aviatrix logo
Aviatrix v0.0.10, Jan 21 23

aviatrix.AviatrixSite2Cloud

Import

site2cloud can be imported using the connection_name and vpc_id, e.g.

 $ pulumi import aviatrix:index/aviatrixSite2Cloud:AviatrixSite2Cloud test connection_name~vpc_id

Create AviatrixSite2Cloud Resource

new AviatrixSite2Cloud(name: string, args: AviatrixSite2CloudArgs, opts?: CustomResourceOptions);
@overload
def AviatrixSite2Cloud(resource_name: str,
                       opts: Optional[ResourceOptions] = None,
                       auth_type: Optional[str] = None,
                       backup_gateway_name: Optional[str] = None,
                       backup_local_tunnel_ip: Optional[str] = None,
                       backup_pre_shared_key: Optional[str] = None,
                       backup_remote_gateway_ip: Optional[str] = None,
                       backup_remote_gateway_latitude: Optional[float] = None,
                       backup_remote_gateway_longitude: Optional[float] = None,
                       backup_remote_identifier: Optional[str] = None,
                       backup_remote_tunnel_ip: Optional[str] = None,
                       ca_cert_tag_name: Optional[str] = None,
                       connection_name: Optional[str] = None,
                       connection_type: Optional[str] = None,
                       custom_algorithms: Optional[bool] = None,
                       custom_mapped: Optional[bool] = None,
                       enable_active_active: Optional[bool] = None,
                       enable_dead_peer_detection: Optional[bool] = None,
                       enable_event_triggered_ha: Optional[bool] = None,
                       enable_ikev2: Optional[bool] = None,
                       enable_single_ip_ha: Optional[bool] = None,
                       forward_traffic_to_transit: Optional[bool] = None,
                       ha_enabled: Optional[bool] = None,
                       local_destination_real_cidrs: Optional[Sequence[str]] = None,
                       local_destination_virtual_cidrs: Optional[Sequence[str]] = None,
                       local_source_real_cidrs: Optional[Sequence[str]] = None,
                       local_source_virtual_cidrs: Optional[Sequence[str]] = None,
                       local_subnet_cidr: Optional[str] = None,
                       local_subnet_virtual: Optional[str] = None,
                       local_tunnel_ip: Optional[str] = None,
                       phase1_authentication: Optional[str] = None,
                       phase1_dh_groups: Optional[str] = None,
                       phase1_encryption: Optional[str] = None,
                       phase1_remote_identifiers: Optional[Sequence[str]] = None,
                       phase2_authentication: Optional[str] = None,
                       phase2_dh_groups: Optional[str] = None,
                       phase2_encryption: Optional[str] = None,
                       pre_shared_key: Optional[str] = None,
                       primary_cloud_gateway_name: Optional[str] = None,
                       private_route_encryption: Optional[bool] = None,
                       remote_destination_real_cidrs: Optional[Sequence[str]] = None,
                       remote_destination_virtual_cidrs: Optional[Sequence[str]] = None,
                       remote_gateway_ip: Optional[str] = None,
                       remote_gateway_latitude: Optional[float] = None,
                       remote_gateway_longitude: Optional[float] = None,
                       remote_gateway_type: Optional[str] = None,
                       remote_identifier: Optional[str] = None,
                       remote_source_real_cidrs: Optional[Sequence[str]] = None,
                       remote_source_virtual_cidrs: Optional[Sequence[str]] = None,
                       remote_subnet_cidr: Optional[str] = None,
                       remote_subnet_virtual: Optional[str] = None,
                       remote_tunnel_ip: Optional[str] = None,
                       route_table_lists: Optional[Sequence[str]] = None,
                       ssl_server_pool: Optional[str] = None,
                       tunnel_type: Optional[str] = None,
                       vpc_id: Optional[str] = None)
@overload
def AviatrixSite2Cloud(resource_name: str,
                       args: AviatrixSite2CloudArgs,
                       opts: Optional[ResourceOptions] = None)
func NewAviatrixSite2Cloud(ctx *Context, name string, args AviatrixSite2CloudArgs, opts ...ResourceOption) (*AviatrixSite2Cloud, error)
public AviatrixSite2Cloud(string name, AviatrixSite2CloudArgs args, CustomResourceOptions? opts = null)
public AviatrixSite2Cloud(String name, AviatrixSite2CloudArgs args)
public AviatrixSite2Cloud(String name, AviatrixSite2CloudArgs args, CustomResourceOptions options)
type: aviatrix:AviatrixSite2Cloud
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string
The unique name of the resource.
args AviatrixSite2CloudArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name str
The unique name of the resource.
args AviatrixSite2CloudArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name string
The unique name of the resource.
args AviatrixSite2CloudArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name string
The unique name of the resource.
args AviatrixSite2CloudArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name String
The unique name of the resource.
args AviatrixSite2CloudArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

AviatrixSite2Cloud Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The AviatrixSite2Cloud resource accepts the following input properties:

ConnectionName string

Site2Cloud connection name.

ConnectionType string

Connection type. Valid Values: "mapped", "unmapped".

PrimaryCloudGatewayName string

Primary cloud gateway name.

RemoteGatewayIp string

Remote gateway IP.

RemoteGatewayType string

Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".

TunnelType string

Site2Cloud tunnel type. Valid Values: "policy", "route".

VpcId string

VPC ID of the cloud gateway.

AuthType string

Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.

BackupGatewayName string

Backup gateway name. NOTE: Please see notes here regarding HA requirements.

BackupLocalTunnelIp string

Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

BackupPreSharedKey string

Backup Pre-Shared Key.

BackupRemoteGatewayIp string

Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.

BackupRemoteGatewayLatitude double

Latitude of backup remote gateway. Does not support refresh.

BackupRemoteGatewayLongitude double

Longitude of backup remote gateway. Does not support refresh.

BackupRemoteIdentifier string

Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".

BackupRemoteTunnelIp string

Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

CaCertTagName string

Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.

CustomAlgorithms bool

Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.

CustomMapped bool

Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.

EnableActiveActive bool

Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.

EnableDeadPeerDetection bool

Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9

EnableEventTriggeredHa bool

Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.

EnableIkev2 bool

Switch to enable IKEv2. Valid values: true, false. Default value: false.

EnableSingleIpHa bool

Enable single IP HA feature. Available as of provider version 2.19+.

ForwardTrafficToTransit bool

Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.

HaEnabled bool

Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.

LocalDestinationRealCidrs List<string>

List of Local Initiated Traffic Destination Real CIDRs.

LocalDestinationVirtualCidrs List<string>

List of Local Initiated Traffic Destination Virtual CIDRs.

LocalSourceRealCidrs List<string>

List of Local Initiated Traffic Source Real CIDRs.

LocalSourceVirtualCidrs List<string>

List of Local Initiated Traffic Source Virtual CIDRs.

LocalSubnetCidr string

Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.

LocalSubnetVirtual string

Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

LocalTunnelIp string

Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

Phase1Authentication string

Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".

Phase1DhGroups string

Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

Phase1Encryption string

Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".

Phase1RemoteIdentifiers List<string>

Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.

Phase2Authentication string

Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".

Phase2DhGroups string

Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

Phase2Encryption string

Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".

PreSharedKey string

Pre-Shared Key.

PrivateRouteEncryption bool

Private route encryption switch. Valid values: true, false.

RemoteDestinationRealCidrs List<string>

List of Remote Initiated Traffic Destination Real CIDRs.

RemoteDestinationVirtualCidrs List<string>

List of Remote Initiated Traffic Destination Virtual CIDRs.

RemoteGatewayLatitude double

Latitude of remote gateway. Does not support refresh.

RemoteGatewayLongitude double

Longitude of remote gateway. Does not support refresh.

RemoteIdentifier string

Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".

RemoteSourceRealCidrs List<string>

List of Remote Initiated Traffic Source Real CIDRs.

RemoteSourceVirtualCidrs List<string>

List of Remote Initiated Traffic Source Virtual CIDRs.

RemoteSubnetCidr string

Remote subnet CIDR. Not required for custom_mapped connection.

RemoteSubnetVirtual string

Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

RemoteTunnelIp string

Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

RouteTableLists List<string>

Route tables to modify.

SslServerPool string

Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.

ConnectionName string

Site2Cloud connection name.

ConnectionType string

Connection type. Valid Values: "mapped", "unmapped".

PrimaryCloudGatewayName string

Primary cloud gateway name.

RemoteGatewayIp string

Remote gateway IP.

RemoteGatewayType string

Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".

TunnelType string

Site2Cloud tunnel type. Valid Values: "policy", "route".

VpcId string

VPC ID of the cloud gateway.

AuthType string

Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.

BackupGatewayName string

Backup gateway name. NOTE: Please see notes here regarding HA requirements.

BackupLocalTunnelIp string

Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

BackupPreSharedKey string

Backup Pre-Shared Key.

BackupRemoteGatewayIp string

Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.

BackupRemoteGatewayLatitude float64

Latitude of backup remote gateway. Does not support refresh.

BackupRemoteGatewayLongitude float64

Longitude of backup remote gateway. Does not support refresh.

BackupRemoteIdentifier string

Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".

BackupRemoteTunnelIp string

Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

CaCertTagName string

Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.

CustomAlgorithms bool

Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.

CustomMapped bool

Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.

EnableActiveActive bool

Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.

EnableDeadPeerDetection bool

Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9

EnableEventTriggeredHa bool

Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.

EnableIkev2 bool

Switch to enable IKEv2. Valid values: true, false. Default value: false.

EnableSingleIpHa bool

Enable single IP HA feature. Available as of provider version 2.19+.

ForwardTrafficToTransit bool

Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.

HaEnabled bool

Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.

LocalDestinationRealCidrs []string

List of Local Initiated Traffic Destination Real CIDRs.

LocalDestinationVirtualCidrs []string

List of Local Initiated Traffic Destination Virtual CIDRs.

LocalSourceRealCidrs []string

List of Local Initiated Traffic Source Real CIDRs.

LocalSourceVirtualCidrs []string

List of Local Initiated Traffic Source Virtual CIDRs.

LocalSubnetCidr string

Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.

LocalSubnetVirtual string

Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

LocalTunnelIp string

Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

Phase1Authentication string

Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".

Phase1DhGroups string

Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

Phase1Encryption string

Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".

Phase1RemoteIdentifiers []string

Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.

Phase2Authentication string

Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".

Phase2DhGroups string

Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

Phase2Encryption string

Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".

PreSharedKey string

Pre-Shared Key.

PrivateRouteEncryption bool

Private route encryption switch. Valid values: true, false.

RemoteDestinationRealCidrs []string

List of Remote Initiated Traffic Destination Real CIDRs.

RemoteDestinationVirtualCidrs []string

List of Remote Initiated Traffic Destination Virtual CIDRs.

RemoteGatewayLatitude float64

Latitude of remote gateway. Does not support refresh.

RemoteGatewayLongitude float64

Longitude of remote gateway. Does not support refresh.

RemoteIdentifier string

Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".

RemoteSourceRealCidrs []string

List of Remote Initiated Traffic Source Real CIDRs.

RemoteSourceVirtualCidrs []string

List of Remote Initiated Traffic Source Virtual CIDRs.

RemoteSubnetCidr string

Remote subnet CIDR. Not required for custom_mapped connection.

RemoteSubnetVirtual string

Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

RemoteTunnelIp string

Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

RouteTableLists []string

Route tables to modify.

SslServerPool string

Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.

connectionName String

Site2Cloud connection name.

connectionType String

Connection type. Valid Values: "mapped", "unmapped".

primaryCloudGatewayName String

Primary cloud gateway name.

remoteGatewayIp String

Remote gateway IP.

remoteGatewayType String

Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".

tunnelType String

Site2Cloud tunnel type. Valid Values: "policy", "route".

vpcId String

VPC ID of the cloud gateway.

authType String

Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.

backupGatewayName String

Backup gateway name. NOTE: Please see notes here regarding HA requirements.

backupLocalTunnelIp String

Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

backupPreSharedKey String

Backup Pre-Shared Key.

backupRemoteGatewayIp String

Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.

backupRemoteGatewayLatitude Double

Latitude of backup remote gateway. Does not support refresh.

backupRemoteGatewayLongitude Double

Longitude of backup remote gateway. Does not support refresh.

backupRemoteIdentifier String

Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".

backupRemoteTunnelIp String

Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

caCertTagName String

Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.

customAlgorithms Boolean

Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.

customMapped Boolean

Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.

enableActiveActive Boolean

Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.

enableDeadPeerDetection Boolean

Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9

enableEventTriggeredHa Boolean

Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.

enableIkev2 Boolean

Switch to enable IKEv2. Valid values: true, false. Default value: false.

enableSingleIpHa Boolean

Enable single IP HA feature. Available as of provider version 2.19+.

forwardTrafficToTransit Boolean

Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.

haEnabled Boolean

Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.

localDestinationRealCidrs List<String>

List of Local Initiated Traffic Destination Real CIDRs.

localDestinationVirtualCidrs List<String>

List of Local Initiated Traffic Destination Virtual CIDRs.

localSourceRealCidrs List<String>

List of Local Initiated Traffic Source Real CIDRs.

localSourceVirtualCidrs List<String>

List of Local Initiated Traffic Source Virtual CIDRs.

localSubnetCidr String

Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.

localSubnetVirtual String

Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

localTunnelIp String

Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

phase1Authentication String

Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".

phase1DhGroups String

Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase1Encryption String

Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".

phase1RemoteIdentifiers List<String>

Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.

phase2Authentication String

Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".

phase2DhGroups String

Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase2Encryption String

Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".

preSharedKey String

Pre-Shared Key.

privateRouteEncryption Boolean

Private route encryption switch. Valid values: true, false.

remoteDestinationRealCidrs List<String>

List of Remote Initiated Traffic Destination Real CIDRs.

remoteDestinationVirtualCidrs List<String>

List of Remote Initiated Traffic Destination Virtual CIDRs.

remoteGatewayLatitude Double

Latitude of remote gateway. Does not support refresh.

remoteGatewayLongitude Double

Longitude of remote gateway. Does not support refresh.

remoteIdentifier String

Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".

remoteSourceRealCidrs List<String>

List of Remote Initiated Traffic Source Real CIDRs.

remoteSourceVirtualCidrs List<String>

List of Remote Initiated Traffic Source Virtual CIDRs.

remoteSubnetCidr String

Remote subnet CIDR. Not required for custom_mapped connection.

remoteSubnetVirtual String

Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

remoteTunnelIp String

Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

routeTableLists List<String>

Route tables to modify.

sslServerPool String

Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.

connectionName string

Site2Cloud connection name.

connectionType string

Connection type. Valid Values: "mapped", "unmapped".

primaryCloudGatewayName string

Primary cloud gateway name.

remoteGatewayIp string

Remote gateway IP.

remoteGatewayType string

Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".

tunnelType string

Site2Cloud tunnel type. Valid Values: "policy", "route".

vpcId string

VPC ID of the cloud gateway.

authType string

Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.

backupGatewayName string

Backup gateway name. NOTE: Please see notes here regarding HA requirements.

backupLocalTunnelIp string

Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

backupPreSharedKey string

Backup Pre-Shared Key.

backupRemoteGatewayIp string

Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.

backupRemoteGatewayLatitude number

Latitude of backup remote gateway. Does not support refresh.

backupRemoteGatewayLongitude number

Longitude of backup remote gateway. Does not support refresh.

backupRemoteIdentifier string

Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".

backupRemoteTunnelIp string

Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

caCertTagName string

Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.

customAlgorithms boolean

Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.

customMapped boolean

Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.

enableActiveActive boolean

Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.

enableDeadPeerDetection boolean

Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9

enableEventTriggeredHa boolean

Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.

enableIkev2 boolean

Switch to enable IKEv2. Valid values: true, false. Default value: false.

enableSingleIpHa boolean

Enable single IP HA feature. Available as of provider version 2.19+.

forwardTrafficToTransit boolean

Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.

haEnabled boolean

Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.

localDestinationRealCidrs string[]

List of Local Initiated Traffic Destination Real CIDRs.

localDestinationVirtualCidrs string[]

List of Local Initiated Traffic Destination Virtual CIDRs.

localSourceRealCidrs string[]

List of Local Initiated Traffic Source Real CIDRs.

localSourceVirtualCidrs string[]

List of Local Initiated Traffic Source Virtual CIDRs.

localSubnetCidr string

Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.

localSubnetVirtual string

Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

localTunnelIp string

Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

phase1Authentication string

Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".

phase1DhGroups string

Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase1Encryption string

Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".

phase1RemoteIdentifiers string[]

Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.

phase2Authentication string

Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".

phase2DhGroups string

Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase2Encryption string

Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".

preSharedKey string

Pre-Shared Key.

privateRouteEncryption boolean

Private route encryption switch. Valid values: true, false.

remoteDestinationRealCidrs string[]

List of Remote Initiated Traffic Destination Real CIDRs.

remoteDestinationVirtualCidrs string[]

List of Remote Initiated Traffic Destination Virtual CIDRs.

remoteGatewayLatitude number

Latitude of remote gateway. Does not support refresh.

remoteGatewayLongitude number

Longitude of remote gateway. Does not support refresh.

remoteIdentifier string

Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".

remoteSourceRealCidrs string[]

List of Remote Initiated Traffic Source Real CIDRs.

remoteSourceVirtualCidrs string[]

List of Remote Initiated Traffic Source Virtual CIDRs.

remoteSubnetCidr string

Remote subnet CIDR. Not required for custom_mapped connection.

remoteSubnetVirtual string

Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

remoteTunnelIp string

Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

routeTableLists string[]

Route tables to modify.

sslServerPool string

Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.

connection_name str

Site2Cloud connection name.

connection_type str

Connection type. Valid Values: "mapped", "unmapped".

primary_cloud_gateway_name str

Primary cloud gateway name.

remote_gateway_ip str

Remote gateway IP.

remote_gateway_type str

Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".

tunnel_type str

Site2Cloud tunnel type. Valid Values: "policy", "route".

vpc_id str

VPC ID of the cloud gateway.

auth_type str

Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.

backup_gateway_name str

Backup gateway name. NOTE: Please see notes here regarding HA requirements.

backup_local_tunnel_ip str

Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

backup_pre_shared_key str

Backup Pre-Shared Key.

backup_remote_gateway_ip str

Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.

backup_remote_gateway_latitude float

Latitude of backup remote gateway. Does not support refresh.

backup_remote_gateway_longitude float

Longitude of backup remote gateway. Does not support refresh.

backup_remote_identifier str

Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".

backup_remote_tunnel_ip str

Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

ca_cert_tag_name str

Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.

custom_algorithms bool

Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.

custom_mapped bool

Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.

enable_active_active bool

Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.

enable_dead_peer_detection bool

Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9

enable_event_triggered_ha bool

Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.

enable_ikev2 bool

Switch to enable IKEv2. Valid values: true, false. Default value: false.

enable_single_ip_ha bool

Enable single IP HA feature. Available as of provider version 2.19+.

forward_traffic_to_transit bool

Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.

ha_enabled bool

Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.

local_destination_real_cidrs Sequence[str]

List of Local Initiated Traffic Destination Real CIDRs.

local_destination_virtual_cidrs Sequence[str]

List of Local Initiated Traffic Destination Virtual CIDRs.

local_source_real_cidrs Sequence[str]

List of Local Initiated Traffic Source Real CIDRs.

local_source_virtual_cidrs Sequence[str]

List of Local Initiated Traffic Source Virtual CIDRs.

local_subnet_cidr str

Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.

local_subnet_virtual str

Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

local_tunnel_ip str

Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

phase1_authentication str

Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".

phase1_dh_groups str

Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase1_encryption str

Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".

phase1_remote_identifiers Sequence[str]

Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.

phase2_authentication str

Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".

phase2_dh_groups str

Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase2_encryption str

Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".

pre_shared_key str

Pre-Shared Key.

private_route_encryption bool

Private route encryption switch. Valid values: true, false.

remote_destination_real_cidrs Sequence[str]

List of Remote Initiated Traffic Destination Real CIDRs.

remote_destination_virtual_cidrs Sequence[str]

List of Remote Initiated Traffic Destination Virtual CIDRs.

remote_gateway_latitude float

Latitude of remote gateway. Does not support refresh.

remote_gateway_longitude float

Longitude of remote gateway. Does not support refresh.

remote_identifier str

Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".

remote_source_real_cidrs Sequence[str]

List of Remote Initiated Traffic Source Real CIDRs.

remote_source_virtual_cidrs Sequence[str]

List of Remote Initiated Traffic Source Virtual CIDRs.

remote_subnet_cidr str

Remote subnet CIDR. Not required for custom_mapped connection.

remote_subnet_virtual str

Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

remote_tunnel_ip str

Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

route_table_lists Sequence[str]

Route tables to modify.

ssl_server_pool str

Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.

connectionName String

Site2Cloud connection name.

connectionType String

Connection type. Valid Values: "mapped", "unmapped".

primaryCloudGatewayName String

Primary cloud gateway name.

remoteGatewayIp String

Remote gateway IP.

remoteGatewayType String

Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".

tunnelType String

Site2Cloud tunnel type. Valid Values: "policy", "route".

vpcId String

VPC ID of the cloud gateway.

authType String

Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.

backupGatewayName String

Backup gateway name. NOTE: Please see notes here regarding HA requirements.

backupLocalTunnelIp String

Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

backupPreSharedKey String

Backup Pre-Shared Key.

backupRemoteGatewayIp String

Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.

backupRemoteGatewayLatitude Number

Latitude of backup remote gateway. Does not support refresh.

backupRemoteGatewayLongitude Number

Longitude of backup remote gateway. Does not support refresh.

backupRemoteIdentifier String

Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".

backupRemoteTunnelIp String

Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

caCertTagName String

Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.

customAlgorithms Boolean

Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.

customMapped Boolean

Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.

enableActiveActive Boolean

Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.

enableDeadPeerDetection Boolean

Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9

enableEventTriggeredHa Boolean

Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.

enableIkev2 Boolean

Switch to enable IKEv2. Valid values: true, false. Default value: false.

enableSingleIpHa Boolean

Enable single IP HA feature. Available as of provider version 2.19+.

forwardTrafficToTransit Boolean

Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.

haEnabled Boolean

Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.

localDestinationRealCidrs List<String>

List of Local Initiated Traffic Destination Real CIDRs.

localDestinationVirtualCidrs List<String>

List of Local Initiated Traffic Destination Virtual CIDRs.

localSourceRealCidrs List<String>

List of Local Initiated Traffic Source Real CIDRs.

localSourceVirtualCidrs List<String>

List of Local Initiated Traffic Source Virtual CIDRs.

localSubnetCidr String

Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.

localSubnetVirtual String

Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

localTunnelIp String

Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

phase1Authentication String

Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".

phase1DhGroups String

Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase1Encryption String

Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".

phase1RemoteIdentifiers List<String>

Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.

phase2Authentication String

Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".

phase2DhGroups String

Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase2Encryption String

Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".

preSharedKey String

Pre-Shared Key.

privateRouteEncryption Boolean

Private route encryption switch. Valid values: true, false.

remoteDestinationRealCidrs List<String>

List of Remote Initiated Traffic Destination Real CIDRs.

remoteDestinationVirtualCidrs List<String>

List of Remote Initiated Traffic Destination Virtual CIDRs.

remoteGatewayLatitude Number

Latitude of remote gateway. Does not support refresh.

remoteGatewayLongitude Number

Longitude of remote gateway. Does not support refresh.

remoteIdentifier String

Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".

remoteSourceRealCidrs List<String>

List of Remote Initiated Traffic Source Real CIDRs.

remoteSourceVirtualCidrs List<String>

List of Remote Initiated Traffic Source Virtual CIDRs.

remoteSubnetCidr String

Remote subnet CIDR. Not required for custom_mapped connection.

remoteSubnetVirtual String

Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

remoteTunnelIp String

Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

routeTableLists List<String>

Route tables to modify.

sslServerPool String

Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.

Outputs

All input properties are implicitly available as output properties. Additionally, the AviatrixSite2Cloud resource produces the following output properties:

Id string

The provider-assigned unique ID for this managed resource.

Id string

The provider-assigned unique ID for this managed resource.

id String

The provider-assigned unique ID for this managed resource.

id string

The provider-assigned unique ID for this managed resource.

id str

The provider-assigned unique ID for this managed resource.

id String

The provider-assigned unique ID for this managed resource.

Look up Existing AviatrixSite2Cloud Resource

Get an existing AviatrixSite2Cloud resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: AviatrixSite2CloudState, opts?: CustomResourceOptions): AviatrixSite2Cloud
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        auth_type: Optional[str] = None,
        backup_gateway_name: Optional[str] = None,
        backup_local_tunnel_ip: Optional[str] = None,
        backup_pre_shared_key: Optional[str] = None,
        backup_remote_gateway_ip: Optional[str] = None,
        backup_remote_gateway_latitude: Optional[float] = None,
        backup_remote_gateway_longitude: Optional[float] = None,
        backup_remote_identifier: Optional[str] = None,
        backup_remote_tunnel_ip: Optional[str] = None,
        ca_cert_tag_name: Optional[str] = None,
        connection_name: Optional[str] = None,
        connection_type: Optional[str] = None,
        custom_algorithms: Optional[bool] = None,
        custom_mapped: Optional[bool] = None,
        enable_active_active: Optional[bool] = None,
        enable_dead_peer_detection: Optional[bool] = None,
        enable_event_triggered_ha: Optional[bool] = None,
        enable_ikev2: Optional[bool] = None,
        enable_single_ip_ha: Optional[bool] = None,
        forward_traffic_to_transit: Optional[bool] = None,
        ha_enabled: Optional[bool] = None,
        local_destination_real_cidrs: Optional[Sequence[str]] = None,
        local_destination_virtual_cidrs: Optional[Sequence[str]] = None,
        local_source_real_cidrs: Optional[Sequence[str]] = None,
        local_source_virtual_cidrs: Optional[Sequence[str]] = None,
        local_subnet_cidr: Optional[str] = None,
        local_subnet_virtual: Optional[str] = None,
        local_tunnel_ip: Optional[str] = None,
        phase1_authentication: Optional[str] = None,
        phase1_dh_groups: Optional[str] = None,
        phase1_encryption: Optional[str] = None,
        phase1_remote_identifiers: Optional[Sequence[str]] = None,
        phase2_authentication: Optional[str] = None,
        phase2_dh_groups: Optional[str] = None,
        phase2_encryption: Optional[str] = None,
        pre_shared_key: Optional[str] = None,
        primary_cloud_gateway_name: Optional[str] = None,
        private_route_encryption: Optional[bool] = None,
        remote_destination_real_cidrs: Optional[Sequence[str]] = None,
        remote_destination_virtual_cidrs: Optional[Sequence[str]] = None,
        remote_gateway_ip: Optional[str] = None,
        remote_gateway_latitude: Optional[float] = None,
        remote_gateway_longitude: Optional[float] = None,
        remote_gateway_type: Optional[str] = None,
        remote_identifier: Optional[str] = None,
        remote_source_real_cidrs: Optional[Sequence[str]] = None,
        remote_source_virtual_cidrs: Optional[Sequence[str]] = None,
        remote_subnet_cidr: Optional[str] = None,
        remote_subnet_virtual: Optional[str] = None,
        remote_tunnel_ip: Optional[str] = None,
        route_table_lists: Optional[Sequence[str]] = None,
        ssl_server_pool: Optional[str] = None,
        tunnel_type: Optional[str] = None,
        vpc_id: Optional[str] = None) -> AviatrixSite2Cloud
func GetAviatrixSite2Cloud(ctx *Context, name string, id IDInput, state *AviatrixSite2CloudState, opts ...ResourceOption) (*AviatrixSite2Cloud, error)
public static AviatrixSite2Cloud Get(string name, Input<string> id, AviatrixSite2CloudState? state, CustomResourceOptions? opts = null)
public static AviatrixSite2Cloud get(String name, Output<String> id, AviatrixSite2CloudState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
The following state arguments are supported:
AuthType string

Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.

BackupGatewayName string

Backup gateway name. NOTE: Please see notes here regarding HA requirements.

BackupLocalTunnelIp string

Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

BackupPreSharedKey string

Backup Pre-Shared Key.

BackupRemoteGatewayIp string

Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.

BackupRemoteGatewayLatitude double

Latitude of backup remote gateway. Does not support refresh.

BackupRemoteGatewayLongitude double

Longitude of backup remote gateway. Does not support refresh.

BackupRemoteIdentifier string

Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".

BackupRemoteTunnelIp string

Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

CaCertTagName string

Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.

ConnectionName string

Site2Cloud connection name.

ConnectionType string

Connection type. Valid Values: "mapped", "unmapped".

CustomAlgorithms bool

Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.

CustomMapped bool

Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.

EnableActiveActive bool

Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.

EnableDeadPeerDetection bool

Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9

EnableEventTriggeredHa bool

Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.

EnableIkev2 bool

Switch to enable IKEv2. Valid values: true, false. Default value: false.

EnableSingleIpHa bool

Enable single IP HA feature. Available as of provider version 2.19+.

ForwardTrafficToTransit bool

Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.

HaEnabled bool

Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.

LocalDestinationRealCidrs List<string>

List of Local Initiated Traffic Destination Real CIDRs.

LocalDestinationVirtualCidrs List<string>

List of Local Initiated Traffic Destination Virtual CIDRs.

LocalSourceRealCidrs List<string>

List of Local Initiated Traffic Source Real CIDRs.

LocalSourceVirtualCidrs List<string>

List of Local Initiated Traffic Source Virtual CIDRs.

LocalSubnetCidr string

Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.

LocalSubnetVirtual string

Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

LocalTunnelIp string

Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

Phase1Authentication string

Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".

Phase1DhGroups string

Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

Phase1Encryption string

Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".

Phase1RemoteIdentifiers List<string>

Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.

Phase2Authentication string

Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".

Phase2DhGroups string

Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

Phase2Encryption string

Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".

PreSharedKey string

Pre-Shared Key.

PrimaryCloudGatewayName string

Primary cloud gateway name.

PrivateRouteEncryption bool

Private route encryption switch. Valid values: true, false.

RemoteDestinationRealCidrs List<string>

List of Remote Initiated Traffic Destination Real CIDRs.

RemoteDestinationVirtualCidrs List<string>

List of Remote Initiated Traffic Destination Virtual CIDRs.

RemoteGatewayIp string

Remote gateway IP.

RemoteGatewayLatitude double

Latitude of remote gateway. Does not support refresh.

RemoteGatewayLongitude double

Longitude of remote gateway. Does not support refresh.

RemoteGatewayType string

Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".

RemoteIdentifier string

Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".

RemoteSourceRealCidrs List<string>

List of Remote Initiated Traffic Source Real CIDRs.

RemoteSourceVirtualCidrs List<string>

List of Remote Initiated Traffic Source Virtual CIDRs.

RemoteSubnetCidr string

Remote subnet CIDR. Not required for custom_mapped connection.

RemoteSubnetVirtual string

Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

RemoteTunnelIp string

Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

RouteTableLists List<string>

Route tables to modify.

SslServerPool string

Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.

TunnelType string

Site2Cloud tunnel type. Valid Values: "policy", "route".

VpcId string

VPC ID of the cloud gateway.

AuthType string

Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.

BackupGatewayName string

Backup gateway name. NOTE: Please see notes here regarding HA requirements.

BackupLocalTunnelIp string

Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

BackupPreSharedKey string

Backup Pre-Shared Key.

BackupRemoteGatewayIp string

Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.

BackupRemoteGatewayLatitude float64

Latitude of backup remote gateway. Does not support refresh.

BackupRemoteGatewayLongitude float64

Longitude of backup remote gateway. Does not support refresh.

BackupRemoteIdentifier string

Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".

BackupRemoteTunnelIp string

Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

CaCertTagName string

Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.

ConnectionName string

Site2Cloud connection name.

ConnectionType string

Connection type. Valid Values: "mapped", "unmapped".

CustomAlgorithms bool

Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.

CustomMapped bool

Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.

EnableActiveActive bool

Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.

EnableDeadPeerDetection bool

Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9

EnableEventTriggeredHa bool

Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.

EnableIkev2 bool

Switch to enable IKEv2. Valid values: true, false. Default value: false.

EnableSingleIpHa bool

Enable single IP HA feature. Available as of provider version 2.19+.

ForwardTrafficToTransit bool

Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.

HaEnabled bool

Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.

LocalDestinationRealCidrs []string

List of Local Initiated Traffic Destination Real CIDRs.

LocalDestinationVirtualCidrs []string

List of Local Initiated Traffic Destination Virtual CIDRs.

LocalSourceRealCidrs []string

List of Local Initiated Traffic Source Real CIDRs.

LocalSourceVirtualCidrs []string

List of Local Initiated Traffic Source Virtual CIDRs.

LocalSubnetCidr string

Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.

LocalSubnetVirtual string

Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

LocalTunnelIp string

Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

Phase1Authentication string

Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".

Phase1DhGroups string

Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

Phase1Encryption string

Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".

Phase1RemoteIdentifiers []string

Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.

Phase2Authentication string

Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".

Phase2DhGroups string

Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

Phase2Encryption string

Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".

PreSharedKey string

Pre-Shared Key.

PrimaryCloudGatewayName string

Primary cloud gateway name.

PrivateRouteEncryption bool

Private route encryption switch. Valid values: true, false.

RemoteDestinationRealCidrs []string

List of Remote Initiated Traffic Destination Real CIDRs.

RemoteDestinationVirtualCidrs []string

List of Remote Initiated Traffic Destination Virtual CIDRs.

RemoteGatewayIp string

Remote gateway IP.

RemoteGatewayLatitude float64

Latitude of remote gateway. Does not support refresh.

RemoteGatewayLongitude float64

Longitude of remote gateway. Does not support refresh.

RemoteGatewayType string

Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".

RemoteIdentifier string

Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".

RemoteSourceRealCidrs []string

List of Remote Initiated Traffic Source Real CIDRs.

RemoteSourceVirtualCidrs []string

List of Remote Initiated Traffic Source Virtual CIDRs.

RemoteSubnetCidr string

Remote subnet CIDR. Not required for custom_mapped connection.

RemoteSubnetVirtual string

Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

RemoteTunnelIp string

Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

RouteTableLists []string

Route tables to modify.

SslServerPool string

Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.

TunnelType string

Site2Cloud tunnel type. Valid Values: "policy", "route".

VpcId string

VPC ID of the cloud gateway.

authType String

Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.

backupGatewayName String

Backup gateway name. NOTE: Please see notes here regarding HA requirements.

backupLocalTunnelIp String

Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

backupPreSharedKey String

Backup Pre-Shared Key.

backupRemoteGatewayIp String

Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.

backupRemoteGatewayLatitude Double

Latitude of backup remote gateway. Does not support refresh.

backupRemoteGatewayLongitude Double

Longitude of backup remote gateway. Does not support refresh.

backupRemoteIdentifier String

Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".

backupRemoteTunnelIp String

Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

caCertTagName String

Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.

connectionName String

Site2Cloud connection name.

connectionType String

Connection type. Valid Values: "mapped", "unmapped".

customAlgorithms Boolean

Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.

customMapped Boolean

Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.

enableActiveActive Boolean

Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.

enableDeadPeerDetection Boolean

Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9

enableEventTriggeredHa Boolean

Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.

enableIkev2 Boolean

Switch to enable IKEv2. Valid values: true, false. Default value: false.

enableSingleIpHa Boolean

Enable single IP HA feature. Available as of provider version 2.19+.

forwardTrafficToTransit Boolean

Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.

haEnabled Boolean

Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.

localDestinationRealCidrs List<String>

List of Local Initiated Traffic Destination Real CIDRs.

localDestinationVirtualCidrs List<String>

List of Local Initiated Traffic Destination Virtual CIDRs.

localSourceRealCidrs List<String>

List of Local Initiated Traffic Source Real CIDRs.

localSourceVirtualCidrs List<String>

List of Local Initiated Traffic Source Virtual CIDRs.

localSubnetCidr String

Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.

localSubnetVirtual String

Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

localTunnelIp String

Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

phase1Authentication String

Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".

phase1DhGroups String

Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase1Encryption String

Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".

phase1RemoteIdentifiers List<String>

Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.

phase2Authentication String

Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".

phase2DhGroups String

Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase2Encryption String

Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".

preSharedKey String

Pre-Shared Key.

primaryCloudGatewayName String

Primary cloud gateway name.

privateRouteEncryption Boolean

Private route encryption switch. Valid values: true, false.

remoteDestinationRealCidrs List<String>

List of Remote Initiated Traffic Destination Real CIDRs.

remoteDestinationVirtualCidrs List<String>

List of Remote Initiated Traffic Destination Virtual CIDRs.

remoteGatewayIp String

Remote gateway IP.

remoteGatewayLatitude Double

Latitude of remote gateway. Does not support refresh.

remoteGatewayLongitude Double

Longitude of remote gateway. Does not support refresh.

remoteGatewayType String

Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".

remoteIdentifier String

Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".

remoteSourceRealCidrs List<String>

List of Remote Initiated Traffic Source Real CIDRs.

remoteSourceVirtualCidrs List<String>

List of Remote Initiated Traffic Source Virtual CIDRs.

remoteSubnetCidr String

Remote subnet CIDR. Not required for custom_mapped connection.

remoteSubnetVirtual String

Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

remoteTunnelIp String

Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

routeTableLists List<String>

Route tables to modify.

sslServerPool String

Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.

tunnelType String

Site2Cloud tunnel type. Valid Values: "policy", "route".

vpcId String

VPC ID of the cloud gateway.

authType string

Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.

backupGatewayName string

Backup gateway name. NOTE: Please see notes here regarding HA requirements.

backupLocalTunnelIp string

Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

backupPreSharedKey string

Backup Pre-Shared Key.

backupRemoteGatewayIp string

Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.

backupRemoteGatewayLatitude number

Latitude of backup remote gateway. Does not support refresh.

backupRemoteGatewayLongitude number

Longitude of backup remote gateway. Does not support refresh.

backupRemoteIdentifier string

Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".

backupRemoteTunnelIp string

Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

caCertTagName string

Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.

connectionName string

Site2Cloud connection name.

connectionType string

Connection type. Valid Values: "mapped", "unmapped".

customAlgorithms boolean

Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.

customMapped boolean

Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.

enableActiveActive boolean

Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.

enableDeadPeerDetection boolean

Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9

enableEventTriggeredHa boolean

Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.

enableIkev2 boolean

Switch to enable IKEv2. Valid values: true, false. Default value: false.

enableSingleIpHa boolean

Enable single IP HA feature. Available as of provider version 2.19+.

forwardTrafficToTransit boolean

Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.

haEnabled boolean

Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.

localDestinationRealCidrs string[]

List of Local Initiated Traffic Destination Real CIDRs.

localDestinationVirtualCidrs string[]

List of Local Initiated Traffic Destination Virtual CIDRs.

localSourceRealCidrs string[]

List of Local Initiated Traffic Source Real CIDRs.

localSourceVirtualCidrs string[]

List of Local Initiated Traffic Source Virtual CIDRs.

localSubnetCidr string

Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.

localSubnetVirtual string

Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

localTunnelIp string

Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

phase1Authentication string

Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".

phase1DhGroups string

Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase1Encryption string

Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".

phase1RemoteIdentifiers string[]

Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.

phase2Authentication string

Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".

phase2DhGroups string

Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase2Encryption string

Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".

preSharedKey string

Pre-Shared Key.

primaryCloudGatewayName string

Primary cloud gateway name.

privateRouteEncryption boolean

Private route encryption switch. Valid values: true, false.

remoteDestinationRealCidrs string[]

List of Remote Initiated Traffic Destination Real CIDRs.

remoteDestinationVirtualCidrs string[]

List of Remote Initiated Traffic Destination Virtual CIDRs.

remoteGatewayIp string

Remote gateway IP.

remoteGatewayLatitude number

Latitude of remote gateway. Does not support refresh.

remoteGatewayLongitude number

Longitude of remote gateway. Does not support refresh.

remoteGatewayType string

Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".

remoteIdentifier string

Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".

remoteSourceRealCidrs string[]

List of Remote Initiated Traffic Source Real CIDRs.

remoteSourceVirtualCidrs string[]

List of Remote Initiated Traffic Source Virtual CIDRs.

remoteSubnetCidr string

Remote subnet CIDR. Not required for custom_mapped connection.

remoteSubnetVirtual string

Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

remoteTunnelIp string

Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

routeTableLists string[]

Route tables to modify.

sslServerPool string

Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.

tunnelType string

Site2Cloud tunnel type. Valid Values: "policy", "route".

vpcId string

VPC ID of the cloud gateway.

auth_type str

Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.

backup_gateway_name str

Backup gateway name. NOTE: Please see notes here regarding HA requirements.

backup_local_tunnel_ip str

Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

backup_pre_shared_key str

Backup Pre-Shared Key.

backup_remote_gateway_ip str

Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.

backup_remote_gateway_latitude float

Latitude of backup remote gateway. Does not support refresh.

backup_remote_gateway_longitude float

Longitude of backup remote gateway. Does not support refresh.

backup_remote_identifier str

Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".

backup_remote_tunnel_ip str

Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

ca_cert_tag_name str

Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.

connection_name str

Site2Cloud connection name.

connection_type str

Connection type. Valid Values: "mapped", "unmapped".

custom_algorithms bool

Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.

custom_mapped bool

Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.

enable_active_active bool

Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.

enable_dead_peer_detection bool

Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9

enable_event_triggered_ha bool

Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.

enable_ikev2 bool

Switch to enable IKEv2. Valid values: true, false. Default value: false.

enable_single_ip_ha bool

Enable single IP HA feature. Available as of provider version 2.19+.

forward_traffic_to_transit bool

Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.

ha_enabled bool

Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.

local_destination_real_cidrs Sequence[str]

List of Local Initiated Traffic Destination Real CIDRs.

local_destination_virtual_cidrs Sequence[str]

List of Local Initiated Traffic Destination Virtual CIDRs.

local_source_real_cidrs Sequence[str]

List of Local Initiated Traffic Source Real CIDRs.

local_source_virtual_cidrs Sequence[str]

List of Local Initiated Traffic Source Virtual CIDRs.

local_subnet_cidr str

Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.

local_subnet_virtual str

Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

local_tunnel_ip str

Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

phase1_authentication str

Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".

phase1_dh_groups str

Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase1_encryption str

Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".

phase1_remote_identifiers Sequence[str]

Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.

phase2_authentication str

Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".

phase2_dh_groups str

Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase2_encryption str

Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".

pre_shared_key str

Pre-Shared Key.

primary_cloud_gateway_name str

Primary cloud gateway name.

private_route_encryption bool

Private route encryption switch. Valid values: true, false.

remote_destination_real_cidrs Sequence[str]

List of Remote Initiated Traffic Destination Real CIDRs.

remote_destination_virtual_cidrs Sequence[str]

List of Remote Initiated Traffic Destination Virtual CIDRs.

remote_gateway_ip str

Remote gateway IP.

remote_gateway_latitude float

Latitude of remote gateway. Does not support refresh.

remote_gateway_longitude float

Longitude of remote gateway. Does not support refresh.

remote_gateway_type str

Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".

remote_identifier str

Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".

remote_source_real_cidrs Sequence[str]

List of Remote Initiated Traffic Source Real CIDRs.

remote_source_virtual_cidrs Sequence[str]

List of Remote Initiated Traffic Source Virtual CIDRs.

remote_subnet_cidr str

Remote subnet CIDR. Not required for custom_mapped connection.

remote_subnet_virtual str

Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

remote_tunnel_ip str

Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

route_table_lists Sequence[str]

Route tables to modify.

ssl_server_pool str

Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.

tunnel_type str

Site2Cloud tunnel type. Valid Values: "policy", "route".

vpc_id str

VPC ID of the cloud gateway.

authType String

Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.

backupGatewayName String

Backup gateway name. NOTE: Please see notes here regarding HA requirements.

backupLocalTunnelIp String

Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

backupPreSharedKey String

Backup Pre-Shared Key.

backupRemoteGatewayIp String

Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.

backupRemoteGatewayLatitude Number

Latitude of backup remote gateway. Does not support refresh.

backupRemoteGatewayLongitude Number

Longitude of backup remote gateway. Does not support refresh.

backupRemoteIdentifier String

Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".

backupRemoteTunnelIp String

Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.

caCertTagName String

Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.

connectionName String

Site2Cloud connection name.

connectionType String

Connection type. Valid Values: "mapped", "unmapped".

customAlgorithms Boolean

Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.

customMapped Boolean

Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.

enableActiveActive Boolean

Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.

enableDeadPeerDetection Boolean

Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9

enableEventTriggeredHa Boolean

Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.

enableIkev2 Boolean

Switch to enable IKEv2. Valid values: true, false. Default value: false.

enableSingleIpHa Boolean

Enable single IP HA feature. Available as of provider version 2.19+.

forwardTrafficToTransit Boolean

Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.

haEnabled Boolean

Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.

localDestinationRealCidrs List<String>

List of Local Initiated Traffic Destination Real CIDRs.

localDestinationVirtualCidrs List<String>

List of Local Initiated Traffic Destination Virtual CIDRs.

localSourceRealCidrs List<String>

List of Local Initiated Traffic Source Real CIDRs.

localSourceVirtualCidrs List<String>

List of Local Initiated Traffic Source Virtual CIDRs.

localSubnetCidr String

Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.

localSubnetVirtual String

Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

localTunnelIp String

Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

phase1Authentication String

Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".

phase1DhGroups String

Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase1Encryption String

Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".

phase1RemoteIdentifiers List<String>

Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.

phase2Authentication String

Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".

phase2DhGroups String

Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".

phase2Encryption String

Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".

preSharedKey String

Pre-Shared Key.

primaryCloudGatewayName String

Primary cloud gateway name.

privateRouteEncryption Boolean

Private route encryption switch. Valid values: true, false.

remoteDestinationRealCidrs List<String>

List of Remote Initiated Traffic Destination Real CIDRs.

remoteDestinationVirtualCidrs List<String>

List of Remote Initiated Traffic Destination Virtual CIDRs.

remoteGatewayIp String

Remote gateway IP.

remoteGatewayLatitude Number

Latitude of remote gateway. Does not support refresh.

remoteGatewayLongitude Number

Longitude of remote gateway. Does not support refresh.

remoteGatewayType String

Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".

remoteIdentifier String

Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".

remoteSourceRealCidrs List<String>

List of Remote Initiated Traffic Source Real CIDRs.

remoteSourceVirtualCidrs List<String>

List of Remote Initiated Traffic Source Virtual CIDRs.

remoteSubnetCidr String

Remote subnet CIDR. Not required for custom_mapped connection.

remoteSubnetVirtual String

Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.

remoteTunnelIp String

Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.

routeTableLists List<String>

Route tables to modify.

sslServerPool String

Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.

tunnelType String

Site2Cloud tunnel type. Valid Values: "policy", "route".

vpcId String

VPC ID of the cloud gateway.

Package Details

Repository
aviatrix astipkovits/pulumi-aviatrix
License
Apache-2.0
Notes

This Pulumi package is based on the aviatrix Terraform Provider.