Docs Home
avi 31.1.1 published on Monday, Apr 14, 2025 by vmware
avi.Securitypolicy
Explore with Pulumi AI
<!–
Copyright 2021 VMware, Inc.
SPDX-License-Identifier: Mozilla Public License 2.0
–>
layout: “avi”
page_title: “Avi: avi.Securitypolicy” sidebar_current: “docs-avi-resource-securitypolicy” description: |- Creates and manages Avi SecurityPolicy.
avi.Securitypolicy
The SecurityPolicy resource allows the creation and management of Avi SecurityPolicy
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as avi from "@pulumi/avi";
const foo = new avi.Securitypolicy("foo", {tenantRef: "/api/tenant/?name=admin"});
import pulumi
import pulumi_avi as avi
foo = avi.Securitypolicy("foo", tenant_ref="/api/tenant/?name=admin")
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/avi/v31/avi"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := avi.NewSecuritypolicy(ctx, "foo", &avi.SecuritypolicyArgs{
TenantRef: pulumi.String("/api/tenant/?name=admin"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Avi = Pulumi.Avi;
return await Deployment.RunAsync(() =>
{
var foo = new Avi.Securitypolicy("foo", new()
{
TenantRef = "/api/tenant/?name=admin",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.avi.Securitypolicy;
import com.pulumi.avi.SecuritypolicyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var foo = new Securitypolicy("foo", SecuritypolicyArgs.builder()
.tenantRef("/api/tenant/?name=admin")
.build());
}
}
resources:
foo:
type: avi:Securitypolicy
properties:
tenantRef: /api/tenant/?name=admin
Create Securitypolicy Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Securitypolicy(name: string, args?: SecuritypolicyArgs, opts?: CustomResourceOptions);@overload
def Securitypolicy(resource_name: str,
args: Optional[SecuritypolicyArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def Securitypolicy(resource_name: str,
opts: Optional[ResourceOptions] = None,
configpb_attributes: Optional[Sequence[SecuritypolicyConfigpbAttributeArgs]] = None,
description: Optional[str] = None,
dns_amplification_denyports: Optional[Sequence[SecuritypolicyDnsAmplificationDenyportArgs]] = None,
dns_attacks: Optional[Sequence[SecuritypolicyDnsAttackArgs]] = None,
dns_policy_index: Optional[str] = None,
markers: Optional[Sequence[SecuritypolicyMarkerArgs]] = None,
name: Optional[str] = None,
network_security_policy_index: Optional[str] = None,
oper_mode: Optional[str] = None,
securitypolicy_id: Optional[str] = None,
tcp_attacks: Optional[Sequence[SecuritypolicyTcpAttackArgs]] = None,
tenant_ref: Optional[str] = None,
udp_attacks: Optional[Sequence[SecuritypolicyUdpAttackArgs]] = None,
uuid: Optional[str] = None)func NewSecuritypolicy(ctx *Context, name string, args *SecuritypolicyArgs, opts ...ResourceOption) (*Securitypolicy, error)public Securitypolicy(string name, SecuritypolicyArgs? args = null, CustomResourceOptions? opts = null)
public Securitypolicy(String name, SecuritypolicyArgs args)
public Securitypolicy(String name, SecuritypolicyArgs args, CustomResourceOptions options)
type: avi:Securitypolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args SecuritypolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SecuritypolicyArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SecuritypolicyArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SecuritypolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SecuritypolicyArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var securitypolicyResource = new Avi.Securitypolicy("securitypolicyResource", new()
{
ConfigpbAttributes = new[]
{
new Avi.Inputs.SecuritypolicyConfigpbAttributeArgs
{
Version = "string",
},
},
Description = "string",
DnsAmplificationDenyports = new[]
{
new Avi.Inputs.SecuritypolicyDnsAmplificationDenyportArgs
{
MatchCriteria = "string",
Ports = new[]
{
0,
},
Ranges = new[]
{
new Avi.Inputs.SecuritypolicyDnsAmplificationDenyportRangeArgs
{
End = "string",
Start = "string",
},
},
},
},
DnsAttacks = new[]
{
new Avi.Inputs.SecuritypolicyDnsAttackArgs
{
Attacks = new[]
{
new Avi.Inputs.SecuritypolicyDnsAttackAttackArgs
{
AttackVector = "string",
Enabled = "string",
MaxMitigationAge = "string",
MitigationActions = new[]
{
new Avi.Inputs.SecuritypolicyDnsAttackAttackMitigationActionArgs
{
Deny = "string",
},
},
Threshold = "string",
},
},
OperMode = "string",
},
},
DnsPolicyIndex = "string",
Markers = new[]
{
new Avi.Inputs.SecuritypolicyMarkerArgs
{
Key = "string",
Values = new[]
{
"string",
},
},
},
Name = "string",
NetworkSecurityPolicyIndex = "string",
OperMode = "string",
SecuritypolicyId = "string",
TcpAttacks = new[]
{
null,
},
TenantRef = "string",
UdpAttacks = new[]
{
null,
},
Uuid = "string",
});
example, err := avi.NewSecuritypolicy(ctx, "securitypolicyResource", &avi.SecuritypolicyArgs{
ConfigpbAttributes: avi.SecuritypolicyConfigpbAttributeArray{
&avi.SecuritypolicyConfigpbAttributeArgs{
Version: pulumi.String("string"),
},
},
Description: pulumi.String("string"),
DnsAmplificationDenyports: avi.SecuritypolicyDnsAmplificationDenyportArray{
&avi.SecuritypolicyDnsAmplificationDenyportArgs{
MatchCriteria: pulumi.String("string"),
Ports: pulumi.Float64Array{
pulumi.Float64(0),
},
Ranges: avi.SecuritypolicyDnsAmplificationDenyportRangeArray{
&avi.SecuritypolicyDnsAmplificationDenyportRangeArgs{
End: pulumi.String("string"),
Start: pulumi.String("string"),
},
},
},
},
DnsAttacks: avi.SecuritypolicyDnsAttackArray{
&avi.SecuritypolicyDnsAttackArgs{
Attacks: avi.SecuritypolicyDnsAttackAttackArray{
&avi.SecuritypolicyDnsAttackAttackArgs{
AttackVector: pulumi.String("string"),
Enabled: pulumi.String("string"),
MaxMitigationAge: pulumi.String("string"),
MitigationActions: avi.SecuritypolicyDnsAttackAttackMitigationActionArray{
&avi.SecuritypolicyDnsAttackAttackMitigationActionArgs{
Deny: pulumi.String("string"),
},
},
Threshold: pulumi.String("string"),
},
},
OperMode: pulumi.String("string"),
},
},
DnsPolicyIndex: pulumi.String("string"),
Markers: avi.SecuritypolicyMarkerArray{
&avi.SecuritypolicyMarkerArgs{
Key: pulumi.String("string"),
Values: pulumi.StringArray{
pulumi.String("string"),
},
},
},
Name: pulumi.String("string"),
NetworkSecurityPolicyIndex: pulumi.String("string"),
OperMode: pulumi.String("string"),
SecuritypolicyId: pulumi.String("string"),
TcpAttacks: avi.SecuritypolicyTcpAttackArray{
&avi.SecuritypolicyTcpAttackArgs{},
},
TenantRef: pulumi.String("string"),
UdpAttacks: avi.SecuritypolicyUdpAttackArray{
&avi.SecuritypolicyUdpAttackArgs{},
},
Uuid: pulumi.String("string"),
})
var securitypolicyResource = new Securitypolicy("securitypolicyResource", SecuritypolicyArgs.builder()
.configpbAttributes(SecuritypolicyConfigpbAttributeArgs.builder()
.version("string")
.build())
.description("string")
.dnsAmplificationDenyports(SecuritypolicyDnsAmplificationDenyportArgs.builder()
.matchCriteria("string")
.ports(0)
.ranges(SecuritypolicyDnsAmplificationDenyportRangeArgs.builder()
.end("string")
.start("string")
.build())
.build())
.dnsAttacks(SecuritypolicyDnsAttackArgs.builder()
.attacks(SecuritypolicyDnsAttackAttackArgs.builder()
.attackVector("string")
.enabled("string")
.maxMitigationAge("string")
.mitigationActions(SecuritypolicyDnsAttackAttackMitigationActionArgs.builder()
.deny("string")
.build())
.threshold("string")
.build())
.operMode("string")
.build())
.dnsPolicyIndex("string")
.markers(SecuritypolicyMarkerArgs.builder()
.key("string")
.values("string")
.build())
.name("string")
.networkSecurityPolicyIndex("string")
.operMode("string")
.securitypolicyId("string")
.tcpAttacks()
.tenantRef("string")
.udpAttacks()
.uuid("string")
.build());
securitypolicy_resource = avi.Securitypolicy("securitypolicyResource",
configpb_attributes=[{
"version": "string",
}],
description="string",
dns_amplification_denyports=[{
"match_criteria": "string",
"ports": [0],
"ranges": [{
"end": "string",
"start": "string",
}],
}],
dns_attacks=[{
"attacks": [{
"attack_vector": "string",
"enabled": "string",
"max_mitigation_age": "string",
"mitigation_actions": [{
"deny": "string",
}],
"threshold": "string",
}],
"oper_mode": "string",
}],
dns_policy_index="string",
markers=[{
"key": "string",
"values": ["string"],
}],
name="string",
network_security_policy_index="string",
oper_mode="string",
securitypolicy_id="string",
tcp_attacks=[{}],
tenant_ref="string",
udp_attacks=[{}],
uuid="string")
const securitypolicyResource = new avi.Securitypolicy("securitypolicyResource", {
configpbAttributes: [{
version: "string",
}],
description: "string",
dnsAmplificationDenyports: [{
matchCriteria: "string",
ports: [0],
ranges: [{
end: "string",
start: "string",
}],
}],
dnsAttacks: [{
attacks: [{
attackVector: "string",
enabled: "string",
maxMitigationAge: "string",
mitigationActions: [{
deny: "string",
}],
threshold: "string",
}],
operMode: "string",
}],
dnsPolicyIndex: "string",
markers: [{
key: "string",
values: ["string"],
}],
name: "string",
networkSecurityPolicyIndex: "string",
operMode: "string",
securitypolicyId: "string",
tcpAttacks: [{}],
tenantRef: "string",
udpAttacks: [{}],
uuid: "string",
});
type: avi:Securitypolicy
properties:
configpbAttributes:
- version: string
description: string
dnsAmplificationDenyports:
- matchCriteria: string
ports:
- 0
ranges:
- end: string
start: string
dnsAttacks:
- attacks:
- attackVector: string
enabled: string
maxMitigationAge: string
mitigationActions:
- deny: string
threshold: string
operMode: string
dnsPolicyIndex: string
markers:
- key: string
values:
- string
name: string
networkSecurityPolicyIndex: string
operMode: string
securitypolicyId: string
tcpAttacks:
- {}
tenantRef: string
udpAttacks:
- {}
uuid: string
Securitypolicy Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Securitypolicy resource accepts the following input properties:
- Configpb
Attributes List<SecuritypolicyConfigpb Attribute> - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Description string
- Security policy is used to specify various configuration information used to perform distributed denial of service (ddos) attacks detection and mitigation. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dns
Amplification List<SecuritypolicyDenyports Dns Amplification Denyport> - Source ports and port ranges to deny in dns amplification attacks. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dns
Attacks List<SecuritypolicyDns Attack> - Attacks utilizing the dns protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dns
Policy stringIndex - Index of the dns policy to use for the mitigation rules applied to the dns attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Markers
List<Securitypolicy
Marker> - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Name string
- The name of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Network
Security stringPolicy Index - Index of the network security policy to use for the mitigation rules applied to the attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Oper
Mode string - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Securitypolicy
Id string - Tcp
Attacks List<SecuritypolicyTcp Attack> - Attacks utilizing the tcp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Tenant
Ref string - Tenancy of the security policy. It is a reference to an object of type tenant. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Udp
Attacks List<SecuritypolicyUdp Attack> - Attacks utilizing the udp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Uuid string
- The uuid of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Configpb
Attributes []SecuritypolicyConfigpb Attribute Args - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Description string
- Security policy is used to specify various configuration information used to perform distributed denial of service (ddos) attacks detection and mitigation. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dns
Amplification []SecuritypolicyDenyports Dns Amplification Denyport Args - Source ports and port ranges to deny in dns amplification attacks. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dns
Attacks []SecuritypolicyDns Attack Args - Attacks utilizing the dns protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dns
Policy stringIndex - Index of the dns policy to use for the mitigation rules applied to the dns attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Markers
[]Securitypolicy
Marker Args - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Name string
- The name of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Network
Security stringPolicy Index - Index of the network security policy to use for the mitigation rules applied to the attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Oper
Mode string - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Securitypolicy
Id string - Tcp
Attacks []SecuritypolicyTcp Attack Args - Attacks utilizing the tcp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Tenant
Ref string - Tenancy of the security policy. It is a reference to an object of type tenant. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Udp
Attacks []SecuritypolicyUdp Attack Args - Attacks utilizing the udp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Uuid string
- The uuid of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- configpb
Attributes List<SecuritypolicyConfigpb Attribute> - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- description String
- Security policy is used to specify various configuration information used to perform distributed denial of service (ddos) attacks detection and mitigation. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Amplification List<SecuritypolicyDenyports Dns Amplification Denyport> - Source ports and port ranges to deny in dns amplification attacks. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Attacks List<SecuritypolicyDns Attack> - Attacks utilizing the dns protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Policy StringIndex - Index of the dns policy to use for the mitigation rules applied to the dns attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers
List<Securitypolicy
Marker> - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name String
- The name of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- network
Security StringPolicy Index - Index of the network security policy to use for the mitigation rules applied to the attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- oper
Mode String - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- securitypolicy
Id String - tcp
Attacks List<SecuritypolicyTcp Attack> - Attacks utilizing the tcp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant
Ref String - Tenancy of the security policy. It is a reference to an object of type tenant. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- udp
Attacks List<SecuritypolicyUdp Attack> - Attacks utilizing the udp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid String
- The uuid of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- configpb
Attributes SecuritypolicyConfigpb Attribute[] - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- description string
- Security policy is used to specify various configuration information used to perform distributed denial of service (ddos) attacks detection and mitigation. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Amplification SecuritypolicyDenyports Dns Amplification Denyport[] - Source ports and port ranges to deny in dns amplification attacks. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Attacks SecuritypolicyDns Attack[] - Attacks utilizing the dns protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Policy stringIndex - Index of the dns policy to use for the mitigation rules applied to the dns attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers
Securitypolicy
Marker[] - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name string
- The name of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- network
Security stringPolicy Index - Index of the network security policy to use for the mitigation rules applied to the attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- oper
Mode string - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- securitypolicy
Id string - tcp
Attacks SecuritypolicyTcp Attack[] - Attacks utilizing the tcp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant
Ref string - Tenancy of the security policy. It is a reference to an object of type tenant. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- udp
Attacks SecuritypolicyUdp Attack[] - Attacks utilizing the udp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid string
- The uuid of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- configpb_
attributes Sequence[SecuritypolicyConfigpb Attribute Args] - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- description str
- Security policy is used to specify various configuration information used to perform distributed denial of service (ddos) attacks detection and mitigation. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns_
amplification_ Sequence[Securitypolicydenyports Dns Amplification Denyport Args] - Source ports and port ranges to deny in dns amplification attacks. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns_
attacks Sequence[SecuritypolicyDns Attack Args] - Attacks utilizing the dns protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns_
policy_ strindex - Index of the dns policy to use for the mitigation rules applied to the dns attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers
Sequence[Securitypolicy
Marker Args] - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name str
- The name of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- network_
security_ strpolicy_ index - Index of the network security policy to use for the mitigation rules applied to the attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- oper_
mode str - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- securitypolicy_
id str - tcp_
attacks Sequence[SecuritypolicyTcp Attack Args] - Attacks utilizing the tcp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant_
ref str - Tenancy of the security policy. It is a reference to an object of type tenant. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- udp_
attacks Sequence[SecuritypolicyUdp Attack Args] - Attacks utilizing the udp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid str
- The uuid of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- configpb
Attributes List<Property Map> - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- description String
- Security policy is used to specify various configuration information used to perform distributed denial of service (ddos) attacks detection and mitigation. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Amplification List<Property Map>Denyports - Source ports and port ranges to deny in dns amplification attacks. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Attacks List<Property Map> - Attacks utilizing the dns protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Policy StringIndex - Index of the dns policy to use for the mitigation rules applied to the dns attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers List<Property Map>
- List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name String
- The name of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- network
Security StringPolicy Index - Index of the network security policy to use for the mitigation rules applied to the attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- oper
Mode String - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- securitypolicy
Id String - tcp
Attacks List<Property Map> - Attacks utilizing the tcp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant
Ref String - Tenancy of the security policy. It is a reference to an object of type tenant. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- udp
Attacks List<Property Map> - Attacks utilizing the udp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid String
- The uuid of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Outputs
All input properties are implicitly available as output properties. Additionally, the Securitypolicy resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Securitypolicy Resource
Get an existing Securitypolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SecuritypolicyState, opts?: CustomResourceOptions): Securitypolicy@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
configpb_attributes: Optional[Sequence[SecuritypolicyConfigpbAttributeArgs]] = None,
description: Optional[str] = None,
dns_amplification_denyports: Optional[Sequence[SecuritypolicyDnsAmplificationDenyportArgs]] = None,
dns_attacks: Optional[Sequence[SecuritypolicyDnsAttackArgs]] = None,
dns_policy_index: Optional[str] = None,
markers: Optional[Sequence[SecuritypolicyMarkerArgs]] = None,
name: Optional[str] = None,
network_security_policy_index: Optional[str] = None,
oper_mode: Optional[str] = None,
securitypolicy_id: Optional[str] = None,
tcp_attacks: Optional[Sequence[SecuritypolicyTcpAttackArgs]] = None,
tenant_ref: Optional[str] = None,
udp_attacks: Optional[Sequence[SecuritypolicyUdpAttackArgs]] = None,
uuid: Optional[str] = None) -> Securitypolicyfunc GetSecuritypolicy(ctx *Context, name string, id IDInput, state *SecuritypolicyState, opts ...ResourceOption) (*Securitypolicy, error)public static Securitypolicy Get(string name, Input<string> id, SecuritypolicyState? state, CustomResourceOptions? opts = null)public static Securitypolicy get(String name, Output<String> id, SecuritypolicyState state, CustomResourceOptions options)resources: _: type: avi:Securitypolicy get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Configpb
Attributes List<SecuritypolicyConfigpb Attribute> - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Description string
- Security policy is used to specify various configuration information used to perform distributed denial of service (ddos) attacks detection and mitigation. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dns
Amplification List<SecuritypolicyDenyports Dns Amplification Denyport> - Source ports and port ranges to deny in dns amplification attacks. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dns
Attacks List<SecuritypolicyDns Attack> - Attacks utilizing the dns protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dns
Policy stringIndex - Index of the dns policy to use for the mitigation rules applied to the dns attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Markers
List<Securitypolicy
Marker> - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Name string
- The name of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Network
Security stringPolicy Index - Index of the network security policy to use for the mitigation rules applied to the attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Oper
Mode string - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Securitypolicy
Id string - Tcp
Attacks List<SecuritypolicyTcp Attack> - Attacks utilizing the tcp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Tenant
Ref string - Tenancy of the security policy. It is a reference to an object of type tenant. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Udp
Attacks List<SecuritypolicyUdp Attack> - Attacks utilizing the udp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Uuid string
- The uuid of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Configpb
Attributes []SecuritypolicyConfigpb Attribute Args - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Description string
- Security policy is used to specify various configuration information used to perform distributed denial of service (ddos) attacks detection and mitigation. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dns
Amplification []SecuritypolicyDenyports Dns Amplification Denyport Args - Source ports and port ranges to deny in dns amplification attacks. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dns
Attacks []SecuritypolicyDns Attack Args - Attacks utilizing the dns protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dns
Policy stringIndex - Index of the dns policy to use for the mitigation rules applied to the dns attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Markers
[]Securitypolicy
Marker Args - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Name string
- The name of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Network
Security stringPolicy Index - Index of the network security policy to use for the mitigation rules applied to the attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Oper
Mode string - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Securitypolicy
Id string - Tcp
Attacks []SecuritypolicyTcp Attack Args - Attacks utilizing the tcp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Tenant
Ref string - Tenancy of the security policy. It is a reference to an object of type tenant. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Udp
Attacks []SecuritypolicyUdp Attack Args - Attacks utilizing the udp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Uuid string
- The uuid of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- configpb
Attributes List<SecuritypolicyConfigpb Attribute> - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- description String
- Security policy is used to specify various configuration information used to perform distributed denial of service (ddos) attacks detection and mitigation. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Amplification List<SecuritypolicyDenyports Dns Amplification Denyport> - Source ports and port ranges to deny in dns amplification attacks. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Attacks List<SecuritypolicyDns Attack> - Attacks utilizing the dns protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Policy StringIndex - Index of the dns policy to use for the mitigation rules applied to the dns attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers
List<Securitypolicy
Marker> - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name String
- The name of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- network
Security StringPolicy Index - Index of the network security policy to use for the mitigation rules applied to the attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- oper
Mode String - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- securitypolicy
Id String - tcp
Attacks List<SecuritypolicyTcp Attack> - Attacks utilizing the tcp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant
Ref String - Tenancy of the security policy. It is a reference to an object of type tenant. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- udp
Attacks List<SecuritypolicyUdp Attack> - Attacks utilizing the udp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid String
- The uuid of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- configpb
Attributes SecuritypolicyConfigpb Attribute[] - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- description string
- Security policy is used to specify various configuration information used to perform distributed denial of service (ddos) attacks detection and mitigation. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Amplification SecuritypolicyDenyports Dns Amplification Denyport[] - Source ports and port ranges to deny in dns amplification attacks. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Attacks SecuritypolicyDns Attack[] - Attacks utilizing the dns protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Policy stringIndex - Index of the dns policy to use for the mitigation rules applied to the dns attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers
Securitypolicy
Marker[] - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name string
- The name of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- network
Security stringPolicy Index - Index of the network security policy to use for the mitigation rules applied to the attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- oper
Mode string - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- securitypolicy
Id string - tcp
Attacks SecuritypolicyTcp Attack[] - Attacks utilizing the tcp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant
Ref string - Tenancy of the security policy. It is a reference to an object of type tenant. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- udp
Attacks SecuritypolicyUdp Attack[] - Attacks utilizing the udp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid string
- The uuid of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- configpb_
attributes Sequence[SecuritypolicyConfigpb Attribute Args] - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- description str
- Security policy is used to specify various configuration information used to perform distributed denial of service (ddos) attacks detection and mitigation. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns_
amplification_ Sequence[Securitypolicydenyports Dns Amplification Denyport Args] - Source ports and port ranges to deny in dns amplification attacks. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns_
attacks Sequence[SecuritypolicyDns Attack Args] - Attacks utilizing the dns protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns_
policy_ strindex - Index of the dns policy to use for the mitigation rules applied to the dns attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers
Sequence[Securitypolicy
Marker Args] - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name str
- The name of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- network_
security_ strpolicy_ index - Index of the network security policy to use for the mitigation rules applied to the attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- oper_
mode str - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- securitypolicy_
id str - tcp_
attacks Sequence[SecuritypolicyTcp Attack Args] - Attacks utilizing the tcp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant_
ref str - Tenancy of the security policy. It is a reference to an object of type tenant. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- udp_
attacks Sequence[SecuritypolicyUdp Attack Args] - Attacks utilizing the udp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid str
- The uuid of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- configpb
Attributes List<Property Map> - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- description String
- Security policy is used to specify various configuration information used to perform distributed denial of service (ddos) attacks detection and mitigation. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Amplification List<Property Map>Denyports - Source ports and port ranges to deny in dns amplification attacks. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Attacks List<Property Map> - Attacks utilizing the dns protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dns
Policy StringIndex - Index of the dns policy to use for the mitigation rules applied to the dns attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers List<Property Map>
- List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name String
- The name of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- network
Security StringPolicy Index - Index of the network security policy to use for the mitigation rules applied to the attacks. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- oper
Mode String - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- securitypolicy
Id String - tcp
Attacks List<Property Map> - Attacks utilizing the tcp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant
Ref String - Tenancy of the security policy. It is a reference to an object of type tenant. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- udp
Attacks List<Property Map> - Attacks utilizing the udp protocol operations. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid String
- The uuid of the security policy. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Supporting Types
SecuritypolicyConfigpbAttribute, SecuritypolicyConfigpbAttributeArgs
- Version string
- Version string
- version String
- version string
- version str
- version String
SecuritypolicyDnsAmplificationDenyport, SecuritypolicyDnsAmplificationDenyportArgs
- Match
Criteria string - Ports List<double>
- Ranges
List<Securitypolicy
Dns Amplification Denyport Range>
- Match
Criteria string - Ports []float64
- Ranges
[]Securitypolicy
Dns Amplification Denyport Range
- match
Criteria String - ports List<Double>
- ranges
List<Securitypolicy
Dns Amplification Denyport Range>
- match_
criteria str - ports Sequence[float]
- ranges
Sequence[Securitypolicy
Dns Amplification Denyport Range]
- match
Criteria String - ports List<Number>
- ranges List<Property Map>
SecuritypolicyDnsAmplificationDenyportRange, SecuritypolicyDnsAmplificationDenyportRangeArgs
SecuritypolicyDnsAttack, SecuritypolicyDnsAttackArgs
- Attacks
List<Securitypolicy
Dns Attack Attack> - Oper
Mode string - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Attacks
[]Securitypolicy
Dns Attack Attack - Oper
Mode string - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- attacks
List<Securitypolicy
Dns Attack Attack> - oper
Mode String - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- attacks
Securitypolicy
Dns Attack Attack[] - oper
Mode string - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- attacks
Sequence[Securitypolicy
Dns Attack Attack] - oper_
mode str - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- attacks List<Property Map>
- oper
Mode String - Mode of dealing with the attacks - perform detection only, or detect and mitigate the attacks. Enum options - DETECTION, MITIGATION. Field introduced in 18.2.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
SecuritypolicyDnsAttackAttack, SecuritypolicyDnsAttackAttackArgs
- Attack
Vector string - Enabled string
- Max
Mitigation stringAge - Mitigation
Actions List<SecuritypolicyDns Attack Attack Mitigation Action> - Threshold string
- Attack
Vector string - Enabled string
- Max
Mitigation stringAge - Mitigation
Actions []SecuritypolicyDns Attack Attack Mitigation Action - Threshold string
- attack
Vector String - enabled String
- max
Mitigation StringAge - mitigation
Actions List<SecuritypolicyDns Attack Attack Mitigation Action> - threshold String
- attack
Vector string - enabled string
- max
Mitigation stringAge - mitigation
Actions SecuritypolicyDns Attack Attack Mitigation Action[] - threshold string
- attack
Vector String - enabled String
- max
Mitigation StringAge - mitigation
Actions List<Property Map> - threshold String
SecuritypolicyDnsAttackAttackMitigationAction, SecuritypolicyDnsAttackAttackMitigationActionArgs
- Deny string
- Deny string
- deny String
- deny string
- deny str
- deny String
SecuritypolicyMarker, SecuritypolicyMarkerArgs
Package Details
- Repository
- avi vmware/terraform-provider-avi
- License
- Notes
- This Pulumi package is based on the
aviTerraform Provider.