Alibaba Cloud v3.87.0, Oct 18 25

Alibaba Cloud v3.87.0 published on Saturday, Oct 18, 2025 by Pulumi

alicloud.cloudfirewall.getControlPolicies

Alibaba Cloud v3.87.0 published on Saturday, Oct 18, 2025 by Pulumi

pulumi/pulumi-alicloud

Example Usage

Basic Usage

import * as pulumi from "@pulumi/pulumi";
import * as alicloud from "@pulumi/alicloud";

const example = alicloud.cloudfirewall.getControlPolicies({
    direction: "in",
});

import pulumi
import pulumi_alicloud as alicloud

example = alicloud.cloudfirewall.get_control_policies(direction="in")

package main

import (
	"github.com/pulumi/pulumi-alicloud/sdk/v3/go/alicloud/cloudfirewall"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := cloudfirewall.GetControlPolicies(ctx, &cloudfirewall.GetControlPoliciesArgs{
			Direction: "in",
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AliCloud = Pulumi.AliCloud;

return await Deployment.RunAsync(() => 
{
    var example = AliCloud.CloudFirewall.GetControlPolicies.Invoke(new()
    {
        Direction = "in",
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.alicloud.cloudfirewall.CloudfirewallFunctions;
import com.pulumi.alicloud.cloudfirewall.inputs.GetControlPoliciesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var example = CloudfirewallFunctions.getControlPolicies(GetControlPoliciesArgs.builder()
            .direction("in")
            .build());

    }
}

variables:
  example:
    fn::invoke:
      function: alicloud:cloudfirewall:getControlPolicies
      arguments:
        direction: in

Using getControlPolicies

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getControlPolicies(args: GetControlPoliciesArgs, opts?: InvokeOptions): Promise<GetControlPoliciesResult>
function getControlPoliciesOutput(args: GetControlPoliciesOutputArgs, opts?: InvokeOptions): Output<GetControlPoliciesResult>

def get_control_policies(acl_action: Optional[str] = None,
                         acl_uuid: Optional[str] = None,
                         description: Optional[str] = None,
                         destination: Optional[str] = None,
                         direction: Optional[str] = None,
                         ip_version: Optional[str] = None,
                         lang: Optional[str] = None,
                         output_file: Optional[str] = None,
                         proto: Optional[str] = None,
                         source: Optional[str] = None,
                         opts: Optional[InvokeOptions] = None) -> GetControlPoliciesResult
def get_control_policies_output(acl_action: Optional[pulumi.Input[str]] = None,
                         acl_uuid: Optional[pulumi.Input[str]] = None,
                         description: Optional[pulumi.Input[str]] = None,
                         destination: Optional[pulumi.Input[str]] = None,
                         direction: Optional[pulumi.Input[str]] = None,
                         ip_version: Optional[pulumi.Input[str]] = None,
                         lang: Optional[pulumi.Input[str]] = None,
                         output_file: Optional[pulumi.Input[str]] = None,
                         proto: Optional[pulumi.Input[str]] = None,
                         source: Optional[pulumi.Input[str]] = None,
                         opts: Optional[InvokeOptions] = None) -> Output[GetControlPoliciesResult]

func GetControlPolicies(ctx *Context, args *GetControlPoliciesArgs, opts ...InvokeOption) (*GetControlPoliciesResult, error)
func GetControlPoliciesOutput(ctx *Context, args *GetControlPoliciesOutputArgs, opts ...InvokeOption) GetControlPoliciesResultOutput

> Note: This function is named GetControlPolicies in the Go SDK.

public static class GetControlPolicies 
{
    public static Task<GetControlPoliciesResult> InvokeAsync(GetControlPoliciesArgs args, InvokeOptions? opts = null)
    public static Output<GetControlPoliciesResult> Invoke(GetControlPoliciesInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetControlPoliciesResult> getControlPolicies(GetControlPoliciesArgs args, InvokeOptions options)
public static Output<GetControlPoliciesResult> getControlPolicies(GetControlPoliciesArgs args, InvokeOptions options)

fn::invoke:
  function: alicloud:cloudfirewall/getControlPolicies:getControlPolicies
  arguments:
    # arguments dictionary

The following arguments are supported:

Direction string: The direction of the traffic to which the access control policy applies. Valid values: in, out.
AclAction string: The action that Cloud Firewall performs on the traffic. Valid values: accept, drop, log.
AclUuid string: The unique ID of the access control policy.
Description string: The description of the access control policy.
Destination string: The destination address defined in the access control policy.
IpVersion string: The IP version of the address in the access control policy.
Lang string: The language of the content within the response. Valid values: en, zh.
OutputFile string: File name where to save data source results (after running pulumi preview).
Proto string: The type of the protocol in the access control policy. Valid values: If direction is in, the valid value is ANY. If direction is out, the valid values are ANY, TCP, UDP, ICMP.
Source string: The source address in the access control policy.

Direction string: The direction of the traffic to which the access control policy applies. Valid values: in, out.
AclAction string: The action that Cloud Firewall performs on the traffic. Valid values: accept, drop, log.
AclUuid string: The unique ID of the access control policy.
Description string: The description of the access control policy.
Destination string: The destination address defined in the access control policy.
IpVersion string: The IP version of the address in the access control policy.
Lang string: The language of the content within the response. Valid values: en, zh.
OutputFile string: File name where to save data source results (after running pulumi preview).
Proto string: The type of the protocol in the access control policy. Valid values: If direction is in, the valid value is ANY. If direction is out, the valid values are ANY, TCP, UDP, ICMP.
Source string: The source address in the access control policy.

direction String: The direction of the traffic to which the access control policy applies. Valid values: in, out.
aclAction String: The action that Cloud Firewall performs on the traffic. Valid values: accept, drop, log.
aclUuid String: The unique ID of the access control policy.
description String: The description of the access control policy.
destination String: The destination address defined in the access control policy.
ipVersion String: The IP version of the address in the access control policy.
lang String: The language of the content within the response. Valid values: en, zh.
outputFile String: File name where to save data source results (after running pulumi preview).
proto String: The type of the protocol in the access control policy. Valid values: If direction is in, the valid value is ANY. If direction is out, the valid values are ANY, TCP, UDP, ICMP.
source String: The source address in the access control policy.

direction string: The direction of the traffic to which the access control policy applies. Valid values: in, out.
aclAction string: The action that Cloud Firewall performs on the traffic. Valid values: accept, drop, log.
aclUuid string: The unique ID of the access control policy.
description string: The description of the access control policy.
destination string: The destination address defined in the access control policy.
ipVersion string: The IP version of the address in the access control policy.
lang string: The language of the content within the response. Valid values: en, zh.
outputFile string: File name where to save data source results (after running pulumi preview).
proto string: The type of the protocol in the access control policy. Valid values: If direction is in, the valid value is ANY. If direction is out, the valid values are ANY, TCP, UDP, ICMP.
source string: The source address in the access control policy.

direction str: The direction of the traffic to which the access control policy applies. Valid values: in, out.
acl_action str: The action that Cloud Firewall performs on the traffic. Valid values: accept, drop, log.
acl_uuid str: The unique ID of the access control policy.
description str: The description of the access control policy.
destination str: The destination address defined in the access control policy.
ip_version str: The IP version of the address in the access control policy.
lang str: The language of the content within the response. Valid values: en, zh.
output_file str: File name where to save data source results (after running pulumi preview).
proto str: The type of the protocol in the access control policy. Valid values: If direction is in, the valid value is ANY. If direction is out, the valid values are ANY, TCP, UDP, ICMP.
source str: The source address in the access control policy.

direction String: The direction of the traffic to which the access control policy applies. Valid values: in, out.
aclAction String: The action that Cloud Firewall performs on the traffic. Valid values: accept, drop, log.
aclUuid String: The unique ID of the access control policy.
description String: The description of the access control policy.
destination String: The destination address defined in the access control policy.
ipVersion String: The IP version of the address in the access control policy.
lang String: The language of the content within the response. Valid values: en, zh.
outputFile String: File name where to save data source results (after running pulumi preview).
proto String: The type of the protocol in the access control policy. Valid values: If direction is in, the valid value is ANY. If direction is out, the valid values are ANY, TCP, UDP, ICMP.
source String: The source address in the access control policy.

getControlPolicies Result

The following output properties are available:

Direction string: The direction of the traffic to which the access control policy applies.
Id string: The provider-assigned unique ID for this managed resource.
Ids List<string>: A list of Control Policy IDs.
Policies List<Pulumi.AliCloud.CloudFirewall.Outputs.GetControlPoliciesPolicy>: A list of Cloud Firewall Control Policies. Each element contains the following attributes:
AclAction string: The action that Cloud Firewall performs on the traffic.
AclUuid string: The unique ID of the access control policy.
Description string: The description of the access control policy.
Destination string: The destination address in the access control policy.
IpVersion string
Lang string
OutputFile string
Proto string: The type of the protocol in the access control policy.
Source string: The source address in the access control policy.

Direction string: The direction of the traffic to which the access control policy applies.
Id string: The provider-assigned unique ID for this managed resource.
Ids []string: A list of Control Policy IDs.
Policies []GetControlPoliciesPolicy: A list of Cloud Firewall Control Policies. Each element contains the following attributes:
AclAction string: The action that Cloud Firewall performs on the traffic.
AclUuid string: The unique ID of the access control policy.
Description string: The description of the access control policy.
Destination string: The destination address in the access control policy.
IpVersion string
Lang string
OutputFile string
Proto string: The type of the protocol in the access control policy.
Source string: The source address in the access control policy.

direction String: The direction of the traffic to which the access control policy applies.
id String: The provider-assigned unique ID for this managed resource.
ids List<String>: A list of Control Policy IDs.
policies List<GetControlPoliciesPolicy>: A list of Cloud Firewall Control Policies. Each element contains the following attributes:
aclAction String: The action that Cloud Firewall performs on the traffic.
aclUuid String: The unique ID of the access control policy.
description String: The description of the access control policy.
destination String: The destination address in the access control policy.
ipVersion String
lang String
outputFile String
proto String: The type of the protocol in the access control policy.
source String: The source address in the access control policy.

direction string: The direction of the traffic to which the access control policy applies.
id string: The provider-assigned unique ID for this managed resource.
ids string[]: A list of Control Policy IDs.
policies GetControlPoliciesPolicy[]: A list of Cloud Firewall Control Policies. Each element contains the following attributes:
aclAction string: The action that Cloud Firewall performs on the traffic.
aclUuid string: The unique ID of the access control policy.
description string: The description of the access control policy.
destination string: The destination address in the access control policy.
ipVersion string
lang string
outputFile string
proto string: The type of the protocol in the access control policy.
source string: The source address in the access control policy.

direction str: The direction of the traffic to which the access control policy applies.
id str: The provider-assigned unique ID for this managed resource.
ids Sequence[str]: A list of Control Policy IDs.
policies Sequence[GetControlPoliciesPolicy]: A list of Cloud Firewall Control Policies. Each element contains the following attributes:
acl_action str: The action that Cloud Firewall performs on the traffic.
acl_uuid str: The unique ID of the access control policy.
description str: The description of the access control policy.
destination str: The destination address in the access control policy.
ip_version str
lang str
output_file str
proto str: The type of the protocol in the access control policy.
source str: The source address in the access control policy.

direction String: The direction of the traffic to which the access control policy applies.
id String: The provider-assigned unique ID for this managed resource.
ids List<String>: A list of Control Policy IDs.
policies List<Property Map>: A list of Cloud Firewall Control Policies. Each element contains the following attributes:
aclAction String: The action that Cloud Firewall performs on the traffic.
aclUuid String: The unique ID of the access control policy.
description String: The description of the access control policy.
destination String: The destination address in the access control policy.
ipVersion String
lang String
outputFile String
proto String: The type of the protocol in the access control policy.
source String: The source address in the access control policy.

Supporting Types

GetControlPoliciesPolicy

AclAction string: The action that Cloud Firewall performs on the traffic. Valid values: accept, drop, log.
AclUuid string: The unique ID of the access control policy.
ApplicationId string: The application ID in the access control policy.
ApplicationName string: The type of the application that the access control policy supports.
Description string: The description of the access control policy.
DestPort string: The destination port in the access control policy.
DestPortGroup string: The name of the destination port address book in the access control policy.
DestPortGroupPorts List<string>: The ports in the destination port address book.
DestPortType string: The type of the destination port in the access control policy.
Destination string: The destination address defined in the access control policy.
DestinationGroupCidrs List<string>: The CIDR blocks in the destination address book.
DestinationGroupType string: The type of the destination address book in the access control policy.
DestinationType string: The type of the destination address in the access control policy.
Direction string: The direction of the traffic to which the access control policy applies. Valid values: in, out.
DnsResult string: The DNS resolution result.
DnsResultTime string: The timestamp of the DNS resolution result.
HitTimes string: The number of hits for the access control policy.
Id string: The ID of the Control Policy. It formats as <acl_uuid>:<direction>.
Order int: The priority of the access control policy.
Proto string: The type of the protocol in the access control policy. Valid values: If direction is in, the valid value is ANY. If direction is out, the valid values are ANY, TCP, UDP, ICMP.
Release bool: Indicates whether the access control policy is enabled.
Source string: The source address in the access control policy.
SourceGroupCidrs List<string>: The CIDR blocks in the source address book.
SourceGroupType string: The type of the source address book in the access control policy.
SourceType string: The type of the source address in the access control policy.

AclAction string: The action that Cloud Firewall performs on the traffic. Valid values: accept, drop, log.
AclUuid string: The unique ID of the access control policy.
ApplicationId string: The application ID in the access control policy.
ApplicationName string: The type of the application that the access control policy supports.
Description string: The description of the access control policy.
DestPort string: The destination port in the access control policy.
DestPortGroup string: The name of the destination port address book in the access control policy.
DestPortGroupPorts []string: The ports in the destination port address book.
DestPortType string: The type of the destination port in the access control policy.
Destination string: The destination address defined in the access control policy.
DestinationGroupCidrs []string: The CIDR blocks in the destination address book.
DestinationGroupType string: The type of the destination address book in the access control policy.
DestinationType string: The type of the destination address in the access control policy.
Direction string: The direction of the traffic to which the access control policy applies. Valid values: in, out.
DnsResult string: The DNS resolution result.
DnsResultTime string: The timestamp of the DNS resolution result.
HitTimes string: The number of hits for the access control policy.
Id string: The ID of the Control Policy. It formats as <acl_uuid>:<direction>.
Order int: The priority of the access control policy.
Proto string: The type of the protocol in the access control policy. Valid values: If direction is in, the valid value is ANY. If direction is out, the valid values are ANY, TCP, UDP, ICMP.
Release bool: Indicates whether the access control policy is enabled.
Source string: The source address in the access control policy.
SourceGroupCidrs []string: The CIDR blocks in the source address book.
SourceGroupType string: The type of the source address book in the access control policy.
SourceType string: The type of the source address in the access control policy.

aclAction String: The action that Cloud Firewall performs on the traffic. Valid values: accept, drop, log.
aclUuid String: The unique ID of the access control policy.
applicationId String: The application ID in the access control policy.
applicationName String: The type of the application that the access control policy supports.
description String: The description of the access control policy.
destPort String: The destination port in the access control policy.
destPortGroup String: The name of the destination port address book in the access control policy.
destPortGroupPorts List<String>: The ports in the destination port address book.
destPortType String: The type of the destination port in the access control policy.
destination String: The destination address defined in the access control policy.
destinationGroupCidrs List<String>: The CIDR blocks in the destination address book.
destinationGroupType String: The type of the destination address book in the access control policy.
destinationType String: The type of the destination address in the access control policy.
direction String: The direction of the traffic to which the access control policy applies. Valid values: in, out.
dnsResult String: The DNS resolution result.
dnsResultTime String: The timestamp of the DNS resolution result.
hitTimes String: The number of hits for the access control policy.
id String: The ID of the Control Policy. It formats as <acl_uuid>:<direction>.
order Integer: The priority of the access control policy.
proto String: The type of the protocol in the access control policy. Valid values: If direction is in, the valid value is ANY. If direction is out, the valid values are ANY, TCP, UDP, ICMP.
release Boolean: Indicates whether the access control policy is enabled.
source String: The source address in the access control policy.
sourceGroupCidrs List<String>: The CIDR blocks in the source address book.
sourceGroupType String: The type of the source address book in the access control policy.
sourceType String: The type of the source address in the access control policy.

aclAction string: The action that Cloud Firewall performs on the traffic. Valid values: accept, drop, log.
aclUuid string: The unique ID of the access control policy.
applicationId string: The application ID in the access control policy.
applicationName string: The type of the application that the access control policy supports.
description string: The description of the access control policy.
destPort string: The destination port in the access control policy.
destPortGroup string: The name of the destination port address book in the access control policy.
destPortGroupPorts string[]: The ports in the destination port address book.
destPortType string: The type of the destination port in the access control policy.
destination string: The destination address defined in the access control policy.
destinationGroupCidrs string[]: The CIDR blocks in the destination address book.
destinationGroupType string: The type of the destination address book in the access control policy.
destinationType string: The type of the destination address in the access control policy.
direction string: The direction of the traffic to which the access control policy applies. Valid values: in, out.
dnsResult string: The DNS resolution result.
dnsResultTime string: The timestamp of the DNS resolution result.
hitTimes string: The number of hits for the access control policy.
id string: The ID of the Control Policy. It formats as <acl_uuid>:<direction>.
order number: The priority of the access control policy.
proto string: The type of the protocol in the access control policy. Valid values: If direction is in, the valid value is ANY. If direction is out, the valid values are ANY, TCP, UDP, ICMP.
release boolean: Indicates whether the access control policy is enabled.
source string: The source address in the access control policy.
sourceGroupCidrs string[]: The CIDR blocks in the source address book.
sourceGroupType string: The type of the source address book in the access control policy.
sourceType string: The type of the source address in the access control policy.

acl_action str: The action that Cloud Firewall performs on the traffic. Valid values: accept, drop, log.
acl_uuid str: The unique ID of the access control policy.
application_id str: The application ID in the access control policy.
application_name str: The type of the application that the access control policy supports.
description str: The description of the access control policy.
dest_port str: The destination port in the access control policy.
dest_port_group str: The name of the destination port address book in the access control policy.
dest_port_group_ports Sequence[str]: The ports in the destination port address book.
dest_port_type str: The type of the destination port in the access control policy.
destination str: The destination address defined in the access control policy.
destination_group_cidrs Sequence[str]: The CIDR blocks in the destination address book.
destination_group_type str: The type of the destination address book in the access control policy.
destination_type str: The type of the destination address in the access control policy.
direction str: The direction of the traffic to which the access control policy applies. Valid values: in, out.
dns_result str: The DNS resolution result.
dns_result_time str: The timestamp of the DNS resolution result.
hit_times str: The number of hits for the access control policy.
id str: The ID of the Control Policy. It formats as <acl_uuid>:<direction>.
order int: The priority of the access control policy.
proto str: The type of the protocol in the access control policy. Valid values: If direction is in, the valid value is ANY. If direction is out, the valid values are ANY, TCP, UDP, ICMP.
release bool: Indicates whether the access control policy is enabled.
source str: The source address in the access control policy.
source_group_cidrs Sequence[str]: The CIDR blocks in the source address book.
source_group_type str: The type of the source address book in the access control policy.
source_type str: The type of the source address in the access control policy.

aclAction String: The action that Cloud Firewall performs on the traffic. Valid values: accept, drop, log.
aclUuid String: The unique ID of the access control policy.
applicationId String: The application ID in the access control policy.
applicationName String: The type of the application that the access control policy supports.
description String: The description of the access control policy.
destPort String: The destination port in the access control policy.
destPortGroup String: The name of the destination port address book in the access control policy.
destPortGroupPorts List<String>: The ports in the destination port address book.
destPortType String: The type of the destination port in the access control policy.
destination String: The destination address defined in the access control policy.
destinationGroupCidrs List<String>: The CIDR blocks in the destination address book.
destinationGroupType String: The type of the destination address book in the access control policy.
destinationType String: The type of the destination address in the access control policy.
direction String: The direction of the traffic to which the access control policy applies. Valid values: in, out.
dnsResult String: The DNS resolution result.
dnsResultTime String: The timestamp of the DNS resolution result.
hitTimes String: The number of hits for the access control policy.
id String: The ID of the Control Policy. It formats as <acl_uuid>:<direction>.
order Number: The priority of the access control policy.
proto String: The type of the protocol in the access control policy. Valid values: If direction is in, the valid value is ANY. If direction is out, the valid values are ANY, TCP, UDP, ICMP.
release Boolean: Indicates whether the access control policy is enabled.
source String: The source address in the access control policy.
sourceGroupCidrs List<String>: The CIDR blocks in the source address book.
sourceGroupType String: The type of the source address book in the access control policy.
sourceType String: The type of the source address in the access control policy.

Package Details

Repository: Alibaba Cloud pulumi/pulumi-alicloud
License: Apache-2.0
Notes: This Pulumi package is based on the alicloud Terraform Provider.

Alibaba Cloud v3.87.0 published on Saturday, Oct 18, 2025 by Pulumi

pulumi/pulumi-alicloud

alicloud.cloudfirewall.getControlPolicies

On this page

On this page

Example Usage

Using getControlPolicies

getControlPolicies Result

Supporting Types

GetControlPoliciesPolicy

Package Details

On this page

On this page