pulumi.IDInput, state *Phase1State, opts ...pulumi.ResourceOption) (*Phase1, error)
GetPhase1 gets an existing Phase1 resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewPhase1 ¶
func NewPhase1(ctx *pulumi.Context, name string, args *Phase1Args, opts ...pulumi.ResourceOption) (*Phase1, error)
NewPhase1 registers a new resource with the given unique name, arguments, and options.
func (*Phase1) ElementType ¶
func (*Phase1) ToPhase1Output ¶
func (i *Phase1) ToPhase1Output() Phase1Output
func (*Phase1) ToPhase1OutputWithContext ¶
func (i *Phase1) ToPhase1OutputWithContext(ctx context.Context) Phase1Output
type Phase1Args ¶
type Phase1Args struct { // Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`. AcctVerify pulumi.StringPtrInput // Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`. AddGwRoute pulumi.StringPtrInput // Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`. AddRoute pulumi.StringPtrInput // Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`. AssignIp pulumi.StringPtrInput // Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`. AssignIpFrom pulumi.StringPtrInput // Authentication method. Valid values: `psk`, `signature`. Authmethod pulumi.StringPtrInput // Authentication method (remote side). Valid values: `psk`, `signature`. AuthmethodRemote pulumi.StringPtrInput // XAuth password (max 35 characters). Authpasswd pulumi.StringPtrInput // XAuth user name. Authusr pulumi.StringPtrInput // Authentication user group. Authusrgrp pulumi.StringPtrInput // Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`. AutoNegotiate pulumi.StringPtrInput // Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`. AzureAdAutoconnect pulumi.StringPtrInput // Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below. BackupGateways Phase1BackupGatewayArrayInput // Message that unity client should display after connecting. Banner pulumi.StringPtrInput // Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`. CertIdValidation pulumi.StringPtrInput // CA certificate trust store. Valid values: `local`, `ems`. CertTrustStore pulumi.StringPtrInput // Names of up to 4 signed personal certificates. The structure of `certificate` block is documented below. Certificates Phase1CertificateArrayInput // Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`. ChildlessIke pulumi.StringPtrInput // Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`. ClientAutoNegotiate pulumi.StringPtrInput // Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`. ClientKeepAlive pulumi.StringPtrInput // Comment. Comments pulumi.StringPtrInput // Device ID carried by the device ID notification. DevId pulumi.StringPtrInput // Enable/disable device ID notification. Valid values: `disable`, `enable`. DevIdNotification pulumi.StringPtrInput // Relay agent IPv6 link address to use in DHCP6 requests. Dhcp6RaLinkaddr pulumi.StringPtrInput // Relay agent gateway IP address to use in the giaddr field of DHCP requests. DhcpRaGiaddr pulumi.StringPtrInput // DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`. Dhgrp pulumi.StringPtrInput // Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`. DigitalSignatureAuth pulumi.StringPtrInput // Distance for routes added by IKE (1 - 255). Distance pulumi.IntPtrInput // DNS server mode. Valid values: `manual`, `auto`. DnsMode pulumi.StringPtrInput // Instruct unity clients about the default DNS domain. Domain pulumi.StringPtrInput // Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`. Dpd pulumi.StringPtrInput // Number of DPD retry attempts. DpdRetrycount pulumi.IntPtrInput // DPD retry interval. DpdRetryinterval pulumi.StringPtrInput // Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. DynamicSortSubtable pulumi.StringPtrInput // Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`. Eap pulumi.StringPtrInput // Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`. EapCertAuth pulumi.StringPtrInput // Peer group excluded from EAP authentication. EapExcludePeergrp pulumi.StringPtrInput // IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`. EapIdentity pulumi.StringPtrInput // Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`. EmsSnCheck pulumi.StringPtrInput // Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`. EnforceUniqueId pulumi.StringPtrInput // Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`. Esn pulumi.StringPtrInput // Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`. ExchangeFgtDeviceId pulumi.StringPtrInput // Timeout in seconds before falling back IKE/IPsec traffic to tcp. FallbackTcpThreshold pulumi.IntPtrInput // Number of base Forward Error Correction packets (1 - 100). FecBase pulumi.IntPtrInput // ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor). FecCodec pulumi.IntPtrInput // Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`. FecCodecString pulumi.StringPtrInput // Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`. FecEgress pulumi.StringPtrInput // SD-WAN health check. FecHealthCheck pulumi.StringPtrInput // Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`. FecIngress pulumi.StringPtrInput // Forward Error Correction (FEC) mapping profile. FecMappingProfile pulumi.StringPtrInput // Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000). FecReceiveTimeout pulumi.IntPtrInput // Number of redundant Forward Error Correction packets (1 - 100). FecRedundant pulumi.IntPtrInput // Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000). FecSendTimeout pulumi.IntPtrInput // Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`. FgspSync pulumi.StringPtrInput // Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`. ForticlientEnforcement pulumi.StringPtrInput // Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`. FortinetEsp pulumi.StringPtrInput // Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`. Fragmentation pulumi.StringPtrInput // IKE fragmentation MTU (500 - 16000). FragmentationMtu pulumi.IntPtrInput // Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. GetAllTables pulumi.StringPtrInput // Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`. GroupAuthentication pulumi.StringPtrInput // Password for IKEv2 IDi group authentication. (ASCII string or hexadecimal indicated by a leading 0x.) GroupAuthenticationSecret pulumi.StringPtrInput // Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`. HaSyncEspSeqno pulumi.StringPtrInput // Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`. IdleTimeout pulumi.StringPtrInput // IPsec tunnel idle timeout in minutes (5 - 43200). IdleTimeoutinterval pulumi.IntPtrInput // IKE protocol version. Valid values: `1`, `2`. IkeVersion pulumi.StringPtrInput // Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`. InboundDscpCopy pulumi.StringPtrInput // Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`. IncludeLocalLan pulumi.StringPtrInput // Local physical, aggregate, or VLAN outgoing interface. Interface pulumi.StringInput // One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below. InternalDomainLists Phase1InternalDomainListArrayInput // IP address reuse delay interval in seconds (0 - 28800). IpDelayInterval pulumi.IntPtrInput // IPv4 DNS server 1. Ipv4DnsServer1 pulumi.StringPtrInput // IPv4 DNS server 2. Ipv4DnsServer2 pulumi.StringPtrInput // IPv4 DNS server 3. Ipv4DnsServer3 pulumi.StringPtrInput // End of IPv4 range. Ipv4EndIp pulumi.StringPtrInput // Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below. Ipv4ExcludeRanges Phase1Ipv4ExcludeRangeArrayInput // IPv4 address name. Ipv4Name pulumi.StringPtrInput // IPv4 Netmask. Ipv4Netmask pulumi.StringPtrInput // IPv4 subnets that should not be sent over the IPsec tunnel. Ipv4SplitExclude pulumi.StringPtrInput // IPv4 split-include subnets. Ipv4SplitInclude pulumi.StringPtrInput // Start of IPv4 range. Ipv4StartIp pulumi.StringPtrInput // WINS server 1. Ipv4WinsServer1 pulumi.StringPtrInput // WINS server 2. Ipv4WinsServer2 pulumi.StringPtrInput // IPv6 DNS server 1. Ipv6DnsServer1 pulumi.StringPtrInput // IPv6 DNS server 2. Ipv6DnsServer2 pulumi.StringPtrInput // IPv6 DNS server 3. Ipv6DnsServer3 pulumi.StringPtrInput // End of IPv6 range. Ipv6EndIp pulumi.StringPtrInput // Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below. Ipv6ExcludeRanges Phase1Ipv6ExcludeRangeArrayInput // IPv6 address name. Ipv6Name pulumi.StringPtrInput // IPv6 prefix. Ipv6Prefix pulumi.IntPtrInput // IPv6 subnets that should not be sent over the IPsec tunnel. Ipv6SplitExclude pulumi.StringPtrInput // IPv6 split-include subnets. Ipv6SplitInclude pulumi.StringPtrInput // Start of IPv6 range. Ipv6StartIp pulumi.StringPtrInput // NAT-T keep alive interval. Keepalive pulumi.IntPtrInput // Time to wait in seconds before phase 1 encryption key expires. Keylife pulumi.IntPtrInput // Key Management Services server. Kms pulumi.StringPtrInput // VPN tunnel underlay link cost. LinkCost pulumi.IntPtrInput // Local VPN gateway. LocalGw pulumi.StringPtrInput // Local ID. Localid pulumi.StringPtrInput // Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`. LocalidType pulumi.StringPtrInput // Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`. LoopbackAsymroute pulumi.StringPtrInput // Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`. MeshSelectorType pulumi.StringPtrInput // ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`. Mode pulumi.StringPtrInput // Enable/disable configuration method. Valid values: `disable`, `enable`. ModeCfg pulumi.StringPtrInput // Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`. ModeCfgAllowClientSelector pulumi.StringPtrInput // IPsec remote gateway name. Name pulumi.StringPtrInput // Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`. Nattraversal pulumi.StringPtrInput // IKE SA negotiation timeout in seconds (1 - 300). NegotiateTimeout pulumi.IntPtrInput // VPN gateway network ID. NetworkId pulumi.IntPtrInput // Enable/disable network overlays. Valid values: `disable`, `enable`. NetworkOverlay pulumi.StringPtrInput // Enable/disable offloading NPU. Valid values: `enable`, `disable`. NpuOffload pulumi.StringPtrInput // Accept this peer certificate. Peer pulumi.StringPtrInput // Accept this peer certificate group. Peergrp pulumi.StringPtrInput // Accept this peer identity. Peerid pulumi.StringPtrInput // Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`. Peertype pulumi.StringPtrInput // Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`. Ppk pulumi.StringPtrInput // IKEv2 Postquantum Preshared Key Identity. PpkIdentity pulumi.StringPtrInput // IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x). PpkSecret pulumi.StringPtrInput // Priority for routes added by IKE (0 - 4294967295). Priority pulumi.IntPtrInput // Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`. Proposal pulumi.StringInput // Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x). Psksecret pulumi.StringInput // Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x). PsksecretRemote pulumi.StringPtrInput // Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`. Qkd pulumi.StringPtrInput // Quantum Key Distribution (QKD) server profile. QkdProfile pulumi.StringPtrInput // Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`. Reauth pulumi.StringPtrInput // Enable/disable phase1 rekey. Valid values: `enable`, `disable`. Rekey pulumi.StringPtrInput // Remote VPN gateway. RemoteGw pulumi.StringPtrInput // Domain name of remote gateway (eg. name.DDNS.com). RemotegwDdns pulumi.StringPtrInput // Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`. RsaSignatureFormat pulumi.StringPtrInput // Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`. RsaSignatureHashOverride pulumi.StringPtrInput // Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`. SavePassword pulumi.StringPtrInput // Enable/disable sending certificate chain. Valid values: `enable`, `disable`. SendCertChain pulumi.StringPtrInput // Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`. SignatureHashAlg pulumi.StringPtrInput // Split-include services. SplitIncludeService pulumi.StringPtrInput // Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`. SuiteB pulumi.StringPtrInput // Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`. Transport pulumi.StringPtrInput // Remote gateway type. Valid values: `static`, `dynamic`, `ddns`. Type pulumi.StringPtrInput // Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`. UnitySupport pulumi.StringPtrInput // User group name for dialup peers. Usrgrp pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput // GUI VPN Wizard Type. WizardType pulumi.StringPtrInput // XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`. Xauthtype pulumi.StringPtrInput }
The set of arguments for constructing a Phase1 resource.
func (Phase1Args) ElementType ¶
func (Phase1Args) ElementType() reflect.Type
type Phase1Array ¶
type Phase1Array []Phase1Input
func (Phase1Array) ElementType ¶
func (Phase1Array) ElementType() reflect.Type
func (Phase1Array) ToPhase1ArrayOutput ¶
func (i Phase1Array) ToPhase1ArrayOutput() Phase1ArrayOutput
func (Phase1Array) ToPhase1ArrayOutputWithContext ¶
func (i Phase1Array) ToPhase1ArrayOutputWithContext(ctx context.Context) Phase1ArrayOutput
type Phase1ArrayInput ¶
type Phase1ArrayInput interface { pulumi.Input ToPhase1ArrayOutput() Phase1ArrayOutput ToPhase1ArrayOutputWithContext(context.Context) Phase1ArrayOutput }
Phase1ArrayInput is an input type that accepts Phase1Array and Phase1ArrayOutput values. You can construct a concrete instance of `Phase1ArrayInput` via:
Phase1Array{ Phase1Args{...} }
type Phase1ArrayOutput ¶
type Phase1ArrayOutput struct{ *pulumi.OutputState }
func (Phase1ArrayOutput) ElementType ¶
func (Phase1ArrayOutput) ElementType() reflect.Type
func (Phase1ArrayOutput) Index ¶
func (o Phase1ArrayOutput) Index(i pulumi.IntInput) Phase1Output
func (Phase1ArrayOutput) ToPhase1ArrayOutput ¶
func (o Phase1ArrayOutput) ToPhase1ArrayOutput() Phase1ArrayOutput
func (Phase1ArrayOutput) ToPhase1ArrayOutputWithContext ¶
func (o Phase1ArrayOutput) ToPhase1ArrayOutputWithContext(ctx context.Context) Phase1ArrayOutput
type Phase1BackupGateway ¶
type Phase1BackupGateway struct { // Address of backup gateway. Address *string `pulumi:"address"` }
type Phase1BackupGatewayArgs ¶
type Phase1BackupGatewayArgs struct { // Address of backup gateway. Address pulumi.StringPtrInput `pulumi:"address"` }
func (Phase1BackupGatewayArgs) ElementType ¶
func (Phase1BackupGatewayArgs) ElementType() reflect.Type
func (Phase1BackupGatewayArgs) ToPhase1BackupGatewayOutput ¶
func (i Phase1BackupGatewayArgs) ToPhase1BackupGatewayOutput() Phase1BackupGatewayOutput
func (Phase1BackupGatewayArgs) ToPhase1BackupGatewayOutputWithContext ¶
func (i Phase1BackupGatewayArgs) ToPhase1BackupGatewayOutputWithContext(ctx context.Context) Phase1BackupGatewayOutput
type Phase1BackupGatewayArray ¶
type Phase1BackupGatewayArray []Phase1BackupGatewayInput
func (Phase1BackupGatewayArray) ElementType ¶
func (Phase1BackupGatewayArray) ElementType() reflect.Type
func (Phase1BackupGatewayArray) ToPhase1BackupGatewayArrayOutput ¶
func (i Phase1BackupGatewayArray) ToPhase1BackupGatewayArrayOutput() Phase1BackupGatewayArrayOutput
func (Phase1BackupGatewayArray) ToPhase1BackupGatewayArrayOutputWithContext ¶
func (i Phase1BackupGatewayArray) ToPhase1BackupGatewayArrayOutputWithContext(ctx context.Context) Phase1BackupGatewayArrayOutput
type Phase1BackupGatewayArrayInput ¶
type Phase1BackupGatewayArrayInput interface { pulumi.Input ToPhase1BackupGatewayArrayOutput() Phase1BackupGatewayArrayOutput ToPhase1BackupGatewayArrayOutputWithContext(context.Context) Phase1BackupGatewayArrayOutput }
Phase1BackupGatewayArrayInput is an input type that accepts Phase1BackupGatewayArray and Phase1BackupGatewayArrayOutput values. You can construct a concrete instance of `Phase1BackupGatewayArrayInput` via:
Phase1BackupGatewayArray{ Phase1BackupGatewayArgs{...} }
type Phase1BackupGatewayArrayOutput ¶
type Phase1BackupGatewayArrayOutput struct{ *pulumi.OutputState }
func (Phase1BackupGatewayArrayOutput) ElementType ¶
func (Phase1BackupGatewayArrayOutput) ElementType() reflect.Type
func (Phase1BackupGatewayArrayOutput) Index ¶
func (o Phase1BackupGatewayArrayOutput) Index(i pulumi.IntInput) Phase1BackupGatewayOutput
func (Phase1BackupGatewayArrayOutput) ToPhase1BackupGatewayArrayOutput ¶
func (o Phase1BackupGatewayArrayOutput) ToPhase1BackupGatewayArrayOutput() Phase1BackupGatewayArrayOutput
func (Phase1BackupGatewayArrayOutput) ToPhase1BackupGatewayArrayOutputWithContext ¶
func (o Phase1BackupGatewayArrayOutput) ToPhase1BackupGatewayArrayOutputWithContext(ctx context.Context) Phase1BackupGatewayArrayOutput
type Phase1BackupGatewayInput ¶
type Phase1BackupGatewayInput interface { pulumi.Input ToPhase1BackupGatewayOutput() Phase1BackupGatewayOutput ToPhase1BackupGatewayOutputWithContext(context.Context) Phase1BackupGatewayOutput }
Phase1BackupGatewayInput is an input type that accepts Phase1BackupGatewayArgs and Phase1BackupGatewayOutput values. You can construct a concrete instance of `Phase1BackupGatewayInput` via:
Phase1BackupGatewayArgs{...}
type Phase1BackupGatewayOutput ¶
type Phase1BackupGatewayOutput struct{ *pulumi.OutputState }
func (Phase1BackupGatewayOutput) Address ¶
func (o Phase1BackupGatewayOutput) Address() pulumi.StringPtrOutput
Address of backup gateway.
func (Phase1BackupGatewayOutput) ElementType ¶
func (Phase1BackupGatewayOutput) ElementType() reflect.Type
func (Phase1BackupGatewayOutput) ToPhase1BackupGatewayOutput ¶
func (o Phase1BackupGatewayOutput) ToPhase1BackupGatewayOutput() Phase1BackupGatewayOutput
func (Phase1BackupGatewayOutput) ToPhase1BackupGatewayOutputWithContext ¶
func (o Phase1BackupGatewayOutput) ToPhase1BackupGatewayOutputWithContext(ctx context.Context) Phase1BackupGatewayOutput
type Phase1Certificate ¶
type Phase1Certificate struct { // Certificate name. Name *string `pulumi:"name"` }
type Phase1CertificateArgs ¶
type Phase1CertificateArgs struct { // Certificate name. Name pulumi.StringPtrInput `pulumi:"name"` }
func (Phase1CertificateArgs) ElementType ¶
func (Phase1CertificateArgs) ElementType() reflect.Type
func (Phase1CertificateArgs) ToPhase1CertificateOutput ¶
func (i Phase1CertificateArgs) ToPhase1CertificateOutput() Phase1CertificateOutput
func (Phase1CertificateArgs) ToPhase1CertificateOutputWithContext ¶
func (i Phase1CertificateArgs) ToPhase1CertificateOutputWithContext(ctx context.Context) Phase1CertificateOutput
type Phase1CertificateArray ¶
type Phase1CertificateArray []Phase1CertificateInput
func (Phase1CertificateArray) ElementType ¶
func (Phase1CertificateArray) ElementType() reflect.Type
func (Phase1CertificateArray) ToPhase1CertificateArrayOutput ¶
func (i Phase1CertificateArray) ToPhase1CertificateArrayOutput() Phase1CertificateArrayOutput
func (Phase1CertificateArray) ToPhase1CertificateArrayOutputWithContext ¶
func (i Phase1CertificateArray) ToPhase1CertificateArrayOutputWithContext(ctx context.Context) Phase1CertificateArrayOutput
type Phase1CertificateArrayInput ¶
type Phase1CertificateArrayInput interface { pulumi.Input ToPhase1CertificateArrayOutput() Phase1CertificateArrayOutput ToPhase1CertificateArrayOutputWithContext(context.Context) Phase1CertificateArrayOutput }
Phase1CertificateArrayInput is an input type that accepts Phase1CertificateArray and Phase1CertificateArrayOutput values. You can construct a concrete instance of `Phase1CertificateArrayInput` via:
Phase1CertificateArray{ Phase1CertificateArgs{...} }
type Phase1CertificateArrayOutput ¶
type Phase1CertificateArrayOutput struct{ *pulumi.OutputState }
func (Phase1CertificateArrayOutput) ElementType ¶
func (Phase1CertificateArrayOutput) ElementType() reflect.Type
func (Phase1CertificateArrayOutput) Index ¶
func (o Phase1CertificateArrayOutput) Index(i pulumi.IntInput) Phase1CertificateOutput
func (Phase1CertificateArrayOutput) ToPhase1CertificateArrayOutput ¶
func (o Phase1CertificateArrayOutput) ToPhase1CertificateArrayOutput() Phase1CertificateArrayOutput
func (Phase1CertificateArrayOutput) ToPhase1CertificateArrayOutputWithContext ¶
func (o Phase1CertificateArrayOutput) ToPhase1CertificateArrayOutputWithContext(ctx context.Context) Phase1CertificateArrayOutput
type Phase1CertificateInput ¶
type Phase1CertificateInput interface { pulumi.Input ToPhase1CertificateOutput() Phase1CertificateOutput ToPhase1CertificateOutputWithContext(context.Context) Phase1CertificateOutput }
Phase1CertificateInput is an input type that accepts Phase1CertificateArgs and Phase1CertificateOutput values. You can construct a concrete instance of `Phase1CertificateInput` via:
Phase1CertificateArgs{...}
type Phase1CertificateOutput ¶
type Phase1CertificateOutput struct{ *pulumi.OutputState }
func (Phase1CertificateOutput) ElementType ¶
func (Phase1CertificateOutput) ElementType() reflect.Type
func (Phase1CertificateOutput) Name ¶
func (o Phase1CertificateOutput) Name() pulumi.StringPtrOutput
Certificate name.
func (Phase1CertificateOutput) ToPhase1CertificateOutput ¶
func (o Phase1CertificateOutput) ToPhase1CertificateOutput() Phase1CertificateOutput
func (Phase1CertificateOutput) ToPhase1CertificateOutputWithContext ¶
func (o Phase1CertificateOutput) ToPhase1CertificateOutputWithContext(ctx context.Context) Phase1CertificateOutput
type Phase1Input ¶
type Phase1Input interface { pulumi.Input ToPhase1Output() Phase1Output ToPhase1OutputWithContext(ctx context.Context) Phase1Output }
type Phase1InternalDomainList ¶
type Phase1InternalDomainList struct { // Domain name. // // The `ipv4ExcludeRange` block supports: DomainName *string `pulumi:"domainName"` }
type Phase1InternalDomainListArgs ¶
type Phase1InternalDomainListArgs struct { // Domain name. // // The `ipv4ExcludeRange` block supports: DomainName pulumi.StringPtrInput `pulumi:"domainName"` }
func (Phase1InternalDomainListArgs) ElementType ¶
func (Phase1InternalDomainListArgs) ElementType() reflect.Type
func (Phase1InternalDomainListArgs) ToPhase1InternalDomainListOutput ¶
func (i Phase1InternalDomainListArgs) ToPhase1InternalDomainListOutput() Phase1InternalDomainListOutput
func (Phase1InternalDomainListArgs) ToPhase1InternalDomainListOutputWithContext ¶
func (i Phase1InternalDomainListArgs) ToPhase1InternalDomainListOutputWithContext(ctx context.Context) Phase1InternalDomainListOutput
type Phase1InternalDomainListArray ¶
type Phase1InternalDomainListArray []Phase1InternalDomainListInput
func (Phase1InternalDomainListArray) ElementType ¶
func (Phase1InternalDomainListArray) ElementType() reflect.Type
func (Phase1InternalDomainListArray) ToPhase1InternalDomainListArrayOutput ¶
func (i Phase1InternalDomainListArray) ToPhase1InternalDomainListArrayOutput() Phase1InternalDomainListArrayOutput
func (Phase1InternalDomainListArray) ToPhase1InternalDomainListArrayOutputWithContext ¶
func (i Phase1InternalDomainListArray) ToPhase1InternalDomainListArrayOutputWithContext(ctx context.Context) Phase1InternalDomainListArrayOutput
type Phase1InternalDomainListArrayInput ¶
type Phase1InternalDomainListArrayInput interface { pulumi.Input ToPhase1InternalDomainListArrayOutput() Phase1InternalDomainListArrayOutput ToPhase1InternalDomainListArrayOutputWithContext(context.Context) Phase1InternalDomainListArrayOutput }
Phase1InternalDomainListArrayInput is an input type that accepts Phase1InternalDomainListArray and Phase1InternalDomainListArrayOutput values. You can construct a concrete instance of `Phase1InternalDomainListArrayInput` via:
Phase1InternalDomainListArray{ Phase1InternalDomainListArgs{...} }
type Phase1InternalDomainListArrayOutput ¶
type Phase1InternalDomainListArrayOutput struct{ *pulumi.OutputState }
func (Phase1InternalDomainListArrayOutput) ElementType ¶
func (Phase1InternalDomainListArrayOutput) ElementType() reflect.Type
func (Phase1InternalDomainListArrayOutput) Index ¶
func (o Phase1InternalDomainListArrayOutput) Index(i pulumi.IntInput) Phase1InternalDomainListOutput
func (Phase1InternalDomainListArrayOutput) ToPhase1InternalDomainListArrayOutput ¶
func (o Phase1InternalDomainListArrayOutput) ToPhase1InternalDomainListArrayOutput() Phase1InternalDomainListArrayOutput
func (Phase1InternalDomainListArrayOutput) ToPhase1InternalDomainListArrayOutputWithContext ¶
func (o Phase1InternalDomainListArrayOutput) ToPhase1InternalDomainListArrayOutputWithContext(ctx context.Context) Phase1InternalDomainListArrayOutput
type Phase1InternalDomainListInput ¶
type Phase1InternalDomainListInput interface { pulumi.Input ToPhase1InternalDomainListOutput() Phase1InternalDomainListOutput ToPhase1InternalDomainListOutputWithContext(context.Context) Phase1InternalDomainListOutput }
Phase1InternalDomainListInput is an input type that accepts Phase1InternalDomainListArgs and Phase1InternalDomainListOutput values. You can construct a concrete instance of `Phase1InternalDomainListInput` via:
Phase1InternalDomainListArgs{...}
type Phase1InternalDomainListOutput ¶
type Phase1InternalDomainListOutput struct{ *pulumi.OutputState }
func (Phase1InternalDomainListOutput) DomainName ¶
func (o Phase1InternalDomainListOutput) DomainName() pulumi.StringPtrOutput
Domain name.
The `ipv4ExcludeRange` block supports:
func (Phase1InternalDomainListOutput) ElementType ¶
func (Phase1InternalDomainListOutput) ElementType() reflect.Type
func (Phase1InternalDomainListOutput) ToPhase1InternalDomainListOutput ¶
func (o Phase1InternalDomainListOutput) ToPhase1InternalDomainListOutput() Phase1InternalDomainListOutput
func (Phase1InternalDomainListOutput) ToPhase1InternalDomainListOutputWithContext ¶
func (o Phase1InternalDomainListOutput) ToPhase1InternalDomainListOutputWithContext(ctx context.Context) Phase1InternalDomainListOutput
type Phase1Ipv4ExcludeRange ¶
type Phase1Ipv4ExcludeRangeArgs ¶
type Phase1Ipv4ExcludeRangeArgs struct { // End of IPv6 exclusive range. EndIp pulumi.StringPtrInput `pulumi:"endIp"` // ID. Id pulumi.IntPtrInput `pulumi:"id"` // Start of IPv6 exclusive range. StartIp pulumi.StringPtrInput `pulumi:"startIp"` }
func (Phase1Ipv4ExcludeRangeArgs) ElementType ¶
func (Phase1Ipv4ExcludeRangeArgs) ElementType() reflect.Type
func (Phase1Ipv4ExcludeRangeArgs) ToPhase1Ipv4ExcludeRangeOutput ¶
func (i Phase1Ipv4ExcludeRangeArgs) ToPhase1Ipv4ExcludeRangeOutput() Phase1Ipv4ExcludeRangeOutput
func (Phase1Ipv4ExcludeRangeArgs) ToPhase1Ipv4ExcludeRangeOutputWithContext ¶
func (i Phase1Ipv4ExcludeRangeArgs) ToPhase1Ipv4ExcludeRangeOutputWithContext(ctx context.Context) Phase1Ipv4ExcludeRangeOutput
type Phase1Ipv4ExcludeRangeArray ¶
type Phase1Ipv4ExcludeRangeArray []Phase1Ipv4ExcludeRangeInput
func (Phase1Ipv4ExcludeRangeArray) ElementType ¶
func (Phase1Ipv4ExcludeRangeArray) ElementType() reflect.Type
func (Phase1Ipv4ExcludeRangeArray) ToPhase1Ipv4ExcludeRangeArrayOutput ¶
func (i Phase1Ipv4ExcludeRangeArray) ToPhase1Ipv4ExcludeRangeArrayOutput() Phase1Ipv4ExcludeRangeArrayOutput
func (Phase1Ipv4ExcludeRangeArray) ToPhase1Ipv4ExcludeRangeArrayOutputWithContext ¶
func (i Phase1Ipv4ExcludeRangeArray) ToPhase1Ipv4ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1Ipv4ExcludeRangeArrayOutput
type Phase1Ipv4ExcludeRangeArrayInput ¶
type Phase1Ipv4ExcludeRangeArrayInput interface { pulumi.Input ToPhase1Ipv4ExcludeRangeArrayOutput() Phase1Ipv4ExcludeRangeArrayOutput ToPhase1Ipv4ExcludeRangeArrayOutputWithContext(context.Context) Phase1Ipv4ExcludeRangeArrayOutput }
Phase1Ipv4ExcludeRangeArrayInput is an input type that accepts Phase1Ipv4ExcludeRangeArray and Phase1Ipv4ExcludeRangeArrayOutput values. You can construct a concrete instance of `Phase1Ipv4ExcludeRangeArrayInput` via:
Phase1Ipv4ExcludeRangeArray{ Phase1Ipv4ExcludeRangeArgs{...} }
type Phase1Ipv4ExcludeRangeArrayOutput ¶
type Phase1Ipv4ExcludeRangeArrayOutput struct{ *pulumi.OutputState }
func (Phase1Ipv4ExcludeRangeArrayOutput) ElementType ¶
func (Phase1Ipv4ExcludeRangeArrayOutput) ElementType() reflect.Type
func (Phase1Ipv4ExcludeRangeArrayOutput) Index ¶
func (o Phase1Ipv4ExcludeRangeArrayOutput) Index(i pulumi.IntInput) Phase1Ipv4ExcludeRangeOutput
func (Phase1Ipv4ExcludeRangeArrayOutput) ToPhase1Ipv4ExcludeRangeArrayOutput ¶
func (o Phase1Ipv4ExcludeRangeArrayOutput) ToPhase1Ipv4ExcludeRangeArrayOutput() Phase1Ipv4ExcludeRangeArrayOutput
func (Phase1Ipv4ExcludeRangeArrayOutput) ToPhase1Ipv4ExcludeRangeArrayOutputWithContext ¶
func (o Phase1Ipv4ExcludeRangeArrayOutput) ToPhase1Ipv4ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1Ipv4ExcludeRangeArrayOutput
type Phase1Ipv4ExcludeRangeInput ¶
type Phase1Ipv4ExcludeRangeInput interface { pulumi.Input ToPhase1Ipv4ExcludeRangeOutput() Phase1Ipv4ExcludeRangeOutput ToPhase1Ipv4ExcludeRangeOutputWithContext(context.Context) Phase1Ipv4ExcludeRangeOutput }
Phase1Ipv4ExcludeRangeInput is an input type that accepts Phase1Ipv4ExcludeRangeArgs and Phase1Ipv4ExcludeRangeOutput values. You can construct a concrete instance of `Phase1Ipv4ExcludeRangeInput` via:
Phase1Ipv4ExcludeRangeArgs{...}
type Phase1Ipv4ExcludeRangeOutput ¶
type Phase1Ipv4ExcludeRangeOutput struct{ *pulumi.OutputState }
func (Phase1Ipv4ExcludeRangeOutput) ElementType ¶
func (Phase1Ipv4ExcludeRangeOutput) ElementType() reflect.Type
func (Phase1Ipv4ExcludeRangeOutput) EndIp ¶
func (o Phase1Ipv4ExcludeRangeOutput) EndIp() pulumi.StringPtrOutput
End of IPv6 exclusive range.
func (Phase1Ipv4ExcludeRangeOutput) Id ¶
func (o Phase1Ipv4ExcludeRangeOutput) Id() pulumi.IntPtrOutput
ID.
func (Phase1Ipv4ExcludeRangeOutput) StartIp ¶
func (o Phase1Ipv4ExcludeRangeOutput) StartIp() pulumi.StringPtrOutput
Start of IPv6 exclusive range.
func (Phase1Ipv4ExcludeRangeOutput) ToPhase1Ipv4ExcludeRangeOutput ¶
func (o Phase1Ipv4ExcludeRangeOutput) ToPhase1Ipv4ExcludeRangeOutput() Phase1Ipv4ExcludeRangeOutput
func (Phase1Ipv4ExcludeRangeOutput) ToPhase1Ipv4ExcludeRangeOutputWithContext ¶
func (o Phase1Ipv4ExcludeRangeOutput) ToPhase1Ipv4ExcludeRangeOutputWithContext(ctx context.Context) Phase1Ipv4ExcludeRangeOutput
type Phase1Ipv6ExcludeRange ¶
type Phase1Ipv6ExcludeRangeArgs ¶
type Phase1Ipv6ExcludeRangeArgs struct { // End of IPv6 exclusive range. EndIp pulumi.StringPtrInput `pulumi:"endIp"` // ID. Id pulumi.IntPtrInput `pulumi:"id"` // Start of IPv6 exclusive range. StartIp pulumi.StringPtrInput `pulumi:"startIp"` }
func (Phase1Ipv6ExcludeRangeArgs) ElementType ¶
func (Phase1Ipv6ExcludeRangeArgs) ElementType() reflect.Type
func (Phase1Ipv6ExcludeRangeArgs) ToPhase1Ipv6ExcludeRangeOutput ¶
func (i Phase1Ipv6ExcludeRangeArgs) ToPhase1Ipv6ExcludeRangeOutput() Phase1Ipv6ExcludeRangeOutput
func (Phase1Ipv6ExcludeRangeArgs) ToPhase1Ipv6ExcludeRangeOutputWithContext ¶
func (i Phase1Ipv6ExcludeRangeArgs) ToPhase1Ipv6ExcludeRangeOutputWithContext(ctx context.Context) Phase1Ipv6ExcludeRangeOutput
type Phase1Ipv6ExcludeRangeArray ¶
type Phase1Ipv6ExcludeRangeArray []Phase1Ipv6ExcludeRangeInput
func (Phase1Ipv6ExcludeRangeArray) ElementType ¶
func (Phase1Ipv6ExcludeRangeArray) ElementType() reflect.Type
func (Phase1Ipv6ExcludeRangeArray) ToPhase1Ipv6ExcludeRangeArrayOutput ¶
func (i Phase1Ipv6ExcludeRangeArray) ToPhase1Ipv6ExcludeRangeArrayOutput() Phase1Ipv6ExcludeRangeArrayOutput
func (Phase1Ipv6ExcludeRangeArray) ToPhase1Ipv6ExcludeRangeArrayOutputWithContext ¶
func (i Phase1Ipv6ExcludeRangeArray) ToPhase1Ipv6ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1Ipv6ExcludeRangeArrayOutput
type Phase1Ipv6ExcludeRangeArrayInput ¶
type Phase1Ipv6ExcludeRangeArrayInput interface { pulumi.Input ToPhase1Ipv6ExcludeRangeArrayOutput() Phase1Ipv6ExcludeRangeArrayOutput ToPhase1Ipv6ExcludeRangeArrayOutputWithContext(context.Context) Phase1Ipv6ExcludeRangeArrayOutput }
Phase1Ipv6ExcludeRangeArrayInput is an input type that accepts Phase1Ipv6ExcludeRangeArray and Phase1Ipv6ExcludeRangeArrayOutput values. You can construct a concrete instance of `Phase1Ipv6ExcludeRangeArrayInput` via:
Phase1Ipv6ExcludeRangeArray{ Phase1Ipv6ExcludeRangeArgs{...} }
type Phase1Ipv6ExcludeRangeArrayOutput ¶
type Phase1Ipv6ExcludeRangeArrayOutput struct{ *pulumi.OutputState }
func (Phase1Ipv6ExcludeRangeArrayOutput) ElementType ¶
func (Phase1Ipv6ExcludeRangeArrayOutput) ElementType() reflect.Type
func (Phase1Ipv6ExcludeRangeArrayOutput) Index ¶
func (o Phase1Ipv6ExcludeRangeArrayOutput) Index(i pulumi.IntInput) Phase1Ipv6ExcludeRangeOutput
func (Phase1Ipv6ExcludeRangeArrayOutput) ToPhase1Ipv6ExcludeRangeArrayOutput ¶
func (o Phase1Ipv6ExcludeRangeArrayOutput) ToPhase1Ipv6ExcludeRangeArrayOutput() Phase1Ipv6ExcludeRangeArrayOutput
func (Phase1Ipv6ExcludeRangeArrayOutput) ToPhase1Ipv6ExcludeRangeArrayOutputWithContext ¶
func (o Phase1Ipv6ExcludeRangeArrayOutput) ToPhase1Ipv6ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1Ipv6ExcludeRangeArrayOutput
type Phase1Ipv6ExcludeRangeInput ¶
type Phase1Ipv6ExcludeRangeInput interface { pulumi.Input ToPhase1Ipv6ExcludeRangeOutput() Phase1Ipv6ExcludeRangeOutput ToPhase1Ipv6ExcludeRangeOutputWithContext(context.Context) Phase1Ipv6ExcludeRangeOutput }
Phase1Ipv6ExcludeRangeInput is an input type that accepts Phase1Ipv6ExcludeRangeArgs and Phase1Ipv6ExcludeRangeOutput values. You can construct a concrete instance of `Phase1Ipv6ExcludeRangeInput` via:
Phase1Ipv6ExcludeRangeArgs{...}
type Phase1Ipv6ExcludeRangeOutput ¶
type Phase1Ipv6ExcludeRangeOutput struct{ *pulumi.OutputState }
func (Phase1Ipv6ExcludeRangeOutput) ElementType ¶
func (Phase1Ipv6ExcludeRangeOutput) ElementType() reflect.Type
func (Phase1Ipv6ExcludeRangeOutput) EndIp ¶
func (o Phase1Ipv6ExcludeRangeOutput) EndIp() pulumi.StringPtrOutput
End of IPv6 exclusive range.
func (Phase1Ipv6ExcludeRangeOutput) Id ¶
func (o Phase1Ipv6ExcludeRangeOutput) Id() pulumi.IntPtrOutput
ID.
func (Phase1Ipv6ExcludeRangeOutput) StartIp ¶
func (o Phase1Ipv6ExcludeRangeOutput) StartIp() pulumi.StringPtrOutput
Start of IPv6 exclusive range.
func (Phase1Ipv6ExcludeRangeOutput) ToPhase1Ipv6ExcludeRangeOutput ¶
func (o Phase1Ipv6ExcludeRangeOutput) ToPhase1Ipv6ExcludeRangeOutput() Phase1Ipv6ExcludeRangeOutput
func (Phase1Ipv6ExcludeRangeOutput) ToPhase1Ipv6ExcludeRangeOutputWithContext ¶
func (o Phase1Ipv6ExcludeRangeOutput) ToPhase1Ipv6ExcludeRangeOutputWithContext(ctx context.Context) Phase1Ipv6ExcludeRangeOutput
type Phase1Map ¶
type Phase1Map map[string]Phase1Input
func (Phase1Map) ElementType ¶
func (Phase1Map) ToPhase1MapOutput ¶
func (i Phase1Map) ToPhase1MapOutput() Phase1MapOutput
func (Phase1Map) ToPhase1MapOutputWithContext ¶
func (i Phase1Map) ToPhase1MapOutputWithContext(ctx context.Context) Phase1MapOutput
type Phase1MapInput ¶
type Phase1MapInput interface { pulumi.Input ToPhase1MapOutput() Phase1MapOutput ToPhase1MapOutputWithContext(context.Context) Phase1MapOutput }
Phase1MapInput is an input type that accepts Phase1Map and Phase1MapOutput values. You can construct a concrete instance of `Phase1MapInput` via:
Phase1Map{ "key": Phase1Args{...} }
type Phase1MapOutput ¶
type Phase1MapOutput struct{ *pulumi.OutputState }
func (Phase1MapOutput) ElementType ¶
func (Phase1MapOutput) ElementType() reflect.Type
func (Phase1MapOutput) MapIndex ¶
func (o Phase1MapOutput) MapIndex(k pulumi.StringInput) Phase1Output
func (Phase1MapOutput) ToPhase1MapOutput ¶
func (o Phase1MapOutput) ToPhase1MapOutput() Phase1MapOutput
func (Phase1MapOutput) ToPhase1MapOutputWithContext ¶
func (o Phase1MapOutput) ToPhase1MapOutputWithContext(ctx context.Context) Phase1MapOutput
type Phase1Output ¶
type Phase1Output struct{ *pulumi.OutputState }
func (Phase1Output) AcctVerify ¶
func (o Phase1Output) AcctVerify() pulumi.StringOutput
Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`.
func (Phase1Output) AddGwRoute ¶
func (o Phase1Output) AddGwRoute() pulumi.StringOutput
Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`.
func (Phase1Output) AddRoute ¶
func (o Phase1Output) AddRoute() pulumi.StringOutput
Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`.
func (Phase1Output) AssignIp ¶
func (o Phase1Output) AssignIp() pulumi.StringOutput
Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`.
func (Phase1Output) AssignIpFrom ¶
func (o Phase1Output) AssignIpFrom() pulumi.StringOutput
Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`.
func (Phase1Output) Authmethod ¶
func (o Phase1Output) Authmethod() pulumi.StringOutput
Authentication method. Valid values: `psk`, `signature`.
func (Phase1Output) AuthmethodRemote ¶
func (o Phase1Output) AuthmethodRemote() pulumi.StringOutput
Authentication method (remote side). Valid values: `psk`, `signature`.
func (Phase1Output) Authpasswd ¶
func (o Phase1Output) Authpasswd() pulumi.StringPtrOutput
XAuth password (max 35 characters).
func (Phase1Output) Authusrgrp ¶
func (o Phase1Output) Authusrgrp() pulumi.StringOutput
Authentication user group.
func (Phase1Output) AutoNegotiate ¶
func (o Phase1Output) AutoNegotiate() pulumi.StringOutput
Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`.
func (Phase1Output) AzureAdAutoconnect ¶
func (o Phase1Output) AzureAdAutoconnect() pulumi.StringOutput
Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`.
func (Phase1Output) BackupGateways ¶
func (o Phase1Output) BackupGateways() Phase1BackupGatewayArrayOutput
Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below.
func (Phase1Output) Banner ¶
func (o Phase1Output) Banner() pulumi.StringPtrOutput
Message that unity client should display after connecting.
func (Phase1Output) CertIdValidation ¶
func (o Phase1Output) CertIdValidation() pulumi.StringOutput
Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`.
func (Phase1Output) CertTrustStore ¶
func (o Phase1Output) CertTrustStore() pulumi.StringOutput
CA certificate trust store. Valid values: `local`, `ems`.
func (Phase1Output) Certificates ¶
func (o Phase1Output) Certificates() Phase1CertificateArrayOutput
Names of up to 4 signed personal certificates. The structure of `certificate` block is documented below.
func (Phase1Output) ChildlessIke ¶
func (o Phase1Output) ChildlessIke() pulumi.StringOutput
Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`.
func (Phase1Output) ClientAutoNegotiate ¶
func (o Phase1Output) ClientAutoNegotiate() pulumi.StringOutput
Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`.
func (Phase1Output) ClientKeepAlive ¶
func (o Phase1Output) ClientKeepAlive() pulumi.StringOutput
Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`.
func (Phase1Output) DevId ¶
func (o Phase1Output) DevId() pulumi.StringOutput
Device ID carried by the device ID notification.
func (Phase1Output) DevIdNotification ¶
func (o Phase1Output) DevIdNotification() pulumi.StringOutput
Enable/disable device ID notification. Valid values: `disable`, `enable`.
func (Phase1Output) Dhcp6RaLinkaddr ¶
func (o Phase1Output) Dhcp6RaLinkaddr() pulumi.StringOutput
Relay agent IPv6 link address to use in DHCP6 requests.
func (Phase1Output) DhcpRaGiaddr ¶
func (o Phase1Output) DhcpRaGiaddr() pulumi.StringOutput
Relay agent gateway IP address to use in the giaddr field of DHCP requests.
func (Phase1Output) Dhgrp ¶
func (o Phase1Output) Dhgrp() pulumi.StringOutput
DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
func (Phase1Output) DigitalSignatureAuth ¶
func (o Phase1Output) DigitalSignatureAuth() pulumi.StringOutput
Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`.
func (Phase1Output) Distance ¶
func (o Phase1Output) Distance() pulumi.IntOutput
Distance for routes added by IKE (1 - 255).
func (Phase1Output) DnsMode ¶
func (o Phase1Output) DnsMode() pulumi.StringOutput
DNS server mode. Valid values: `manual`, `auto`.
func (Phase1Output) Domain ¶
func (o Phase1Output) Domain() pulumi.StringOutput
Instruct unity clients about the default DNS domain.
func (Phase1Output) Dpd ¶
func (o Phase1Output) Dpd() pulumi.StringOutput
Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`.
func (Phase1Output) DpdRetrycount ¶
func (o Phase1Output) DpdRetrycount() pulumi.IntOutput
Number of DPD retry attempts.
func (Phase1Output) DpdRetryinterval ¶
func (o Phase1Output) DpdRetryinterval() pulumi.StringOutput
DPD retry interval.
func (Phase1Output) DynamicSortSubtable ¶
func (o Phase1Output) DynamicSortSubtable() pulumi.StringPtrOutput
Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
func (Phase1Output) Eap ¶
func (o Phase1Output) Eap() pulumi.StringOutput
Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`.
func (Phase1Output) EapCertAuth ¶
func (o Phase1Output) EapCertAuth() pulumi.StringOutput
Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`.
func (Phase1Output) EapExcludePeergrp ¶
func (o Phase1Output) EapExcludePeergrp() pulumi.StringOutput
Peer group excluded from EAP authentication.
func (Phase1Output) EapIdentity ¶
func (o Phase1Output) EapIdentity() pulumi.StringOutput
IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`.
func (Phase1Output) ElementType ¶
func (Phase1Output) ElementType() reflect.Type
func (Phase1Output) EmsSnCheck ¶
func (o Phase1Output) EmsSnCheck() pulumi.StringOutput
Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`.
func (Phase1Output) EnforceUniqueId ¶
func (o Phase1Output) EnforceUniqueId() pulumi.StringOutput
Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`.
func (Phase1Output) Esn ¶
func (o Phase1Output) Esn() pulumi.StringOutput
Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`.
func (Phase1Output) ExchangeFgtDeviceId ¶
func (o Phase1Output) ExchangeFgtDeviceId() pulumi.StringOutput
Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`.
func (Phase1Output) FallbackTcpThreshold ¶
func (o Phase1Output) FallbackTcpThreshold() pulumi.IntOutput
Timeout in seconds before falling back IKE/IPsec traffic to tcp.
func (Phase1Output) FecBase ¶
func (o Phase1Output) FecBase() pulumi.IntOutput
Number of base Forward Error Correction packets (1 - 100).
func (Phase1Output) FecCodec ¶
func (o Phase1Output) FecCodec() pulumi.IntOutput
ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor).
func (Phase1Output) FecCodecString ¶
func (o Phase1Output) FecCodecString() pulumi.StringOutput
Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`.
func (Phase1Output) FecEgress ¶
func (o Phase1Output) FecEgress() pulumi.StringOutput
Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`.
func (Phase1Output) FecHealthCheck ¶
func (o Phase1Output) FecHealthCheck() pulumi.StringOutput
SD-WAN health check.
func (Phase1Output) FecIngress ¶
func (o Phase1Output) FecIngress() pulumi.StringOutput
Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`.
func (Phase1Output) FecMappingProfile ¶
func (o Phase1Output) FecMappingProfile() pulumi.StringOutput
Forward Error Correction (FEC) mapping profile.
func (Phase1Output) FecReceiveTimeout ¶
func (o Phase1Output) FecReceiveTimeout() pulumi.IntOutput
Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000).
func (Phase1Output) FecRedundant ¶
func (o Phase1Output) FecRedundant() pulumi.IntOutput
Number of redundant Forward Error Correction packets (1 - 100).
func (Phase1Output) FecSendTimeout ¶
func (o Phase1Output) FecSendTimeout() pulumi.IntOutput
Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000).
func (Phase1Output) FgspSync ¶
func (o Phase1Output) FgspSync() pulumi.StringOutput
Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`.
func (Phase1Output) ForticlientEnforcement ¶
func (o Phase1Output) ForticlientEnforcement() pulumi.StringOutput
Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`.
func (Phase1Output) FortinetEsp ¶
func (o Phase1Output) FortinetEsp() pulumi.StringOutput
Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`.
func (Phase1Output) Fragmentation ¶
func (o Phase1Output) Fragmentation() pulumi.StringOutput
Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`.
func (Phase1Output) FragmentationMtu ¶
func (o Phase1Output) FragmentationMtu() pulumi.IntOutput
IKE fragmentation MTU (500 - 16000).
func (Phase1Output) GetAllTables ¶
func (o Phase1Output) GetAllTables() pulumi.StringPtrOutput
Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
func (Phase1Output) GroupAuthentication ¶
func (o Phase1Output) GroupAuthentication() pulumi.StringOutput
Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`.
func (Phase1Output) GroupAuthenticationSecret ¶
func (o Phase1Output) GroupAuthenticationSecret() pulumi.StringPtrOutput
Password for IKEv2 IDi group authentication. (ASCII string or hexadecimal indicated by a leading 0x.)
func (Phase1Output) HaSyncEspSeqno ¶
func (o Phase1Output) HaSyncEspSeqno() pulumi.StringOutput
Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`.
func (Phase1Output) IdleTimeout ¶
func (o Phase1Output) IdleTimeout() pulumi.StringOutput
Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`.
func (Phase1Output) IdleTimeoutinterval ¶
func (o Phase1Output) IdleTimeoutinterval() pulumi.IntOutput
IPsec tunnel idle timeout in minutes (5 - 43200).
func (Phase1Output) IkeVersion ¶
func (o Phase1Output) IkeVersion() pulumi.StringOutput
IKE protocol version. Valid values: `1`, `2`.
func (Phase1Output) InboundDscpCopy ¶
func (o Phase1Output) InboundDscpCopy() pulumi.StringOutput
Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`.
func (Phase1Output) IncludeLocalLan ¶
func (o Phase1Output) IncludeLocalLan() pulumi.StringOutput
Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`.
func (Phase1Output) Interface ¶
func (o Phase1Output) Interface() pulumi.StringOutput
Local physical, aggregate, or VLAN outgoing interface.
func (Phase1Output) InternalDomainLists ¶
func (o Phase1Output) InternalDomainLists() Phase1InternalDomainListArrayOutput
One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below.
func (Phase1Output) IpDelayInterval ¶
func (o Phase1Output) IpDelayInterval() pulumi.IntOutput
IP address reuse delay interval in seconds (0 - 28800).
func (Phase1Output) Ipv4DnsServer1 ¶
func (o Phase1Output) Ipv4DnsServer1() pulumi.StringOutput
IPv4 DNS server 1.
func (Phase1Output) Ipv4DnsServer2 ¶
func (o Phase1Output) Ipv4DnsServer2() pulumi.StringOutput
IPv4 DNS server 2.
func (Phase1Output) Ipv4DnsServer3 ¶
func (o Phase1Output) Ipv4DnsServer3() pulumi.StringOutput
IPv4 DNS server 3.
func (Phase1Output) Ipv4EndIp ¶
func (o Phase1Output) Ipv4EndIp() pulumi.StringOutput
End of IPv4 range.
func (Phase1Output) Ipv4ExcludeRanges ¶
func (o Phase1Output) Ipv4ExcludeRanges() Phase1Ipv4ExcludeRangeArrayOutput
Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below.
func (Phase1Output) Ipv4Name ¶
func (o Phase1Output) Ipv4Name() pulumi.StringOutput
IPv4 address name.
func (Phase1Output) Ipv4Netmask ¶
func (o Phase1Output) Ipv4Netmask() pulumi.StringOutput
IPv4 Netmask.
func (Phase1Output) Ipv4SplitExclude ¶
func (o Phase1Output) Ipv4SplitExclude() pulumi.StringOutput
IPv4 subnets that should not be sent over the IPsec tunnel.
func (Phase1Output) Ipv4SplitInclude ¶
func (o Phase1Output) Ipv4SplitInclude() pulumi.StringOutput
IPv4 split-include subnets.
func (Phase1Output) Ipv4StartIp ¶
func (o Phase1Output) Ipv4StartIp() pulumi.StringOutput
Start of IPv4 range.
func (Phase1Output) Ipv4WinsServer1 ¶
func (o Phase1Output) Ipv4WinsServer1() pulumi.StringOutput
WINS server 1.
func (Phase1Output) Ipv4WinsServer2 ¶
func (o Phase1Output) Ipv4WinsServer2() pulumi.StringOutput
WINS server 2.
func (Phase1Output) Ipv6DnsServer1 ¶
func (o Phase1Output) Ipv6DnsServer1() pulumi.StringOutput
IPv6 DNS server 1.
func (Phase1Output) Ipv6DnsServer2 ¶
func (o Phase1Output) Ipv6DnsServer2() pulumi.StringOutput
IPv6 DNS server 2.
func (Phase1Output) Ipv6DnsServer3 ¶
func (o Phase1Output) Ipv6DnsServer3() pulumi.StringOutput
IPv6 DNS server 3.
func (Phase1Output) Ipv6EndIp ¶
func (o Phase1Output) Ipv6EndIp() pulumi.StringOutput
End of IPv6 range.
func (Phase1Output) Ipv6ExcludeRanges ¶
func (o Phase1Output) Ipv6ExcludeRanges() Phase1Ipv6ExcludeRangeArrayOutput
Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below.
func (Phase1Output) Ipv6Name ¶
func (o Phase1Output) Ipv6Name() pulumi.StringOutput
IPv6 address name.
func (Phase1Output) Ipv6SplitExclude ¶
func (o Phase1Output) Ipv6SplitExclude() pulumi.StringOutput
IPv6 subnets that should not be sent over the IPsec tunnel.
func (Phase1Output) Ipv6SplitInclude ¶
func (o Phase1Output) Ipv6SplitInclude() pulumi.StringOutput
IPv6 split-include subnets.
func (Phase1Output) Ipv6StartIp ¶
func (o Phase1Output) Ipv6StartIp() pulumi.StringOutput
Start of IPv6 range.
func (Phase1Output) Keepalive ¶
func (o Phase1Output) Keepalive() pulumi.IntOutput
NAT-T keep alive interval.
func (Phase1Output) Keylife ¶
func (o Phase1Output) Keylife() pulumi.IntOutput
Time to wait in seconds before phase 1 encryption key expires.
func (Phase1Output) Kms ¶
func (o Phase1Output) Kms() pulumi.StringOutput
Key Management Services server.
func (Phase1Output) LinkCost ¶
func (o Phase1Output) LinkCost() pulumi.IntOutput
VPN tunnel underlay link cost.
func (Phase1Output) LocalGw ¶
func (o Phase1Output) LocalGw() pulumi.StringOutput
Local VPN gateway.
func (Phase1Output) LocalidType ¶
func (o Phase1Output) LocalidType() pulumi.StringOutput
Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`.
func (Phase1Output) LoopbackAsymroute ¶
func (o Phase1Output) LoopbackAsymroute() pulumi.StringOutput
Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`.
func (Phase1Output) MeshSelectorType ¶
func (o Phase1Output) MeshSelectorType() pulumi.StringOutput
Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`.
func (Phase1Output) Mode ¶
func (o Phase1Output) Mode() pulumi.StringOutput
ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`.
func (Phase1Output) ModeCfg ¶
func (o Phase1Output) ModeCfg() pulumi.StringOutput
Enable/disable configuration method. Valid values: `disable`, `enable`.
func (Phase1Output) ModeCfgAllowClientSelector ¶
func (o Phase1Output) ModeCfgAllowClientSelector() pulumi.StringOutput
Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`.
func (Phase1Output) Name ¶
func (o Phase1Output) Name() pulumi.StringOutput
IPsec remote gateway name.
func (Phase1Output) Nattraversal ¶
func (o Phase1Output) Nattraversal() pulumi.StringOutput
Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`.
func (Phase1Output) NegotiateTimeout ¶
func (o Phase1Output) NegotiateTimeout() pulumi.IntOutput
IKE SA negotiation timeout in seconds (1 - 300).
func (Phase1Output) NetworkId ¶
func (o Phase1Output) NetworkId() pulumi.IntOutput
VPN gateway network ID.
func (Phase1Output) NetworkOverlay ¶
func (o Phase1Output) NetworkOverlay() pulumi.StringOutput
Enable/disable network overlays. Valid values: `disable`, `enable`.
func (Phase1Output) NpuOffload ¶
func (o Phase1Output) NpuOffload() pulumi.StringOutput
Enable/disable offloading NPU. Valid values: `enable`, `disable`.
func (Phase1Output) Peer ¶
func (o Phase1Output) Peer() pulumi.StringOutput
Accept this peer certificate.
func (Phase1Output) Peergrp ¶
func (o Phase1Output) Peergrp() pulumi.StringOutput
Accept this peer certificate group.
func (Phase1Output) Peerid ¶
func (o Phase1Output) Peerid() pulumi.StringOutput
Accept this peer identity.
func (Phase1Output) Peertype ¶
func (o Phase1Output) Peertype() pulumi.StringOutput
Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`.
func (Phase1Output) Ppk ¶
func (o Phase1Output) Ppk() pulumi.StringOutput
Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`.
func (Phase1Output) PpkIdentity ¶
func (o Phase1Output) PpkIdentity() pulumi.StringOutput
IKEv2 Postquantum Preshared Key Identity.
func (Phase1Output) PpkSecret ¶
func (o Phase1Output) PpkSecret() pulumi.StringPtrOutput
IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x).
func (Phase1Output) Priority ¶
func (o Phase1Output) Priority() pulumi.IntOutput
Priority for routes added by IKE (0 - 4294967295).
func (Phase1Output) Proposal ¶
func (o Phase1Output) Proposal() pulumi.StringOutput
Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
func (Phase1Output) Psksecret ¶
func (o Phase1Output) Psksecret() pulumi.StringOutput
Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
func (Phase1Output) PsksecretRemote ¶
func (o Phase1Output) PsksecretRemote() pulumi.StringPtrOutput
Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
func (Phase1Output) Qkd ¶
func (o Phase1Output) Qkd() pulumi.StringOutput
Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`.
func (Phase1Output) QkdProfile ¶
func (o Phase1Output) QkdProfile() pulumi.StringOutput
Quantum Key Distribution (QKD) server profile.
func (Phase1Output) Reauth ¶
func (o Phase1Output) Reauth() pulumi.StringOutput
Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`.
func (Phase1Output) Rekey ¶
func (o Phase1Output) Rekey() pulumi.StringOutput
Enable/disable phase1 rekey. Valid values: `enable`, `disable`.
func (Phase1Output) RemoteGw ¶
func (o Phase1Output) RemoteGw() pulumi.StringOutput
Remote VPN gateway.
func (Phase1Output) RemotegwDdns ¶
func (o Phase1Output) RemotegwDdns() pulumi.StringOutput
Domain name of remote gateway (eg. name.DDNS.com).
func (Phase1Output) RsaSignatureFormat ¶
func (o Phase1Output) RsaSignatureFormat() pulumi.StringOutput
Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`.
func (Phase1Output) RsaSignatureHashOverride ¶
func (o Phase1Output) RsaSignatureHashOverride() pulumi.StringOutput
Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`.
func (Phase1Output) SavePassword ¶
func (o Phase1Output) SavePassword() pulumi.StringOutput
Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`.
func (Phase1Output) SendCertChain ¶
func (o Phase1Output) SendCertChain() pulumi.StringOutput
Enable/disable sending certificate chain. Valid values: `enable`, `disable`.
func (Phase1Output) SignatureHashAlg ¶
func (o Phase1Output) SignatureHashAlg() pulumi.StringOutput
Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`.
func (Phase1Output) SplitIncludeService ¶
func (o Phase1Output) SplitIncludeService() pulumi.StringOutput
Split-include services.
func (Phase1Output) SuiteB ¶
func (o Phase1Output) SuiteB() pulumi.StringOutput
Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`.
func (Phase1Output) ToPhase1Output ¶
func (o Phase1Output) ToPhase1Output() Phase1Output
func (Phase1Output) ToPhase1OutputWithContext ¶
func (o Phase1Output) ToPhase1OutputWithContext(ctx context.Context) Phase1Output
func (Phase1Output) Transport ¶
func (o Phase1Output) Transport() pulumi.StringOutput
Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`.
func (Phase1Output) Type ¶
func (o Phase1Output) Type() pulumi.StringOutput
Remote gateway type. Valid values: `static`, `dynamic`, `ddns`.
func (Phase1Output) UnitySupport ¶
func (o Phase1Output) UnitySupport() pulumi.StringOutput
Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`.
func (Phase1Output) Usrgrp ¶
func (o Phase1Output) Usrgrp() pulumi.StringOutput
User group name for dialup peers.
func (Phase1Output) Vdomparam ¶
func (o Phase1Output) Vdomparam() pulumi.StringPtrOutput
Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
func (Phase1Output) WizardType ¶
func (o Phase1Output) WizardType() pulumi.StringOutput
GUI VPN Wizard Type.
func (Phase1Output) Xauthtype ¶
func (o Phase1Output) Xauthtype() pulumi.StringOutput
XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`.
type Phase1State ¶
type Phase1State struct { // Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`. AcctVerify pulumi.StringPtrInput // Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`. AddGwRoute pulumi.StringPtrInput // Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`. AddRoute pulumi.StringPtrInput // Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`. AssignIp pulumi.StringPtrInput // Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`. AssignIpFrom pulumi.StringPtrInput // Authentication method. Valid values: `psk`, `signature`. Authmethod pulumi.StringPtrInput // Authentication method (remote side). Valid values: `psk`, `signature`. AuthmethodRemote pulumi.StringPtrInput // XAuth password (max 35 characters). Authpasswd pulumi.StringPtrInput // XAuth user name. Authusr pulumi.StringPtrInput // Authentication user group. Authusrgrp pulumi.StringPtrInput // Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`. AutoNegotiate pulumi.StringPtrInput // Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`. AzureAdAutoconnect pulumi.StringPtrInput // Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below. BackupGateways Phase1BackupGatewayArrayInput // Message that unity client should display after connecting. Banner pulumi.StringPtrInput // Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`. CertIdValidation pulumi.StringPtrInput // CA certificate trust store. Valid values: `local`, `ems`. CertTrustStore pulumi.StringPtrInput // Names of up to 4 signed personal certificates. The structure of `certificate` block is documented below. Certificates Phase1CertificateArrayInput // Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`. ChildlessIke pulumi.StringPtrInput // Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`. ClientAutoNegotiate pulumi.StringPtrInput // Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`. ClientKeepAlive pulumi.StringPtrInput // Comment. Comments pulumi.StringPtrInput // Device ID carried by the device ID notification. DevId pulumi.StringPtrInput // Enable/disable device ID notification. Valid values: `disable`, `enable`. DevIdNotification pulumi.StringPtrInput // Relay agent IPv6 link address to use in DHCP6 requests. Dhcp6RaLinkaddr pulumi.StringPtrInput // Relay agent gateway IP address to use in the giaddr field of DHCP requests. DhcpRaGiaddr pulumi.StringPtrInput // DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`. Dhgrp pulumi.StringPtrInput // Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`. DigitalSignatureAuth pulumi.StringPtrInput // Distance for routes added by IKE (1 - 255). Distance pulumi.IntPtrInput // DNS server mode. Valid values: `manual`, `auto`. DnsMode pulumi.StringPtrInput // Instruct unity clients about the default DNS domain. Domain pulumi.StringPtrInput // Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`. Dpd pulumi.StringPtrInput // Number of DPD retry attempts. DpdRetrycount pulumi.IntPtrInput // DPD retry interval. DpdRetryinterval pulumi.StringPtrInput // Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. DynamicSortSubtable pulumi.StringPtrInput // Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`. Eap pulumi.StringPtrInput // Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`. EapCertAuth pulumi.StringPtrInput // Peer group excluded from EAP authentication. EapExcludePeergrp pulumi.StringPtrInput // IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`. EapIdentity pulumi.StringPtrInput // Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`. EmsSnCheck pulumi.StringPtrInput // Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`. EnforceUniqueId pulumi.StringPtrInput // Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`. Esn pulumi.StringPtrInput // Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`. ExchangeFgtDeviceId pulumi.StringPtrInput // Timeout in seconds before falling back IKE/IPsec traffic to tcp. FallbackTcpThreshold pulumi.IntPtrInput // Number of base Forward Error Correction packets (1 - 100). FecBase pulumi.IntPtrInput // ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor). FecCodec pulumi.IntPtrInput // Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`. FecCodecString pulumi.StringPtrInput // Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`. FecEgress pulumi.StringPtrInput // SD-WAN health check. FecHealthCheck pulumi.StringPtrInput // Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`. FecIngress pulumi.StringPtrInput // Forward Error Correction (FEC) mapping profile. FecMappingProfile pulumi.StringPtrInput // Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000). FecReceiveTimeout pulumi.IntPtrInput // Number of redundant Forward Error Correction packets (1 - 100). FecRedundant pulumi.IntPtrInput // Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000). FecSendTimeout pulumi.IntPtrInput // Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`. FgspSync pulumi.StringPtrInput // Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`. ForticlientEnforcement pulumi.StringPtrInput // Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`. FortinetEsp pulumi.StringPtrInput // Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`. Fragmentation pulumi.StringPtrInput // IKE fragmentation MTU (500 - 16000). FragmentationMtu pulumi.IntPtrInput // Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. GetAllTables pulumi.StringPtrInput // Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`. GroupAuthentication pulumi.StringPtrInput // Password for IKEv2 IDi group authentication. (ASCII string or hexadecimal indicated by a leading 0x.) GroupAuthenticationSecret pulumi.StringPtrInput // Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`. HaSyncEspSeqno pulumi.StringPtrInput // Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`. IdleTimeout pulumi.StringPtrInput // IPsec tunnel idle timeout in minutes (5 - 43200). IdleTimeoutinterval pulumi.IntPtrInput // IKE protocol version. Valid values: `1`, `2`. IkeVersion pulumi.StringPtrInput // Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`. InboundDscpCopy pulumi.StringPtrInput // Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`. IncludeLocalLan pulumi.StringPtrInput // Local physical, aggregate, or VLAN outgoing interface. Interface pulumi.StringPtrInput // One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below. InternalDomainLists Phase1InternalDomainListArrayInput // IP address reuse delay interval in seconds (0 - 28800). IpDelayInterval pulumi.IntPtrInput // IPv4 DNS server 1. Ipv4DnsServer1 pulumi.StringPtrInput // IPv4 DNS server 2. Ipv4DnsServer2 pulumi.StringPtrInput // IPv4 DNS server 3. Ipv4DnsServer3 pulumi.StringPtrInput // End of IPv4 range. Ipv4EndIp pulumi.StringPtrInput // Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below. Ipv4ExcludeRanges Phase1Ipv4ExcludeRangeArrayInput // IPv4 address name. Ipv4Name pulumi.StringPtrInput // IPv4 Netmask. Ipv4Netmask pulumi.StringPtrInput // IPv4 subnets that should not be sent over the IPsec tunnel. Ipv4SplitExclude pulumi.StringPtrInput // IPv4 split-include subnets. Ipv4SplitInclude pulumi.StringPtrInput // Start of IPv4 range. Ipv4StartIp pulumi.StringPtrInput // WINS server 1. Ipv4WinsServer1 pulumi.StringPtrInput // WINS server 2. Ipv4WinsServer2 pulumi.StringPtrInput // IPv6 DNS server 1. Ipv6DnsServer1 pulumi.StringPtrInput // IPv6 DNS server 2. Ipv6DnsServer2 pulumi.StringPtrInput // IPv6 DNS server 3. Ipv6DnsServer3 pulumi.StringPtrInput // End of IPv6 range. Ipv6EndIp pulumi.StringPtrInput // Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below. Ipv6ExcludeRanges Phase1Ipv6ExcludeRangeArrayInput // IPv6 address name. Ipv6Name pulumi.StringPtrInput // IPv6 prefix. Ipv6Prefix pulumi.IntPtrInput // IPv6 subnets that should not be sent over the IPsec tunnel. Ipv6SplitExclude pulumi.StringPtrInput // IPv6 split-include subnets. Ipv6SplitInclude pulumi.StringPtrInput // Start of IPv6 range. Ipv6StartIp pulumi.StringPtrInput // NAT-T keep alive interval. Keepalive pulumi.IntPtrInput // Time to wait in seconds before phase 1 encryption key expires. Keylife pulumi.IntPtrInput // Key Management Services server. Kms pulumi.StringPtrInput // VPN tunnel underlay link cost. LinkCost pulumi.IntPtrInput // Local VPN gateway. LocalGw pulumi.StringPtrInput // Local ID. Localid pulumi.StringPtrInput // Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`. LocalidType pulumi.StringPtrInput // Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`. LoopbackAsymroute pulumi.StringPtrInput // Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`. MeshSelectorType pulumi.StringPtrInput // ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`. Mode pulumi.StringPtrInput // Enable/disable configuration method. Valid values: `disable`, `enable`. ModeCfg pulumi.StringPtrInput // Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`. ModeCfgAllowClientSelector pulumi.StringPtrInput // IPsec remote gateway name. Name pulumi.StringPtrInput // Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`. Nattraversal pulumi.StringPtrInput // IKE SA negotiation timeout in seconds (1 - 300). NegotiateTimeout pulumi.IntPtrInput // VPN gateway network ID. NetworkId pulumi.IntPtrInput // Enable/disable network overlays. Valid values: `disable`, `enable`. NetworkOverlay pulumi.StringPtrInput // Enable/disable offloading NPU. Valid values: `enable`, `disable`. NpuOffload pulumi.StringPtrInput // Accept this peer certificate. Peer pulumi.StringPtrInput // Accept this peer certificate group. Peergrp pulumi.StringPtrInput // Accept this peer identity. Peerid pulumi.StringPtrInput // Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`. Peertype pulumi.StringPtrInput // Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`. Ppk pulumi.StringPtrInput // IKEv2 Postquantum Preshared Key Identity. PpkIdentity pulumi.StringPtrInput // IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x). PpkSecret pulumi.StringPtrInput // Priority for routes added by IKE (0 - 4294967295). Priority pulumi.IntPtrInput // Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`. Proposal pulumi.StringPtrInput // Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x). Psksecret pulumi.StringPtrInput // Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x). PsksecretRemote pulumi.StringPtrInput // Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`. Qkd pulumi.StringPtrInput // Quantum Key Distribution (QKD) server profile. QkdProfile pulumi.StringPtrInput // Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`. Reauth pulumi.StringPtrInput // Enable/disable phase1 rekey. Valid values: `enable`, `disable`. Rekey pulumi.StringPtrInput // Remote VPN gateway. RemoteGw pulumi.StringPtrInput // Domain name of remote gateway (eg. name.DDNS.com). RemotegwDdns pulumi.StringPtrInput // Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`. RsaSignatureFormat pulumi.StringPtrInput // Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`. RsaSignatureHashOverride pulumi.StringPtrInput // Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`. SavePassword pulumi.StringPtrInput // Enable/disable sending certificate chain. Valid values: `enable`, `disable`. SendCertChain pulumi.StringPtrInput // Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`. SignatureHashAlg pulumi.StringPtrInput // Split-include services. SplitIncludeService pulumi.StringPtrInput // Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`. SuiteB pulumi.StringPtrInput // Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`. Transport pulumi.StringPtrInput // Remote gateway type. Valid values: `static`, `dynamic`, `ddns`. Type pulumi.StringPtrInput // Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`. UnitySupport pulumi.StringPtrInput // User group name for dialup peers. Usrgrp pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput // GUI VPN Wizard Type. WizardType pulumi.StringPtrInput // XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`. Xauthtype pulumi.StringPtrInput }
func (Phase1State) ElementType ¶
func (Phase1State) ElementType() reflect.Type
type Phase1interface ¶
type Phase1interface struct { pulumi.CustomResourceState // Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`. AcctVerify pulumi.StringOutput `pulumi:"acctVerify"` // Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`. AddGwRoute pulumi.StringOutput `pulumi:"addGwRoute"` // Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`. AddRoute pulumi.StringOutput `pulumi:"addRoute"` // Enable/disable use as an aggregate member. Valid values: `enable`, `disable`. AggregateMember pulumi.StringOutput `pulumi:"aggregateMember"` // Link weight for aggregate. AggregateWeight pulumi.IntOutput `pulumi:"aggregateWeight"` // Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`. AssignIp pulumi.StringOutput `pulumi:"assignIp"` // Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`. AssignIpFrom pulumi.StringOutput `pulumi:"assignIpFrom"` // Authentication method. Valid values: `psk`, `signature`. Authmethod pulumi.StringOutput `pulumi:"authmethod"` // Authentication method (remote side). Valid values: `psk`, `signature`. AuthmethodRemote pulumi.StringOutput `pulumi:"authmethodRemote"` // XAuth password (max 35 characters). Authpasswd pulumi.StringPtrOutput `pulumi:"authpasswd"` // XAuth user name. Authusr pulumi.StringOutput `pulumi:"authusr"` // Authentication user group. Authusrgrp pulumi.StringOutput `pulumi:"authusrgrp"` // Allow/block set-up of short-cut tunnels between different network IDs. Valid values: `allow`, `block`. AutoDiscoveryCrossover pulumi.StringOutput `pulumi:"autoDiscoveryCrossover"` // Enable/disable forwarding auto-discovery short-cut messages. Valid values: `enable`, `disable`. AutoDiscoveryForwarder pulumi.StringOutput `pulumi:"autoDiscoveryForwarder"` // Interval between shortcut offer messages in seconds (1 - 300, default = 5). AutoDiscoveryOfferInterval pulumi.IntOutput `pulumi:"autoDiscoveryOfferInterval"` // Enable/disable use of pre-shared secrets for authentication of auto-discovery tunnels. Valid values: `enable`, `disable`. AutoDiscoveryPsk pulumi.StringOutput `pulumi:"autoDiscoveryPsk"` // Enable/disable accepting auto-discovery short-cut messages. Valid values: `enable`, `disable`. AutoDiscoveryReceiver pulumi.StringOutput `pulumi:"autoDiscoveryReceiver"` // Enable/disable sending auto-discovery short-cut messages. Valid values: `enable`, `disable`. AutoDiscoverySender pulumi.StringOutput `pulumi:"autoDiscoverySender"` // Control deletion of child short-cut tunnels when the parent tunnel goes down. Valid values: `independent`, `dependent`. AutoDiscoveryShortcuts pulumi.StringOutput `pulumi:"autoDiscoveryShortcuts"` // Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`. AutoNegotiate pulumi.StringOutput `pulumi:"autoNegotiate"` // Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`. AzureAdAutoconnect pulumi.StringOutput `pulumi:"azureAdAutoconnect"` // Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below. BackupGateways Phase1interfaceBackupGatewayArrayOutput `pulumi:"backupGateways"` // Message that unity client should display after connecting. Banner pulumi.StringPtrOutput `pulumi:"banner"` // Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`. CertIdValidation pulumi.StringOutput `pulumi:"certIdValidation"` // CA certificate trust store. Valid values: `local`, `ems`. CertTrustStore pulumi.StringOutput `pulumi:"certTrustStore"` // The names of up to 4 signed personal certificates. The structure of `certificate` block is documented below. Certificates Phase1interfaceCertificateArrayOutput `pulumi:"certificates"` // Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`. ChildlessIke pulumi.StringOutput `pulumi:"childlessIke"` // Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`. ClientAutoNegotiate pulumi.StringOutput `pulumi:"clientAutoNegotiate"` // Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`. ClientKeepAlive pulumi.StringOutput `pulumi:"clientKeepAlive"` // Comment. Comments pulumi.StringPtrOutput `pulumi:"comments"` // IPv4 address of default route gateway to use for traffic exiting the interface. DefaultGw pulumi.StringOutput `pulumi:"defaultGw"` // Priority for default gateway route. A higher priority number signifies a less preferred route. DefaultGwPriority pulumi.IntOutput `pulumi:"defaultGwPriority"` // Device ID carried by the device ID notification. DevId pulumi.StringOutput `pulumi:"devId"` // Enable/disable device ID notification. Valid values: `disable`, `enable`. DevIdNotification pulumi.StringOutput `pulumi:"devIdNotification"` // Relay agent IPv6 link address to use in DHCP6 requests. Dhcp6RaLinkaddr pulumi.StringOutput `pulumi:"dhcp6RaLinkaddr"` // Relay agent gateway IP address to use in the giaddr field of DHCP requests. DhcpRaGiaddr pulumi.StringOutput `pulumi:"dhcpRaGiaddr"` // DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`. Dhgrp pulumi.StringOutput `pulumi:"dhgrp"` // Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`. DigitalSignatureAuth pulumi.StringOutput `pulumi:"digitalSignatureAuth"` // Distance for routes added by IKE (1 - 255). Distance pulumi.IntOutput `pulumi:"distance"` // DNS server mode. Valid values: `manual`, `auto`. DnsMode pulumi.StringOutput `pulumi:"dnsMode"` // Instruct unity clients about the default DNS domain. Domain pulumi.StringOutput `pulumi:"domain"` // Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`. Dpd pulumi.StringOutput `pulumi:"dpd"` // Number of DPD retry attempts. DpdRetrycount pulumi.IntOutput `pulumi:"dpdRetrycount"` // DPD retry interval. DpdRetryinterval pulumi.StringOutput `pulumi:"dpdRetryinterval"` // Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. DynamicSortSubtable pulumi.StringPtrOutput `pulumi:"dynamicSortSubtable"` // Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`. Eap pulumi.StringOutput `pulumi:"eap"` // Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`. EapCertAuth pulumi.StringOutput `pulumi:"eapCertAuth"` // Peer group excluded from EAP authentication. EapExcludePeergrp pulumi.StringOutput `pulumi:"eapExcludePeergrp"` // IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`. EapIdentity pulumi.StringOutput `pulumi:"eapIdentity"` // Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`. EmsSnCheck pulumi.StringOutput `pulumi:"emsSnCheck"` // Local IPv4 address of GRE/VXLAN tunnel. EncapLocalGw4 pulumi.StringOutput `pulumi:"encapLocalGw4"` // Local IPv6 address of GRE/VXLAN tunnel. EncapLocalGw6 pulumi.StringOutput `pulumi:"encapLocalGw6"` // Remote IPv4 address of GRE/VXLAN tunnel. EncapRemoteGw4 pulumi.StringOutput `pulumi:"encapRemoteGw4"` // Remote IPv6 address of GRE/VXLAN tunnel. EncapRemoteGw6 pulumi.StringOutput `pulumi:"encapRemoteGw6"` // Enable/disable GRE/VXLAN encapsulation. Encapsulation pulumi.StringOutput `pulumi:"encapsulation"` // Source for GRE/VXLAN tunnel address. Valid values: `ike`, `ipv4`, `ipv6`. EncapsulationAddress pulumi.StringOutput `pulumi:"encapsulationAddress"` // Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`. EnforceUniqueId pulumi.StringOutput `pulumi:"enforceUniqueId"` // Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`. Esn pulumi.StringOutput `pulumi:"esn"` // Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`. ExchangeFgtDeviceId pulumi.StringOutput `pulumi:"exchangeFgtDeviceId"` // Enable/disable exchange of IPsec interface IP address. Valid values: `enable`, `disable`. ExchangeInterfaceIp pulumi.StringOutput `pulumi:"exchangeInterfaceIp"` // IPv4 address to exchange with peers. ExchangeIpAddr4 pulumi.StringOutput `pulumi:"exchangeIpAddr4"` // IPv6 address to exchange with peers ExchangeIpAddr6 pulumi.StringOutput `pulumi:"exchangeIpAddr6"` // Timeout in seconds before falling back IKE/IPsec traffic to tcp. FallbackTcpThreshold pulumi.IntOutput `pulumi:"fallbackTcpThreshold"` // Number of base Forward Error Correction packets (1 - 100). FecBase pulumi.IntOutput `pulumi:"fecBase"` // ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor). FecCodec pulumi.IntOutput `pulumi:"fecCodec"` // Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`. FecCodecString pulumi.StringOutput `pulumi:"fecCodecString"` // Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`. FecEgress pulumi.StringOutput `pulumi:"fecEgress"` // SD-WAN health check. FecHealthCheck pulumi.StringOutput `pulumi:"fecHealthCheck"` // Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`. FecIngress pulumi.StringOutput `pulumi:"fecIngress"` // Forward Error Correction (FEC) mapping profile. FecMappingProfile pulumi.StringOutput `pulumi:"fecMappingProfile"` // Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000). FecReceiveTimeout pulumi.IntOutput `pulumi:"fecReceiveTimeout"` // Number of redundant Forward Error Correction packets (1 - 100). FecRedundant pulumi.IntOutput `pulumi:"fecRedundant"` // Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000). FecSendTimeout pulumi.IntOutput `pulumi:"fecSendTimeout"` // Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`. FgspSync pulumi.StringOutput `pulumi:"fgspSync"` // Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`. ForticlientEnforcement pulumi.StringOutput `pulumi:"forticlientEnforcement"` // Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`. FortinetEsp pulumi.StringOutput `pulumi:"fortinetEsp"` // Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`. Fragmentation pulumi.StringOutput `pulumi:"fragmentation"` // IKE fragmentation MTU (500 - 16000). FragmentationMtu pulumi.IntOutput `pulumi:"fragmentationMtu"` // Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. GetAllTables pulumi.StringPtrOutput `pulumi:"getAllTables"` // Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`. GroupAuthentication pulumi.StringOutput `pulumi:"groupAuthentication"` // Password for IKEv2 IDi group authentication. (ASCII string or hexadecimal indicated by a leading 0x.) GroupAuthenticationSecret pulumi.StringPtrOutput `pulumi:"groupAuthenticationSecret"` // Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`. HaSyncEspSeqno pulumi.StringOutput `pulumi:"haSyncEspSeqno"` // Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`. IdleTimeout pulumi.StringOutput `pulumi:"idleTimeout"` // IPsec tunnel idle timeout in minutes (5 - 43200). IdleTimeoutinterval pulumi.IntOutput `pulumi:"idleTimeoutinterval"` // IKE protocol version. Valid values: `1`, `2`. IkeVersion pulumi.StringOutput `pulumi:"ikeVersion"` // Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`. InboundDscpCopy pulumi.StringOutput `pulumi:"inboundDscpCopy"` // Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`. IncludeLocalLan pulumi.StringOutput `pulumi:"includeLocalLan"` // Local physical, aggregate, or VLAN outgoing interface. Interface pulumi.StringOutput `pulumi:"interface"` // One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below. InternalDomainLists Phase1interfaceInternalDomainListArrayOutput `pulumi:"internalDomainLists"` // IP address reuse delay interval in seconds (0 - 28800). IpDelayInterval pulumi.IntOutput `pulumi:"ipDelayInterval"` // Determine whether IP packets are fragmented before or after IPsec encapsulation. Valid values: `pre-encapsulation`, `post-encapsulation`. IpFragmentation pulumi.StringOutput `pulumi:"ipFragmentation"` // IP version to use for VPN interface. Valid values: `4`, `6`. IpVersion pulumi.StringOutput `pulumi:"ipVersion"` // IPv4 DNS server 1. Ipv4DnsServer1 pulumi.StringOutput `pulumi:"ipv4DnsServer1"` // IPv4 DNS server 2. Ipv4DnsServer2 pulumi.StringOutput `pulumi:"ipv4DnsServer2"` // IPv4 DNS server 3. Ipv4DnsServer3 pulumi.StringOutput `pulumi:"ipv4DnsServer3"` // End of IPv4 range. Ipv4EndIp pulumi.StringOutput `pulumi:"ipv4EndIp"` // Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below. Ipv4ExcludeRanges Phase1interfaceIpv4ExcludeRangeArrayOutput `pulumi:"ipv4ExcludeRanges"` // IPv4 address name. Ipv4Name pulumi.StringOutput `pulumi:"ipv4Name"` // IPv4 Netmask. Ipv4Netmask pulumi.StringOutput `pulumi:"ipv4Netmask"` // IPv4 subnets that should not be sent over the IPsec tunnel. Ipv4SplitExclude pulumi.StringOutput `pulumi:"ipv4SplitExclude"` // IPv4 split-include subnets. Ipv4SplitInclude pulumi.StringOutput `pulumi:"ipv4SplitInclude"` // Start of IPv4 range. Ipv4StartIp pulumi.StringOutput `pulumi:"ipv4StartIp"` // WINS server 1. Ipv4WinsServer1 pulumi.StringOutput `pulumi:"ipv4WinsServer1"` // WINS server 2. Ipv4WinsServer2 pulumi.StringOutput `pulumi:"ipv4WinsServer2"` // IPv6 DNS server 1. Ipv6DnsServer1 pulumi.StringOutput `pulumi:"ipv6DnsServer1"` // IPv6 DNS server 2. Ipv6DnsServer2 pulumi.StringOutput `pulumi:"ipv6DnsServer2"` // IPv6 DNS server 3. Ipv6DnsServer3 pulumi.StringOutput `pulumi:"ipv6DnsServer3"` // End of IPv6 range. Ipv6EndIp pulumi.StringOutput `pulumi:"ipv6EndIp"` // Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below. Ipv6ExcludeRanges Phase1interfaceIpv6ExcludeRangeArrayOutput `pulumi:"ipv6ExcludeRanges"` // IPv6 address name. Ipv6Name pulumi.StringOutput `pulumi:"ipv6Name"` // IPv6 prefix. Ipv6Prefix pulumi.IntOutput `pulumi:"ipv6Prefix"` // IPv6 subnets that should not be sent over the IPsec tunnel. Ipv6SplitExclude pulumi.StringOutput `pulumi:"ipv6SplitExclude"` // IPv6 split-include subnets. Ipv6SplitInclude pulumi.StringOutput `pulumi:"ipv6SplitInclude"` // Start of IPv6 range. Ipv6StartIp pulumi.StringOutput `pulumi:"ipv6StartIp"` // NAT-T keep alive interval. Keepalive pulumi.IntOutput `pulumi:"keepalive"` // Time to wait in seconds before phase 1 encryption key expires. Keylife pulumi.IntOutput `pulumi:"keylife"` // Key Management Services server. Kms pulumi.StringOutput `pulumi:"kms"` // VPN tunnel underlay link cost. LinkCost pulumi.IntOutput `pulumi:"linkCost"` // IPv4 address of the local gateway's external interface. LocalGw pulumi.StringOutput `pulumi:"localGw"` // IPv6 address of the local gateway's external interface. LocalGw6 pulumi.StringOutput `pulumi:"localGw6"` // Local ID. Localid pulumi.StringOutput `pulumi:"localid"` // Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`. LocalidType pulumi.StringOutput `pulumi:"localidType"` // Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`. LoopbackAsymroute pulumi.StringOutput `pulumi:"loopbackAsymroute"` // Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`. MeshSelectorType pulumi.StringOutput `pulumi:"meshSelectorType"` // The ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`. Mode pulumi.StringOutput `pulumi:"mode"` // Enable/disable configuration method. Valid values: `disable`, `enable`. ModeCfg pulumi.StringOutput `pulumi:"modeCfg"` // Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`. ModeCfgAllowClientSelector pulumi.StringOutput `pulumi:"modeCfgAllowClientSelector"` // IPsec interface as backup for primary interface. Monitor pulumi.StringOutput `pulumi:"monitor"` // Time to wait in seconds before recovery once primary re-establishes. MonitorHoldDownDelay pulumi.IntOutput `pulumi:"monitorHoldDownDelay"` // Time of day at which to fail back to primary after it re-establishes. MonitorHoldDownTime pulumi.StringOutput `pulumi:"monitorHoldDownTime"` // Recovery time method when primary interface re-establishes. Valid values: `immediate`, `delay`, `time`. MonitorHoldDownType pulumi.StringOutput `pulumi:"monitorHoldDownType"` // Day of the week to recover once primary re-establishes. Valid values: `everyday`, `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`. MonitorHoldDownWeekday pulumi.StringOutput `pulumi:"monitorHoldDownWeekday"` // Minimum number of links to become degraded before activating this interface. Zero (0) means all links must be down before activating this interface. MonitorMin pulumi.IntOutput `pulumi:"monitorMin"` // IPsec remote gateway name. Name pulumi.StringOutput `pulumi:"name"` // Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`. Nattraversal pulumi.StringOutput `pulumi:"nattraversal"` // IKE SA negotiation timeout in seconds (1 - 300). NegotiateTimeout pulumi.IntOutput `pulumi:"negotiateTimeout"` // Enable/disable kernel device creation. Valid values: `enable`, `disable`. NetDevice pulumi.StringOutput `pulumi:"netDevice"` // VPN gateway network ID. NetworkId pulumi.IntOutput `pulumi:"networkId"` // Enable/disable network overlays. Valid values: `disable`, `enable`. NetworkOverlay pulumi.StringOutput `pulumi:"networkOverlay"` // Enable/disable offloading NPU. Valid values: `enable`, `disable`. NpuOffload pulumi.StringOutput `pulumi:"npuOffload"` // Enable/disable packet distribution (RPS) on the IPsec interface. Valid values: `enable`, `disable`. PacketRedistribution pulumi.StringOutput `pulumi:"packetRedistribution"` // Enable/disable IPsec passive mode for static tunnels. Valid values: `enable`, `disable`. PassiveMode pulumi.StringOutput `pulumi:"passiveMode"` // Accept this peer certificate. Peer pulumi.StringOutput `pulumi:"peer"` // Accept this peer certificate group. Peergrp pulumi.StringOutput `pulumi:"peergrp"` // Accept this peer identity. Peerid pulumi.StringOutput `pulumi:"peerid"` // Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`. Peertype pulumi.StringOutput `pulumi:"peertype"` // Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`. Ppk pulumi.StringOutput `pulumi:"ppk"` // IKEv2 Postquantum Preshared Key Identity. PpkIdentity pulumi.StringOutput `pulumi:"ppkIdentity"` // IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x). PpkSecret pulumi.StringPtrOutput `pulumi:"ppkSecret"` // Priority for routes added by IKE (0 - 4294967295). Priority pulumi.IntOutput `pulumi:"priority"` // Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`. Proposal pulumi.StringOutput `pulumi:"proposal"` // Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x). Psksecret pulumi.StringPtrOutput `pulumi:"psksecret"` // Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x). PsksecretRemote pulumi.StringPtrOutput `pulumi:"psksecretRemote"` // Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`. Qkd pulumi.StringOutput `pulumi:"qkd"` // Quantum Key Distribution (QKD) server profile. QkdProfile pulumi.StringOutput `pulumi:"qkdProfile"` // Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`. Reauth pulumi.StringOutput `pulumi:"reauth"` // Enable/disable phase1 rekey. Valid values: `enable`, `disable`. Rekey pulumi.StringOutput `pulumi:"rekey"` // IPv4 address of the remote gateway's external interface. RemoteGw pulumi.StringOutput `pulumi:"remoteGw"` // IPv6 address of the remote gateway's external interface. RemoteGw6 pulumi.StringOutput `pulumi:"remoteGw6"` // Domain name of remote gateway (eg. name.DDNS.com). RemotegwDdns pulumi.StringOutput `pulumi:"remotegwDdns"` // Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`. RsaSignatureFormat pulumi.StringOutput `pulumi:"rsaSignatureFormat"` // Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`. RsaSignatureHashOverride pulumi.StringOutput `pulumi:"rsaSignatureHashOverride"` // Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`. SavePassword pulumi.StringOutput `pulumi:"savePassword"` // Enable/disable sending certificate chain. Valid values: `enable`, `disable`. SendCertChain pulumi.StringOutput `pulumi:"sendCertChain"` // Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`. SignatureHashAlg pulumi.StringOutput `pulumi:"signatureHashAlg"` // Split-include services. SplitIncludeService pulumi.StringOutput `pulumi:"splitIncludeService"` // Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`. SuiteB pulumi.StringOutput `pulumi:"suiteB"` // Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`. Transport pulumi.StringOutput `pulumi:"transport"` // Tunnel search method for when the interface is shared. Valid values: `selectors`, `nexthop`. TunnelSearch pulumi.StringOutput `pulumi:"tunnelSearch"` // Remote gateway type. Valid values: `static`, `dynamic`, `ddns`. Type pulumi.StringOutput `pulumi:"type"` // Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`. UnitySupport pulumi.StringOutput `pulumi:"unitySupport"` // User group name for dialup peers. Usrgrp pulumi.StringOutput `pulumi:"usrgrp"` // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"` // VNI of VXLAN tunnel. Vni pulumi.IntOutput `pulumi:"vni"` // GUI VPN Wizard Type. WizardType pulumi.StringOutput `pulumi:"wizardType"` // XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`. Xauthtype pulumi.StringOutput `pulumi:"xauthtype"` }
Configure VPN remote gateway.
## Example Usage
<!--Start PulumiCodeChooser --> ```go package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi" "github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { _, err := vpn.NewPhase1interface(ctx, "trname2", &vpn.Phase1interfaceArgs{ AcctVerify: pulumi.String("disable"), AddGwRoute: pulumi.String("disable"), AddRoute: pulumi.String("enable"), AssignIp: pulumi.String("enable"), AssignIpFrom: pulumi.String("range"), Authmethod: pulumi.String("psk"), AutoDiscoveryForwarder: pulumi.String("disable"), AutoDiscoveryPsk: pulumi.String("disable"), AutoDiscoveryReceiver: pulumi.String("disable"), AutoDiscoverySender: pulumi.String("disable"), AutoNegotiate: pulumi.String("enable"), CertIdValidation: pulumi.String("enable"), ChildlessIke: pulumi.String("disable"), ClientAutoNegotiate: pulumi.String("disable"), ClientKeepAlive: pulumi.String("disable"), DefaultGw: pulumi.String("0.0.0.0"), DefaultGwPriority: pulumi.Int(0), Dhgrp: pulumi.String("14 5"), DigitalSignatureAuth: pulumi.String("disable"), Distance: pulumi.Int(15), DnsMode: pulumi.String("manual"), Dpd: pulumi.String("on-demand"), DpdRetrycount: pulumi.Int(3), DpdRetryinterval: pulumi.String("20"), Eap: pulumi.String("disable"), EapIdentity: pulumi.String("use-id-payload"), EncapLocalGw4: pulumi.String("0.0.0.0"), EncapLocalGw6: pulumi.String("::"), EncapRemoteGw4: pulumi.String("0.0.0.0"), EncapRemoteGw6: pulumi.String("::"), Encapsulation: pulumi.String("none"), EncapsulationAddress: pulumi.String("ike"), EnforceUniqueId: pulumi.String("disable"), ExchangeInterfaceIp: pulumi.String("disable"), ExchangeIpAddr4: pulumi.String("0.0.0.0"), ExchangeIpAddr6: pulumi.String("::"), ForticlientEnforcement: pulumi.String("disable"), Fragmentation: pulumi.String("enable"), FragmentationMtu: pulumi.Int(1200), GroupAuthentication: pulumi.String("disable"), HaSyncEspSeqno: pulumi.String("enable"), IdleTimeout: pulumi.String("disable"), IdleTimeoutinterval: pulumi.Int(15), IkeVersion: pulumi.String("1"), IncludeLocalLan: pulumi.String("disable"), Interface: pulumi.String("port3"), IpVersion: pulumi.String("4"), Ipv4DnsServer1: pulumi.String("0.0.0.0"), Ipv4DnsServer2: pulumi.String("0.0.0.0"), Ipv4DnsServer3: pulumi.String("0.0.0.0"), Ipv4EndIp: pulumi.String("0.0.0.0"), Ipv4Netmask: pulumi.String("255.255.255.255"), Ipv4StartIp: pulumi.String("0.0.0.0"), Ipv4WinsServer1: pulumi.String("0.0.0.0"), Ipv4WinsServer2: pulumi.String("0.0.0.0"), Ipv6DnsServer1: pulumi.String("::"), Ipv6DnsServer2: pulumi.String("::"), Ipv6DnsServer3: pulumi.String("::"), Ipv6EndIp: pulumi.String("::"), Ipv6Prefix: pulumi.Int(128), Ipv6StartIp: pulumi.String("::"), Keepalive: pulumi.Int(10), Keylife: pulumi.Int(86400), LocalGw: pulumi.String("0.0.0.0"), LocalGw6: pulumi.String("::"), LocalidType: pulumi.String("auto"), MeshSelectorType: pulumi.String("disable"), Mode: pulumi.String("main"), ModeCfg: pulumi.String("disable"), MonitorHoldDownDelay: pulumi.Int(0), MonitorHoldDownTime: pulumi.String("00:00"), MonitorHoldDownType: pulumi.String("immediate"), MonitorHoldDownWeekday: pulumi.String("sunday"), Nattraversal: pulumi.String("enable"), NegotiateTimeout: pulumi.Int(30), NetDevice: pulumi.String("disable"), PassiveMode: pulumi.String("disable"), Peertype: pulumi.String("any"), Ppk: pulumi.String("disable"), Priority: pulumi.Int(0), Proposal: pulumi.String("aes128-sha256 aes256-sha256 aes128-sha1 aes256-sha1"), Psksecret: pulumi.String("eweeeeeeeecee"), Reauth: pulumi.String("disable"), Rekey: pulumi.String("enable"), RemoteGw: pulumi.String("102.2.2.12"), RemoteGw6: pulumi.String("::"), RsaSignatureFormat: pulumi.String("pkcs1"), SavePassword: pulumi.String("disable"), SendCertChain: pulumi.String("enable"), SignatureHashAlg: pulumi.String("sha2-512 sha2-384 sha2-256 sha1"), SuiteB: pulumi.String("disable"), TunnelSearch: pulumi.String("selectors"), Type: pulumi.String("static"), UnitySupport: pulumi.String("enable"), WizardType: pulumi.String("custom"), Xauthtype: pulumi.String("disable"), }) if err != nil { return err } return nil }) }
``` <!--End PulumiCodeChooser -->
## Import
VpnIpsec Phase1Interface can be imported using any of these accepted formats:
```sh $ pulumi import fortios:vpn/ipsec/phase1interface:Phase1interface labelname {{name}} ```
If you do not want to import arguments of block:
$ export "FORTIOS_IMPORT_TABLE"="false"
```sh $ pulumi import fortios:vpn/ipsec/phase1interface:Phase1interface labelname {{name}} ```
$ unset "FORTIOS_IMPORT_TABLE"
func GetPhase1interface ¶
func GetPhase1interface(ctx *pulumi.Context, name string, id pulumi.IDInput, state *Phase1interfaceState, opts ...pulumi.ResourceOption) (*Phase1interface, error)
GetPhase1interface gets an existing Phase1interface resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewPhase1interface ¶
func NewPhase1interface(ctx *pulumi.Context, name string, args *Phase1interfaceArgs, opts ...pulumi.ResourceOption) (*Phase1interface, error)
NewPhase1interface registers a new resource with the given unique name, arguments, and options.
func (*Phase1interface) ElementType ¶
func (*Phase1interface) ElementType() reflect.Type
func (*Phase1interface) ToPhase1interfaceOutput ¶
func (i *Phase1interface) ToPhase1interfaceOutput() Phase1interfaceOutput
func (*Phase1interface) ToPhase1interfaceOutputWithContext ¶
func (i *Phase1interface) ToPhase1interfaceOutputWithContext(ctx context.Context) Phase1interfaceOutput
type Phase1interfaceArgs ¶
type Phase1interfaceArgs struct { // Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`. AcctVerify pulumi.StringPtrInput // Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`. AddGwRoute pulumi.StringPtrInput // Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`. AddRoute pulumi.StringPtrInput // Enable/disable use as an aggregate member. Valid values: `enable`, `disable`. AggregateMember pulumi.StringPtrInput // Link weight for aggregate. AggregateWeight pulumi.IntPtrInput // Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`. AssignIp pulumi.StringPtrInput // Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`. AssignIpFrom pulumi.StringPtrInput // Authentication method. Valid values: `psk`, `signature`. Authmethod pulumi.StringPtrInput // Authentication method (remote side). Valid values: `psk`, `signature`. AuthmethodRemote pulumi.StringPtrInput // XAuth password (max 35 characters). Authpasswd pulumi.StringPtrInput // XAuth user name. Authusr pulumi.StringPtrInput // Authentication user group. Authusrgrp pulumi.StringPtrInput // Allow/block set-up of short-cut tunnels between different network IDs. Valid values: `allow`, `block`. AutoDiscoveryCrossover pulumi.StringPtrInput // Enable/disable forwarding auto-discovery short-cut messages. Valid values: `enable`, `disable`. AutoDiscoveryForwarder pulumi.StringPtrInput // Interval between shortcut offer messages in seconds (1 - 300, default = 5). AutoDiscoveryOfferInterval pulumi.IntPtrInput // Enable/disable use of pre-shared secrets for authentication of auto-discovery tunnels. Valid values: `enable`, `disable`. AutoDiscoveryPsk pulumi.StringPtrInput // Enable/disable accepting auto-discovery short-cut messages. Valid values: `enable`, `disable`. AutoDiscoveryReceiver pulumi.StringPtrInput // Enable/disable sending auto-discovery short-cut messages. Valid values: `enable`, `disable`. AutoDiscoverySender pulumi.StringPtrInput // Control deletion of child short-cut tunnels when the parent tunnel goes down. Valid values: `independent`, `dependent`. AutoDiscoveryShortcuts pulumi.StringPtrInput // Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`. AutoNegotiate pulumi.StringPtrInput // Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`. AzureAdAutoconnect pulumi.StringPtrInput // Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below. BackupGateways Phase1interfaceBackupGatewayArrayInput // Message that unity client should display after connecting. Banner pulumi.StringPtrInput // Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`. CertIdValidation pulumi.StringPtrInput // CA certificate trust store. Valid values: `local`, `ems`. CertTrustStore pulumi.StringPtrInput // The names of up to 4 signed personal certificates. The structure of `certificate` block is documented below. Certificates Phase1interfaceCertificateArrayInput // Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`. ChildlessIke pulumi.StringPtrInput // Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`. ClientAutoNegotiate pulumi.StringPtrInput // Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`. ClientKeepAlive pulumi.StringPtrInput // Comment. Comments pulumi.StringPtrInput // IPv4 address of default route gateway to use for traffic exiting the interface. DefaultGw pulumi.StringPtrInput // Priority for default gateway route. A higher priority number signifies a less preferred route. DefaultGwPriority pulumi.IntPtrInput // Device ID carried by the device ID notification. DevId pulumi.StringPtrInput // Enable/disable device ID notification. Valid values: `disable`, `enable`. DevIdNotification pulumi.StringPtrInput // Relay agent IPv6 link address to use in DHCP6 requests. Dhcp6RaLinkaddr pulumi.StringPtrInput // Relay agent gateway IP address to use in the giaddr field of DHCP requests. DhcpRaGiaddr pulumi.StringPtrInput // DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`. Dhgrp pulumi.StringPtrInput // Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`. DigitalSignatureAuth pulumi.StringPtrInput // Distance for routes added by IKE (1 - 255). Distance pulumi.IntPtrInput // DNS server mode. Valid values: `manual`, `auto`. DnsMode pulumi.StringPtrInput // Instruct unity clients about the default DNS domain. Domain pulumi.StringPtrInput // Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`. Dpd pulumi.StringPtrInput // Number of DPD retry attempts. DpdRetrycount pulumi.IntPtrInput // DPD retry interval. DpdRetryinterval pulumi.StringPtrInput // Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. DynamicSortSubtable pulumi.StringPtrInput // Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`. Eap pulumi.StringPtrInput // Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`. EapCertAuth pulumi.StringPtrInput // Peer group excluded from EAP authentication. EapExcludePeergrp pulumi.StringPtrInput // IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`. EapIdentity pulumi.StringPtrInput // Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`. EmsSnCheck pulumi.StringPtrInput // Local IPv4 address of GRE/VXLAN tunnel. EncapLocalGw4 pulumi.StringPtrInput // Local IPv6 address of GRE/VXLAN tunnel. EncapLocalGw6 pulumi.StringPtrInput // Remote IPv4 address of GRE/VXLAN tunnel. EncapRemoteGw4 pulumi.StringPtrInput // Remote IPv6 address of GRE/VXLAN tunnel. EncapRemoteGw6 pulumi.StringPtrInput // Enable/disable GRE/VXLAN encapsulation. Encapsulation pulumi.StringPtrInput // Source for GRE/VXLAN tunnel address. Valid values: `ike`, `ipv4`, `ipv6`. EncapsulationAddress pulumi.StringPtrInput // Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`. EnforceUniqueId pulumi.StringPtrInput // Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`. Esn pulumi.StringPtrInput // Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`. ExchangeFgtDeviceId pulumi.StringPtrInput // Enable/disable exchange of IPsec interface IP address. Valid values: `enable`, `disable`. ExchangeInterfaceIp pulumi.StringPtrInput // IPv4 address to exchange with peers. ExchangeIpAddr4 pulumi.StringPtrInput // IPv6 address to exchange with peers ExchangeIpAddr6 pulumi.StringPtrInput // Timeout in seconds before falling back IKE/IPsec traffic to tcp. FallbackTcpThreshold pulumi.IntPtrInput // Number of base Forward Error Correction packets (1 - 100). FecBase pulumi.IntPtrInput // ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor). FecCodec pulumi.IntPtrInput // Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`. FecCodecString pulumi.StringPtrInput // Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`. FecEgress pulumi.StringPtrInput // SD-WAN health check. FecHealthCheck pulumi.StringPtrInput // Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`. FecIngress pulumi.StringPtrInput // Forward Error Correction (FEC) mapping profile. FecMappingProfile pulumi.StringPtrInput // Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000). FecReceiveTimeout pulumi.IntPtrInput // Number of redundant Forward Error Correction packets (1 - 100). FecRedundant pulumi.IntPtrInput // Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000). FecSendTimeout pulumi.IntPtrInput // Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`. FgspSync pulumi.StringPtrInput // Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`. ForticlientEnforcement pulumi.StringPtrInput // Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`. FortinetEsp pulumi.StringPtrInput // Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`. Fragmentation pulumi.StringPtrInput // IKE fragmentation MTU (500 - 16000). FragmentationMtu pulumi.IntPtrInput // Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. GetAllTables pulumi.StringPtrInput // Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`. GroupAuthentication pulumi.StringPtrInput // Password for IKEv2 IDi group authentication. (ASCII string or hexadecimal indicated by a leading 0x.) GroupAuthenticationSecret pulumi.StringPtrInput // Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`. HaSyncEspSeqno pulumi.StringPtrInput // Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`. IdleTimeout pulumi.StringPtrInput // IPsec tunnel idle timeout in minutes (5 - 43200). IdleTimeoutinterval pulumi.IntPtrInput // IKE protocol version. Valid values: `1`, `2`. IkeVersion pulumi.StringPtrInput // Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`. InboundDscpCopy pulumi.StringPtrInput // Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`. IncludeLocalLan pulumi.StringPtrInput // Local physical, aggregate, or VLAN outgoing interface. Interface pulumi.StringInput // One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below. InternalDomainLists Phase1interfaceInternalDomainListArrayInput // IP address reuse delay interval in seconds (0 - 28800). IpDelayInterval pulumi.IntPtrInput // Determine whether IP packets are fragmented before or after IPsec encapsulation. Valid values: `pre-encapsulation`, `post-encapsulation`. IpFragmentation pulumi.StringPtrInput // IP version to use for VPN interface. Valid values: `4`, `6`. IpVersion pulumi.StringPtrInput // IPv4 DNS server 1. Ipv4DnsServer1 pulumi.StringPtrInput // IPv4 DNS server 2. Ipv4DnsServer2 pulumi.StringPtrInput // IPv4 DNS server 3. Ipv4DnsServer3 pulumi.StringPtrInput // End of IPv4 range. Ipv4EndIp pulumi.StringPtrInput // Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below. Ipv4ExcludeRanges Phase1interfaceIpv4ExcludeRangeArrayInput // IPv4 address name. Ipv4Name pulumi.StringPtrInput // IPv4 Netmask. Ipv4Netmask pulumi.StringPtrInput // IPv4 subnets that should not be sent over the IPsec tunnel. Ipv4SplitExclude pulumi.StringPtrInput // IPv4 split-include subnets. Ipv4SplitInclude pulumi.StringPtrInput // Start of IPv4 range. Ipv4StartIp pulumi.StringPtrInput // WINS server 1. Ipv4WinsServer1 pulumi.StringPtrInput // WINS server 2. Ipv4WinsServer2 pulumi.StringPtrInput // IPv6 DNS server 1. Ipv6DnsServer1 pulumi.StringPtrInput // IPv6 DNS server 2. Ipv6DnsServer2 pulumi.StringPtrInput // IPv6 DNS server 3. Ipv6DnsServer3 pulumi.StringPtrInput // End of IPv6 range. Ipv6EndIp pulumi.StringPtrInput // Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below. Ipv6ExcludeRanges Phase1interfaceIpv6ExcludeRangeArrayInput // IPv6 address name. Ipv6Name pulumi.StringPtrInput // IPv6 prefix. Ipv6Prefix pulumi.IntPtrInput // IPv6 subnets that should not be sent over the IPsec tunnel. Ipv6SplitExclude pulumi.StringPtrInput // IPv6 split-include subnets. Ipv6SplitInclude pulumi.StringPtrInput // Start of IPv6 range. Ipv6StartIp pulumi.StringPtrInput // NAT-T keep alive interval. Keepalive pulumi.IntPtrInput // Time to wait in seconds before phase 1 encryption key expires. Keylife pulumi.IntPtrInput // Key Management Services server. Kms pulumi.StringPtrInput // VPN tunnel underlay link cost. LinkCost pulumi.IntPtrInput // IPv4 address of the local gateway's external interface. LocalGw pulumi.StringPtrInput // IPv6 address of the local gateway's external interface. LocalGw6 pulumi.StringPtrInput // Local ID. Localid pulumi.StringPtrInput // Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`. LocalidType pulumi.StringPtrInput // Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`. LoopbackAsymroute pulumi.StringPtrInput // Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`. MeshSelectorType pulumi.StringPtrInput // The ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`. Mode pulumi.StringPtrInput // Enable/disable configuration method. Valid values: `disable`, `enable`. ModeCfg pulumi.StringPtrInput // Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`. ModeCfgAllowClientSelector pulumi.StringPtrInput // IPsec interface as backup for primary interface. Monitor pulumi.StringPtrInput // Time to wait in seconds before recovery once primary re-establishes. MonitorHoldDownDelay pulumi.IntPtrInput // Time of day at which to fail back to primary after it re-establishes. MonitorHoldDownTime pulumi.StringPtrInput // Recovery time method when primary interface re-establishes. Valid values: `immediate`, `delay`, `time`. MonitorHoldDownType pulumi.StringPtrInput // Day of the week to recover once primary re-establishes. Valid values: `everyday`, `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`. MonitorHoldDownWeekday pulumi.StringPtrInput // Minimum number of links to become degraded before activating this interface. Zero (0) means all links must be down before activating this interface. MonitorMin pulumi.IntPtrInput // IPsec remote gateway name. Name pulumi.StringPtrInput // Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`. Nattraversal pulumi.StringPtrInput // IKE SA negotiation timeout in seconds (1 - 300). NegotiateTimeout pulumi.IntPtrInput // Enable/disable kernel device creation. Valid values: `enable`, `disable`. NetDevice pulumi.StringPtrInput // VPN gateway network ID. NetworkId pulumi.IntPtrInput // Enable/disable network overlays. Valid values: `disable`, `enable`. NetworkOverlay pulumi.StringPtrInput // Enable/disable offloading NPU. Valid values: `enable`, `disable`. NpuOffload pulumi.StringPtrInput // Enable/disable packet distribution (RPS) on the IPsec interface. Valid values: `enable`, `disable`. PacketRedistribution pulumi.StringPtrInput // Enable/disable IPsec passive mode for static tunnels. Valid values: `enable`, `disable`. PassiveMode pulumi.StringPtrInput // Accept this peer certificate. Peer pulumi.StringPtrInput // Accept this peer certificate group. Peergrp pulumi.StringPtrInput // Accept this peer identity. Peerid pulumi.StringPtrInput // Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`. Peertype pulumi.StringPtrInput // Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`. Ppk pulumi.StringPtrInput // IKEv2 Postquantum Preshared Key Identity. PpkIdentity pulumi.StringPtrInput // IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x). PpkSecret pulumi.StringPtrInput // Priority for routes added by IKE (0 - 4294967295). Priority pulumi.IntPtrInput // Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`. Proposal pulumi.StringInput // Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x). Psksecret pulumi.StringPtrInput // Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x). PsksecretRemote pulumi.StringPtrInput // Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`. Qkd pulumi.StringPtrInput // Quantum Key Distribution (QKD) server profile. QkdProfile pulumi.StringPtrInput // Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`. Reauth pulumi.StringPtrInput // Enable/disable phase1 rekey. Valid values: `enable`, `disable`. Rekey pulumi.StringPtrInput // IPv4 address of the remote gateway's external interface. RemoteGw pulumi.StringPtrInput // IPv6 address of the remote gateway's external interface. RemoteGw6 pulumi.StringPtrInput // Domain name of remote gateway (eg. name.DDNS.com). RemotegwDdns pulumi.StringPtrInput // Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`. RsaSignatureFormat pulumi.StringPtrInput // Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`. RsaSignatureHashOverride pulumi.StringPtrInput // Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`. SavePassword pulumi.StringPtrInput // Enable/disable sending certificate chain. Valid values: `enable`, `disable`. SendCertChain pulumi.StringPtrInput // Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`. SignatureHashAlg pulumi.StringPtrInput // Split-include services. SplitIncludeService pulumi.StringPtrInput // Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`. SuiteB pulumi.StringPtrInput // Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`. Transport pulumi.StringPtrInput // Tunnel search method for when the interface is shared. Valid values: `selectors`, `nexthop`. TunnelSearch pulumi.StringPtrInput // Remote gateway type. Valid values: `static`, `dynamic`, `ddns`. Type pulumi.StringPtrInput // Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`. UnitySupport pulumi.StringPtrInput // User group name for dialup peers. Usrgrp pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput // VNI of VXLAN tunnel. Vni pulumi.IntPtrInput // GUI VPN Wizard Type. WizardType pulumi.StringPtrInput // XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`. Xauthtype pulumi.StringPtrInput }
The set of arguments for constructing a Phase1interface resource.
func (Phase1interfaceArgs) ElementType ¶
func (Phase1interfaceArgs) ElementType() reflect.Type
type Phase1interfaceArray ¶
type Phase1interfaceArray []Phase1interfaceInput
func (Phase1interfaceArray) ElementType ¶
func (Phase1interfaceArray) ElementType() reflect.Type
func (Phase1interfaceArray) ToPhase1interfaceArrayOutput ¶
func (i Phase1interfaceArray) ToPhase1interfaceArrayOutput() Phase1interfaceArrayOutput
func (Phase1interfaceArray) ToPhase1interfaceArrayOutputWithContext ¶
func (i Phase1interfaceArray) ToPhase1interfaceArrayOutputWithContext(ctx context.Context) Phase1interfaceArrayOutput
type Phase1interfaceArrayInput ¶
type Phase1interfaceArrayInput interface { pulumi.Input ToPhase1interfaceArrayOutput() Phase1interfaceArrayOutput ToPhase1interfaceArrayOutputWithContext(context.Context) Phase1interfaceArrayOutput }
Phase1interfaceArrayInput is an input type that accepts Phase1interfaceArray and Phase1interfaceArrayOutput values. You can construct a concrete instance of `Phase1interfaceArrayInput` via:
Phase1interfaceArray{ Phase1interfaceArgs{...} }
type Phase1interfaceArrayOutput ¶
type Phase1interfaceArrayOutput struct{ *pulumi.OutputState }
func (Phase1interfaceArrayOutput) ElementType ¶
func (Phase1interfaceArrayOutput) ElementType() reflect.Type
func (Phase1interfaceArrayOutput) Index ¶
func (o Phase1interfaceArrayOutput) Index(i pulumi.IntInput) Phase1interfaceOutput
func (Phase1interfaceArrayOutput) ToPhase1interfaceArrayOutput ¶
func (o Phase1interfaceArrayOutput) ToPhase1interfaceArrayOutput() Phase1interfaceArrayOutput
func (Phase1interfaceArrayOutput) ToPhase1interfaceArrayOutputWithContext ¶
func (o Phase1interfaceArrayOutput) ToPhase1interfaceArrayOutputWithContext(ctx context.Context) Phase1interfaceArrayOutput
type Phase1interfaceBackupGateway ¶
type Phase1interfaceBackupGateway struct { // Address of backup gateway. Address *string `pulumi:"address"` }
type Phase1interfaceBackupGatewayArgs ¶
type Phase1interfaceBackupGatewayArgs struct { // Address of backup gateway. Address pulumi.StringPtrInput `pulumi:"address"` }
func (Phase1interfaceBackupGatewayArgs) ElementType ¶
func (Phase1interfaceBackupGatewayArgs) ElementType() reflect.Type
func (Phase1interfaceBackupGatewayArgs) ToPhase1interfaceBackupGatewayOutput ¶
func (i Phase1interfaceBackupGatewayArgs) ToPhase1interfaceBackupGatewayOutput() Phase1interfaceBackupGatewayOutput
func (Phase1interfaceBackupGatewayArgs) ToPhase1interfaceBackupGatewayOutputWithContext ¶
func (i Phase1interfaceBackupGatewayArgs) ToPhase1interfaceBackupGatewayOutputWithContext(ctx context.Context) Phase1interfaceBackupGatewayOutput
type Phase1interfaceBackupGatewayArray ¶
type Phase1interfaceBackupGatewayArray []Phase1interfaceBackupGatewayInput
func (Phase1interfaceBackupGatewayArray) ElementType ¶
func (Phase1interfaceBackupGatewayArray) ElementType() reflect.Type
func (Phase1interfaceBackupGatewayArray) ToPhase1interfaceBackupGatewayArrayOutput ¶
func (i Phase1interfaceBackupGatewayArray) ToPhase1interfaceBackupGatewayArrayOutput() Phase1interfaceBackupGatewayArrayOutput
func (Phase1interfaceBackupGatewayArray) ToPhase1interfaceBackupGatewayArrayOutputWithContext ¶
func (i Phase1interfaceBackupGatewayArray) ToPhase1interfaceBackupGatewayArrayOutputWithContext(ctx context.Context) Phase1interfaceBackupGatewayArrayOutput
type Phase1interfaceBackupGatewayArrayInput ¶
type Phase1interfaceBackupGatewayArrayInput interface { pulumi.Input ToPhase1interfaceBackupGatewayArrayOutput() Phase1interfaceBackupGatewayArrayOutput ToPhase1interfaceBackupGatewayArrayOutputWithContext(context.Context) Phase1interfaceBackupGatewayArrayOutput }
Phase1interfaceBackupGatewayArrayInput is an input type that accepts Phase1interfaceBackupGatewayArray and Phase1interfaceBackupGatewayArrayOutput values. You can construct a concrete instance of `Phase1interfaceBackupGatewayArrayInput` via:
Phase1interfaceBackupGatewayArray{ Phase1interfaceBackupGatewayArgs{...} }
type Phase1interfaceBackupGatewayArrayOutput ¶
type Phase1interfaceBackupGatewayArrayOutput struct{ *pulumi.OutputState }
func (Phase1interfaceBackupGatewayArrayOutput) ElementType ¶
func (Phase1interfaceBackupGatewayArrayOutput) ElementType() reflect.Type
func (Phase1interfaceBackupGatewayArrayOutput) ToPhase1interfaceBackupGatewayArrayOutput ¶
func (o Phase1interfaceBackupGatewayArrayOutput) ToPhase1interfaceBackupGatewayArrayOutput() Phase1interfaceBackupGatewayArrayOutput
func (Phase1interfaceBackupGatewayArrayOutput) ToPhase1interfaceBackupGatewayArrayOutputWithContext ¶
func (o Phase1interfaceBackupGatewayArrayOutput) ToPhase1interfaceBackupGatewayArrayOutputWithContext(ctx context.Context) Phase1interfaceBackupGatewayArrayOutput
type Phase1interfaceBackupGatewayInput ¶
type Phase1interfaceBackupGatewayInput interface { pulumi.Input ToPhase1interfaceBackupGatewayOutput() Phase1interfaceBackupGatewayOutput ToPhase1interfaceBackupGatewayOutputWithContext(context.Context) Phase1interfaceBackupGatewayOutput }
Phase1interfaceBackupGatewayInput is an input type that accepts Phase1interfaceBackupGatewayArgs and Phase1interfaceBackupGatewayOutput values. You can construct a concrete instance of `Phase1interfaceBackupGatewayInput` via:
Phase1interfaceBackupGatewayArgs{...}
type Phase1interfaceBackupGatewayOutput ¶
type Phase1interfaceBackupGatewayOutput struct{ *pulumi.OutputState }
func (Phase1interfaceBackupGatewayOutput) Address ¶
func (o Phase1interfaceBackupGatewayOutput) Address() pulumi.StringPtrOutput
Address of backup gateway.
func (Phase1interfaceBackupGatewayOutput) ElementType ¶
func (Phase1interfaceBackupGatewayOutput) ElementType() reflect.Type
func (Phase1interfaceBackupGatewayOutput) ToPhase1interfaceBackupGatewayOutput ¶
func (o Phase1interfaceBackupGatewayOutput) ToPhase1interfaceBackupGatewayOutput() Phase1interfaceBackupGatewayOutput
func (Phase1interfaceBackupGatewayOutput) ToPhase1interfaceBackupGatewayOutputWithContext ¶
func (o Phase1interfaceBackupGatewayOutput) ToPhase1interfaceBackupGatewayOutputWithContext(ctx context.Context) Phase1interfaceBackupGatewayOutput
type Phase1interfaceCertificate ¶
type Phase1interfaceCertificate struct { // Certificate name. Name *string `pulumi:"name"` }
type Phase1interfaceCertificateArgs ¶
type Phase1interfaceCertificateArgs struct { // Certificate name. Name pulumi.StringPtrInput `pulumi:"name"` }
func (Phase1interfaceCertificateArgs) ElementType ¶
func (Phase1interfaceCertificateArgs) ElementType() reflect.Type
func (Phase1interfaceCertificateArgs) ToPhase1interfaceCertificateOutput ¶
func (i Phase1interfaceCertificateArgs) ToPhase1interfaceCertificateOutput() Phase1interfaceCertificateOutput
func (Phase1interfaceCertificateArgs) ToPhase1interfaceCertificateOutputWithContext ¶
func (i Phase1interfaceCertificateArgs) ToPhase1interfaceCertificateOutputWithContext(ctx context.Context) Phase1interfaceCertificateOutput
type Phase1interfaceCertificateArray ¶
type Phase1interfaceCertificateArray []Phase1interfaceCertificateInput
func (Phase1interfaceCertificateArray) ElementType ¶
func (Phase1interfaceCertificateArray) ElementType() reflect.Type
func (Phase1interfaceCertificateArray) ToPhase1interfaceCertificateArrayOutput ¶
func (i Phase1interfaceCertificateArray) ToPhase1interfaceCertificateArrayOutput() Phase1interfaceCertificateArrayOutput
func (Phase1interfaceCertificateArray) ToPhase1interfaceCertificateArrayOutputWithContext ¶
func (i Phase1interfaceCertificateArray) ToPhase1interfaceCertificateArrayOutputWithContext(ctx context.Context) Phase1interfaceCertificateArrayOutput
type Phase1interfaceCertificateArrayInput ¶
type Phase1interfaceCertificateArrayInput interface { pulumi.Input ToPhase1interfaceCertificateArrayOutput() Phase1interfaceCertificateArrayOutput ToPhase1interfaceCertificateArrayOutputWithContext(context.Context) Phase1interfaceCertificateArrayOutput }
Phase1interfaceCertificateArrayInput is an input type that accepts Phase1interfaceCertificateArray and Phase1interfaceCertificateArrayOutput values. You can construct a concrete instance of `Phase1interfaceCertificateArrayInput` via:
Phase1interfaceCertificateArray{ Phase1interfaceCertificateArgs{...} }
type Phase1interfaceCertificateArrayOutput ¶
type Phase1interfaceCertificateArrayOutput struct{ *pulumi.OutputState }
func (Phase1interfaceCertificateArrayOutput) ElementType ¶
func (Phase1interfaceCertificateArrayOutput) ElementType() reflect.Type
func (Phase1interfaceCertificateArrayOutput) Index ¶
func (o Phase1interfaceCertificateArrayOutput) Index(i pulumi.IntInput) Phase1interfaceCertificateOutput
func (Phase1interfaceCertificateArrayOutput) ToPhase1interfaceCertificateArrayOutput ¶
func (o Phase1interfaceCertificateArrayOutput) ToPhase1interfaceCertificateArrayOutput() Phase1interfaceCertificateArrayOutput
func (Phase1interfaceCertificateArrayOutput) ToPhase1interfaceCertificateArrayOutputWithContext ¶
func (o Phase1interfaceCertificateArrayOutput) ToPhase1interfaceCertificateArrayOutputWithContext(ctx context.Context) Phase1interfaceCertificateArrayOutput
type Phase1interfaceCertificateInput ¶
type Phase1interfaceCertificateInput interface { pulumi.Input ToPhase1interfaceCertificateOutput() Phase1interfaceCertificateOutput ToPhase1interfaceCertificateOutputWithContext(context.Context) Phase1interfaceCertificateOutput }
Phase1interfaceCertificateInput is an input type that accepts Phase1interfaceCertificateArgs and Phase1interfaceCertificateOutput values. You can construct a concrete instance of `Phase1interfaceCertificateInput` via:
Phase1interfaceCertificateArgs{...}
type Phase1interfaceCertificateOutput ¶
type Phase1interfaceCertificateOutput struct{ *pulumi.OutputState }
func (Phase1interfaceCertificateOutput) ElementType ¶
func (Phase1interfaceCertificateOutput) ElementType() reflect.Type
func (Phase1interfaceCertificateOutput) Name ¶
func (o Phase1interfaceCertificateOutput) Name() pulumi.StringPtrOutput
Certificate name.
func (Phase1interfaceCertificateOutput) ToPhase1interfaceCertificateOutput ¶
func (o Phase1interfaceCertificateOutput) ToPhase1interfaceCertificateOutput() Phase1interfaceCertificateOutput
func (Phase1interfaceCertificateOutput) ToPhase1interfaceCertificateOutputWithContext ¶
func (o Phase1interfaceCertificateOutput) ToPhase1interfaceCertificateOutputWithContext(ctx context.Context) Phase1interfaceCertificateOutput
type Phase1interfaceInput ¶
type Phase1interfaceInput interface { pulumi.Input ToPhase1interfaceOutput() Phase1interfaceOutput ToPhase1interfaceOutputWithContext(ctx context.Context) Phase1interfaceOutput }
type Phase1interfaceInternalDomainList ¶
type Phase1interfaceInternalDomainList struct { // Domain name. // // The `ipv4ExcludeRange` block supports: DomainName *string `pulumi:"domainName"` }
type Phase1interfaceInternalDomainListArgs ¶
type Phase1interfaceInternalDomainListArgs struct { // Domain name. // // The `ipv4ExcludeRange` block supports: DomainName pulumi.StringPtrInput `pulumi:"domainName"` }
func (Phase1interfaceInternalDomainListArgs) ElementType ¶
func (Phase1interfaceInternalDomainListArgs) ElementType() reflect.Type
func (Phase1interfaceInternalDomainListArgs) ToPhase1interfaceInternalDomainListOutput ¶
func (i Phase1interfaceInternalDomainListArgs) ToPhase1interfaceInternalDomainListOutput() Phase1interfaceInternalDomainListOutput
func (Phase1interfaceInternalDomainListArgs) ToPhase1interfaceInternalDomainListOutputWithContext ¶
func (i Phase1interfaceInternalDomainListArgs) ToPhase1interfaceInternalDomainListOutputWithContext(ctx context.Context) Phase1interfaceInternalDomainListOutput
type Phase1interfaceInternalDomainListArray ¶
type Phase1interfaceInternalDomainListArray []Phase1interfaceInternalDomainListInput
func (Phase1interfaceInternalDomainListArray) ElementType ¶
func (Phase1interfaceInternalDomainListArray) ElementType() reflect.Type
func (Phase1interfaceInternalDomainListArray) ToPhase1interfaceInternalDomainListArrayOutput ¶
func (i Phase1interfaceInternalDomainListArray) ToPhase1interfaceInternalDomainListArrayOutput() Phase1interfaceInternalDomainListArrayOutput
func (Phase1interfaceInternalDomainListArray) ToPhase1interfaceInternalDomainListArrayOutputWithContext ¶
func (i Phase1interfaceInternalDomainListArray) ToPhase1interfaceInternalDomainListArrayOutputWithContext(ctx context.Context) Phase1interfaceInternalDomainListArrayOutput
type Phase1interfaceInternalDomainListArrayInput ¶
type Phase1interfaceInternalDomainListArrayInput interface { pulumi.Input ToPhase1interfaceInternalDomainListArrayOutput() Phase1interfaceInternalDomainListArrayOutput ToPhase1interfaceInternalDomainListArrayOutputWithContext(context.Context) Phase1interfaceInternalDomainListArrayOutput }
Phase1interfaceInternalDomainListArrayInput is an input type that accepts Phase1interfaceInternalDomainListArray and Phase1interfaceInternalDomainListArrayOutput values. You can construct a concrete instance of `Phase1interfaceInternalDomainListArrayInput` via:
Phase1interfaceInternalDomainListArray{ Phase1interfaceInternalDomainListArgs{...} }
type Phase1interfaceInternalDomainListArrayOutput ¶
type Phase1interfaceInternalDomainListArrayOutput struct{ *pulumi.OutputState }
func (Phase1interfaceInternalDomainListArrayOutput) ElementType ¶
func (Phase1interfaceInternalDomainListArrayOutput) ElementType() reflect.Type
func (Phase1interfaceInternalDomainListArrayOutput) ToPhase1interfaceInternalDomainListArrayOutput ¶
func (o Phase1interfaceInternalDomainListArrayOutput) ToPhase1interfaceInternalDomainListArrayOutput() Phase1interfaceInternalDomainListArrayOutput
func (Phase1interfaceInternalDomainListArrayOutput) ToPhase1interfaceInternalDomainListArrayOutputWithContext ¶
func (o Phase1interfaceInternalDomainListArrayOutput) ToPhase1interfaceInternalDomainListArrayOutputWithContext(ctx context.Context) Phase1interfaceInternalDomainListArrayOutput
type Phase1interfaceInternalDomainListInput ¶
type Phase1interfaceInternalDomainListInput interface { pulumi.Input ToPhase1interfaceInternalDomainListOutput() Phase1interfaceInternalDomainListOutput ToPhase1interfaceInternalDomainListOutputWithContext(context.Context) Phase1interfaceInternalDomainListOutput }
Phase1interfaceInternalDomainListInput is an input type that accepts Phase1interfaceInternalDomainListArgs and Phase1interfaceInternalDomainListOutput values. You can construct a concrete instance of `Phase1interfaceInternalDomainListInput` via:
Phase1interfaceInternalDomainListArgs{...}
type Phase1interfaceInternalDomainListOutput ¶
type Phase1interfaceInternalDomainListOutput struct{ *pulumi.OutputState }
func (Phase1interfaceInternalDomainListOutput) DomainName ¶
func (o Phase1interfaceInternalDomainListOutput) DomainName() pulumi.StringPtrOutput
Domain name.
The `ipv4ExcludeRange` block supports:
func (Phase1interfaceInternalDomainListOutput) ElementType ¶
func (Phase1interfaceInternalDomainListOutput) ElementType() reflect.Type
func (Phase1interfaceInternalDomainListOutput) ToPhase1interfaceInternalDomainListOutput ¶
func (o Phase1interfaceInternalDomainListOutput) ToPhase1interfaceInternalDomainListOutput() Phase1interfaceInternalDomainListOutput
func (Phase1interfaceInternalDomainListOutput) ToPhase1interfaceInternalDomainListOutputWithContext ¶
func (o Phase1interfaceInternalDomainListOutput) ToPhase1interfaceInternalDomainListOutputWithContext(ctx context.Context) Phase1interfaceInternalDomainListOutput
type Phase1interfaceIpv4ExcludeRangeArgs ¶
type Phase1interfaceIpv4ExcludeRangeArgs struct { // End of IPv6 exclusive range. EndIp pulumi.StringPtrInput `pulumi:"endIp"` // ID. Id pulumi.IntPtrInput `pulumi:"id"` // Start of IPv6 exclusive range. StartIp pulumi.StringPtrInput `pulumi:"startIp"` }
func (Phase1interfaceIpv4ExcludeRangeArgs) ElementType ¶
func (Phase1interfaceIpv4ExcludeRangeArgs) ElementType() reflect.Type
func (Phase1interfaceIpv4ExcludeRangeArgs) ToPhase1interfaceIpv4ExcludeRangeOutput ¶
func (i Phase1interfaceIpv4ExcludeRangeArgs) ToPhase1interfaceIpv4ExcludeRangeOutput() Phase1interfaceIpv4ExcludeRangeOutput
func (Phase1interfaceIpv4ExcludeRangeArgs) ToPhase1interfaceIpv4ExcludeRangeOutputWithContext ¶
func (i Phase1interfaceIpv4ExcludeRangeArgs) ToPhase1interfaceIpv4ExcludeRangeOutputWithContext(ctx context.Context) Phase1interfaceIpv4ExcludeRangeOutput
type Phase1interfaceIpv4ExcludeRangeArray ¶
type Phase1interfaceIpv4ExcludeRangeArray []Phase1interfaceIpv4ExcludeRangeInput
func (Phase1interfaceIpv4ExcludeRangeArray) ElementType ¶
func (Phase1interfaceIpv4ExcludeRangeArray) ElementType() reflect.Type
func (Phase1interfaceIpv4ExcludeRangeArray) ToPhase1interfaceIpv4ExcludeRangeArrayOutput ¶
func (i Phase1interfaceIpv4ExcludeRangeArray) ToPhase1interfaceIpv4ExcludeRangeArrayOutput() Phase1interfaceIpv4ExcludeRangeArrayOutput
func (Phase1interfaceIpv4ExcludeRangeArray) ToPhase1interfaceIpv4ExcludeRangeArrayOutputWithContext ¶
func (i Phase1interfaceIpv4ExcludeRangeArray) ToPhase1interfaceIpv4ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1interfaceIpv4ExcludeRangeArrayOutput
type Phase1interfaceIpv4ExcludeRangeArrayInput ¶
type Phase1interfaceIpv4ExcludeRangeArrayInput interface { pulumi.Input ToPhase1interfaceIpv4ExcludeRangeArrayOutput() Phase1interfaceIpv4ExcludeRangeArrayOutput ToPhase1interfaceIpv4ExcludeRangeArrayOutputWithContext(context.Context) Phase1interfaceIpv4ExcludeRangeArrayOutput }
Phase1interfaceIpv4ExcludeRangeArrayInput is an input type that accepts Phase1interfaceIpv4ExcludeRangeArray and Phase1interfaceIpv4ExcludeRangeArrayOutput values. You can construct a concrete instance of `Phase1interfaceIpv4ExcludeRangeArrayInput` via:
Phase1interfaceIpv4ExcludeRangeArray{ Phase1interfaceIpv4ExcludeRangeArgs{...} }
type Phase1interfaceIpv4ExcludeRangeArrayOutput ¶
type Phase1interfaceIpv4ExcludeRangeArrayOutput struct{ *pulumi.OutputState }
func (Phase1interfaceIpv4ExcludeRangeArrayOutput) ElementType ¶
func (Phase1interfaceIpv4ExcludeRangeArrayOutput) ElementType() reflect.Type
func (Phase1interfaceIpv4ExcludeRangeArrayOutput) ToPhase1interfaceIpv4ExcludeRangeArrayOutput ¶
func (o Phase1interfaceIpv4ExcludeRangeArrayOutput) ToPhase1interfaceIpv4ExcludeRangeArrayOutput() Phase1interfaceIpv4ExcludeRangeArrayOutput
func (Phase1interfaceIpv4ExcludeRangeArrayOutput) ToPhase1interfaceIpv4ExcludeRangeArrayOutputWithContext ¶
func (o Phase1interfaceIpv4ExcludeRangeArrayOutput) ToPhase1interfaceIpv4ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1interfaceIpv4ExcludeRangeArrayOutput
type Phase1interfaceIpv4ExcludeRangeInput ¶
type Phase1interfaceIpv4ExcludeRangeInput interface { pulumi.Input ToPhase1interfaceIpv4ExcludeRangeOutput() Phase1interfaceIpv4ExcludeRangeOutput ToPhase1interfaceIpv4ExcludeRangeOutputWithContext(context.Context) Phase1interfaceIpv4ExcludeRangeOutput }
Phase1interfaceIpv4ExcludeRangeInput is an input type that accepts Phase1interfaceIpv4ExcludeRangeArgs and Phase1interfaceIpv4ExcludeRangeOutput values. You can construct a concrete instance of `Phase1interfaceIpv4ExcludeRangeInput` via:
Phase1interfaceIpv4ExcludeRangeArgs{...}
type Phase1interfaceIpv4ExcludeRangeOutput ¶
type Phase1interfaceIpv4ExcludeRangeOutput struct{ *pulumi.OutputState }
func (Phase1interfaceIpv4ExcludeRangeOutput) ElementType ¶
func (Phase1interfaceIpv4ExcludeRangeOutput) ElementType() reflect.Type
func (Phase1interfaceIpv4ExcludeRangeOutput) EndIp ¶
func (o Phase1interfaceIpv4ExcludeRangeOutput) EndIp() pulumi.StringPtrOutput
End of IPv6 exclusive range.
func (Phase1interfaceIpv4ExcludeRangeOutput) Id ¶
func (o Phase1interfaceIpv4ExcludeRangeOutput) Id() pulumi.IntPtrOutput
ID.
func (Phase1interfaceIpv4ExcludeRangeOutput) StartIp ¶
func (o Phase1interfaceIpv4ExcludeRangeOutput) StartIp() pulumi.StringPtrOutput
Start of IPv6 exclusive range.
func (Phase1interfaceIpv4ExcludeRangeOutput) ToPhase1interfaceIpv4ExcludeRangeOutput ¶
func (o Phase1interfaceIpv4ExcludeRangeOutput) ToPhase1interfaceIpv4ExcludeRangeOutput() Phase1interfaceIpv4ExcludeRangeOutput
func (Phase1interfaceIpv4ExcludeRangeOutput) ToPhase1interfaceIpv4ExcludeRangeOutputWithContext ¶
func (o Phase1interfaceIpv4ExcludeRangeOutput) ToPhase1interfaceIpv4ExcludeRangeOutputWithContext(ctx context.Context) Phase1interfaceIpv4ExcludeRangeOutput
type Phase1interfaceIpv6ExcludeRangeArgs ¶
type Phase1interfaceIpv6ExcludeRangeArgs struct { // End of IPv6 exclusive range. EndIp pulumi.StringPtrInput `pulumi:"endIp"` // ID. Id pulumi.IntPtrInput `pulumi:"id"` // Start of IPv6 exclusive range. StartIp pulumi.StringPtrInput `pulumi:"startIp"` }
func (Phase1interfaceIpv6ExcludeRangeArgs) ElementType ¶
func (Phase1interfaceIpv6ExcludeRangeArgs) ElementType() reflect.Type
func (Phase1interfaceIpv6ExcludeRangeArgs) ToPhase1interfaceIpv6ExcludeRangeOutput ¶
func (i Phase1interfaceIpv6ExcludeRangeArgs) ToPhase1interfaceIpv6ExcludeRangeOutput() Phase1interfaceIpv6ExcludeRangeOutput
func (Phase1interfaceIpv6ExcludeRangeArgs) ToPhase1interfaceIpv6ExcludeRangeOutputWithContext ¶
func (i Phase1interfaceIpv6ExcludeRangeArgs) ToPhase1interfaceIpv6ExcludeRangeOutputWithContext(ctx context.Context) Phase1interfaceIpv6ExcludeRangeOutput
type Phase1interfaceIpv6ExcludeRangeArray ¶
type Phase1interfaceIpv6ExcludeRangeArray []Phase1interfaceIpv6ExcludeRangeInput
func (Phase1interfaceIpv6ExcludeRangeArray) ElementType ¶
func (Phase1interfaceIpv6ExcludeRangeArray) ElementType() reflect.Type
func (Phase1interfaceIpv6ExcludeRangeArray) ToPhase1interfaceIpv6ExcludeRangeArrayOutput ¶
func (i Phase1interfaceIpv6ExcludeRangeArray) ToPhase1interfaceIpv6ExcludeRangeArrayOutput() Phase1interfaceIpv6ExcludeRangeArrayOutput
func (Phase1interfaceIpv6ExcludeRangeArray) ToPhase1interfaceIpv6ExcludeRangeArrayOutputWithContext ¶
func (i Phase1interfaceIpv6ExcludeRangeArray) ToPhase1interfaceIpv6ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1interfaceIpv6ExcludeRangeArrayOutput
type Phase1interfaceIpv6ExcludeRangeArrayInput ¶
type Phase1interfaceIpv6ExcludeRangeArrayInput interface { pulumi.Input ToPhase1interfaceIpv6ExcludeRangeArrayOutput() Phase1interfaceIpv6ExcludeRangeArrayOutput ToPhase1interfaceIpv6ExcludeRangeArrayOutputWithContext(context.Context) Phase1interfaceIpv6ExcludeRangeArrayOutput }
Phase1interfaceIpv6ExcludeRangeArrayInput is an input type that accepts Phase1interfaceIpv6ExcludeRangeArray and Phase1interfaceIpv6ExcludeRangeArrayOutput values. You can construct a concrete instance of `Phase1interfaceIpv6ExcludeRangeArrayInput` via:
Phase1interfaceIpv6ExcludeRangeArray{ Phase1interfaceIpv6ExcludeRangeArgs{...} }
type Phase1interfaceIpv6ExcludeRangeArrayOutput ¶
type Phase1interfaceIpv6ExcludeRangeArrayOutput struct{ *pulumi.OutputState }
func (Phase1interfaceIpv6ExcludeRangeArrayOutput) ElementType ¶
func (Phase1interfaceIpv6ExcludeRangeArrayOutput) ElementType() reflect.Type
func (Phase1interfaceIpv6ExcludeRangeArrayOutput) ToPhase1interfaceIpv6ExcludeRangeArrayOutput ¶
func (o Phase1interfaceIpv6ExcludeRangeArrayOutput) ToPhase1interfaceIpv6ExcludeRangeArrayOutput() Phase1interfaceIpv6ExcludeRangeArrayOutput
func (Phase1interfaceIpv6ExcludeRangeArrayOutput) ToPhase1interfaceIpv6ExcludeRangeArrayOutputWithContext ¶
func (o Phase1interfaceIpv6ExcludeRangeArrayOutput) ToPhase1interfaceIpv6ExcludeRangeArrayOutputWithContext(ctx context.Context) Phase1interfaceIpv6ExcludeRangeArrayOutput
type Phase1interfaceIpv6ExcludeRangeInput ¶
type Phase1interfaceIpv6ExcludeRangeInput interface { pulumi.Input ToPhase1interfaceIpv6ExcludeRangeOutput() Phase1interfaceIpv6ExcludeRangeOutput ToPhase1interfaceIpv6ExcludeRangeOutputWithContext(context.Context) Phase1interfaceIpv6ExcludeRangeOutput }
Phase1interfaceIpv6ExcludeRangeInput is an input type that accepts Phase1interfaceIpv6ExcludeRangeArgs and Phase1interfaceIpv6ExcludeRangeOutput values. You can construct a concrete instance of `Phase1interfaceIpv6ExcludeRangeInput` via:
Phase1interfaceIpv6ExcludeRangeArgs{...}
type Phase1interfaceIpv6ExcludeRangeOutput ¶
type Phase1interfaceIpv6ExcludeRangeOutput struct{ *pulumi.OutputState }
func (Phase1interfaceIpv6ExcludeRangeOutput) ElementType ¶
func (Phase1interfaceIpv6ExcludeRangeOutput) ElementType() reflect.Type
func (Phase1interfaceIpv6ExcludeRangeOutput) EndIp ¶
func (o Phase1interfaceIpv6ExcludeRangeOutput) EndIp() pulumi.StringPtrOutput
End of IPv6 exclusive range.
func (Phase1interfaceIpv6ExcludeRangeOutput) Id ¶
func (o Phase1interfaceIpv6ExcludeRangeOutput) Id() pulumi.IntPtrOutput
ID.
func (Phase1interfaceIpv6ExcludeRangeOutput) StartIp ¶
func (o Phase1interfaceIpv6ExcludeRangeOutput) StartIp() pulumi.StringPtrOutput
Start of IPv6 exclusive range.
func (Phase1interfaceIpv6ExcludeRangeOutput) ToPhase1interfaceIpv6ExcludeRangeOutput ¶
func (o Phase1interfaceIpv6ExcludeRangeOutput) ToPhase1interfaceIpv6ExcludeRangeOutput() Phase1interfaceIpv6ExcludeRangeOutput
func (Phase1interfaceIpv6ExcludeRangeOutput) ToPhase1interfaceIpv6ExcludeRangeOutputWithContext ¶
func (o Phase1interfaceIpv6ExcludeRangeOutput) ToPhase1interfaceIpv6ExcludeRangeOutputWithContext(ctx context.Context) Phase1interfaceIpv6ExcludeRangeOutput
type Phase1interfaceMap ¶
type Phase1interfaceMap map[string]Phase1interfaceInput
func (Phase1interfaceMap) ElementType ¶
func (Phase1interfaceMap) ElementType() reflect.Type
func (Phase1interfaceMap) ToPhase1interfaceMapOutput ¶
func (i Phase1interfaceMap) ToPhase1interfaceMapOutput() Phase1interfaceMapOutput
func (Phase1interfaceMap) ToPhase1interfaceMapOutputWithContext ¶
func (i Phase1interfaceMap) ToPhase1interfaceMapOutputWithContext(ctx context.Context) Phase1interfaceMapOutput
type Phase1interfaceMapInput ¶
type Phase1interfaceMapInput interface { pulumi.Input ToPhase1interfaceMapOutput() Phase1interfaceMapOutput ToPhase1interfaceMapOutputWithContext(context.Context) Phase1interfaceMapOutput }
Phase1interfaceMapInput is an input type that accepts Phase1interfaceMap and Phase1interfaceMapOutput values. You can construct a concrete instance of `Phase1interfaceMapInput` via:
Phase1interfaceMap{ "key": Phase1interfaceArgs{...} }
type Phase1interfaceMapOutput ¶
type Phase1interfaceMapOutput struct{ *pulumi.OutputState }
func (Phase1interfaceMapOutput) ElementType ¶
func (Phase1interfaceMapOutput) ElementType() reflect.Type
func (Phase1interfaceMapOutput) MapIndex ¶
func (o Phase1interfaceMapOutput) MapIndex(k pulumi.StringInput) Phase1interfaceOutput
func (Phase1interfaceMapOutput) ToPhase1interfaceMapOutput ¶
func (o Phase1interfaceMapOutput) ToPhase1interfaceMapOutput() Phase1interfaceMapOutput
func (Phase1interfaceMapOutput) ToPhase1interfaceMapOutputWithContext ¶
func (o Phase1interfaceMapOutput) ToPhase1interfaceMapOutputWithContext(ctx context.Context) Phase1interfaceMapOutput
type Phase1interfaceOutput ¶
type Phase1interfaceOutput struct{ *pulumi.OutputState }
func (Phase1interfaceOutput) AcctVerify ¶
func (o Phase1interfaceOutput) AcctVerify() pulumi.StringOutput
Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) AddGwRoute ¶
func (o Phase1interfaceOutput) AddGwRoute() pulumi.StringOutput
Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) AddRoute ¶
func (o Phase1interfaceOutput) AddRoute() pulumi.StringOutput
Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`.
func (Phase1interfaceOutput) AggregateMember ¶
func (o Phase1interfaceOutput) AggregateMember() pulumi.StringOutput
Enable/disable use as an aggregate member. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) AggregateWeight ¶
func (o Phase1interfaceOutput) AggregateWeight() pulumi.IntOutput
Link weight for aggregate.
func (Phase1interfaceOutput) AssignIp ¶
func (o Phase1interfaceOutput) AssignIp() pulumi.StringOutput
Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`.
func (Phase1interfaceOutput) AssignIpFrom ¶
func (o Phase1interfaceOutput) AssignIpFrom() pulumi.StringOutput
Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`.
func (Phase1interfaceOutput) Authmethod ¶
func (o Phase1interfaceOutput) Authmethod() pulumi.StringOutput
Authentication method. Valid values: `psk`, `signature`.
func (Phase1interfaceOutput) AuthmethodRemote ¶
func (o Phase1interfaceOutput) AuthmethodRemote() pulumi.StringOutput
Authentication method (remote side). Valid values: `psk`, `signature`.
func (Phase1interfaceOutput) Authpasswd ¶
func (o Phase1interfaceOutput) Authpasswd() pulumi.StringPtrOutput
XAuth password (max 35 characters).
func (Phase1interfaceOutput) Authusr ¶
func (o Phase1interfaceOutput) Authusr() pulumi.StringOutput
XAuth user name.
func (Phase1interfaceOutput) Authusrgrp ¶
func (o Phase1interfaceOutput) Authusrgrp() pulumi.StringOutput
Authentication user group.
func (Phase1interfaceOutput) AutoDiscoveryCrossover ¶
func (o Phase1interfaceOutput) AutoDiscoveryCrossover() pulumi.StringOutput
Allow/block set-up of short-cut tunnels between different network IDs. Valid values: `allow`, `block`.
func (Phase1interfaceOutput) AutoDiscoveryForwarder ¶
func (o Phase1interfaceOutput) AutoDiscoveryForwarder() pulumi.StringOutput
Enable/disable forwarding auto-discovery short-cut messages. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) AutoDiscoveryOfferInterval ¶
func (o Phase1interfaceOutput) AutoDiscoveryOfferInterval() pulumi.IntOutput
Interval between shortcut offer messages in seconds (1 - 300, default = 5).
func (Phase1interfaceOutput) AutoDiscoveryPsk ¶
func (o Phase1interfaceOutput) AutoDiscoveryPsk() pulumi.StringOutput
Enable/disable use of pre-shared secrets for authentication of auto-discovery tunnels. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) AutoDiscoveryReceiver ¶
func (o Phase1interfaceOutput) AutoDiscoveryReceiver() pulumi.StringOutput
Enable/disable accepting auto-discovery short-cut messages. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) AutoDiscoverySender ¶
func (o Phase1interfaceOutput) AutoDiscoverySender() pulumi.StringOutput
Enable/disable sending auto-discovery short-cut messages. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) AutoDiscoveryShortcuts ¶
func (o Phase1interfaceOutput) AutoDiscoveryShortcuts() pulumi.StringOutput
Control deletion of child short-cut tunnels when the parent tunnel goes down. Valid values: `independent`, `dependent`.
func (Phase1interfaceOutput) AutoNegotiate ¶
func (o Phase1interfaceOutput) AutoNegotiate() pulumi.StringOutput
Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) AzureAdAutoconnect ¶
func (o Phase1interfaceOutput) AzureAdAutoconnect() pulumi.StringOutput
Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) BackupGateways ¶
func (o Phase1interfaceOutput) BackupGateways() Phase1interfaceBackupGatewayArrayOutput
Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below.
func (Phase1interfaceOutput) Banner ¶
func (o Phase1interfaceOutput) Banner() pulumi.StringPtrOutput
Message that unity client should display after connecting.
func (Phase1interfaceOutput) CertIdValidation ¶
func (o Phase1interfaceOutput) CertIdValidation() pulumi.StringOutput
Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) CertTrustStore ¶
func (o Phase1interfaceOutput) CertTrustStore() pulumi.StringOutput
CA certificate trust store. Valid values: `local`, `ems`.
func (Phase1interfaceOutput) Certificates ¶
func (o Phase1interfaceOutput) Certificates() Phase1interfaceCertificateArrayOutput
The names of up to 4 signed personal certificates. The structure of `certificate` block is documented below.
func (Phase1interfaceOutput) ChildlessIke ¶
func (o Phase1interfaceOutput) ChildlessIke() pulumi.StringOutput
Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) ClientAutoNegotiate ¶
func (o Phase1interfaceOutput) ClientAutoNegotiate() pulumi.StringOutput
Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`.
func (Phase1interfaceOutput) ClientKeepAlive ¶
func (o Phase1interfaceOutput) ClientKeepAlive() pulumi.StringOutput
Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`.
func (Phase1interfaceOutput) Comments ¶
func (o Phase1interfaceOutput) Comments() pulumi.StringPtrOutput
Comment.
func (Phase1interfaceOutput) DefaultGw ¶
func (o Phase1interfaceOutput) DefaultGw() pulumi.StringOutput
IPv4 address of default route gateway to use for traffic exiting the interface.
func (Phase1interfaceOutput) DefaultGwPriority ¶
func (o Phase1interfaceOutput) DefaultGwPriority() pulumi.IntOutput
Priority for default gateway route. A higher priority number signifies a less preferred route.
func (Phase1interfaceOutput) DevId ¶
func (o Phase1interfaceOutput) DevId() pulumi.StringOutput
Device ID carried by the device ID notification.
func (Phase1interfaceOutput) DevIdNotification ¶
func (o Phase1interfaceOutput) DevIdNotification() pulumi.StringOutput
Enable/disable device ID notification. Valid values: `disable`, `enable`.
func (Phase1interfaceOutput) Dhcp6RaLinkaddr ¶
func (o Phase1interfaceOutput) Dhcp6RaLinkaddr() pulumi.StringOutput
Relay agent IPv6 link address to use in DHCP6 requests.
func (Phase1interfaceOutput) DhcpRaGiaddr ¶
func (o Phase1interfaceOutput) DhcpRaGiaddr() pulumi.StringOutput
Relay agent gateway IP address to use in the giaddr field of DHCP requests.
func (Phase1interfaceOutput) Dhgrp ¶
func (o Phase1interfaceOutput) Dhgrp() pulumi.StringOutput
DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
func (Phase1interfaceOutput) DigitalSignatureAuth ¶
func (o Phase1interfaceOutput) DigitalSignatureAuth() pulumi.StringOutput
Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) Distance ¶
func (o Phase1interfaceOutput) Distance() pulumi.IntOutput
Distance for routes added by IKE (1 - 255).
func (Phase1interfaceOutput) DnsMode ¶
func (o Phase1interfaceOutput) DnsMode() pulumi.StringOutput
DNS server mode. Valid values: `manual`, `auto`.
func (Phase1interfaceOutput) Domain ¶
func (o Phase1interfaceOutput) Domain() pulumi.StringOutput
Instruct unity clients about the default DNS domain.
func (Phase1interfaceOutput) Dpd ¶
func (o Phase1interfaceOutput) Dpd() pulumi.StringOutput
Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`.
func (Phase1interfaceOutput) DpdRetrycount ¶
func (o Phase1interfaceOutput) DpdRetrycount() pulumi.IntOutput
Number of DPD retry attempts.
func (Phase1interfaceOutput) DpdRetryinterval ¶
func (o Phase1interfaceOutput) DpdRetryinterval() pulumi.StringOutput
DPD retry interval.
func (Phase1interfaceOutput) DynamicSortSubtable ¶
func (o Phase1interfaceOutput) DynamicSortSubtable() pulumi.StringPtrOutput
Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
func (Phase1interfaceOutput) Eap ¶
func (o Phase1interfaceOutput) Eap() pulumi.StringOutput
Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) EapCertAuth ¶
func (o Phase1interfaceOutput) EapCertAuth() pulumi.StringOutput
Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) EapExcludePeergrp ¶
func (o Phase1interfaceOutput) EapExcludePeergrp() pulumi.StringOutput
Peer group excluded from EAP authentication.
func (Phase1interfaceOutput) EapIdentity ¶
func (o Phase1interfaceOutput) EapIdentity() pulumi.StringOutput
IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`.
func (Phase1interfaceOutput) ElementType ¶
func (Phase1interfaceOutput) ElementType() reflect.Type
func (Phase1interfaceOutput) EmsSnCheck ¶
func (o Phase1interfaceOutput) EmsSnCheck() pulumi.StringOutput
Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) EncapLocalGw4 ¶
func (o Phase1interfaceOutput) EncapLocalGw4() pulumi.StringOutput
Local IPv4 address of GRE/VXLAN tunnel.
func (Phase1interfaceOutput) EncapLocalGw6 ¶
func (o Phase1interfaceOutput) EncapLocalGw6() pulumi.StringOutput
Local IPv6 address of GRE/VXLAN tunnel.
func (Phase1interfaceOutput) EncapRemoteGw4 ¶
func (o Phase1interfaceOutput) EncapRemoteGw4() pulumi.StringOutput
Remote IPv4 address of GRE/VXLAN tunnel.
func (Phase1interfaceOutput) EncapRemoteGw6 ¶
func (o Phase1interfaceOutput) EncapRemoteGw6() pulumi.StringOutput
Remote IPv6 address of GRE/VXLAN tunnel.
func (Phase1interfaceOutput) Encapsulation ¶
func (o Phase1interfaceOutput) Encapsulation() pulumi.StringOutput
Enable/disable GRE/VXLAN encapsulation.
func (Phase1interfaceOutput) EncapsulationAddress ¶
func (o Phase1interfaceOutput) EncapsulationAddress() pulumi.StringOutput
Source for GRE/VXLAN tunnel address. Valid values: `ike`, `ipv4`, `ipv6`.
func (Phase1interfaceOutput) EnforceUniqueId ¶
func (o Phase1interfaceOutput) EnforceUniqueId() pulumi.StringOutput
Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`.
func (Phase1interfaceOutput) Esn ¶
func (o Phase1interfaceOutput) Esn() pulumi.StringOutput
Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`.
func (Phase1interfaceOutput) ExchangeFgtDeviceId ¶
func (o Phase1interfaceOutput) ExchangeFgtDeviceId() pulumi.StringOutput
Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) ExchangeInterfaceIp ¶
func (o Phase1interfaceOutput) ExchangeInterfaceIp() pulumi.StringOutput
Enable/disable exchange of IPsec interface IP address. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) ExchangeIpAddr4 ¶
func (o Phase1interfaceOutput) ExchangeIpAddr4() pulumi.StringOutput
IPv4 address to exchange with peers.
func (Phase1interfaceOutput) ExchangeIpAddr6 ¶
func (o Phase1interfaceOutput) ExchangeIpAddr6() pulumi.StringOutput
IPv6 address to exchange with peers
func (Phase1interfaceOutput) FallbackTcpThreshold ¶
func (o Phase1interfaceOutput) FallbackTcpThreshold() pulumi.IntOutput
Timeout in seconds before falling back IKE/IPsec traffic to tcp.
func (Phase1interfaceOutput) FecBase ¶
func (o Phase1interfaceOutput) FecBase() pulumi.IntOutput
Number of base Forward Error Correction packets (1 - 100).
func (Phase1interfaceOutput) FecCodec ¶
func (o Phase1interfaceOutput) FecCodec() pulumi.IntOutput
ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor).
func (Phase1interfaceOutput) FecCodecString ¶
func (o Phase1interfaceOutput) FecCodecString() pulumi.StringOutput
Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`.
func (Phase1interfaceOutput) FecEgress ¶
func (o Phase1interfaceOutput) FecEgress() pulumi.StringOutput
Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) FecHealthCheck ¶
func (o Phase1interfaceOutput) FecHealthCheck() pulumi.StringOutput
SD-WAN health check.
func (Phase1interfaceOutput) FecIngress ¶
func (o Phase1interfaceOutput) FecIngress() pulumi.StringOutput
Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) FecMappingProfile ¶
func (o Phase1interfaceOutput) FecMappingProfile() pulumi.StringOutput
Forward Error Correction (FEC) mapping profile.
func (Phase1interfaceOutput) FecReceiveTimeout ¶
func (o Phase1interfaceOutput) FecReceiveTimeout() pulumi.IntOutput
Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000).
func (Phase1interfaceOutput) FecRedundant ¶
func (o Phase1interfaceOutput) FecRedundant() pulumi.IntOutput
Number of redundant Forward Error Correction packets (1 - 100).
func (Phase1interfaceOutput) FecSendTimeout ¶
func (o Phase1interfaceOutput) FecSendTimeout() pulumi.IntOutput
Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000).
func (Phase1interfaceOutput) FgspSync ¶
func (o Phase1interfaceOutput) FgspSync() pulumi.StringOutput
Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) ForticlientEnforcement ¶
func (o Phase1interfaceOutput) ForticlientEnforcement() pulumi.StringOutput
Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) FortinetEsp ¶
func (o Phase1interfaceOutput) FortinetEsp() pulumi.StringOutput
Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) Fragmentation ¶
func (o Phase1interfaceOutput) Fragmentation() pulumi.StringOutput
Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) FragmentationMtu ¶
func (o Phase1interfaceOutput) FragmentationMtu() pulumi.IntOutput
IKE fragmentation MTU (500 - 16000).
func (Phase1interfaceOutput) GetAllTables ¶
func (o Phase1interfaceOutput) GetAllTables() pulumi.StringPtrOutput
Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
func (Phase1interfaceOutput) GroupAuthentication ¶
func (o Phase1interfaceOutput) GroupAuthentication() pulumi.StringOutput
Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) GroupAuthenticationSecret ¶
func (o Phase1interfaceOutput) GroupAuthenticationSecret() pulumi.StringPtrOutput
Password for IKEv2 IDi group authentication. (ASCII string or hexadecimal indicated by a leading 0x.)
func (Phase1interfaceOutput) HaSyncEspSeqno ¶
func (o Phase1interfaceOutput) HaSyncEspSeqno() pulumi.StringOutput
Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) IdleTimeout ¶
func (o Phase1interfaceOutput) IdleTimeout() pulumi.StringOutput
Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) IdleTimeoutinterval ¶
func (o Phase1interfaceOutput) IdleTimeoutinterval() pulumi.IntOutput
IPsec tunnel idle timeout in minutes (5 - 43200).
func (Phase1interfaceOutput) IkeVersion ¶
func (o Phase1interfaceOutput) IkeVersion() pulumi.StringOutput
IKE protocol version. Valid values: `1`, `2`.
func (Phase1interfaceOutput) InboundDscpCopy ¶
func (o Phase1interfaceOutput) InboundDscpCopy() pulumi.StringOutput
Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) IncludeLocalLan ¶
func (o Phase1interfaceOutput) IncludeLocalLan() pulumi.StringOutput
Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`.
func (Phase1interfaceOutput) Interface ¶
func (o Phase1interfaceOutput) Interface() pulumi.StringOutput
Local physical, aggregate, or VLAN outgoing interface.
func (Phase1interfaceOutput) InternalDomainLists ¶
func (o Phase1interfaceOutput) InternalDomainLists() Phase1interfaceInternalDomainListArrayOutput
One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below.
func (Phase1interfaceOutput) IpDelayInterval ¶
func (o Phase1interfaceOutput) IpDelayInterval() pulumi.IntOutput
IP address reuse delay interval in seconds (0 - 28800).
func (Phase1interfaceOutput) IpFragmentation ¶
func (o Phase1interfaceOutput) IpFragmentation() pulumi.StringOutput
Determine whether IP packets are fragmented before or after IPsec encapsulation. Valid values: `pre-encapsulation`, `post-encapsulation`.
func (Phase1interfaceOutput) IpVersion ¶
func (o Phase1interfaceOutput) IpVersion() pulumi.StringOutput
IP version to use for VPN interface. Valid values: `4`, `6`.
func (Phase1interfaceOutput) Ipv4DnsServer1 ¶
func (o Phase1interfaceOutput) Ipv4DnsServer1() pulumi.StringOutput
IPv4 DNS server 1.
func (Phase1interfaceOutput) Ipv4DnsServer2 ¶
func (o Phase1interfaceOutput) Ipv4DnsServer2() pulumi.StringOutput
IPv4 DNS server 2.
func (Phase1interfaceOutput) Ipv4DnsServer3 ¶
func (o Phase1interfaceOutput) Ipv4DnsServer3() pulumi.StringOutput
IPv4 DNS server 3.
func (Phase1interfaceOutput) Ipv4EndIp ¶
func (o Phase1interfaceOutput) Ipv4EndIp() pulumi.StringOutput
End of IPv4 range.
func (Phase1interfaceOutput) Ipv4ExcludeRanges ¶
func (o Phase1interfaceOutput) Ipv4ExcludeRanges() Phase1interfaceIpv4ExcludeRangeArrayOutput
Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below.
func (Phase1interfaceOutput) Ipv4Name ¶
func (o Phase1interfaceOutput) Ipv4Name() pulumi.StringOutput
IPv4 address name.
func (Phase1interfaceOutput) Ipv4Netmask ¶
func (o Phase1interfaceOutput) Ipv4Netmask() pulumi.StringOutput
IPv4 Netmask.
func (Phase1interfaceOutput) Ipv4SplitExclude ¶
func (o Phase1interfaceOutput) Ipv4SplitExclude() pulumi.StringOutput
IPv4 subnets that should not be sent over the IPsec tunnel.
func (Phase1interfaceOutput) Ipv4SplitInclude ¶
func (o Phase1interfaceOutput) Ipv4SplitInclude() pulumi.StringOutput
IPv4 split-include subnets.
func (Phase1interfaceOutput) Ipv4StartIp ¶
func (o Phase1interfaceOutput) Ipv4StartIp() pulumi.StringOutput
Start of IPv4 range.
func (Phase1interfaceOutput) Ipv4WinsServer1 ¶
func (o Phase1interfaceOutput) Ipv4WinsServer1() pulumi.StringOutput
WINS server 1.
func (Phase1interfaceOutput) Ipv4WinsServer2 ¶
func (o Phase1interfaceOutput) Ipv4WinsServer2() pulumi.StringOutput
WINS server 2.
func (Phase1interfaceOutput) Ipv6DnsServer1 ¶
func (o Phase1interfaceOutput) Ipv6DnsServer1() pulumi.StringOutput
IPv6 DNS server 1.
func (Phase1interfaceOutput) Ipv6DnsServer2 ¶
func (o Phase1interfaceOutput) Ipv6DnsServer2() pulumi.StringOutput
IPv6 DNS server 2.
func (Phase1interfaceOutput) Ipv6DnsServer3 ¶
func (o Phase1interfaceOutput) Ipv6DnsServer3() pulumi.StringOutput
IPv6 DNS server 3.
func (Phase1interfaceOutput) Ipv6EndIp ¶
func (o Phase1interfaceOutput) Ipv6EndIp() pulumi.StringOutput
End of IPv6 range.
func (Phase1interfaceOutput) Ipv6ExcludeRanges ¶
func (o Phase1interfaceOutput) Ipv6ExcludeRanges() Phase1interfaceIpv6ExcludeRangeArrayOutput
Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below.
func (Phase1interfaceOutput) Ipv6Name ¶
func (o Phase1interfaceOutput) Ipv6Name() pulumi.StringOutput
IPv6 address name.
func (Phase1interfaceOutput) Ipv6Prefix ¶
func (o Phase1interfaceOutput) Ipv6Prefix() pulumi.IntOutput
IPv6 prefix.
func (Phase1interfaceOutput) Ipv6SplitExclude ¶
func (o Phase1interfaceOutput) Ipv6SplitExclude() pulumi.StringOutput
IPv6 subnets that should not be sent over the IPsec tunnel.
func (Phase1interfaceOutput) Ipv6SplitInclude ¶
func (o Phase1interfaceOutput) Ipv6SplitInclude() pulumi.StringOutput
IPv6 split-include subnets.
func (Phase1interfaceOutput) Ipv6StartIp ¶
func (o Phase1interfaceOutput) Ipv6StartIp() pulumi.StringOutput
Start of IPv6 range.
func (Phase1interfaceOutput) Keepalive ¶
func (o Phase1interfaceOutput) Keepalive() pulumi.IntOutput
NAT-T keep alive interval.
func (Phase1interfaceOutput) Keylife ¶
func (o Phase1interfaceOutput) Keylife() pulumi.IntOutput
Time to wait in seconds before phase 1 encryption key expires.
func (Phase1interfaceOutput) Kms ¶
func (o Phase1interfaceOutput) Kms() pulumi.StringOutput
Key Management Services server.
func (Phase1interfaceOutput) LinkCost ¶
func (o Phase1interfaceOutput) LinkCost() pulumi.IntOutput
VPN tunnel underlay link cost.
func (Phase1interfaceOutput) LocalGw ¶
func (o Phase1interfaceOutput) LocalGw() pulumi.StringOutput
IPv4 address of the local gateway's external interface.
func (Phase1interfaceOutput) LocalGw6 ¶
func (o Phase1interfaceOutput) LocalGw6() pulumi.StringOutput
IPv6 address of the local gateway's external interface.
func (Phase1interfaceOutput) Localid ¶
func (o Phase1interfaceOutput) Localid() pulumi.StringOutput
Local ID.
func (Phase1interfaceOutput) LocalidType ¶
func (o Phase1interfaceOutput) LocalidType() pulumi.StringOutput
Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`.
func (Phase1interfaceOutput) LoopbackAsymroute ¶
func (o Phase1interfaceOutput) LoopbackAsymroute() pulumi.StringOutput
Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) MeshSelectorType ¶
func (o Phase1interfaceOutput) MeshSelectorType() pulumi.StringOutput
Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`.
func (Phase1interfaceOutput) Mode ¶
func (o Phase1interfaceOutput) Mode() pulumi.StringOutput
The ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`.
func (Phase1interfaceOutput) ModeCfg ¶
func (o Phase1interfaceOutput) ModeCfg() pulumi.StringOutput
Enable/disable configuration method. Valid values: `disable`, `enable`.
func (Phase1interfaceOutput) ModeCfgAllowClientSelector ¶
func (o Phase1interfaceOutput) ModeCfgAllowClientSelector() pulumi.StringOutput
Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`.
func (Phase1interfaceOutput) Monitor ¶
func (o Phase1interfaceOutput) Monitor() pulumi.StringOutput
IPsec interface as backup for primary interface.
func (Phase1interfaceOutput) MonitorHoldDownDelay ¶
func (o Phase1interfaceOutput) MonitorHoldDownDelay() pulumi.IntOutput
Time to wait in seconds before recovery once primary re-establishes.
func (Phase1interfaceOutput) MonitorHoldDownTime ¶
func (o Phase1interfaceOutput) MonitorHoldDownTime() pulumi.StringOutput
Time of day at which to fail back to primary after it re-establishes.
func (Phase1interfaceOutput) MonitorHoldDownType ¶
func (o Phase1interfaceOutput) MonitorHoldDownType() pulumi.StringOutput
Recovery time method when primary interface re-establishes. Valid values: `immediate`, `delay`, `time`.
func (Phase1interfaceOutput) MonitorHoldDownWeekday ¶
func (o Phase1interfaceOutput) MonitorHoldDownWeekday() pulumi.StringOutput
Day of the week to recover once primary re-establishes. Valid values: `everyday`, `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`.
func (Phase1interfaceOutput) MonitorMin ¶
func (o Phase1interfaceOutput) MonitorMin() pulumi.IntOutput
Minimum number of links to become degraded before activating this interface. Zero (0) means all links must be down before activating this interface.
func (Phase1interfaceOutput) Name ¶
func (o Phase1interfaceOutput) Name() pulumi.StringOutput
IPsec remote gateway name.
func (Phase1interfaceOutput) Nattraversal ¶
func (o Phase1interfaceOutput) Nattraversal() pulumi.StringOutput
Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`.
func (Phase1interfaceOutput) NegotiateTimeout ¶
func (o Phase1interfaceOutput) NegotiateTimeout() pulumi.IntOutput
IKE SA negotiation timeout in seconds (1 - 300).
func (Phase1interfaceOutput) NetDevice ¶
func (o Phase1interfaceOutput) NetDevice() pulumi.StringOutput
Enable/disable kernel device creation. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) NetworkId ¶
func (o Phase1interfaceOutput) NetworkId() pulumi.IntOutput
VPN gateway network ID.
func (Phase1interfaceOutput) NetworkOverlay ¶
func (o Phase1interfaceOutput) NetworkOverlay() pulumi.StringOutput
Enable/disable network overlays. Valid values: `disable`, `enable`.
func (Phase1interfaceOutput) NpuOffload ¶
func (o Phase1interfaceOutput) NpuOffload() pulumi.StringOutput
Enable/disable offloading NPU. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) PacketRedistribution ¶
func (o Phase1interfaceOutput) PacketRedistribution() pulumi.StringOutput
Enable/disable packet distribution (RPS) on the IPsec interface. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) PassiveMode ¶
func (o Phase1interfaceOutput) PassiveMode() pulumi.StringOutput
Enable/disable IPsec passive mode for static tunnels. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) Peer ¶
func (o Phase1interfaceOutput) Peer() pulumi.StringOutput
Accept this peer certificate.
func (Phase1interfaceOutput) Peergrp ¶
func (o Phase1interfaceOutput) Peergrp() pulumi.StringOutput
Accept this peer certificate group.
func (Phase1interfaceOutput) Peerid ¶
func (o Phase1interfaceOutput) Peerid() pulumi.StringOutput
Accept this peer identity.
func (Phase1interfaceOutput) Peertype ¶
func (o Phase1interfaceOutput) Peertype() pulumi.StringOutput
Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`.
func (Phase1interfaceOutput) Ppk ¶
func (o Phase1interfaceOutput) Ppk() pulumi.StringOutput
Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`.
func (Phase1interfaceOutput) PpkIdentity ¶
func (o Phase1interfaceOutput) PpkIdentity() pulumi.StringOutput
IKEv2 Postquantum Preshared Key Identity.
func (Phase1interfaceOutput) PpkSecret ¶
func (o Phase1interfaceOutput) PpkSecret() pulumi.StringPtrOutput
IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x).
func (Phase1interfaceOutput) Priority ¶
func (o Phase1interfaceOutput) Priority() pulumi.IntOutput
Priority for routes added by IKE (0 - 4294967295).
func (Phase1interfaceOutput) Proposal ¶
func (o Phase1interfaceOutput) Proposal() pulumi.StringOutput
Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
func (Phase1interfaceOutput) Psksecret ¶
func (o Phase1interfaceOutput) Psksecret() pulumi.StringPtrOutput
Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
func (Phase1interfaceOutput) PsksecretRemote ¶
func (o Phase1interfaceOutput) PsksecretRemote() pulumi.StringPtrOutput
Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x).
func (Phase1interfaceOutput) Qkd ¶
func (o Phase1interfaceOutput) Qkd() pulumi.StringOutput
Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`.
func (Phase1interfaceOutput) QkdProfile ¶
func (o Phase1interfaceOutput) QkdProfile() pulumi.StringOutput
Quantum Key Distribution (QKD) server profile.
func (Phase1interfaceOutput) Reauth ¶
func (o Phase1interfaceOutput) Reauth() pulumi.StringOutput
Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`.
func (Phase1interfaceOutput) Rekey ¶
func (o Phase1interfaceOutput) Rekey() pulumi.StringOutput
Enable/disable phase1 rekey. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) RemoteGw ¶
func (o Phase1interfaceOutput) RemoteGw() pulumi.StringOutput
IPv4 address of the remote gateway's external interface.
func (Phase1interfaceOutput) RemoteGw6 ¶
func (o Phase1interfaceOutput) RemoteGw6() pulumi.StringOutput
IPv6 address of the remote gateway's external interface.
func (Phase1interfaceOutput) RemotegwDdns ¶
func (o Phase1interfaceOutput) RemotegwDdns() pulumi.StringOutput
Domain name of remote gateway (eg. name.DDNS.com).
func (Phase1interfaceOutput) RsaSignatureFormat ¶
func (o Phase1interfaceOutput) RsaSignatureFormat() pulumi.StringOutput
Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`.
func (Phase1interfaceOutput) RsaSignatureHashOverride ¶
func (o Phase1interfaceOutput) RsaSignatureHashOverride() pulumi.StringOutput
Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) SavePassword ¶
func (o Phase1interfaceOutput) SavePassword() pulumi.StringOutput
Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`.
func (Phase1interfaceOutput) SendCertChain ¶
func (o Phase1interfaceOutput) SendCertChain() pulumi.StringOutput
Enable/disable sending certificate chain. Valid values: `enable`, `disable`.
func (Phase1interfaceOutput) SignatureHashAlg ¶
func (o Phase1interfaceOutput) SignatureHashAlg() pulumi.StringOutput
Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`.
func (Phase1interfaceOutput) SplitIncludeService ¶
func (o Phase1interfaceOutput) SplitIncludeService() pulumi.StringOutput
Split-include services.
func (Phase1interfaceOutput) SuiteB ¶
func (o Phase1interfaceOutput) SuiteB() pulumi.StringOutput
Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`.
func (Phase1interfaceOutput) ToPhase1interfaceOutput ¶
func (o Phase1interfaceOutput) ToPhase1interfaceOutput() Phase1interfaceOutput
func (Phase1interfaceOutput) ToPhase1interfaceOutputWithContext ¶
func (o Phase1interfaceOutput) ToPhase1interfaceOutputWithContext(ctx context.Context) Phase1interfaceOutput
func (Phase1interfaceOutput) Transport ¶
func (o Phase1interfaceOutput) Transport() pulumi.StringOutput
Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`.
func (Phase1interfaceOutput) TunnelSearch ¶
func (o Phase1interfaceOutput) TunnelSearch() pulumi.StringOutput
Tunnel search method for when the interface is shared. Valid values: `selectors`, `nexthop`.
func (Phase1interfaceOutput) Type ¶
func (o Phase1interfaceOutput) Type() pulumi.StringOutput
Remote gateway type. Valid values: `static`, `dynamic`, `ddns`.
func (Phase1interfaceOutput) UnitySupport ¶
func (o Phase1interfaceOutput) UnitySupport() pulumi.StringOutput
Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`.
func (Phase1interfaceOutput) Usrgrp ¶
func (o Phase1interfaceOutput) Usrgrp() pulumi.StringOutput
User group name for dialup peers.
func (Phase1interfaceOutput) Vdomparam ¶
func (o Phase1interfaceOutput) Vdomparam() pulumi.StringPtrOutput
Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
func (Phase1interfaceOutput) Vni ¶
func (o Phase1interfaceOutput) Vni() pulumi.IntOutput
VNI of VXLAN tunnel.
func (Phase1interfaceOutput) WizardType ¶
func (o Phase1interfaceOutput) WizardType() pulumi.StringOutput
GUI VPN Wizard Type.
func (Phase1interfaceOutput) Xauthtype ¶
func (o Phase1interfaceOutput) Xauthtype() pulumi.StringOutput
XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`.
type Phase1interfaceState ¶
type Phase1interfaceState struct { // Enable/disable verification of RADIUS accounting record. Valid values: `enable`, `disable`. AcctVerify pulumi.StringPtrInput // Enable/disable automatically add a route to the remote gateway. Valid values: `enable`, `disable`. AddGwRoute pulumi.StringPtrInput // Enable/disable control addition of a route to peer destination selector. Valid values: `disable`, `enable`. AddRoute pulumi.StringPtrInput // Enable/disable use as an aggregate member. Valid values: `enable`, `disable`. AggregateMember pulumi.StringPtrInput // Link weight for aggregate. AggregateWeight pulumi.IntPtrInput // Enable/disable assignment of IP to IPsec interface via configuration method. Valid values: `disable`, `enable`. AssignIp pulumi.StringPtrInput // Method by which the IP address will be assigned. Valid values: `range`, `usrgrp`, `dhcp`, `name`. AssignIpFrom pulumi.StringPtrInput // Authentication method. Valid values: `psk`, `signature`. Authmethod pulumi.StringPtrInput // Authentication method (remote side). Valid values: `psk`, `signature`. AuthmethodRemote pulumi.StringPtrInput // XAuth password (max 35 characters). Authpasswd pulumi.StringPtrInput // XAuth user name. Authusr pulumi.StringPtrInput // Authentication user group. Authusrgrp pulumi.StringPtrInput // Allow/block set-up of short-cut tunnels between different network IDs. Valid values: `allow`, `block`. AutoDiscoveryCrossover pulumi.StringPtrInput // Enable/disable forwarding auto-discovery short-cut messages. Valid values: `enable`, `disable`. AutoDiscoveryForwarder pulumi.StringPtrInput // Interval between shortcut offer messages in seconds (1 - 300, default = 5). AutoDiscoveryOfferInterval pulumi.IntPtrInput // Enable/disable use of pre-shared secrets for authentication of auto-discovery tunnels. Valid values: `enable`, `disable`. AutoDiscoveryPsk pulumi.StringPtrInput // Enable/disable accepting auto-discovery short-cut messages. Valid values: `enable`, `disable`. AutoDiscoveryReceiver pulumi.StringPtrInput // Enable/disable sending auto-discovery short-cut messages. Valid values: `enable`, `disable`. AutoDiscoverySender pulumi.StringPtrInput // Control deletion of child short-cut tunnels when the parent tunnel goes down. Valid values: `independent`, `dependent`. AutoDiscoveryShortcuts pulumi.StringPtrInput // Enable/disable automatic initiation of IKE SA negotiation. Valid values: `enable`, `disable`. AutoNegotiate pulumi.StringPtrInput // Enable/disable Azure AD Auto-Connect for FortiClient. Valid values: `enable`, `disable`. AzureAdAutoconnect pulumi.StringPtrInput // Instruct unity clients about the backup gateway address(es). The structure of `backupGateway` block is documented below. BackupGateways Phase1interfaceBackupGatewayArrayInput // Message that unity client should display after connecting. Banner pulumi.StringPtrInput // Enable/disable cross validation of peer ID and the identity in the peer's certificate as specified in RFC 4945. Valid values: `enable`, `disable`. CertIdValidation pulumi.StringPtrInput // CA certificate trust store. Valid values: `local`, `ems`. CertTrustStore pulumi.StringPtrInput // The names of up to 4 signed personal certificates. The structure of `certificate` block is documented below. Certificates Phase1interfaceCertificateArrayInput // Enable/disable childless IKEv2 initiation (RFC 6023). Valid values: `enable`, `disable`. ChildlessIke pulumi.StringPtrInput // Enable/disable allowing the VPN client to bring up the tunnel when there is no traffic. Valid values: `disable`, `enable`. ClientAutoNegotiate pulumi.StringPtrInput // Enable/disable allowing the VPN client to keep the tunnel up when there is no traffic. Valid values: `disable`, `enable`. ClientKeepAlive pulumi.StringPtrInput // Comment. Comments pulumi.StringPtrInput // IPv4 address of default route gateway to use for traffic exiting the interface. DefaultGw pulumi.StringPtrInput // Priority for default gateway route. A higher priority number signifies a less preferred route. DefaultGwPriority pulumi.IntPtrInput // Device ID carried by the device ID notification. DevId pulumi.StringPtrInput // Enable/disable device ID notification. Valid values: `disable`, `enable`. DevIdNotification pulumi.StringPtrInput // Relay agent IPv6 link address to use in DHCP6 requests. Dhcp6RaLinkaddr pulumi.StringPtrInput // Relay agent gateway IP address to use in the giaddr field of DHCP requests. DhcpRaGiaddr pulumi.StringPtrInput // DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`. Dhgrp pulumi.StringPtrInput // Enable/disable IKEv2 Digital Signature Authentication (RFC 7427). Valid values: `enable`, `disable`. DigitalSignatureAuth pulumi.StringPtrInput // Distance for routes added by IKE (1 - 255). Distance pulumi.IntPtrInput // DNS server mode. Valid values: `manual`, `auto`. DnsMode pulumi.StringPtrInput // Instruct unity clients about the default DNS domain. Domain pulumi.StringPtrInput // Dead Peer Detection mode. Valid values: `disable`, `on-idle`, `on-demand`. Dpd pulumi.StringPtrInput // Number of DPD retry attempts. DpdRetrycount pulumi.IntPtrInput // DPD retry interval. DpdRetryinterval pulumi.StringPtrInput // Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ]. DynamicSortSubtable pulumi.StringPtrInput // Enable/disable IKEv2 EAP authentication. Valid values: `enable`, `disable`. Eap pulumi.StringPtrInput // Enable/disable peer certificate authentication in addition to EAP if peer is a FortiClient endpoint. Valid values: `enable`, `disable`. EapCertAuth pulumi.StringPtrInput // Peer group excluded from EAP authentication. EapExcludePeergrp pulumi.StringPtrInput // IKEv2 EAP peer identity type. Valid values: `use-id-payload`, `send-request`. EapIdentity pulumi.StringPtrInput // Enable/disable verification of EMS serial number. Valid values: `enable`, `disable`. EmsSnCheck pulumi.StringPtrInput // Local IPv4 address of GRE/VXLAN tunnel. EncapLocalGw4 pulumi.StringPtrInput // Local IPv6 address of GRE/VXLAN tunnel. EncapLocalGw6 pulumi.StringPtrInput // Remote IPv4 address of GRE/VXLAN tunnel. EncapRemoteGw4 pulumi.StringPtrInput // Remote IPv6 address of GRE/VXLAN tunnel. EncapRemoteGw6 pulumi.StringPtrInput // Enable/disable GRE/VXLAN encapsulation. Encapsulation pulumi.StringPtrInput // Source for GRE/VXLAN tunnel address. Valid values: `ike`, `ipv4`, `ipv6`. EncapsulationAddress pulumi.StringPtrInput // Enable/disable peer ID uniqueness check. Valid values: `disable`, `keep-new`, `keep-old`. EnforceUniqueId pulumi.StringPtrInput // Extended sequence number (ESN) negotiation. Valid values: `require`, `allow`, `disable`. Esn pulumi.StringPtrInput // Enable/disable device identifier exchange with peer FortiGate units for use of VPN monitor data by FortiManager. Valid values: `enable`, `disable`. ExchangeFgtDeviceId pulumi.StringPtrInput // Enable/disable exchange of IPsec interface IP address. Valid values: `enable`, `disable`. ExchangeInterfaceIp pulumi.StringPtrInput // IPv4 address to exchange with peers. ExchangeIpAddr4 pulumi.StringPtrInput // IPv6 address to exchange with peers ExchangeIpAddr6 pulumi.StringPtrInput // Timeout in seconds before falling back IKE/IPsec traffic to tcp. FallbackTcpThreshold pulumi.IntPtrInput // Number of base Forward Error Correction packets (1 - 100). FecBase pulumi.IntPtrInput // ipsec fec encoding/decoding algorithm (0: reed-solomon, 1: xor). FecCodec pulumi.IntPtrInput // Forward Error Correction encoding/decoding algorithm. Valid values: `rs`, `xor`. FecCodecString pulumi.StringPtrInput // Enable/disable Forward Error Correction for egress IPsec traffic. Valid values: `enable`, `disable`. FecEgress pulumi.StringPtrInput // SD-WAN health check. FecHealthCheck pulumi.StringPtrInput // Enable/disable Forward Error Correction for ingress IPsec traffic. Valid values: `enable`, `disable`. FecIngress pulumi.StringPtrInput // Forward Error Correction (FEC) mapping profile. FecMappingProfile pulumi.StringPtrInput // Timeout in milliseconds before dropping Forward Error Correction packets (1 - 10000). FecReceiveTimeout pulumi.IntPtrInput // Number of redundant Forward Error Correction packets (1 - 100). FecRedundant pulumi.IntPtrInput // Timeout in milliseconds before sending Forward Error Correction packets (1 - 1000). FecSendTimeout pulumi.IntPtrInput // Enable/disable IPsec syncing of tunnels for FGSP IPsec. Valid values: `enable`, `disable`. FgspSync pulumi.StringPtrInput // Enable/disable FortiClient enforcement. Valid values: `enable`, `disable`. ForticlientEnforcement pulumi.StringPtrInput // Enable/disable Fortinet ESP encapsulaton. Valid values: `enable`, `disable`. FortinetEsp pulumi.StringPtrInput // Enable/disable fragment IKE message on re-transmission. Valid values: `enable`, `disable`. Fragmentation pulumi.StringPtrInput // IKE fragmentation MTU (500 - 16000). FragmentationMtu pulumi.IntPtrInput // Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables. GetAllTables pulumi.StringPtrInput // Enable/disable IKEv2 IDi group authentication. Valid values: `enable`, `disable`. GroupAuthentication pulumi.StringPtrInput // Password for IKEv2 IDi group authentication. (ASCII string or hexadecimal indicated by a leading 0x.) GroupAuthenticationSecret pulumi.StringPtrInput // Enable/disable sequence number jump ahead for IPsec HA. Valid values: `enable`, `disable`. HaSyncEspSeqno pulumi.StringPtrInput // Enable/disable IPsec tunnel idle timeout. Valid values: `enable`, `disable`. IdleTimeout pulumi.StringPtrInput // IPsec tunnel idle timeout in minutes (5 - 43200). IdleTimeoutinterval pulumi.IntPtrInput // IKE protocol version. Valid values: `1`, `2`. IkeVersion pulumi.StringPtrInput // Enable/disable copy the dscp in the ESP header to the inner IP Header. Valid values: `enable`, `disable`. InboundDscpCopy pulumi.StringPtrInput // Enable/disable allow local LAN access on unity clients. Valid values: `disable`, `enable`. IncludeLocalLan pulumi.StringPtrInput // Local physical, aggregate, or VLAN outgoing interface. Interface pulumi.StringPtrInput // One or more internal domain names in quotes separated by spaces. The structure of `internalDomainList` block is documented below. InternalDomainLists Phase1interfaceInternalDomainListArrayInput // IP address reuse delay interval in seconds (0 - 28800). IpDelayInterval pulumi.IntPtrInput // Determine whether IP packets are fragmented before or after IPsec encapsulation. Valid values: `pre-encapsulation`, `post-encapsulation`. IpFragmentation pulumi.StringPtrInput // IP version to use for VPN interface. Valid values: `4`, `6`. IpVersion pulumi.StringPtrInput // IPv4 DNS server 1. Ipv4DnsServer1 pulumi.StringPtrInput // IPv4 DNS server 2. Ipv4DnsServer2 pulumi.StringPtrInput // IPv4 DNS server 3. Ipv4DnsServer3 pulumi.StringPtrInput // End of IPv4 range. Ipv4EndIp pulumi.StringPtrInput // Configuration Method IPv4 exclude ranges. The structure of `ipv4ExcludeRange` block is documented below. Ipv4ExcludeRanges Phase1interfaceIpv4ExcludeRangeArrayInput // IPv4 address name. Ipv4Name pulumi.StringPtrInput // IPv4 Netmask. Ipv4Netmask pulumi.StringPtrInput // IPv4 subnets that should not be sent over the IPsec tunnel. Ipv4SplitExclude pulumi.StringPtrInput // IPv4 split-include subnets. Ipv4SplitInclude pulumi.StringPtrInput // Start of IPv4 range. Ipv4StartIp pulumi.StringPtrInput // WINS server 1. Ipv4WinsServer1 pulumi.StringPtrInput // WINS server 2. Ipv4WinsServer2 pulumi.StringPtrInput // IPv6 DNS server 1. Ipv6DnsServer1 pulumi.StringPtrInput // IPv6 DNS server 2. Ipv6DnsServer2 pulumi.StringPtrInput // IPv6 DNS server 3. Ipv6DnsServer3 pulumi.StringPtrInput // End of IPv6 range. Ipv6EndIp pulumi.StringPtrInput // Configuration method IPv6 exclude ranges. The structure of `ipv6ExcludeRange` block is documented below. Ipv6ExcludeRanges Phase1interfaceIpv6ExcludeRangeArrayInput // IPv6 address name. Ipv6Name pulumi.StringPtrInput // IPv6 prefix. Ipv6Prefix pulumi.IntPtrInput // IPv6 subnets that should not be sent over the IPsec tunnel. Ipv6SplitExclude pulumi.StringPtrInput // IPv6 split-include subnets. Ipv6SplitInclude pulumi.StringPtrInput // Start of IPv6 range. Ipv6StartIp pulumi.StringPtrInput // NAT-T keep alive interval. Keepalive pulumi.IntPtrInput // Time to wait in seconds before phase 1 encryption key expires. Keylife pulumi.IntPtrInput // Key Management Services server. Kms pulumi.StringPtrInput // VPN tunnel underlay link cost. LinkCost pulumi.IntPtrInput // IPv4 address of the local gateway's external interface. LocalGw pulumi.StringPtrInput // IPv6 address of the local gateway's external interface. LocalGw6 pulumi.StringPtrInput // Local ID. Localid pulumi.StringPtrInput // Local ID type. Valid values: `auto`, `fqdn`, `user-fqdn`, `keyid`, `address`, `asn1dn`. LocalidType pulumi.StringPtrInput // Enable/disable asymmetric routing for IKE traffic on loopback interface. Valid values: `enable`, `disable`. LoopbackAsymroute pulumi.StringPtrInput // Add selectors containing subsets of the configuration depending on traffic. Valid values: `disable`, `subnet`, `host`. MeshSelectorType pulumi.StringPtrInput // The ID protection mode used to establish a secure channel. Valid values: `aggressive`, `main`. Mode pulumi.StringPtrInput // Enable/disable configuration method. Valid values: `disable`, `enable`. ModeCfg pulumi.StringPtrInput // Enable/disable mode-cfg client to use custom phase2 selectors. Valid values: `disable`, `enable`. ModeCfgAllowClientSelector pulumi.StringPtrInput // IPsec interface as backup for primary interface. Monitor pulumi.StringPtrInput // Time to wait in seconds before recovery once primary re-establishes. MonitorHoldDownDelay pulumi.IntPtrInput // Time of day at which to fail back to primary after it re-establishes. MonitorHoldDownTime pulumi.StringPtrInput // Recovery time method when primary interface re-establishes. Valid values: `immediate`, `delay`, `time`. MonitorHoldDownType pulumi.StringPtrInput // Day of the week to recover once primary re-establishes. Valid values: `everyday`, `sunday`, `monday`, `tuesday`, `wednesday`, `thursday`, `friday`, `saturday`. MonitorHoldDownWeekday pulumi.StringPtrInput // Minimum number of links to become degraded before activating this interface. Zero (0) means all links must be down before activating this interface. MonitorMin pulumi.IntPtrInput // IPsec remote gateway name. Name pulumi.StringPtrInput // Enable/disable NAT traversal. Valid values: `enable`, `disable`, `forced`. Nattraversal pulumi.StringPtrInput // IKE SA negotiation timeout in seconds (1 - 300). NegotiateTimeout pulumi.IntPtrInput // Enable/disable kernel device creation. Valid values: `enable`, `disable`. NetDevice pulumi.StringPtrInput // VPN gateway network ID. NetworkId pulumi.IntPtrInput // Enable/disable network overlays. Valid values: `disable`, `enable`. NetworkOverlay pulumi.StringPtrInput // Enable/disable offloading NPU. Valid values: `enable`, `disable`. NpuOffload pulumi.StringPtrInput // Enable/disable packet distribution (RPS) on the IPsec interface. Valid values: `enable`, `disable`. PacketRedistribution pulumi.StringPtrInput // Enable/disable IPsec passive mode for static tunnels. Valid values: `enable`, `disable`. PassiveMode pulumi.StringPtrInput // Accept this peer certificate. Peer pulumi.StringPtrInput // Accept this peer certificate group. Peergrp pulumi.StringPtrInput // Accept this peer identity. Peerid pulumi.StringPtrInput // Accept this peer type. Valid values: `any`, `one`, `dialup`, `peer`, `peergrp`. Peertype pulumi.StringPtrInput // Enable/disable IKEv2 Postquantum Preshared Key (PPK). Valid values: `disable`, `allow`, `require`. Ppk pulumi.StringPtrInput // IKEv2 Postquantum Preshared Key Identity. PpkIdentity pulumi.StringPtrInput // IKEv2 Postquantum Preshared Key (ASCII string or hexadecimal encoded with a leading 0x). PpkSecret pulumi.StringPtrInput // Priority for routes added by IKE (0 - 4294967295). Priority pulumi.IntPtrInput // Phase1 proposal. Valid values: `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm-prfsha1`, `aes128gcm-prfsha256`, `aes128gcm-prfsha384`, `aes128gcm-prfsha512`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm-prfsha1`, `aes256gcm-prfsha256`, `aes256gcm-prfsha384`, `aes256gcm-prfsha512`, `chacha20poly1305-prfsha1`, `chacha20poly1305-prfsha256`, `chacha20poly1305-prfsha384`, `chacha20poly1305-prfsha512`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`. Proposal pulumi.StringPtrInput // Pre-shared secret for PSK authentication (ASCII string or hexadecimal encoded with a leading 0x). Psksecret pulumi.StringPtrInput // Pre-shared secret for remote side PSK authentication (ASCII string or hexadecimal encoded with a leading 0x). PsksecretRemote pulumi.StringPtrInput // Enable/disable use of Quantum Key Distribution (QKD) server. Valid values: `disable`, `allow`, `require`. Qkd pulumi.StringPtrInput // Quantum Key Distribution (QKD) server profile. QkdProfile pulumi.StringPtrInput // Enable/disable re-authentication upon IKE SA lifetime expiration. Valid values: `disable`, `enable`. Reauth pulumi.StringPtrInput // Enable/disable phase1 rekey. Valid values: `enable`, `disable`. Rekey pulumi.StringPtrInput // IPv4 address of the remote gateway's external interface. RemoteGw pulumi.StringPtrInput // IPv6 address of the remote gateway's external interface. RemoteGw6 pulumi.StringPtrInput // Domain name of remote gateway (eg. name.DDNS.com). RemotegwDdns pulumi.StringPtrInput // Digital Signature Authentication RSA signature format. Valid values: `pkcs1`, `pss`. RsaSignatureFormat pulumi.StringPtrInput // Enable/disable IKEv2 RSA signature hash algorithm override. Valid values: `enable`, `disable`. RsaSignatureHashOverride pulumi.StringPtrInput // Enable/disable saving XAuth username and password on VPN clients. Valid values: `disable`, `enable`. SavePassword pulumi.StringPtrInput // Enable/disable sending certificate chain. Valid values: `enable`, `disable`. SendCertChain pulumi.StringPtrInput // Digital Signature Authentication hash algorithms. Valid values: `sha1`, `sha2-256`, `sha2-384`, `sha2-512`. SignatureHashAlg pulumi.StringPtrInput // Split-include services. SplitIncludeService pulumi.StringPtrInput // Use Suite-B. Valid values: `disable`, `suite-b-gcm-128`, `suite-b-gcm-256`. SuiteB pulumi.StringPtrInput // Set IKE transport protocol. Valid values: `udp`, `udp-fallback-tcp`, `tcp`. Transport pulumi.StringPtrInput // Tunnel search method for when the interface is shared. Valid values: `selectors`, `nexthop`. TunnelSearch pulumi.StringPtrInput // Remote gateway type. Valid values: `static`, `dynamic`, `ddns`. Type pulumi.StringPtrInput // Enable/disable support for Cisco UNITY Configuration Method extensions. Valid values: `disable`, `enable`. UnitySupport pulumi.StringPtrInput // User group name for dialup peers. Usrgrp pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput // VNI of VXLAN tunnel. Vni pulumi.IntPtrInput // GUI VPN Wizard Type. WizardType pulumi.StringPtrInput // XAuth type. Valid values: `disable`, `client`, `pap`, `chap`, `auto`. Xauthtype pulumi.StringPtrInput }
func (Phase1interfaceState) ElementType ¶
func (Phase1interfaceState) ElementType() reflect.Type
type Phase2 ¶
type Phase2 struct { pulumi.CustomResourceState // Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`. AddRoute pulumi.StringOutput `pulumi:"addRoute"` // Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`. AutoNegotiate pulumi.StringOutput `pulumi:"autoNegotiate"` // Comment. Comments pulumi.StringPtrOutput `pulumi:"comments"` // Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`. DhcpIpsec pulumi.StringOutput `pulumi:"dhcpIpsec"` // Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`. Dhgrp pulumi.StringOutput `pulumi:"dhgrp"` // Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`. Diffserv pulumi.StringOutput `pulumi:"diffserv"` // DSCP value to be applied to the IPsec tunnel outer IP header. Diffservcode pulumi.StringOutput `pulumi:"diffservcode"` // Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`. DstAddrType pulumi.StringOutput `pulumi:"dstAddrType"` // Remote proxy ID IPv4 end. DstEndIp pulumi.StringOutput `pulumi:"dstEndIp"` // Remote proxy ID IPv6 end. DstEndIp6 pulumi.StringOutput `pulumi:"dstEndIp6"` // Remote proxy ID name. DstName pulumi.StringOutput `pulumi:"dstName"` // Remote proxy ID name. DstName6 pulumi.StringOutput `pulumi:"dstName6"` // Quick mode destination port (1 - 65535 or 0 for all). DstPort pulumi.IntOutput `pulumi:"dstPort"` // Remote proxy ID IPv4 start. DstStartIp pulumi.StringOutput `pulumi:"dstStartIp"` // Remote proxy ID IPv6 start. DstStartIp6 pulumi.StringOutput `pulumi:"dstStartIp6"` // Remote proxy ID IPv4 subnet. DstSubnet pulumi.StringOutput `pulumi:"dstSubnet"` // Remote proxy ID IPv6 subnet. DstSubnet6 pulumi.StringOutput `pulumi:"dstSubnet6"` // ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`. Encapsulation pulumi.StringOutput `pulumi:"encapsulation"` // Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`. InboundDscpCopy pulumi.StringOutput `pulumi:"inboundDscpCopy"` // Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`. InitiatorTsNarrow pulumi.StringOutput `pulumi:"initiatorTsNarrow"` // Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`. Ipv4Df pulumi.StringOutput `pulumi:"ipv4Df"` // Enable/disable keep alive. Valid values: `enable`, `disable`. Keepalive pulumi.StringOutput `pulumi:"keepalive"` // Keylife type. Valid values: `seconds`, `kbs`, `both`. KeylifeType pulumi.StringOutput `pulumi:"keylifeType"` // Phase2 key life in number of bytes of traffic (5120 - 4294967295). Keylifekbs pulumi.IntOutput `pulumi:"keylifekbs"` // Phase2 key life in time in seconds (120 - 172800). Keylifeseconds pulumi.IntOutput `pulumi:"keylifeseconds"` // Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`. L2tp pulumi.StringOutput `pulumi:"l2tp"` // IPsec tunnel name. Name pulumi.StringOutput `pulumi:"name"` // Enable/disable PFS feature. Valid values: `enable`, `disable`. Pfs pulumi.StringOutput `pulumi:"pfs"` // Phase 1 determines the options required for phase 2. Phase1name pulumi.StringOutput `pulumi:"phase1name"` // Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`. Proposal pulumi.StringOutput `pulumi:"proposal"` // Quick mode protocol selector (1 - 255 or 0 for all). Protocol pulumi.IntOutput `pulumi:"protocol"` // Enable/disable replay detection. Valid values: `enable`, `disable`. Replay pulumi.StringOutput `pulumi:"replay"` // Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`. RouteOverlap pulumi.StringOutput `pulumi:"routeOverlap"` // Match type to use when comparing selectors. Valid values: `exact`, `subset`, `auto`. SelectorMatch pulumi.StringOutput `pulumi:"selectorMatch"` // Enable/disable single source IP restriction. Valid values: `enable`, `disable`. SingleSource pulumi.StringOutput `pulumi:"singleSource"` // Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`. SrcAddrType pulumi.StringOutput `pulumi:"srcAddrType"` // Local proxy ID end. SrcEndIp pulumi.StringOutput `pulumi:"srcEndIp"` // Local proxy ID IPv6 end. SrcEndIp6 pulumi.StringOutput `pulumi:"srcEndIp6"` // Local proxy ID name. SrcName pulumi.StringOutput `pulumi:"srcName"` // Local proxy ID name. SrcName6 pulumi.StringOutput `pulumi:"srcName6"` // Quick mode source port (1 - 65535 or 0 for all). SrcPort pulumi.IntOutput `pulumi:"srcPort"` // Local proxy ID start. SrcStartIp pulumi.StringOutput `pulumi:"srcStartIp"` // Local proxy ID IPv6 start. SrcStartIp6 pulumi.StringOutput `pulumi:"srcStartIp6"` // Local proxy ID subnet. SrcSubnet pulumi.StringOutput `pulumi:"srcSubnet"` // Local proxy ID IPv6 subnet. SrcSubnet6 pulumi.StringOutput `pulumi:"srcSubnet6"` // Enable to use the FortiGate public IP as the source selector when outbound NAT is used. Valid values: `enable`, `disable`. UseNatip pulumi.StringOutput `pulumi:"useNatip"` // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"` }
Configure VPN autokey tunnel.
## Example Usage
<!--Start PulumiCodeChooser --> ```go package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi" "github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { trnamex2, err := vpn.NewPhase1(ctx, "trnamex2", &vpn.Phase1Args{ AcctVerify: pulumi.String("disable"), AddGwRoute: pulumi.String("disable"), AddRoute: pulumi.String("disable"), AssignIp: pulumi.String("enable"), AssignIpFrom: pulumi.String("range"), Authmethod: pulumi.String("psk"), AutoNegotiate: pulumi.String("enable"), CertIdValidation: pulumi.String("enable"), ChildlessIke: pulumi.String("disable"), ClientAutoNegotiate: pulumi.String("disable"), ClientKeepAlive: pulumi.String("disable"), Dhgrp: pulumi.String("14 5"), DigitalSignatureAuth: pulumi.String("disable"), Distance: pulumi.Int(15), DnsMode: pulumi.String("manual"), Dpd: pulumi.String("on-demand"), DpdRetrycount: pulumi.Int(3), DpdRetryinterval: pulumi.String("20"), Eap: pulumi.String("disable"), EapIdentity: pulumi.String("use-id-payload"), EnforceUniqueId: pulumi.String("disable"), ForticlientEnforcement: pulumi.String("disable"), Fragmentation: pulumi.String("enable"), FragmentationMtu: pulumi.Int(1200), GroupAuthentication: pulumi.String("disable"), HaSyncEspSeqno: pulumi.String("enable"), IdleTimeout: pulumi.String("disable"), IdleTimeoutinterval: pulumi.Int(15), IkeVersion: pulumi.String("1"), IncludeLocalLan: pulumi.String("disable"), Interface: pulumi.String("port4"), Ipv4DnsServer1: pulumi.String("0.0.0.0"), Ipv4DnsServer2: pulumi.String("0.0.0.0"), Ipv4DnsServer3: pulumi.String("0.0.0.0"), Ipv4EndIp: pulumi.String("0.0.0.0"), Ipv4Netmask: pulumi.String("255.255.255.255"), Ipv4StartIp: pulumi.String("0.0.0.0"), Ipv4WinsServer1: pulumi.String("0.0.0.0"), Ipv4WinsServer2: pulumi.String("0.0.0.0"), Ipv6DnsServer1: pulumi.String("::"), Ipv6DnsServer2: pulumi.String("::"), Ipv6DnsServer3: pulumi.String("::"), Ipv6EndIp: pulumi.String("::"), Ipv6Prefix: pulumi.Int(128), Ipv6StartIp: pulumi.String("::"), Keepalive: pulumi.Int(10), Keylife: pulumi.Int(86400), LocalGw: pulumi.String("0.0.0.0"), LocalidType: pulumi.String("auto"), MeshSelectorType: pulumi.String("disable"), Mode: pulumi.String("main"), ModeCfg: pulumi.String("disable"), Nattraversal: pulumi.String("enable"), NegotiateTimeout: pulumi.Int(30), Peertype: pulumi.String("any"), Ppk: pulumi.String("disable"), Priority: pulumi.Int(0), Proposal: pulumi.String("aes128-sha256 aes256-sha256 aes128-sha1 aes256-sha1"), Psksecret: pulumi.String("dewcEde2112"), Reauth: pulumi.String("disable"), Rekey: pulumi.String("enable"), RemoteGw: pulumi.String("2.1.1.1"), RsaSignatureFormat: pulumi.String("pkcs1"), SavePassword: pulumi.String("disable"), SendCertChain: pulumi.String("enable"), SignatureHashAlg: pulumi.String("sha2-512 sha2-384 sha2-256 sha1"), SuiteB: pulumi.String("disable"), Type: pulumi.String("static"), UnitySupport: pulumi.String("enable"), WizardType: pulumi.String("custom"), Xauthtype: pulumi.String("disable"), }) if err != nil { return err } _, err = vpn.NewPhase2(ctx, "trname", &vpn.Phase2Args{ AddRoute: pulumi.String("phase1"), AutoNegotiate: pulumi.String("disable"), DhcpIpsec: pulumi.String("disable"), Dhgrp: pulumi.String("14 5"), DstAddrType: pulumi.String("subnet"), DstEndIp: pulumi.String("0.0.0.0"), DstEndIp6: pulumi.String("::"), DstPort: pulumi.Int(0), DstStartIp: pulumi.String("0.0.0.0"), DstStartIp6: pulumi.String("::"), DstSubnet: pulumi.String("0.0.0.0 0.0.0.0"), DstSubnet6: pulumi.String("::/0"), Encapsulation: pulumi.String("tunnel-mode"), Keepalive: pulumi.String("disable"), KeylifeType: pulumi.String("seconds"), Keylifekbs: pulumi.Int(5120), Keylifeseconds: pulumi.Int(43200), L2tp: pulumi.String("disable"), Pfs: pulumi.String("enable"), Phase1name: trnamex2.Name, Proposal: pulumi.String("null-md5 null-sha1 null-sha256"), Protocol: pulumi.Int(0), Replay: pulumi.String("enable"), RouteOverlap: pulumi.String("use-new"), SelectorMatch: pulumi.String("auto"), SingleSource: pulumi.String("disable"), SrcAddrType: pulumi.String("subnet"), SrcEndIp: pulumi.String("0.0.0.0"), SrcEndIp6: pulumi.String("::"), SrcPort: pulumi.Int(0), SrcStartIp: pulumi.String("0.0.0.0"), SrcStartIp6: pulumi.String("::"), SrcSubnet: pulumi.String("0.0.0.0 0.0.0.0"), SrcSubnet6: pulumi.String("::/0"), UseNatip: pulumi.String("disable"), }) if err != nil { return err } return nil }) }
``` <!--End PulumiCodeChooser -->
## Import
VpnIpsec Phase2 can be imported using any of these accepted formats:
```sh $ pulumi import fortios:vpn/ipsec/phase2:Phase2 labelname {{name}} ```
If you do not want to import arguments of block:
$ export "FORTIOS_IMPORT_TABLE"="false"
```sh $ pulumi import fortios:vpn/ipsec/phase2:Phase2 labelname {{name}} ```
$ unset "FORTIOS_IMPORT_TABLE"
func GetPhase2 ¶
func GetPhase2(ctx *pulumi.Context, name string, id pulumi.IDInput, state *Phase2State, opts ...pulumi.ResourceOption) (*Phase2, error)
GetPhase2 gets an existing Phase2 resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewPhase2 ¶
func NewPhase2(ctx *pulumi.Context, name string, args *Phase2Args, opts ...pulumi.ResourceOption) (*Phase2, error)
NewPhase2 registers a new resource with the given unique name, arguments, and options.
func (*Phase2) ElementType ¶
func (*Phase2) ToPhase2Output ¶
func (i *Phase2) ToPhase2Output() Phase2Output
func (*Phase2) ToPhase2OutputWithContext ¶
func (i *Phase2) ToPhase2OutputWithContext(ctx context.Context) Phase2Output
type Phase2Args ¶
type Phase2Args struct { // Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`. AddRoute pulumi.StringPtrInput // Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`. AutoNegotiate pulumi.StringPtrInput // Comment. Comments pulumi.StringPtrInput // Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`. DhcpIpsec pulumi.StringPtrInput // Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`. Dhgrp pulumi.StringPtrInput // Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`. Diffserv pulumi.StringPtrInput // DSCP value to be applied to the IPsec tunnel outer IP header. Diffservcode pulumi.StringPtrInput // Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`. DstAddrType pulumi.StringPtrInput // Remote proxy ID IPv4 end. DstEndIp pulumi.StringPtrInput // Remote proxy ID IPv6 end. DstEndIp6 pulumi.StringPtrInput // Remote proxy ID name. DstName pulumi.StringPtrInput // Remote proxy ID name. DstName6 pulumi.StringPtrInput // Quick mode destination port (1 - 65535 or 0 for all). DstPort pulumi.IntPtrInput // Remote proxy ID IPv4 start. DstStartIp pulumi.StringPtrInput // Remote proxy ID IPv6 start. DstStartIp6 pulumi.StringPtrInput // Remote proxy ID IPv4 subnet. DstSubnet pulumi.StringPtrInput // Remote proxy ID IPv6 subnet. DstSubnet6 pulumi.StringPtrInput // ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`. Encapsulation pulumi.StringPtrInput // Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`. InboundDscpCopy pulumi.StringPtrInput // Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`. InitiatorTsNarrow pulumi.StringPtrInput // Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`. Ipv4Df pulumi.StringPtrInput // Enable/disable keep alive. Valid values: `enable`, `disable`. Keepalive pulumi.StringPtrInput // Keylife type. Valid values: `seconds`, `kbs`, `both`. KeylifeType pulumi.StringPtrInput // Phase2 key life in number of bytes of traffic (5120 - 4294967295). Keylifekbs pulumi.IntPtrInput // Phase2 key life in time in seconds (120 - 172800). Keylifeseconds pulumi.IntPtrInput // Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`. L2tp pulumi.StringPtrInput // IPsec tunnel name. Name pulumi.StringPtrInput // Enable/disable PFS feature. Valid values: `enable`, `disable`. Pfs pulumi.StringPtrInput // Phase 1 determines the options required for phase 2. Phase1name pulumi.StringInput // Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`. Proposal pulumi.StringInput // Quick mode protocol selector (1 - 255 or 0 for all). Protocol pulumi.IntPtrInput // Enable/disable replay detection. Valid values: `enable`, `disable`. Replay pulumi.StringPtrInput // Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`. RouteOverlap pulumi.StringPtrInput // Match type to use when comparing selectors. Valid values: `exact`, `subset`, `auto`. SelectorMatch pulumi.StringPtrInput // Enable/disable single source IP restriction. Valid values: `enable`, `disable`. SingleSource pulumi.StringPtrInput // Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`. SrcAddrType pulumi.StringPtrInput // Local proxy ID end. SrcEndIp pulumi.StringPtrInput // Local proxy ID IPv6 end. SrcEndIp6 pulumi.StringPtrInput // Local proxy ID name. SrcName pulumi.StringPtrInput // Local proxy ID name. SrcName6 pulumi.StringPtrInput // Quick mode source port (1 - 65535 or 0 for all). SrcPort pulumi.IntPtrInput // Local proxy ID start. SrcStartIp pulumi.StringPtrInput // Local proxy ID IPv6 start. SrcStartIp6 pulumi.StringPtrInput // Local proxy ID subnet. SrcSubnet pulumi.StringPtrInput // Local proxy ID IPv6 subnet. SrcSubnet6 pulumi.StringPtrInput // Enable to use the FortiGate public IP as the source selector when outbound NAT is used. Valid values: `enable`, `disable`. UseNatip pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
The set of arguments for constructing a Phase2 resource.
func (Phase2Args) ElementType ¶
func (Phase2Args) ElementType() reflect.Type
type Phase2Array ¶
type Phase2Array []Phase2Input
func (Phase2Array) ElementType ¶
func (Phase2Array) ElementType() reflect.Type
func (Phase2Array) ToPhase2ArrayOutput ¶
func (i Phase2Array) ToPhase2ArrayOutput() Phase2ArrayOutput
func (Phase2Array) ToPhase2ArrayOutputWithContext ¶
func (i Phase2Array) ToPhase2ArrayOutputWithContext(ctx context.Context) Phase2ArrayOutput
type Phase2ArrayInput ¶
type Phase2ArrayInput interface { pulumi.Input ToPhase2ArrayOutput() Phase2ArrayOutput ToPhase2ArrayOutputWithContext(context.Context) Phase2ArrayOutput }
Phase2ArrayInput is an input type that accepts Phase2Array and Phase2ArrayOutput values. You can construct a concrete instance of `Phase2ArrayInput` via:
Phase2Array{ Phase2Args{...} }
type Phase2ArrayOutput ¶
type Phase2ArrayOutput struct{ *pulumi.OutputState }
func (Phase2ArrayOutput) ElementType ¶
func (Phase2ArrayOutput) ElementType() reflect.Type
func (Phase2ArrayOutput) Index ¶
func (o Phase2ArrayOutput) Index(i pulumi.IntInput) Phase2Output
func (Phase2ArrayOutput) ToPhase2ArrayOutput ¶
func (o Phase2ArrayOutput) ToPhase2ArrayOutput() Phase2ArrayOutput
func (Phase2ArrayOutput) ToPhase2ArrayOutputWithContext ¶
func (o Phase2ArrayOutput) ToPhase2ArrayOutputWithContext(ctx context.Context) Phase2ArrayOutput
type Phase2Input ¶
type Phase2Input interface { pulumi.Input ToPhase2Output() Phase2Output ToPhase2OutputWithContext(ctx context.Context) Phase2Output }
type Phase2Map ¶
type Phase2Map map[string]Phase2Input
func (Phase2Map) ElementType ¶
func (Phase2Map) ToPhase2MapOutput ¶
func (i Phase2Map) ToPhase2MapOutput() Phase2MapOutput
func (Phase2Map) ToPhase2MapOutputWithContext ¶
func (i Phase2Map) ToPhase2MapOutputWithContext(ctx context.Context) Phase2MapOutput
type Phase2MapInput ¶
type Phase2MapInput interface { pulumi.Input ToPhase2MapOutput() Phase2MapOutput ToPhase2MapOutputWithContext(context.Context) Phase2MapOutput }
Phase2MapInput is an input type that accepts Phase2Map and Phase2MapOutput values. You can construct a concrete instance of `Phase2MapInput` via:
Phase2Map{ "key": Phase2Args{...} }
type Phase2MapOutput ¶
type Phase2MapOutput struct{ *pulumi.OutputState }
func (Phase2MapOutput) ElementType ¶
func (Phase2MapOutput) ElementType() reflect.Type
func (Phase2MapOutput) MapIndex ¶
func (o Phase2MapOutput) MapIndex(k pulumi.StringInput) Phase2Output
func (Phase2MapOutput) ToPhase2MapOutput ¶
func (o Phase2MapOutput) ToPhase2MapOutput() Phase2MapOutput
func (Phase2MapOutput) ToPhase2MapOutputWithContext ¶
func (o Phase2MapOutput) ToPhase2MapOutputWithContext(ctx context.Context) Phase2MapOutput
type Phase2Output ¶
type Phase2Output struct{ *pulumi.OutputState }
func (Phase2Output) AddRoute ¶
func (o Phase2Output) AddRoute() pulumi.StringOutput
Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`.
func (Phase2Output) AutoNegotiate ¶
func (o Phase2Output) AutoNegotiate() pulumi.StringOutput
Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`.
func (Phase2Output) DhcpIpsec ¶
func (o Phase2Output) DhcpIpsec() pulumi.StringOutput
Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`.
func (Phase2Output) Dhgrp ¶
func (o Phase2Output) Dhgrp() pulumi.StringOutput
Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
func (Phase2Output) Diffserv ¶
func (o Phase2Output) Diffserv() pulumi.StringOutput
Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`.
func (Phase2Output) Diffservcode ¶
func (o Phase2Output) Diffservcode() pulumi.StringOutput
DSCP value to be applied to the IPsec tunnel outer IP header.
func (Phase2Output) DstAddrType ¶
func (o Phase2Output) DstAddrType() pulumi.StringOutput
Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`.
func (Phase2Output) DstEndIp ¶
func (o Phase2Output) DstEndIp() pulumi.StringOutput
Remote proxy ID IPv4 end.
func (Phase2Output) DstEndIp6 ¶
func (o Phase2Output) DstEndIp6() pulumi.StringOutput
Remote proxy ID IPv6 end.
func (Phase2Output) DstName ¶
func (o Phase2Output) DstName() pulumi.StringOutput
Remote proxy ID name.
func (Phase2Output) DstName6 ¶
func (o Phase2Output) DstName6() pulumi.StringOutput
Remote proxy ID name.
func (Phase2Output) DstPort ¶
func (o Phase2Output) DstPort() pulumi.IntOutput
Quick mode destination port (1 - 65535 or 0 for all).
func (Phase2Output) DstStartIp ¶
func (o Phase2Output) DstStartIp() pulumi.StringOutput
Remote proxy ID IPv4 start.
func (Phase2Output) DstStartIp6 ¶
func (o Phase2Output) DstStartIp6() pulumi.StringOutput
Remote proxy ID IPv6 start.
func (Phase2Output) DstSubnet ¶
func (o Phase2Output) DstSubnet() pulumi.StringOutput
Remote proxy ID IPv4 subnet.
func (Phase2Output) DstSubnet6 ¶
func (o Phase2Output) DstSubnet6() pulumi.StringOutput
Remote proxy ID IPv6 subnet.
func (Phase2Output) ElementType ¶
func (Phase2Output) ElementType() reflect.Type
func (Phase2Output) Encapsulation ¶
func (o Phase2Output) Encapsulation() pulumi.StringOutput
ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`.
func (Phase2Output) InboundDscpCopy ¶
func (o Phase2Output) InboundDscpCopy() pulumi.StringOutput
Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`.
func (Phase2Output) InitiatorTsNarrow ¶
func (o Phase2Output) InitiatorTsNarrow() pulumi.StringOutput
Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`.
func (Phase2Output) Ipv4Df ¶
func (o Phase2Output) Ipv4Df() pulumi.StringOutput
Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`.
func (Phase2Output) Keepalive ¶
func (o Phase2Output) Keepalive() pulumi.StringOutput
Enable/disable keep alive. Valid values: `enable`, `disable`.
func (Phase2Output) KeylifeType ¶
func (o Phase2Output) KeylifeType() pulumi.StringOutput
Keylife type. Valid values: `seconds`, `kbs`, `both`.
func (Phase2Output) Keylifekbs ¶
func (o Phase2Output) Keylifekbs() pulumi.IntOutput
Phase2 key life in number of bytes of traffic (5120 - 4294967295).
func (Phase2Output) Keylifeseconds ¶
func (o Phase2Output) Keylifeseconds() pulumi.IntOutput
Phase2 key life in time in seconds (120 - 172800).
func (Phase2Output) L2tp ¶
func (o Phase2Output) L2tp() pulumi.StringOutput
Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`.
func (Phase2Output) Pfs ¶
func (o Phase2Output) Pfs() pulumi.StringOutput
Enable/disable PFS feature. Valid values: `enable`, `disable`.
func (Phase2Output) Phase1name ¶
func (o Phase2Output) Phase1name() pulumi.StringOutput
Phase 1 determines the options required for phase 2.
func (Phase2Output) Proposal ¶
func (o Phase2Output) Proposal() pulumi.StringOutput
Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
func (Phase2Output) Protocol ¶
func (o Phase2Output) Protocol() pulumi.IntOutput
Quick mode protocol selector (1 - 255 or 0 for all).
func (Phase2Output) Replay ¶
func (o Phase2Output) Replay() pulumi.StringOutput
Enable/disable replay detection. Valid values: `enable`, `disable`.
func (Phase2Output) RouteOverlap ¶
func (o Phase2Output) RouteOverlap() pulumi.StringOutput
Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`.
func (Phase2Output) SelectorMatch ¶
func (o Phase2Output) SelectorMatch() pulumi.StringOutput
Match type to use when comparing selectors. Valid values: `exact`, `subset`, `auto`.
func (Phase2Output) SingleSource ¶
func (o Phase2Output) SingleSource() pulumi.StringOutput
Enable/disable single source IP restriction. Valid values: `enable`, `disable`.
func (Phase2Output) SrcAddrType ¶
func (o Phase2Output) SrcAddrType() pulumi.StringOutput
Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`.
func (Phase2Output) SrcEndIp ¶
func (o Phase2Output) SrcEndIp() pulumi.StringOutput
Local proxy ID end.
func (Phase2Output) SrcEndIp6 ¶
func (o Phase2Output) SrcEndIp6() pulumi.StringOutput
Local proxy ID IPv6 end.
func (Phase2Output) SrcName ¶
func (o Phase2Output) SrcName() pulumi.StringOutput
Local proxy ID name.
func (Phase2Output) SrcName6 ¶
func (o Phase2Output) SrcName6() pulumi.StringOutput
Local proxy ID name.
func (Phase2Output) SrcPort ¶
func (o Phase2Output) SrcPort() pulumi.IntOutput
Quick mode source port (1 - 65535 or 0 for all).
func (Phase2Output) SrcStartIp ¶
func (o Phase2Output) SrcStartIp() pulumi.StringOutput
Local proxy ID start.
func (Phase2Output) SrcStartIp6 ¶
func (o Phase2Output) SrcStartIp6() pulumi.StringOutput
Local proxy ID IPv6 start.
func (Phase2Output) SrcSubnet ¶
func (o Phase2Output) SrcSubnet() pulumi.StringOutput
Local proxy ID subnet.
func (Phase2Output) SrcSubnet6 ¶
func (o Phase2Output) SrcSubnet6() pulumi.StringOutput
Local proxy ID IPv6 subnet.
func (Phase2Output) ToPhase2Output ¶
func (o Phase2Output) ToPhase2Output() Phase2Output
func (Phase2Output) ToPhase2OutputWithContext ¶
func (o Phase2Output) ToPhase2OutputWithContext(ctx context.Context) Phase2Output
func (Phase2Output) UseNatip ¶
func (o Phase2Output) UseNatip() pulumi.StringOutput
Enable to use the FortiGate public IP as the source selector when outbound NAT is used. Valid values: `enable`, `disable`.
func (Phase2Output) Vdomparam ¶
func (o Phase2Output) Vdomparam() pulumi.StringPtrOutput
Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
type Phase2State ¶
type Phase2State struct { // Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`. AddRoute pulumi.StringPtrInput // Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`. AutoNegotiate pulumi.StringPtrInput // Comment. Comments pulumi.StringPtrInput // Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`. DhcpIpsec pulumi.StringPtrInput // Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`. Dhgrp pulumi.StringPtrInput // Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`. Diffserv pulumi.StringPtrInput // DSCP value to be applied to the IPsec tunnel outer IP header. Diffservcode pulumi.StringPtrInput // Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`. DstAddrType pulumi.StringPtrInput // Remote proxy ID IPv4 end. DstEndIp pulumi.StringPtrInput // Remote proxy ID IPv6 end. DstEndIp6 pulumi.StringPtrInput // Remote proxy ID name. DstName pulumi.StringPtrInput // Remote proxy ID name. DstName6 pulumi.StringPtrInput // Quick mode destination port (1 - 65535 or 0 for all). DstPort pulumi.IntPtrInput // Remote proxy ID IPv4 start. DstStartIp pulumi.StringPtrInput // Remote proxy ID IPv6 start. DstStartIp6 pulumi.StringPtrInput // Remote proxy ID IPv4 subnet. DstSubnet pulumi.StringPtrInput // Remote proxy ID IPv6 subnet. DstSubnet6 pulumi.StringPtrInput // ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`. Encapsulation pulumi.StringPtrInput // Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`. InboundDscpCopy pulumi.StringPtrInput // Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`. InitiatorTsNarrow pulumi.StringPtrInput // Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`. Ipv4Df pulumi.StringPtrInput // Enable/disable keep alive. Valid values: `enable`, `disable`. Keepalive pulumi.StringPtrInput // Keylife type. Valid values: `seconds`, `kbs`, `both`. KeylifeType pulumi.StringPtrInput // Phase2 key life in number of bytes of traffic (5120 - 4294967295). Keylifekbs pulumi.IntPtrInput // Phase2 key life in time in seconds (120 - 172800). Keylifeseconds pulumi.IntPtrInput // Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`. L2tp pulumi.StringPtrInput // IPsec tunnel name. Name pulumi.StringPtrInput // Enable/disable PFS feature. Valid values: `enable`, `disable`. Pfs pulumi.StringPtrInput // Phase 1 determines the options required for phase 2. Phase1name pulumi.StringPtrInput // Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`. Proposal pulumi.StringPtrInput // Quick mode protocol selector (1 - 255 or 0 for all). Protocol pulumi.IntPtrInput // Enable/disable replay detection. Valid values: `enable`, `disable`. Replay pulumi.StringPtrInput // Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`. RouteOverlap pulumi.StringPtrInput // Match type to use when comparing selectors. Valid values: `exact`, `subset`, `auto`. SelectorMatch pulumi.StringPtrInput // Enable/disable single source IP restriction. Valid values: `enable`, `disable`. SingleSource pulumi.StringPtrInput // Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`. SrcAddrType pulumi.StringPtrInput // Local proxy ID end. SrcEndIp pulumi.StringPtrInput // Local proxy ID IPv6 end. SrcEndIp6 pulumi.StringPtrInput // Local proxy ID name. SrcName pulumi.StringPtrInput // Local proxy ID name. SrcName6 pulumi.StringPtrInput // Quick mode source port (1 - 65535 or 0 for all). SrcPort pulumi.IntPtrInput // Local proxy ID start. SrcStartIp pulumi.StringPtrInput // Local proxy ID IPv6 start. SrcStartIp6 pulumi.StringPtrInput // Local proxy ID subnet. SrcSubnet pulumi.StringPtrInput // Local proxy ID IPv6 subnet. SrcSubnet6 pulumi.StringPtrInput // Enable to use the FortiGate public IP as the source selector when outbound NAT is used. Valid values: `enable`, `disable`. UseNatip pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
func (Phase2State) ElementType ¶
func (Phase2State) ElementType() reflect.Type
type Phase2interface ¶
type Phase2interface struct { pulumi.CustomResourceState // Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`. AddRoute pulumi.StringOutput `pulumi:"addRoute"` // Enable/disable forwarding short-cut messages. Valid values: `phase1`, `enable`, `disable`. AutoDiscoveryForwarder pulumi.StringOutput `pulumi:"autoDiscoveryForwarder"` // Enable/disable sending short-cut messages. Valid values: `phase1`, `enable`, `disable`. AutoDiscoverySender pulumi.StringOutput `pulumi:"autoDiscoverySender"` // Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`. AutoNegotiate pulumi.StringOutput `pulumi:"autoNegotiate"` // Comment. Comments pulumi.StringPtrOutput `pulumi:"comments"` // Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`. DhcpIpsec pulumi.StringOutput `pulumi:"dhcpIpsec"` // Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`. Dhgrp pulumi.StringOutput `pulumi:"dhgrp"` // Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`. Diffserv pulumi.StringOutput `pulumi:"diffserv"` // DSCP value to be applied to the IPsec tunnel outer IP header. Diffservcode pulumi.StringOutput `pulumi:"diffservcode"` // Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`. DstAddrType pulumi.StringOutput `pulumi:"dstAddrType"` // Remote proxy ID IPv4 end. DstEndIp pulumi.StringOutput `pulumi:"dstEndIp"` // Remote proxy ID IPv6 end. DstEndIp6 pulumi.StringOutput `pulumi:"dstEndIp6"` // Remote proxy ID name. DstName pulumi.StringOutput `pulumi:"dstName"` // Remote proxy ID name. DstName6 pulumi.StringOutput `pulumi:"dstName6"` // Quick mode destination port (1 - 65535 or 0 for all). DstPort pulumi.IntOutput `pulumi:"dstPort"` // Remote proxy ID IPv4 start. DstStartIp pulumi.StringOutput `pulumi:"dstStartIp"` // Remote proxy ID IPv6 start. DstStartIp6 pulumi.StringOutput `pulumi:"dstStartIp6"` // Remote proxy ID IPv4 subnet. DstSubnet pulumi.StringOutput `pulumi:"dstSubnet"` // Remote proxy ID IPv6 subnet. DstSubnet6 pulumi.StringOutput `pulumi:"dstSubnet6"` // ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`. Encapsulation pulumi.StringOutput `pulumi:"encapsulation"` // Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`. InboundDscpCopy pulumi.StringOutput `pulumi:"inboundDscpCopy"` // Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`. InitiatorTsNarrow pulumi.StringOutput `pulumi:"initiatorTsNarrow"` // Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`. Ipv4Df pulumi.StringOutput `pulumi:"ipv4Df"` // Enable/disable keep alive. Valid values: `enable`, `disable`. Keepalive pulumi.StringOutput `pulumi:"keepalive"` // Keylife type. Valid values: `seconds`, `kbs`, `both`. KeylifeType pulumi.StringOutput `pulumi:"keylifeType"` // Phase2 key life in number of bytes of traffic (5120 - 4294967295). Keylifekbs pulumi.IntOutput `pulumi:"keylifekbs"` // Phase2 key life in time in seconds (120 - 172800). Keylifeseconds pulumi.IntOutput `pulumi:"keylifeseconds"` // Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`. L2tp pulumi.StringOutput `pulumi:"l2tp"` // IPsec tunnel name. Name pulumi.StringOutput `pulumi:"name"` // Enable/disable PFS feature. Valid values: `enable`, `disable`. Pfs pulumi.StringOutput `pulumi:"pfs"` // Phase 1 determines the options required for phase 2. Phase1name pulumi.StringOutput `pulumi:"phase1name"` // Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`. Proposal pulumi.StringOutput `pulumi:"proposal"` // Quick mode protocol selector (1 - 255 or 0 for all). Protocol pulumi.IntOutput `pulumi:"protocol"` // Enable/disable replay detection. Valid values: `enable`, `disable`. Replay pulumi.StringOutput `pulumi:"replay"` // Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`. RouteOverlap pulumi.StringOutput `pulumi:"routeOverlap"` // Enable/disable single source IP restriction. Valid values: `enable`, `disable`. SingleSource pulumi.StringOutput `pulumi:"singleSource"` // Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`. SrcAddrType pulumi.StringOutput `pulumi:"srcAddrType"` // Local proxy ID end. SrcEndIp pulumi.StringOutput `pulumi:"srcEndIp"` // Local proxy ID IPv6 end. SrcEndIp6 pulumi.StringOutput `pulumi:"srcEndIp6"` // Local proxy ID name. SrcName pulumi.StringOutput `pulumi:"srcName"` // Local proxy ID name. SrcName6 pulumi.StringOutput `pulumi:"srcName6"` // Quick mode source port (1 - 65535 or 0 for all). SrcPort pulumi.IntOutput `pulumi:"srcPort"` // Local proxy ID start. SrcStartIp pulumi.StringOutput `pulumi:"srcStartIp"` // Local proxy ID IPv6 start. SrcStartIp6 pulumi.StringOutput `pulumi:"srcStartIp6"` // Local proxy ID subnet. SrcSubnet pulumi.StringOutput `pulumi:"srcSubnet"` // Local proxy ID IPv6 subnet. SrcSubnet6 pulumi.StringOutput `pulumi:"srcSubnet6"` // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"` }
Configure VPN autokey tunnel.
## Example Usage
<!--Start PulumiCodeChooser --> ```go package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi" "github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"
)
func main() { pulumi.Run(func(ctx *pulumi.Context) error { trname3, err := vpn.NewPhase1interface(ctx, "trname3", &vpn.Phase1interfaceArgs{ AcctVerify: pulumi.String("disable"), AddGwRoute: pulumi.String("disable"), AddRoute: pulumi.String("enable"), AssignIp: pulumi.String("enable"), AssignIpFrom: pulumi.String("range"), Authmethod: pulumi.String("psk"), AutoDiscoveryForwarder: pulumi.String("disable"), AutoDiscoveryPsk: pulumi.String("disable"), AutoDiscoveryReceiver: pulumi.String("disable"), AutoDiscoverySender: pulumi.String("disable"), AutoNegotiate: pulumi.String("enable"), CertIdValidation: pulumi.String("enable"), ChildlessIke: pulumi.String("disable"), ClientAutoNegotiate: pulumi.String("disable"), ClientKeepAlive: pulumi.String("disable"), DefaultGw: pulumi.String("0.0.0.0"), DefaultGwPriority: pulumi.Int(0), Dhgrp: pulumi.String("14 5"), DigitalSignatureAuth: pulumi.String("disable"), Distance: pulumi.Int(15), DnsMode: pulumi.String("manual"), Dpd: pulumi.String("on-demand"), DpdRetrycount: pulumi.Int(3), DpdRetryinterval: pulumi.String("20"), Eap: pulumi.String("disable"), EapIdentity: pulumi.String("use-id-payload"), EncapLocalGw4: pulumi.String("0.0.0.0"), EncapLocalGw6: pulumi.String("::"), EncapRemoteGw4: pulumi.String("0.0.0.0"), EncapRemoteGw6: pulumi.String("::"), Encapsulation: pulumi.String("none"), EncapsulationAddress: pulumi.String("ike"), EnforceUniqueId: pulumi.String("disable"), ExchangeInterfaceIp: pulumi.String("disable"), ExchangeIpAddr4: pulumi.String("0.0.0.0"), ExchangeIpAddr6: pulumi.String("::"), ForticlientEnforcement: pulumi.String("disable"), Fragmentation: pulumi.String("enable"), FragmentationMtu: pulumi.Int(1200), GroupAuthentication: pulumi.String("disable"), HaSyncEspSeqno: pulumi.String("enable"), IdleTimeout: pulumi.String("disable"), IdleTimeoutinterval: pulumi.Int(15), IkeVersion: pulumi.String("1"), IncludeLocalLan: pulumi.String("disable"), Interface: pulumi.String("port3"), IpVersion: pulumi.String("4"), Ipv4DnsServer1: pulumi.String("0.0.0.0"), Ipv4DnsServer2: pulumi.String("0.0.0.0"), Ipv4DnsServer3: pulumi.String("0.0.0.0"), Ipv4EndIp: pulumi.String("0.0.0.0"), Ipv4Netmask: pulumi.String("255.255.255.255"), Ipv4StartIp: pulumi.String("0.0.0.0"), Ipv4WinsServer1: pulumi.String("0.0.0.0"), Ipv4WinsServer2: pulumi.String("0.0.0.0"), Ipv6DnsServer1: pulumi.String("::"), Ipv6DnsServer2: pulumi.String("::"), Ipv6DnsServer3: pulumi.String("::"), Ipv6EndIp: pulumi.String("::"), Ipv6Prefix: pulumi.Int(128), Ipv6StartIp: pulumi.String("::"), Keepalive: pulumi.Int(10), Keylife: pulumi.Int(86400), LocalGw: pulumi.String("0.0.0.0"), LocalGw6: pulumi.String("::"), LocalidType: pulumi.String("auto"), MeshSelectorType: pulumi.String("disable"), Mode: pulumi.String("main"), ModeCfg: pulumi.String("disable"), MonitorHoldDownDelay: pulumi.Int(0), MonitorHoldDownTime: pulumi.String("00:00"), MonitorHoldDownType: pulumi.String("immediate"), MonitorHoldDownWeekday: pulumi.String("sunday"), Nattraversal: pulumi.String("enable"), NegotiateTimeout: pulumi.Int(30), NetDevice: pulumi.String("disable"), PassiveMode: pulumi.String("disable"), Peertype: pulumi.String("any"), Ppk: pulumi.String("disable"), Priority: pulumi.Int(0), Proposal: pulumi.String("aes128-sha256 aes256-sha256 aes128-sha1 aes256-sha1"), Psksecret: pulumi.String("eweeeeeeeecee"), Reauth: pulumi.String("disable"), Rekey: pulumi.String("enable"), RemoteGw: pulumi.String("2.22.2.2"), RemoteGw6: pulumi.String("::"), RsaSignatureFormat: pulumi.String("pkcs1"), SavePassword: pulumi.String("disable"), SendCertChain: pulumi.String("enable"), SignatureHashAlg: pulumi.String("sha2-512 sha2-384 sha2-256 sha1"), SuiteB: pulumi.String("disable"), TunnelSearch: pulumi.String("selectors"), Type: pulumi.String("static"), UnitySupport: pulumi.String("enable"), WizardType: pulumi.String("custom"), Xauthtype: pulumi.String("disable"), }) if err != nil { return err } _, err = vpn.NewPhase2interface(ctx, "trname2", &vpn.Phase2interfaceArgs{ AddRoute: pulumi.String("phase1"), AutoDiscoveryForwarder: pulumi.String("phase1"), AutoDiscoverySender: pulumi.String("phase1"), AutoNegotiate: pulumi.String("disable"), DhcpIpsec: pulumi.String("disable"), Dhgrp: pulumi.String("14 5"), DstAddrType: pulumi.String("subnet"), DstEndIp6: pulumi.String("::"), DstPort: pulumi.Int(0), DstSubnet: pulumi.String("0.0.0.0 0.0.0.0"), Encapsulation: pulumi.String("tunnel-mode"), Keepalive: pulumi.String("disable"), KeylifeType: pulumi.String("seconds"), Keylifekbs: pulumi.Int(5120), Keylifeseconds: pulumi.Int(43200), L2tp: pulumi.String("disable"), Pfs: pulumi.String("enable"), Phase1name: trname3.Name, Proposal: pulumi.String("aes128-sha1 aes256-sha1 aes128-sha256 aes256-sha256 aes128gcm aes256gcm chacha20poly1305"), Protocol: pulumi.Int(0), Replay: pulumi.String("enable"), RouteOverlap: pulumi.String("use-new"), SingleSource: pulumi.String("disable"), SrcAddrType: pulumi.String("subnet"), SrcEndIp6: pulumi.String("::"), SrcPort: pulumi.Int(0), SrcSubnet: pulumi.String("0.0.0.0 0.0.0.0"), }) if err != nil { return err } return nil }) }
``` <!--End PulumiCodeChooser -->
## Import
VpnIpsec Phase2Interface can be imported using any of these accepted formats:
```sh $ pulumi import fortios:vpn/ipsec/phase2interface:Phase2interface labelname {{name}} ```
If you do not want to import arguments of block:
$ export "FORTIOS_IMPORT_TABLE"="false"
```sh $ pulumi import fortios:vpn/ipsec/phase2interface:Phase2interface labelname {{name}} ```
$ unset "FORTIOS_IMPORT_TABLE"
func GetPhase2interface ¶
func GetPhase2interface(ctx *pulumi.Context, name string, id pulumi.IDInput, state *Phase2interfaceState, opts ...pulumi.ResourceOption) (*Phase2interface, error)
GetPhase2interface gets an existing Phase2interface resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewPhase2interface ¶
func NewPhase2interface(ctx *pulumi.Context, name string, args *Phase2interfaceArgs, opts ...pulumi.ResourceOption) (*Phase2interface, error)
NewPhase2interface registers a new resource with the given unique name, arguments, and options.
func (*Phase2interface) ElementType ¶
func (*Phase2interface) ElementType() reflect.Type
func (*Phase2interface) ToPhase2interfaceOutput ¶
func (i *Phase2interface) ToPhase2interfaceOutput() Phase2interfaceOutput
func (*Phase2interface) ToPhase2interfaceOutputWithContext ¶
func (i *Phase2interface) ToPhase2interfaceOutputWithContext(ctx context.Context) Phase2interfaceOutput
type Phase2interfaceArgs ¶
type Phase2interfaceArgs struct { // Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`. AddRoute pulumi.StringPtrInput // Enable/disable forwarding short-cut messages. Valid values: `phase1`, `enable`, `disable`. AutoDiscoveryForwarder pulumi.StringPtrInput // Enable/disable sending short-cut messages. Valid values: `phase1`, `enable`, `disable`. AutoDiscoverySender pulumi.StringPtrInput // Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`. AutoNegotiate pulumi.StringPtrInput // Comment. Comments pulumi.StringPtrInput // Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`. DhcpIpsec pulumi.StringPtrInput // Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`. Dhgrp pulumi.StringPtrInput // Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`. Diffserv pulumi.StringPtrInput // DSCP value to be applied to the IPsec tunnel outer IP header. Diffservcode pulumi.StringPtrInput // Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`. DstAddrType pulumi.StringPtrInput // Remote proxy ID IPv4 end. DstEndIp pulumi.StringPtrInput // Remote proxy ID IPv6 end. DstEndIp6 pulumi.StringPtrInput // Remote proxy ID name. DstName pulumi.StringPtrInput // Remote proxy ID name. DstName6 pulumi.StringPtrInput // Quick mode destination port (1 - 65535 or 0 for all). DstPort pulumi.IntPtrInput // Remote proxy ID IPv4 start. DstStartIp pulumi.StringPtrInput // Remote proxy ID IPv6 start. DstStartIp6 pulumi.StringPtrInput // Remote proxy ID IPv4 subnet. DstSubnet pulumi.StringPtrInput // Remote proxy ID IPv6 subnet. DstSubnet6 pulumi.StringPtrInput // ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`. Encapsulation pulumi.StringPtrInput // Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`. InboundDscpCopy pulumi.StringPtrInput // Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`. InitiatorTsNarrow pulumi.StringPtrInput // Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`. Ipv4Df pulumi.StringPtrInput // Enable/disable keep alive. Valid values: `enable`, `disable`. Keepalive pulumi.StringPtrInput // Keylife type. Valid values: `seconds`, `kbs`, `both`. KeylifeType pulumi.StringPtrInput // Phase2 key life in number of bytes of traffic (5120 - 4294967295). Keylifekbs pulumi.IntPtrInput // Phase2 key life in time in seconds (120 - 172800). Keylifeseconds pulumi.IntPtrInput // Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`. L2tp pulumi.StringPtrInput // IPsec tunnel name. Name pulumi.StringPtrInput // Enable/disable PFS feature. Valid values: `enable`, `disable`. Pfs pulumi.StringPtrInput // Phase 1 determines the options required for phase 2. Phase1name pulumi.StringInput // Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`. Proposal pulumi.StringInput // Quick mode protocol selector (1 - 255 or 0 for all). Protocol pulumi.IntPtrInput // Enable/disable replay detection. Valid values: `enable`, `disable`. Replay pulumi.StringPtrInput // Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`. RouteOverlap pulumi.StringPtrInput // Enable/disable single source IP restriction. Valid values: `enable`, `disable`. SingleSource pulumi.StringPtrInput // Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`. SrcAddrType pulumi.StringPtrInput // Local proxy ID end. SrcEndIp pulumi.StringPtrInput // Local proxy ID IPv6 end. SrcEndIp6 pulumi.StringPtrInput // Local proxy ID name. SrcName pulumi.StringPtrInput // Local proxy ID name. SrcName6 pulumi.StringPtrInput // Quick mode source port (1 - 65535 or 0 for all). SrcPort pulumi.IntPtrInput // Local proxy ID start. SrcStartIp pulumi.StringPtrInput // Local proxy ID IPv6 start. SrcStartIp6 pulumi.StringPtrInput // Local proxy ID subnet. SrcSubnet pulumi.StringPtrInput // Local proxy ID IPv6 subnet. SrcSubnet6 pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
The set of arguments for constructing a Phase2interface resource.
func (Phase2interfaceArgs) ElementType ¶
func (Phase2interfaceArgs) ElementType() reflect.Type
type Phase2interfaceArray ¶
type Phase2interfaceArray []Phase2interfaceInput
func (Phase2interfaceArray) ElementType ¶
func (Phase2interfaceArray) ElementType() reflect.Type
func (Phase2interfaceArray) ToPhase2interfaceArrayOutput ¶
func (i Phase2interfaceArray) ToPhase2interfaceArrayOutput() Phase2interfaceArrayOutput
func (Phase2interfaceArray) ToPhase2interfaceArrayOutputWithContext ¶
func (i Phase2interfaceArray) ToPhase2interfaceArrayOutputWithContext(ctx context.Context) Phase2interfaceArrayOutput
type Phase2interfaceArrayInput ¶
type Phase2interfaceArrayInput interface { pulumi.Input ToPhase2interfaceArrayOutput() Phase2interfaceArrayOutput ToPhase2interfaceArrayOutputWithContext(context.Context) Phase2interfaceArrayOutput }
Phase2interfaceArrayInput is an input type that accepts Phase2interfaceArray and Phase2interfaceArrayOutput values. You can construct a concrete instance of `Phase2interfaceArrayInput` via:
Phase2interfaceArray{ Phase2interfaceArgs{...} }
type Phase2interfaceArrayOutput ¶
type Phase2interfaceArrayOutput struct{ *pulumi.OutputState }
func (Phase2interfaceArrayOutput) ElementType ¶
func (Phase2interfaceArrayOutput) ElementType() reflect.Type
func (Phase2interfaceArrayOutput) Index ¶
func (o Phase2interfaceArrayOutput) Index(i pulumi.IntInput) Phase2interfaceOutput
func (Phase2interfaceArrayOutput) ToPhase2interfaceArrayOutput ¶
func (o Phase2interfaceArrayOutput) ToPhase2interfaceArrayOutput() Phase2interfaceArrayOutput
func (Phase2interfaceArrayOutput) ToPhase2interfaceArrayOutputWithContext ¶
func (o Phase2interfaceArrayOutput) ToPhase2interfaceArrayOutputWithContext(ctx context.Context) Phase2interfaceArrayOutput
type Phase2interfaceInput ¶
type Phase2interfaceInput interface { pulumi.Input ToPhase2interfaceOutput() Phase2interfaceOutput ToPhase2interfaceOutputWithContext(ctx context.Context) Phase2interfaceOutput }
type Phase2interfaceMap ¶
type Phase2interfaceMap map[string]Phase2interfaceInput
func (Phase2interfaceMap) ElementType ¶
func (Phase2interfaceMap) ElementType() reflect.Type
func (Phase2interfaceMap) ToPhase2interfaceMapOutput ¶
func (i Phase2interfaceMap) ToPhase2interfaceMapOutput() Phase2interfaceMapOutput
func (Phase2interfaceMap) ToPhase2interfaceMapOutputWithContext ¶
func (i Phase2interfaceMap) ToPhase2interfaceMapOutputWithContext(ctx context.Context) Phase2interfaceMapOutput
type Phase2interfaceMapInput ¶
type Phase2interfaceMapInput interface { pulumi.Input ToPhase2interfaceMapOutput() Phase2interfaceMapOutput ToPhase2interfaceMapOutputWithContext(context.Context) Phase2interfaceMapOutput }
Phase2interfaceMapInput is an input type that accepts Phase2interfaceMap and Phase2interfaceMapOutput values. You can construct a concrete instance of `Phase2interfaceMapInput` via:
Phase2interfaceMap{ "key": Phase2interfaceArgs{...} }
type Phase2interfaceMapOutput ¶
type Phase2interfaceMapOutput struct{ *pulumi.OutputState }
func (Phase2interfaceMapOutput) ElementType ¶
func (Phase2interfaceMapOutput) ElementType() reflect.Type
func (Phase2interfaceMapOutput) MapIndex ¶
func (o Phase2interfaceMapOutput) MapIndex(k pulumi.StringInput) Phase2interfaceOutput
func (Phase2interfaceMapOutput) ToPhase2interfaceMapOutput ¶
func (o Phase2interfaceMapOutput) ToPhase2interfaceMapOutput() Phase2interfaceMapOutput
func (Phase2interfaceMapOutput) ToPhase2interfaceMapOutputWithContext ¶
func (o Phase2interfaceMapOutput) ToPhase2interfaceMapOutputWithContext(ctx context.Context) Phase2interfaceMapOutput
type Phase2interfaceOutput ¶
type Phase2interfaceOutput struct{ *pulumi.OutputState }
func (Phase2interfaceOutput) AddRoute ¶
func (o Phase2interfaceOutput) AddRoute() pulumi.StringOutput
Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`.
func (Phase2interfaceOutput) AutoDiscoveryForwarder ¶
func (o Phase2interfaceOutput) AutoDiscoveryForwarder() pulumi.StringOutput
Enable/disable forwarding short-cut messages. Valid values: `phase1`, `enable`, `disable`.
func (Phase2interfaceOutput) AutoDiscoverySender ¶
func (o Phase2interfaceOutput) AutoDiscoverySender() pulumi.StringOutput
Enable/disable sending short-cut messages. Valid values: `phase1`, `enable`, `disable`.
func (Phase2interfaceOutput) AutoNegotiate ¶
func (o Phase2interfaceOutput) AutoNegotiate() pulumi.StringOutput
Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`.
func (Phase2interfaceOutput) Comments ¶
func (o Phase2interfaceOutput) Comments() pulumi.StringPtrOutput
Comment.
func (Phase2interfaceOutput) DhcpIpsec ¶
func (o Phase2interfaceOutput) DhcpIpsec() pulumi.StringOutput
Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`.
func (Phase2interfaceOutput) Dhgrp ¶
func (o Phase2interfaceOutput) Dhgrp() pulumi.StringOutput
Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`.
func (Phase2interfaceOutput) Diffserv ¶
func (o Phase2interfaceOutput) Diffserv() pulumi.StringOutput
Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`.
func (Phase2interfaceOutput) Diffservcode ¶
func (o Phase2interfaceOutput) Diffservcode() pulumi.StringOutput
DSCP value to be applied to the IPsec tunnel outer IP header.
func (Phase2interfaceOutput) DstAddrType ¶
func (o Phase2interfaceOutput) DstAddrType() pulumi.StringOutput
Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`.
func (Phase2interfaceOutput) DstEndIp ¶
func (o Phase2interfaceOutput) DstEndIp() pulumi.StringOutput
Remote proxy ID IPv4 end.
func (Phase2interfaceOutput) DstEndIp6 ¶
func (o Phase2interfaceOutput) DstEndIp6() pulumi.StringOutput
Remote proxy ID IPv6 end.
func (Phase2interfaceOutput) DstName ¶
func (o Phase2interfaceOutput) DstName() pulumi.StringOutput
Remote proxy ID name.
func (Phase2interfaceOutput) DstName6 ¶
func (o Phase2interfaceOutput) DstName6() pulumi.StringOutput
Remote proxy ID name.
func (Phase2interfaceOutput) DstPort ¶
func (o Phase2interfaceOutput) DstPort() pulumi.IntOutput
Quick mode destination port (1 - 65535 or 0 for all).
func (Phase2interfaceOutput) DstStartIp ¶
func (o Phase2interfaceOutput) DstStartIp() pulumi.StringOutput
Remote proxy ID IPv4 start.
func (Phase2interfaceOutput) DstStartIp6 ¶
func (o Phase2interfaceOutput) DstStartIp6() pulumi.StringOutput
Remote proxy ID IPv6 start.
func (Phase2interfaceOutput) DstSubnet ¶
func (o Phase2interfaceOutput) DstSubnet() pulumi.StringOutput
Remote proxy ID IPv4 subnet.
func (Phase2interfaceOutput) DstSubnet6 ¶
func (o Phase2interfaceOutput) DstSubnet6() pulumi.StringOutput
Remote proxy ID IPv6 subnet.
func (Phase2interfaceOutput) ElementType ¶
func (Phase2interfaceOutput) ElementType() reflect.Type
func (Phase2interfaceOutput) Encapsulation ¶
func (o Phase2interfaceOutput) Encapsulation() pulumi.StringOutput
ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`.
func (Phase2interfaceOutput) InboundDscpCopy ¶
func (o Phase2interfaceOutput) InboundDscpCopy() pulumi.StringOutput
Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`.
func (Phase2interfaceOutput) InitiatorTsNarrow ¶
func (o Phase2interfaceOutput) InitiatorTsNarrow() pulumi.StringOutput
Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`.
func (Phase2interfaceOutput) Ipv4Df ¶
func (o Phase2interfaceOutput) Ipv4Df() pulumi.StringOutput
Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`.
func (Phase2interfaceOutput) Keepalive ¶
func (o Phase2interfaceOutput) Keepalive() pulumi.StringOutput
Enable/disable keep alive. Valid values: `enable`, `disable`.
func (Phase2interfaceOutput) KeylifeType ¶
func (o Phase2interfaceOutput) KeylifeType() pulumi.StringOutput
Keylife type. Valid values: `seconds`, `kbs`, `both`.
func (Phase2interfaceOutput) Keylifekbs ¶
func (o Phase2interfaceOutput) Keylifekbs() pulumi.IntOutput
Phase2 key life in number of bytes of traffic (5120 - 4294967295).
func (Phase2interfaceOutput) Keylifeseconds ¶
func (o Phase2interfaceOutput) Keylifeseconds() pulumi.IntOutput
Phase2 key life in time in seconds (120 - 172800).
func (Phase2interfaceOutput) L2tp ¶
func (o Phase2interfaceOutput) L2tp() pulumi.StringOutput
Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`.
func (Phase2interfaceOutput) Name ¶
func (o Phase2interfaceOutput) Name() pulumi.StringOutput
IPsec tunnel name.
func (Phase2interfaceOutput) Pfs ¶
func (o Phase2interfaceOutput) Pfs() pulumi.StringOutput
Enable/disable PFS feature. Valid values: `enable`, `disable`.
func (Phase2interfaceOutput) Phase1name ¶
func (o Phase2interfaceOutput) Phase1name() pulumi.StringOutput
Phase 1 determines the options required for phase 2.
func (Phase2interfaceOutput) Proposal ¶
func (o Phase2interfaceOutput) Proposal() pulumi.StringOutput
Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`.
func (Phase2interfaceOutput) Protocol ¶
func (o Phase2interfaceOutput) Protocol() pulumi.IntOutput
Quick mode protocol selector (1 - 255 or 0 for all).
func (Phase2interfaceOutput) Replay ¶
func (o Phase2interfaceOutput) Replay() pulumi.StringOutput
Enable/disable replay detection. Valid values: `enable`, `disable`.
func (Phase2interfaceOutput) RouteOverlap ¶
func (o Phase2interfaceOutput) RouteOverlap() pulumi.StringOutput
Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`.
func (Phase2interfaceOutput) SingleSource ¶
func (o Phase2interfaceOutput) SingleSource() pulumi.StringOutput
Enable/disable single source IP restriction. Valid values: `enable`, `disable`.
func (Phase2interfaceOutput) SrcAddrType ¶
func (o Phase2interfaceOutput) SrcAddrType() pulumi.StringOutput
Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`.
func (Phase2interfaceOutput) SrcEndIp ¶
func (o Phase2interfaceOutput) SrcEndIp() pulumi.StringOutput
Local proxy ID end.
func (Phase2interfaceOutput) SrcEndIp6 ¶
func (o Phase2interfaceOutput) SrcEndIp6() pulumi.StringOutput
Local proxy ID IPv6 end.
func (Phase2interfaceOutput) SrcName ¶
func (o Phase2interfaceOutput) SrcName() pulumi.StringOutput
Local proxy ID name.
func (Phase2interfaceOutput) SrcName6 ¶
func (o Phase2interfaceOutput) SrcName6() pulumi.StringOutput
Local proxy ID name.
func (Phase2interfaceOutput) SrcPort ¶
func (o Phase2interfaceOutput) SrcPort() pulumi.IntOutput
Quick mode source port (1 - 65535 or 0 for all).
func (Phase2interfaceOutput) SrcStartIp ¶
func (o Phase2interfaceOutput) SrcStartIp() pulumi.StringOutput
Local proxy ID start.
func (Phase2interfaceOutput) SrcStartIp6 ¶
func (o Phase2interfaceOutput) SrcStartIp6() pulumi.StringOutput
Local proxy ID IPv6 start.
func (Phase2interfaceOutput) SrcSubnet ¶
func (o Phase2interfaceOutput) SrcSubnet() pulumi.StringOutput
Local proxy ID subnet.
func (Phase2interfaceOutput) SrcSubnet6 ¶
func (o Phase2interfaceOutput) SrcSubnet6() pulumi.StringOutput
Local proxy ID IPv6 subnet.
func (Phase2interfaceOutput) ToPhase2interfaceOutput ¶
func (o Phase2interfaceOutput) ToPhase2interfaceOutput() Phase2interfaceOutput
func (Phase2interfaceOutput) ToPhase2interfaceOutputWithContext ¶
func (o Phase2interfaceOutput) ToPhase2interfaceOutputWithContext(ctx context.Context) Phase2interfaceOutput
func (Phase2interfaceOutput) Vdomparam ¶
func (o Phase2interfaceOutput) Vdomparam() pulumi.StringPtrOutput
Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
type Phase2interfaceState ¶
type Phase2interfaceState struct { // Enable/disable automatic route addition. Valid values: `phase1`, `enable`, `disable`. AddRoute pulumi.StringPtrInput // Enable/disable forwarding short-cut messages. Valid values: `phase1`, `enable`, `disable`. AutoDiscoveryForwarder pulumi.StringPtrInput // Enable/disable sending short-cut messages. Valid values: `phase1`, `enable`, `disable`. AutoDiscoverySender pulumi.StringPtrInput // Enable/disable IPsec SA auto-negotiation. Valid values: `enable`, `disable`. AutoNegotiate pulumi.StringPtrInput // Comment. Comments pulumi.StringPtrInput // Enable/disable DHCP-IPsec. Valid values: `enable`, `disable`. DhcpIpsec pulumi.StringPtrInput // Phase2 DH group. Valid values: `1`, `2`, `5`, `14`, `15`, `16`, `17`, `18`, `19`, `20`, `21`, `27`, `28`, `29`, `30`, `31`, `32`. Dhgrp pulumi.StringPtrInput // Enable/disable applying DSCP value to the IPsec tunnel outer IP header. Valid values: `enable`, `disable`. Diffserv pulumi.StringPtrInput // DSCP value to be applied to the IPsec tunnel outer IP header. Diffservcode pulumi.StringPtrInput // Remote proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`. DstAddrType pulumi.StringPtrInput // Remote proxy ID IPv4 end. DstEndIp pulumi.StringPtrInput // Remote proxy ID IPv6 end. DstEndIp6 pulumi.StringPtrInput // Remote proxy ID name. DstName pulumi.StringPtrInput // Remote proxy ID name. DstName6 pulumi.StringPtrInput // Quick mode destination port (1 - 65535 or 0 for all). DstPort pulumi.IntPtrInput // Remote proxy ID IPv4 start. DstStartIp pulumi.StringPtrInput // Remote proxy ID IPv6 start. DstStartIp6 pulumi.StringPtrInput // Remote proxy ID IPv4 subnet. DstSubnet pulumi.StringPtrInput // Remote proxy ID IPv6 subnet. DstSubnet6 pulumi.StringPtrInput // ESP encapsulation mode. Valid values: `tunnel-mode`, `transport-mode`. Encapsulation pulumi.StringPtrInput // Enable/disable copying of the DSCP field in the ESP header to the inner IP header. Valid values: `phase1`, `enable`, `disable`. InboundDscpCopy pulumi.StringPtrInput // Enable/disable traffic selector narrowing for IKEv2 initiator. Valid values: `enable`, `disable`. InitiatorTsNarrow pulumi.StringPtrInput // Enable/disable setting and resetting of IPv4 'Don't Fragment' bit. Valid values: `enable`, `disable`. Ipv4Df pulumi.StringPtrInput // Enable/disable keep alive. Valid values: `enable`, `disable`. Keepalive pulumi.StringPtrInput // Keylife type. Valid values: `seconds`, `kbs`, `both`. KeylifeType pulumi.StringPtrInput // Phase2 key life in number of bytes of traffic (5120 - 4294967295). Keylifekbs pulumi.IntPtrInput // Phase2 key life in time in seconds (120 - 172800). Keylifeseconds pulumi.IntPtrInput // Enable/disable L2TP over IPsec. Valid values: `enable`, `disable`. L2tp pulumi.StringPtrInput // IPsec tunnel name. Name pulumi.StringPtrInput // Enable/disable PFS feature. Valid values: `enable`, `disable`. Pfs pulumi.StringPtrInput // Phase 1 determines the options required for phase 2. Phase1name pulumi.StringPtrInput // Phase2 proposal. Valid values: `null-md5`, `null-sha1`, `null-sha256`, `null-sha384`, `null-sha512`, `des-null`, `des-md5`, `des-sha1`, `des-sha256`, `des-sha384`, `des-sha512`, `3des-null`, `3des-md5`, `3des-sha1`, `3des-sha256`, `3des-sha384`, `3des-sha512`, `aes128-null`, `aes128-md5`, `aes128-sha1`, `aes128-sha256`, `aes128-sha384`, `aes128-sha512`, `aes128gcm`, `aes192-null`, `aes192-md5`, `aes192-sha1`, `aes192-sha256`, `aes192-sha384`, `aes192-sha512`, `aes256-null`, `aes256-md5`, `aes256-sha1`, `aes256-sha256`, `aes256-sha384`, `aes256-sha512`, `aes256gcm`, `chacha20poly1305`, `aria128-null`, `aria128-md5`, `aria128-sha1`, `aria128-sha256`, `aria128-sha384`, `aria128-sha512`, `aria192-null`, `aria192-md5`, `aria192-sha1`, `aria192-sha256`, `aria192-sha384`, `aria192-sha512`, `aria256-null`, `aria256-md5`, `aria256-sha1`, `aria256-sha256`, `aria256-sha384`, `aria256-sha512`, `seed-null`, `seed-md5`, `seed-sha1`, `seed-sha256`, `seed-sha384`, `seed-sha512`. Proposal pulumi.StringPtrInput // Quick mode protocol selector (1 - 255 or 0 for all). Protocol pulumi.IntPtrInput // Enable/disable replay detection. Valid values: `enable`, `disable`. Replay pulumi.StringPtrInput // Action for overlapping routes. Valid values: `use-old`, `use-new`, `allow`. RouteOverlap pulumi.StringPtrInput // Enable/disable single source IP restriction. Valid values: `enable`, `disable`. SingleSource pulumi.StringPtrInput // Local proxy ID type. Valid values: `subnet`, `range`, `ip`, `name`, `subnet6`, `range6`, `ip6`, `name6`. SrcAddrType pulumi.StringPtrInput // Local proxy ID end. SrcEndIp pulumi.StringPtrInput // Local proxy ID IPv6 end. SrcEndIp6 pulumi.StringPtrInput // Local proxy ID name. SrcName pulumi.StringPtrInput // Local proxy ID name. SrcName6 pulumi.StringPtrInput // Quick mode source port (1 - 65535 or 0 for all). SrcPort pulumi.IntPtrInput // Local proxy ID start. SrcStartIp pulumi.StringPtrInput // Local proxy ID IPv6 start. SrcStartIp6 pulumi.StringPtrInput // Local proxy ID subnet. SrcSubnet pulumi.StringPtrInput // Local proxy ID IPv6 subnet. SrcSubnet6 pulumi.StringPtrInput // Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter. Vdomparam pulumi.StringPtrInput }
func (Phase2interfaceState) ElementType ¶
func (Phase2interfaceState) ElementType() reflect.Type